b65cd5e6637e8d3c877770eb0b5bf37fc4c7195f905fbc31eae0c522bec9d6dd

Sharing

Copy URL Twitter E-mail

General

Target

b65cd5e6637e8d3c877770eb0b5bf37fc4c7195f905fbc31eae0c522bec9d6dd
Size

355KB
MD5

a313b1a9c4a6e53c8a908ba9be74a5e2
SHA1

7d08112a5993091bacb055ec5d2c49291a864ab7
SHA256

b65cd5e6637e8d3c877770eb0b5bf37fc4c7195f905fbc31eae0c522bec9d6dd
SHA512

d3e8d7a1fe1ff99fffdca7febd1a5590b8865c40b85bd9c661c08bb6ce0cf8e5c0936e1b0220c226ad7c1ea538016cfbec6782b4e75a077498e4fe9bee1f4bc0
SSDEEP

6144:tIaPrf5UgFTAxOf5nNomjavBp5265VKVnVQXohpUjrzR7DLcUGBy00dUFznjwBYM:tLregVIoizRDJcwbpBtl0CxlJ

Score

N/A

Malware Config

Signatures

Files

b65cd5e6637e8d3c877770eb0b5bf37fc4c7195f905fbc31eae0c522bec9d6dd
.dll windows x86

cb51c6a219e45581ee5e473c9b370e3a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

VariantInit
VariantClear
VarUI4FromStr
SysStringLen
SysStringByteLen
SysFreeString
SysAllocStringLen
SysAllocString
OleCreateFontIndirect
LoadTypeLi
LoadRegTypeLi

kernel32

GlobalHandle
GlobalLock
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
LoadResource
GlobalFree
MulDiv
MultiByteToWideChar
QueryPerformanceCounter
RaiseException
SetLastError
SizeofResource
VirtualAlloc
VirtualFree
VirtualProtect
WideCharToMultiByte
lstrcmpA
lstrcmpiA
lstrcpynA
lstrlenA
lstrlenW
GlobalAlloc
GetVersionExA
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetProcessPriorityBoost
GetProcessHeap
GetProcAddress
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetLastError
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetACP
FreeLibrary
FlushInstructionCache
DeleteCriticalSection
FindResourceA
ExitProcess
EnterCriticalSection
DisableThreadLibraryCalls
LockResource

user32

PtInRect
RedrawWindow
RegisterClassExA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
SendMessageA
SetCapture
SetCursor
SetFocus
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
UnregisterClassA
wsprintfA
LoadStringA
LoadCursorA
IsWindow
IsChild
InvalidateRgn
InvalidateRect
MessageBoxA
GetWindowTextA
GetWindowRect
GetWindowLongA
GetWindow
GetSysColor
GetParent
GetFocus
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetCursorPos
GetClientRect
GetClassNameA
GetClassInfoExA
GetActiveWindow
FillRect
EndPaint
EndDialog
EnableWindow
DialogBoxIndirectParamA
DestroyWindow
DestroyAcceleratorTable
DefWindowProcA
CreateWindowExA
GetWindowTextLengthA
MapDialogRect
BeginPaint
CallWindowProcA
CharNextA
CreateAcceleratorTableA
GetDC

gdi32

SetBkMode
SetGraphicsMode
SelectObject
SetViewportOrgEx
SetWindowOrgEx
SaveDC
RestoreDC
ModifyWorldTransform
GetStockObject
GetObjectA
GetDeviceCaps
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreateFontIndirectA
CreateCompatibleDC
CreateCompatibleBitmap
SetTextColor
BitBlt

advapi32

RegQueryInfoKeyA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA

shell32

ShellExecuteA

ole32

CoTaskMemFree
CoTaskMemRealloc
CreateStreamOnHGlobal
OleInitialize
OleLockRunning
OleUninitialize
StringFromGUID2
CoGetClassObject
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc

comctl32

ord17

ddraw

DDInternalLock
GetSurfaceFromDC

Exports

Exports

ColorAdjustSaturation
CreateEffectPool
CreateSkinInfoFromBlendedMesh
CreateTextW
CreateTextureFromFileW
DebugMute
GetRTFOptions
MatrixOrthoOffCenterRH
MatrixTranspose
QuaternionNormalize
TessellateRectPatch
mpegInGetNextFrameTS
mpegInOpenExisting

Sections

.text
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 188KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 30KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cb51c6a219e45581ee5e473c9b370e3a

Headers

DLL Characteristics

File Characteristics

Imports

oleaut32

kernel32

user32

gdi32

advapi32

shell32

ole32

comctl32

ddraw

Exports

Exports

Sections

.text Size: 49KB - Virtual size: 49KB

.rdata Size: 188KB - Virtual size: 187KB

.data Size: 30KB - Virtual size: 31KB

.rsrc Size: 83KB - Virtual size: 83KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 49KB - Virtual size: 49KB

.rdata
Size: 188KB - Virtual size: 187KB

.data
Size: 30KB - Virtual size: 31KB

.rsrc
Size: 83KB - Virtual size: 83KB

.reloc
Size: 3KB - Virtual size: 2KB