59954adaa3886803f2bc4b47c48f76983017cd21791698cc93c984870736d5a1

Sharing

Copy URL Twitter E-mail

General

Target

59954adaa3886803f2bc4b47c48f76983017cd21791698cc93c984870736d5a1
Size

134KB
MD5

48e88c6bbe1d44a2512079a3cf52e3dc
SHA1

4238c3b1965404947fccab39d392c3988e90ce58
SHA256

59954adaa3886803f2bc4b47c48f76983017cd21791698cc93c984870736d5a1
SHA512

aea33313ddb09f44d9b28a62f1686b5d1d5e3870a891bd55e24ef6b1472c70450d5643f61f97ade60fcb4fb0b5cc9823ab91c323ea08d6ae045d9847f92e542f
SSDEEP

3072:a81axkYoDSRY4iGw6kHaqGq4RkxNiGGTQMSWABc+eibWNrpFtY:o4GAaqp4O1G0d7lbWNrnt

Score

N/A

Malware Config

Signatures

Files

59954adaa3886803f2bc4b47c48f76983017cd21791698cc93c984870736d5a1
.dll windows x86

6e51322f05e693861ea02f7bd281e113

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
HeapSize
FreeEnvironmentStringsW
GetVersion
LCMapStringA
SuspendThread
GlobalGetAtomNameA
FlushFileBuffers
VirtualFree
TlsAlloc
EnterCriticalSection
LockResource
WideCharToMultiByte
SetEndOfFile
GetStdHandle
GetFileAttributesA
GetSystemDefaultLangID
CompareStringW
ResumeThread
InitializeCriticalSection
FindResourceA
GetCommandLineA
GetLastError
GetPrivateProfileStringA
GetACP
UnhandledExceptionFilter
InterlockedDecrement
GetCurrentProcess
ExitThread
GlobalReAlloc
GetFileSize
TlsFree
SetEnvironmentVariableA
CreateFileA
lstrcmpA
GetStringTypeA
HeapAlloc
FileTimeToLocalFileTime
UnlockFile
SetThreadPriority
HeapDestroy
GlobalDeleteAtom
DeleteCriticalSection
GetSystemDirectoryA
TerminateProcess
GetEnvironmentStringsW
SetFilePointer
CreateEventA
LeaveCriticalSection
GetModuleHandleA
LockFile
GetStringTypeW
IsBadWritePtr
SizeofResource
GetTickCount
lstrcatA
WritePrivateProfileStringA
HeapCreate
GetProcessVersion
lstrlenA
GetFileTime
CompareStringA
GetProcAddress
LoadLibraryExA
VirtualProtect
OutputDebugStringA
HeapReAlloc
LocalAlloc
GlobalAlloc
TlsGetValue
ExitProcess
GetEnvironmentStrings
GetCurrentThreadId
lstrcpyA
GetLocalTime
GlobalFindAtomA
MulDiv
IsBadReadPtr
SetHandleCount
WinExec
GetCurrentThread
WaitForSingleObject
GetOEMCP
FileTimeToSystemTime
MultiByteToWideChar
GlobalLock
SetErrorMode
InterlockedIncrement
SetUnhandledExceptionFilter
LocalFree
Sleep
SetStdHandle
HeapFree
LCMapStringW
lstrcpynA
VirtualAlloc
GlobalFree
GetStartupInfoA
RtlUnwind
DuplicateHandle
TlsSetValue
CreateThread
WriteFile
GetTimeZoneInformation
GetVolumeInformationA
IsDebuggerPresent
GetVersionExA
FreeEnvironmentStringsA
GetFileType
GlobalFlags
CloseHandle
LoadResource
lstrcmpiA
GlobalHandle
GetFullPathNameA
LocalReAlloc
GlobalUnlock
IsBadCodePtr
CreateMutexA
GetCPInfo
RaiseException
GetProfileStringA
GlobalAddAtomA
GetThreadLocale
ReadFile
GetModuleFileNameA
FormatMessageA
SetEvent

user32

DrawFocusRect
PostQuitMessage
TrackPopupMenu
MessageBoxA
GetParent
UpdateWindow
CharUpperA
TranslateMessage
EnableMenuItem
CallWindowProcA
SetPropA
GetWindow
RegisterClipboardFormatA
RemovePropA
CopyRect
GetWindowDC
GetLastActivePopup
DrawTextA
MapWindowPoints
DrawIcon
GetMenuItemCount
GetMenuState
GrayStringA
GetWindowRect
UnhookWindowsHookEx
ScreenToClient
GetWindowTextLengthA
ClientToScreen
SetWindowLongA
HideCaret
ReleaseCapture
KillTimer
ShowWindow
RegisterWindowMessageA
GetTopWindow
GetNextDlgGroupItem
CopyAcceleratorTableA
LoadBitmapA
GetCapture
DestroyMenu
PeekMessageA
DispatchMessageA
ValidateRect
DefDlgProcA
SetTimer
OffsetRect
SendDlgItemMessageA
GetSubMenu
wsprintfA
GetDlgItem
GetMenu
IsIconic
IsChild
GetForegroundWindow
SetWindowRgn
CreateDialogIndirectParamA
GetMessageA
SetMenuItemBitmaps
ShowCaret
LoadIconA
SetWindowPos
SetActiveWindow
GetWindowPlacement
InvalidateRect
GetFocus
GetClassNameA
EnableWindow
IsWindowUnicode
PtInRect
TabbedTextOutA
CreateWindowExA
GetMessageTime
CharNextA
MapDialogRect
UnregisterClassA
GetWindowTextA
IsWindowVisible
BeginPaint
AdjustWindowRectEx
ReleaseDC
GetSysColor
GetClassInfoA
GetDC
CheckMenuItem
EndPaint
LoadStringA
SetFocus
IsWindowEnabled
GetMenuCheckMarkDimensions
GetKeyState
GetWindowLongA
RegisterClassA
IsWindow
CallNextHookEx
ModifyMenuA
PostMessageA
SetWindowsHookExA
IntersectRect
SetCursor
MessageBeep
SetWindowTextA
DefWindowProcA
ExcludeUpdateRgn
PostThreadMessageA
GetClassLongA
SetMenuDefaultItem
GetClientRect
GetCursorPos
GetDesktopWindow
GetNextDlgTabItem
SetRect
GetMenuItemID
IsDialogMessageA
SystemParametersInfoA
SetCapture
SetWindowContextHelpId
GetSystemMetrics
DestroyWindow
GetActiveWindow
GetPropA
EndDialog
InflateRect
MoveWindow
GetSysColorBrush
SetForegroundWindow
WinHelpA
GetDlgCtrlID
GetMessagePos
LoadCursorA
SendMessageA

gdi32

ExtTextOutA
SetMapMode
RestoreDC
ScaleViewportExtEx
GetDeviceCaps
GetViewportExtEx
PatBlt
LPtoDP
DPtoLP
DeleteObject
SetBkColor
TextOutA
CombineRgn
Escape
SetBkMode
SetWindowExtEx
RectVisible
BitBlt
CreateCompatibleDC
CreateDIBitmap
GetTextColor
ExtCreateRegion
SetViewportExtEx
PtVisible
SetViewportOrgEx
GetBkColor
GetWindowExtEx
GetStockObject
SetTextColor
CreateSolidBrush
SaveDC
IntersectClipRect
CreateCompatibleBitmap
ScaleWindowExtEx
GetClipBox
CreateDIBSection
OffsetViewportOrgEx
GetObjectA
CreateBitmap
GetMapMode
GetTextExtentPointA
DeleteDC
SelectObject

comdlg32

GetFileTitleA

advapi32

QueryServiceStatus
RegOpenKeyExA
StartServiceA
RegSetValueExA
OpenSCManagerA
RegCreateKeyExA
RegDeleteValueA
ControlService
CloseServiceHandle
RegCloseKey
RegQueryValueExA
OpenServiceA

oleaut32

SysStringLen
VariantTimeToSystemTime
OleCreateFontIndirect
SysFreeString
SysAllocStringLen
SysAllocString
VariantCopy
SysAllocStringByteLen
VariantChangeType
VariantClear

comctl32

ord17

oledlg

ord8

Sections

.text2
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.maken
Size: 512B - Virtual size: 23B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6e51322f05e693861ea02f7bd281e113

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

oleaut32

comctl32

oledlg

Sections

.text2 Size: 97KB - Virtual size: 97KB

.maken Size: 512B - Virtual size: 23B

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 9KB - Virtual size: 78KB

.rsrc Size: 14KB - Virtual size: 14KB

.reloc Size: 2KB - Virtual size: 2KB

.text2
Size: 97KB - Virtual size: 97KB

.maken
Size: 512B - Virtual size: 23B

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 9KB - Virtual size: 78KB

.rsrc
Size: 14KB - Virtual size: 14KB

.reloc
Size: 2KB - Virtual size: 2KB