f7be259e218dc66029abbb9bfd8a1a810fd1159cdea2533a055f8479216caf77

Sharing

Copy URL

Twitter E-mail

General

Target

f7be259e218dc66029abbb9bfd8a1a810fd1159cdea2533a055f8479216caf77
Size

161KB
MD5

7cfbce53f269069f9cd84ccee3969cba
SHA1

8fb51576c732b34e1f6c879921a665dc0ab41329
SHA256

f7be259e218dc66029abbb9bfd8a1a810fd1159cdea2533a055f8479216caf77
SHA512

425e38f0ab929ab1bf24c0a87364ae1b9f71209f80aa48cdb169976ef6766493d4f07d15d86972159b439e223d80b52384c8ded4aea258b877f2e16a0070af5c
SSDEEP

3072:D8m2gRczrMuV+rfbX6dK1DEmMMHGb4JuZM/OBLxCUfsCxjajwmKAvYj:DTRc/sfb9LMMmb4JY9sCxja6A

Score

N/A

Malware Config

Signatures

Files

f7be259e218dc66029abbb9bfd8a1a810fd1159cdea2533a055f8479216caf77
.dll windows x86

42ae50849f620f53f9c0d02b4f9849e2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ClientToScreen
ValidateRect
UpdateWindow
UnregisterClassW
UnregisterClassA
TabbedTextOutW
ShowWindow
SetWindowsHookExW
SetWindowTextW
SetWindowPos
SetWindowLongW
SetMenuItemBitmaps
SetForegroundWindow
SetFocus
SetCursor
SetActiveWindow
SendMessageW
SendDlgItemMessageW
SendDlgItemMessageA
ScrollDC
RemovePropW
ReleaseDC
RegisterWindowMessageW
RegisterClassW
PtInRect
PostQuitMessage
PostMessageW
PeekMessageW
ModifyMenuW
MapWindowPoints
LoadIconW
LoadCursorW
LoadBitmapW
IsWindowVisible
IsWindowEnabled
IsWindow
CheckMenuItem
GetWindowTextW
GetWindowRect
GetWindowPlacement
GetWindow
GetTopWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetShellWindow
GetPropW
GetParent
GetMessageW
GetMessageTime
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetDlgItem
GetDlgCtrlID
GetDC
GetCursorPos
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetClassInfoExW
GetActiveWindow
EndDialog
EnableMenuItem
DrawTextW
DrawTextExW
DispatchMessageW
DestroyWindow
DestroyMenu
DdeSetUserHandle
CreateWindowExW
CreateDialogIndirectParamW
CopyRect
BeginPaint
IsDialogMessageW
AdjustWindowRectEx

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

shell32

SHGetFolderPathW
SHGetDataFromIDListA
SHFreeNameMappings

advapi32

RegSetValueExW
RegQueryValueW
RegQueryValueExW
RegOpenKeyExW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
UninstallApplication

kernel32

WriteConsoleW
WriteConsoleA
WideCharToMultiByte
VirtualProtect
VirtualFree
VirtualAlloc
VerSetConditionMask
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
TerminateJobObject
Sleep
SizeofResource
SetUnhandledExceptionFilter
WriteFile
SetStdHandle
SetLastError
WritePrivateProfileStringW
SetFilePointer
SetEvent
SetErrorMode
SetCriticalSectionSpinCount
SetCommState
ReadFile
RaiseException
QueryPerformanceCounter
OpenThread
LockResource
LocalReAlloc
LocalFree
LocalAlloc
LoadLibraryW
LCMapStringW
LCMapStringA
IsValidCodePage
IsSystemResumeAutomatic
IsDebuggerPresent
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
Heap32ListNext
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalFree
GlobalFindAtomW
GlobalDeleteAtom
GlobalCompact
GlobalAlloc
GetVersion
_lclose
lstrcmpW
lstrlenW
SetInformationJobObject
GetStdHandle
GetSystemDefaultUILanguage
GetThreadLocale
SetSystemPowerState
GetCPInfo
BackupSeek
CloseHandle
CompareStringW
ConvertDefaultLocale
CreateFileA
DebugBreak
DeviceIoControl
EnterCriticalSection
EnumResourceLanguagesW
EscapeCommFunction
ExitProcess
FindCloseChangeNotification
FindResourceW
FlushConsoleInputBuffer
FreeEnvironmentStringsA
FreeEnvironmentStringsW
FreeLibrary
FreeResource
GetACP
GetStartupInfoA
GetCommandLineA
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetEnvironmentStringsA
GetEnvironmentStringsW
GetFileType
GetLastError
GetLocaleInfoA
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetProcessTimes
GetTickCount

gdi32

SetBkColor
SelectObject
ScaleViewportExtEx
SaveDC
RestoreDC
RectVisible
OffsetViewportOrgEx
GetStockObject
GetObjectW
GetDeviceCaps
GetClipBox
ExtTextOutW
Escape
DeleteObject
DeleteDC
CreateBitmap
AbortDoc
TextOutW
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetMapMode

shlwapi

PathFindExtensionW
PathFindFileNameW

oleaut32

VariantClear
VariantInit
VariantChangeType

Exports

Exports

AStartUp
CommitTransaction
CreateQuery
PszAllocA

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42ae50849f620f53f9c0d02b4f9849e2

Headers

DLL Characteristics

File Characteristics

Imports

user32

winspool.drv

shell32

advapi32

kernel32

gdi32

shlwapi

oleaut32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 92KB - Virtual size: 92KB

.data Size: 14KB - Virtual size: 14KB

.rsrc Size: 1024B - Virtual size: 976B

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 92KB - Virtual size: 92KB

.data
Size: 14KB - Virtual size: 14KB

.rsrc
Size: 1024B - Virtual size: 976B