dc06ff2f55871c8df9af4524acfd10e81954c5e96951782adaf6beda026be171

General

Target

dc06ff2f55871c8df9af4524acfd10e81954c5e96951782adaf6beda026be171
Size

128KB
MD5

0fb6f335b1a51e6036451c56fc680b68
SHA1

9ea8b1a9adc9844b56d07616f0d11aa3387b1803
SHA256

dc06ff2f55871c8df9af4524acfd10e81954c5e96951782adaf6beda026be171
SHA512

85132a480487d8d318e7e6c7c83ef55a9232707d4122274b6be2d9e8016878169ed7a55223160bd31554b0296d4eb93571dc3c6c0576b113febffd55641ed4f4
SSDEEP

3072:lh/F0Kfg4Rntx99ExRjr0tFdog9PxWJj1L5VSxcn:X/FzNRDTyybWJjZi6

Score

N/A

Malware Config

Signatures

Files

dc06ff2f55871c8df9af4524acfd10e81954c5e96951782adaf6beda026be171
.dll windows x86

44b592a76268ad991ab26e52cec68cce

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
MapViewOfFile
InterlockedIncrement
LoadLibraryA
LeaveCriticalSection
GetModuleFileNameA
ReleaseMutex
EnterCriticalSection
InterlockedDecrement
GetLastError
GetTickCount
LocalFree
GetModuleHandleA
WaitForSingleObject
OpenEventA
ExitProcess
lstrlenW
SetLastError
CopyFileA
CreateEventA
CreateProcessA
UnmapViewOfFile
GetProcAddress
CloseHandle
InterlockedCompareExchange
CreateDirectoryA
Sleep
lstrlenA

ole32

CoInitialize
CoCreateGuid
OleCreate
OleSetContainedObject
CreateBindCtx
CoUninitialize

user32

GetParent
SetTimer
DefWindowProcA
DispatchMessageA
PostQuitMessage
SetWindowLongA
CreateWindowExA
GetClassNameA
GetMessageA
FindWindowA
GetSystemMetrics
PostMessageA
GetWindowLongA
KillTimer
SendMessageA
TranslateMessage
DestroyWindow
RegisterWindowMessageA

oleaut32

SysAllocString
SysAllocStringLen
SysFreeString

shlwapi

UrlUnescapeW
StrStrIW

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegDeleteValueA

Exports

Exports

HpWebdll32

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

44b592a76268ad991ab26e52cec68cce

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB