ff6c038f44b12d64baf8288d675e26b478b9ca071c7f6b2d2ea94207c442a74c

Sharing

Copy URL Twitter E-mail

General

Target

ff6c038f44b12d64baf8288d675e26b478b9ca071c7f6b2d2ea94207c442a74c
Size

61KB
MD5

6d4bf4ca829eae6a5eef80f14a6308e5
SHA1

112425e148fa8e76e75ab081b09d13b50176344b
SHA256

ff6c038f44b12d64baf8288d675e26b478b9ca071c7f6b2d2ea94207c442a74c
SHA512

84decf9d6a4b353d02b17c8d7f7d330829bee55659505d879c257b300ee16b56abad6fa1d9883c9aab8e409002044f6f7afc19f64a9ecb976e7625ce0b0f8e02
SSDEEP

1536:IqlmHi3+U97GHE5EH5ZWFk3USi1Qln71mgVIo/DRbvLCg:3lbTUB54FkESiel71MKR7t

Score

N/A

Malware Config

Signatures

Files

ff6c038f44b12d64baf8288d675e26b478b9ca071c7f6b2d2ea94207c442a74c
.dll windows x86

df744f879e14314291bd62439c56a9c9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileMappingA
lstrlenW
GetDiskFreeSpaceA
GetLastError
VirtualQuery
GetComputerNameA
SetFilePointer
GetUserDefaultLCID
GetModuleHandleA
MapViewOfFileEx
FileTimeToLocalFileTime
ResumeThread
UnmapViewOfFile
FormatMessageA
GlobalUnlock
TerminateProcess
GetACP
GetCurrentProcess
CompareStringA
CloseHandle
SetEndOfFile
VirtualQuery
lstrlenW
GetCommandLineW
ExitThread
LeaveCriticalSection
GetSystemInfo
SleepEx
GetCurrentProcessId
GetFileAttributesA
SetThreadLocale
GetComputerNameA
GetSystemTime
GetProcessHeap
LoadLibraryW
GetModuleFileNameA
WaitForMultipleObjects
LoadLibraryExA

gdi32

UnrealizeObject
SetWindowExtEx
CreatePenIndirect
RealizePalette
RoundRect
CreateSolidBrush
BitBlt
MoveToEx
GetCurrentPositionEx
Polyline
SetRectRgn
SetWinMetaFileBits
GetBkColor
ExtTextOutW
GetWinMetaFileBits

user32

GetDlgItem
GetCursor
SetCapture
SetScrollInfo
CallWindowProcW
IsWindow
CloseClipboard
GetClipboardFormatNameA
CharNextA
SetWindowLongW
GetKeyNameTextA
GetDC
DeleteMenu
SendDlgItemMessageA
GetForegroundWindow
OpenClipboard
PeekMessageA
GetActiveWindow
SendNotifyMessageA
GetWindowLongA
WindowFromPoint
InvalidateRect
GetFocus
ShowScrollBar
DestroyCaret
SetMenu
SetMenuItemInfoW
SendMessageA
DispatchMessageA
GetWindowTextA
ShowCursor
GetDCEx
GetSysColor
MessageBoxA
EnumChildWindows
SetScrollRange
SetParent
SetForegroundWindow
DestroyWindow
IsWindowUnicode
RemoveMenu
GetUpdateRect
LoadBitmapA
InflateRect
DeferWindowPos
GetMenuStringW
GetWindowTextLengthW
DrawIcon
GetSysColorBrush
GetClipboardData
EnumClipboardFormats

mspmsyuv

_LDenorm
_FExp
_Exp
_Getctype
_FRteps
_FEps
_Getcoll
_Stof
_Tolower
_FNan
_Rteps
_Sinh

oleaut32

VariantClear
GetErrorInfo
VariantCopy
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetLBound

imm32

ImmSetCompositionFontA

ole32

CoTaskMemFree
RevokeDragDrop
OleGetClipboard
OleInitialize
IsEqualGUID
CoGetClassObject

comctl32

ImageList_GetIcon
ImageList_SetDragCursorImage
ImageList_SetIconSize
ImageList_Read
ImageList_Add

wininet

HttpSendRequestA
InternetGetLastResponseInfoA

shell32

SHGetPathFromIDListA

Exports

Exports

BuildADsParentPathFromObjectInfo
CreateProcessNotify
DllClientCleanup
debughts
DllClientStartup

Sections

.text
Size: 55KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

df744f879e14314291bd62439c56a9c9

Headers

File Characteristics

Imports

kernel32

gdi32

user32

mspmsyuv

oleaut32

imm32

ole32

comctl32

wininet

shell32

Exports

Exports

Sections

.text Size: 55KB - Virtual size: 56KB

.rdata Size: 4KB - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 55KB - Virtual size: 56KB

.rdata
Size: 4KB - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB