3e9d3a7126a21a34c2ae02a98239c913bbb1272ab0b1924dc77a4757321616d1

Sharing

Copy URL Twitter E-mail

General

Target

3e9d3a7126a21a34c2ae02a98239c913bbb1272ab0b1924dc77a4757321616d1
Size

439KB
MD5

0a2ec135e55f61d4f81997076c7308f1
SHA1

b7558d7014eea21e2b37962987f66e21991b17e9
SHA256

3e9d3a7126a21a34c2ae02a98239c913bbb1272ab0b1924dc77a4757321616d1
SHA512

89e8fe26e9a489abba0f6131fdd3f0c74e7e680d8f7fabf505f9c4c627d943fbc249aece16d0f1e527e221eeb581aec47a0fd6b8fd3901fecc461c7697951c94
SSDEEP

12288:0zQjAmxbBir34pKDiDpryaF3iCjLPisSJ6LHgXdkgpoo89al/CBgLPoiOsWol1vG:0zdmDM4pKDiDpryaF3iCjLPisSJ6LHga

Score

N/A

Malware Config

Signatures

Files

3e9d3a7126a21a34c2ae02a98239c913bbb1272ab0b1924dc77a4757321616d1
.dll windows x86

62b31cd0b98ea22b7e39f3556189f72a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wcsrchr
calloc
wcslen
memcpy
memset
_ftol2
_wcsicmp
free
?what@exception@@UBEPBDXZ
__CxxFrameHandler3
memcpy_s
_wcsnicmp
wcsstr
wcsncpy
??0exception@@QAE@ABV0@@Z
??0exception@@QAE@XZ
??1exception@@UAE@XZ
wcschr
memmove_s
swprintf
sscanf
_ftol2_sse
_resetstkoflw
_purecall
wcscat_s
wcsncpy_s
wcscpy_s
_CxxThrowException
_callnewh
_XcptFilter
_initterm
_amsg_exit
_adjust_fdiv
?terminate@@YAXXZ
_except_handler4_common
??1type_info@@UAE@XZ
_errno
realloc
_unlock
__dllonexit
_lock
_onexit
malloc
__CxxFrameHandler
wcscpy
wcscat
sprintf

advapi32

RegSetValueExW
RegEnumValueW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegQueryValueExW
RegEnumKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW

kernel32

GetTickCount
CreateThread
CreateNamedPipeW
VirtualAlloc
ReadFile
WriteFile
FlushFileBuffers
DisconnectNamedPipe
VirtualProtect
GetModuleHandleW
LoadLibraryExW
FindResourceW
LoadResource
SetUnhandledExceptionFilter
UnhandledExceptionFilter
ExitThread
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
InterlockedCompareExchange
Sleep
SetThreadPriority
GetCurrentThread
GetProcAddress
LoadLibraryW
LocalFree
WaitForSingleObject
LocalAlloc
GetSystemTime
WideCharToMultiByte
GetVersionExA
InterlockedExchange
GetCurrentProcess
OutputDebugStringA
CreateFileW
GetLastError
SetLastError
DeviceIoControl
CloseHandle
GetVersionExW
lstrlenW
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
lstrcmpiW
GetModuleFileNameW
DisableThreadLibraryCalls
FreeLibrary
MultiByteToWideChar
SizeofResource

user32

UnregisterClassA
PostMessageW
wsprintfW
CharNextW

ole32

CoInitializeEx
CoUninitialize
PropVariantClear
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateInstance
CoCreateFreeThreadedMarshaler

oleaut32

SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayCreate
SysStringLen
SysAllocString
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
VarUI4FromStr
LoadRegTypeLi
VariantInit
SysAllocStringByteLen
SysStringByteLen
SysAllocStringLen
VariantClear
SysFreeString

winmm

mixerMessage
mixerGetNumDevs
mixerGetControlDetailsW
mixerSetControlDetails
mixerClose
mixerGetLineControlsW
mixerGetLineInfoW
mixerOpen
mixerGetDevCapsW

setupapi

SetupDiEnumDeviceInfo
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW

Exports

Exports

DllCanUnloadNoe
DllGetClassObject
DllRegisterServel
DllUnregisterServem

Sections

.text
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 249KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62b31cd0b98ea22b7e39f3556189f72a

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

user32

ole32

oleaut32

winmm

setupapi

Exports

Exports

Sections

.text Size: 175KB - Virtual size: 174KB

.data Size: 2KB - Virtual size: 3KB

.rsrc Size: 249KB - Virtual size: 248KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 175KB - Virtual size: 174KB

.data
Size: 2KB - Virtual size: 3KB

.rsrc
Size: 249KB - Virtual size: 248KB

.reloc
Size: 12KB - Virtual size: 11KB