3eb1a3d1e053d2dc86897683b9183778973da0db2a78424c1f83587f7132317d

General

Target

3eb1a3d1e053d2dc86897683b9183778973da0db2a78424c1f83587f7132317d
Size

155KB
MD5

68f92f230bdfbdda0c1980c96dd2f699
SHA1

286f5d1d4d7934440e8a27075b2dffa2bf8e991f
SHA256

3eb1a3d1e053d2dc86897683b9183778973da0db2a78424c1f83587f7132317d
SHA512

d5d87940d9aa7f4fe3df34e25c2d22e1cc4897c89e7cf4bed73bb2611ea81100f5bf5c54117e6141f1422247701d99634ec22d28c6839d4c74416a32e9f6a779
SSDEEP

3072:eoyj8dPqpdnpEGrr/BI+XEV4xR2irrMIAx3nukG5bWEoKeFr:AqybpEG//iF4xZWnukCbWEoKK

Score

N/A

Malware Config

Signatures

Files

3eb1a3d1e053d2dc86897683b9183778973da0db2a78424c1f83587f7132317d
.dll windows x86

cc92ee978f1f6622c2e8a7cc3936b496

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHGetFolderPathW
RegenerateUserEnvironment

user32

wsprintfA
SetTimer
MessageBoxA

msvcrt

_onexit
_mbscmp
_itoa
_initterm
_except_handler3
atoi
__set_app_type
__p__commode
__getmainargs
__dllonexit
__CxxFrameHandler
exit
free
malloc
sprintf
strrchr
strtok
_adjust_fdiv

kernel32

GetCurrentProcess
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
GetSystemDirectoryA
GetVersionExA
FreeLibrary
GetCurrentDirectoryA
GetFileAttributesA
lstrlenA
lstrcpyA
VirtualProtect
VirtualFree
VirtualAlloc
SetCurrentDirectoryA
LocalFree
LocalAlloc
CreateDirectoryA
DeleteFileA
ExitProcess
FindClose
FindFirstFileA
LoadLibraryA

advapi32

LsaQuerySecurityObject
RegDeleteValueA
RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupCancelTemporarySourceList

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

Exports

Exports

BrowseForFolder
CreateContext
ExternalRestore
UpdateSubTexture

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cc92ee978f1f6622c2e8a7cc3936b496

Headers

DLL Characteristics

File Characteristics

Imports

shell32

user32

msvcrt

kernel32

advapi32

setupapi

winspool.drv

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 85KB - Virtual size: 85KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 85KB - Virtual size: 85KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 4KB - Virtual size: 3KB