04da81d669062cdc70df614bf04a101b316d4cdefabf99a2ce1df9484a781566

Sharing

Copy URL Twitter E-mail

General

Target

04da81d669062cdc70df614bf04a101b316d4cdefabf99a2ce1df9484a781566
Size

292KB
MD5

960d957de6e17671af4780c19c931540
SHA1

de2f87df61e1412759c4459475c554f140fed9e2
SHA256

04da81d669062cdc70df614bf04a101b316d4cdefabf99a2ce1df9484a781566
SHA512

b137abec690516461b0df95249f3f5d1323f242d7d45ae8ee0934f614b25dd2eaaac3c9edec1271125efe89b07c7bbb2f1ed26821fc0d7910b613c166787662a
SSDEEP

3072:NucUhDipxmI5L5nJo37mMym4Q13/youEXNL2yIjQGyHitI5soidWcb26w9Liq+48:QWmIWLmMoQ1aouSdIj8NsogLw1ljv

Score

N/A

Malware Config

Signatures

Files

04da81d669062cdc70df614bf04a101b316d4cdefabf99a2ce1df9484a781566
.dll windows x86

819f5f6e89a1cd3f01ee2d8d132cd709

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
InterlockedExchange
GetACP
GetLocaleInfoA
lstrlenA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetEnvironmentVariableA
CompareStringW
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
lstrcmpiA
CompareStringA
MultiByteToWideChar
GetUserDefaultLangID
DebugBreak
InterlockedIncrement
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GlobalAlloc
GlobalLock
GlobalUnlock
OutputDebugStringA
GetModuleFileNameA
GetLocalTime
GetFileAttributesA
CreateDirectoryA
GetLastError
GetWindowsDirectoryA
LoadLibraryA
GetProcAddress
GetCurrentProcess
FreeLibrary
CreateFileA
GetCurrentThreadId
GetCurrentProcessId
CloseHandle
CreateThread
WaitForSingleObject
GetCurrentThread
IsDebuggerPresent
ExitProcess
InitializeCriticalSection
InterlockedDecrement
GetSystemInfo
WideCharToMultiByte
CreateIoCompletionPort
PostQueuedCompletionStatus
GetQueuedCompletionStatus
SetEvent
ResetEvent
CreateEventA
GetTickCount
FlushFileBuffers
SetFilePointer
SetEndOfFile
ReadFile
WriteFile
SleepEx
ResumeThread
Sleep
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RaiseException
RtlUnwind
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapSize
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCPInfo
GetOEMCP
VirtualAlloc
HeapReAlloc
GetConsoleCP
GetConsoleMode
LCMapStringA

user32

SetWindowLongA
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
CharNextA
MoveWindow
AdjustWindowRect
DialogBoxParamA
CreateDialogParamA
GetDesktopWindow
EndDialog
IsWindow
SetDlgItemInt
GetDlgItemInt
SetDlgItemTextA
GetDlgItemTextA
GetDlgItem
EnableWindow
GetClassNameA
EnumChildWindows
CreatePopupMenu
DestroyMenu
AppendMenuA
GetCursorPos
TrackPopupMenu
GetWindowLongA
MessageBoxA
DefWindowProcA
PostQuitMessage
ShowWindow
UpdateWindow
GetWindowRect
GetClientRect
SendMessageA

ws2_32

WSASocketA
WSARecv
WSASend
WSASetEvent
WSAGetOverlappedResult
WSAResetEvent
WSAWaitForMultipleEvents
WSACloseEvent
WSACreateEvent
WSACleanup
closesocket
WSAGetLastError
htons
WSASendTo

gdi32

CreateSolidBrush
DeleteObject
SelectObject
CreatePen
SetTextAlign
CreateFontA
Rectangle
GetTextExtentPoint32A
SetBkMode
SetBkColor
SetTextColor
TextOutA

ole32

CoCreateGuid

Exports

Exports

?CreatePlugin@@YA_NPAUsPluginCreateInfo@@@Z

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 544KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

819f5f6e89a1cd3f01ee2d8d132cd709

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

gdi32

ole32

Exports

Exports

Sections

.text Size: 160KB - Virtual size: 159KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 12KB - Virtual size: 544KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 20KB - Virtual size: 19KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 160KB - Virtual size: 159KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 12KB - Virtual size: 544KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 20KB - Virtual size: 19KB

.rmnet
Size: 60KB - Virtual size: 60KB