15a6e65623699fcf270e1266371f595acb2bd4bb858b4587ea7e109fc2579d76

Sharing

Copy URL Twitter E-mail

General

Target

15a6e65623699fcf270e1266371f595acb2bd4bb858b4587ea7e109fc2579d76
Size

248KB
MD5

9196a061774f16d0d880cb34703f442a
SHA1

1dddf0b1152f555dcbb7f9c39532ef9eee426c2b
SHA256

15a6e65623699fcf270e1266371f595acb2bd4bb858b4587ea7e109fc2579d76
SHA512

d9d77ec56b11ccef57d12b3353c22a10c949ddee6df22761b0859da5546874e59c1379f370a526c88e0e80e7abf58e3490db2aa0934e7de0f7726b1c237e8ea8
SSDEEP

3072:1mDesSWWTbeaiFxlHmNtzI/PHGvwOKXFmrhD5KQugBKCNBi9sIlmkaY4:4zSWceaiIPzPwOKX4VoQugUCz7IlR/4

Score

N/A

Malware Config

Signatures

Files

15a6e65623699fcf270e1266371f595acb2bd4bb858b4587ea7e109fc2579d76
.dll windows x86

dcee86d900aa001693fde431ceaf6ff8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoTaskMemAlloc
CoFreeUnusedLibraries
RevokeDragDrop
CoTaskMemFree
OleInitialize
CoCreateInstance

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

LoadLibraryA
MultiByteToWideChar
MulDiv
GetModuleFileNameA
GetEnvironmentVariableA
WaitForSingleObject
IsBadReadPtr
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
FreeLibrary
InterlockedIncrement
GetProcAddress
InterlockedDecrement
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
lstrlenW
UnhandledExceptionFilter
WideCharToMultiByte

user32

CharNextA
GetSystemMetrics
CharLowerA
LoadStringA
MessageBoxA
PostThreadMessageA
GetDC
ReleaseDC
SetWindowLongA
SetWindowPos
CallWindowProcA
DefWindowProcA
GetWindow
CharPrevA
GetClientRect
CopyRect
IsWindow
EnumChildWindows
SetRect
GetClassNameA
ShowWindow

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegQueryInfoKeyA
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyExA
RegCloseKey

gdi32

SetMapMode
GetMapMode
LPtoDP
DPtoLP
GetDeviceCaps

oleaut32

SafeArrayGetUBound
SafeArrayGetLBound
SysAllocString
SysAllocStringLen
SafeArrayAccessData
SafeArrayUnaccessData
VariantClear
SafeArrayCreateVector
SysFreeString
VariantInit

msvcr90

_onexit
_lock
_encode_pointer
__dllonexit
_decode_pointer
_malloc_crt
_encoded_null
_putenv
_initterm
_initterm_e
_amsg_exit
__CppXcptFilter
_crt_debugger_hook
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__clean_type_info_names_internal
_adjust_fdiv
strchr
_stricmp
??_V@YAXPAX@Z
??_U@YAPAXI@Z
strrchr
strstr
malloc
free
??3@YAXPAX@Z
memset
??2@YAPAXI@Z
memcpy
strncpy
_purecall
sprintf
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@XZ
_CxxThrowException
??0exception@std@@QAE@ABV01@@Z
_invalid_parameter_noinfo
__CxxFrameHandler3
realloc
_unlock

msvcp90

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

Exports

Exports

CreateBrowserInstance
GetIEVersion
RMACreateInstance
RMAShutdown
SetDLLAccessPath

Sections

.text
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 167KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dcee86d900aa001693fde431ceaf6ff8

Headers

DLL Characteristics

File Characteristics

Imports

ole32

version

kernel32

user32

advapi32

gdi32

oleaut32

msvcr90

msvcp90

Exports

Exports

Sections

.text Size: 57KB - Virtual size: 56KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 2KB - Virtual size: 2KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 6KB - Virtual size: 5KB

.text Size: 167KB - Virtual size: 168KB

.text
Size: 57KB - Virtual size: 56KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 2KB - Virtual size: 2KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 6KB - Virtual size: 5KB

.text
Size: 167KB - Virtual size: 168KB