07745b23fe3f5e920a7ba2cbd9bd44aae648ea39614c5b19eebb1f96b503a146

Sharing

Copy URL Twitter E-mail

General

Target

07745b23fe3f5e920a7ba2cbd9bd44aae648ea39614c5b19eebb1f96b503a146
Size

171KB
MD5

a0aee5d8237f683b08d101d354d6f3ff
SHA1

2a3e231d8b4516c9ae821ce5baef4fec72a69b84
SHA256

07745b23fe3f5e920a7ba2cbd9bd44aae648ea39614c5b19eebb1f96b503a146
SHA512

91302f4c692456fd4569126f5f1286e59324ebdf0e1a115c1183ec972efbb0ee46b086cc136fc92b27c619e0f66d8cd5c1c47e1e25673443e757375a79e28397
SSDEEP

3072:G09YKCBb/T2bcGE9h0pK4Rh0Jpv8EuaQbrny/0xKPYR/Rnp:b3Kz9ipp0pv8OwmIKwR/Rn

Score

N/A

Malware Config

Signatures

Files

07745b23fe3f5e920a7ba2cbd9bd44aae648ea39614c5b19eebb1f96b503a146
.dll windows x86

6ccb0c12e56dea6f7c8c238d9b981234

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetComboBoxInfo
EnableScrollBar
DispatchMessageA
DestroyWindow
DestroyMenu
GetDC
CreateWindowExA
CreateMenu
CreateIconFromResourceEx
CloseClipboard
GetDlgItem
GetListBoxInfo
GetMessageA
GetNextDlgTabItem
BringWindowToTop
GetPriorityClipboardFormat
GetShellWindow
GetWindowPlacement
IntersectRect
IsWindowUnicode
KillTimer
PostQuitMessage
PtInRect
RegisterClassA
SetClipboardViewer
SetTimer
ShowWindow
ToUnicode
UnpackDDElParam
UpdateWindow
WaitForInputIdle
DefWindowProcA

winmm

aux32Message
midiStreamRestart
mmioWrite
mmsystemGetVersion
waveInOpen
waveOutGetVolume
midiOutClose

advapi32

RegSetValueExW
SystemFunction014
SetSecurityDescriptorDacl
SetSecurityDescriptorControl
RegQueryValueExA
RegCreateKeyExW
OpenThreadToken
OpenProcessToken
MakeSelfRelativeSD
LsaSetQuotasForAccount
IsTokenRestricted
InitializeSecurityDescriptor
GetUserNameW
GetManagedApplications
FreeSid
CryptSetProvParam
CryptImportKey
CheckTokenMembership
AreAnyAccessesGranted
AllocateAndInitializeSid
AdjustTokenPrivileges
AddAccessAllowedAce
SystemFunction033

msvcrt

strcspn
strncat
strncmp
strstr
strtoul
swscanf
towlower
wcsncmp
wcsncpy
wcsrchr
wctomb
ldexp
iswupper
iswspace
iswdigit
iswalpha
iswalnum
isspace
isprint
isleadbyte
ftell
fseek
fprintf
fgets
feof
ceil
atol
atoi
_wtmpnam
_write
_wrename
strcpy
_wctime
_wcsupr
_wcslwr
_vsnwprintf
_strnicmp
_stricmp
_spawnl
_snwprintf
_setsystime
_purecall
_popen
_memicmp
_lseeki64
_lrotl
_itow
_ismbcsymbol
_ismbcspace
_isatty
_iob
_initterm
_getche
_fileno
_execl
_errno
_atoi64
_amsg_exit
__pioinfo
__doserrno
__dllonexit
__badioinfo
__CxxFrameHandler
_XcptFilter
strchr
sscanf
realloc
qsort
printf
memmove
_wgetenv
malloc
_wstrtime

shell32

DragAcceptFiles
SHGetFolderPathW

rpcrt4

NdrRpcSsEnableAllocate
RpcSsDestroyClientContext
CStdStubBuffer_Disconnect
CStdStubBuffer_QueryInterface
NdrEncapsulatedUnionBufferSize
NdrFixedArrayFree
NdrFixedArrayMemorySize
NdrFullPointerXlatFree
NdrMesSimpleTypeDecode
NdrPointerMarshall
NdrServerCall2
NdrSimpleStructUnmarshall
NdrXmitOrRepAsFree
NdrpReleaseTypeGenCookie
RpcAsyncCancelCall
RpcAsyncRegisterInfo
RpcIfIdVectorFree
RpcSmDisableAllocate

kernel32

LoadLibraryExA
LocalAlloc
LocalFree
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
RtlUnwind
UnhandledExceptionFilter
InterlockedIncrement
lstrlenA
lstrcpynA
WriteFile
WideCharToMultiByte
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
InterlockedDecrement
InitializeCriticalSection
GetVersion
GetTickCount
GetThreadLocale
GetStdHandle
GetStartupInfoA
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetCurrentThreadId
GetCommandLineA
FreeLibrary
FindFirstFileA
FindClose
ExitThread
ExitProcess
EnterCriticalSection
DeleteCriticalSection
CreateThread
LeaveCriticalSection

Exports

Exports

GetCounter
GetRecordPosition
ProcessBatch
SetScissorRect

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ccb0c12e56dea6f7c8c238d9b981234

Headers

DLL Characteristics

File Characteristics

Imports

user32

winmm

advapi32

msvcrt

shell32

rpcrt4

kernel32

Exports

Exports

Sections

.text Size: 57KB - Virtual size: 56KB

.rdata Size: 96KB - Virtual size: 96KB

.data Size: 14KB - Virtual size: 15KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 57KB - Virtual size: 56KB

.rdata
Size: 96KB - Virtual size: 96KB

.data
Size: 14KB - Virtual size: 15KB

.rsrc
Size: 2KB - Virtual size: 1KB