69c21200da0b9de1a0d7d22e5048139730d2dad088acba65b452ae82ba35b21b

Sharing

Copy URL Twitter E-mail

General

Target

69c21200da0b9de1a0d7d22e5048139730d2dad088acba65b452ae82ba35b21b
Size

356KB
MD5

0c718cc95275f129872b136701b4eae0
SHA1

5f18493deb99c1518ee7bf02d7e358991bb338c2
SHA256

69c21200da0b9de1a0d7d22e5048139730d2dad088acba65b452ae82ba35b21b
SHA512

154bc5d77c8ccffa132af53c5653c5f456fc36ae79ec0bcfda06ae7a70984c5758ce78a137612238086a696941add835e02bfdd957b16fe1baec1d97eee534e3
SSDEEP

6144:/SPGHqz69PFtzmoFLDyqwbjMBtd7yZYJSa0Hrnei:aPGHqW9NEILDJJz+YJSa0je

Score

N/A

Malware Config

Signatures

Files

69c21200da0b9de1a0d7d22e5048139730d2dad088acba65b452ae82ba35b21b
.dll windows x86

4d6db5dd15eb5c2a0caa095f108f8b27

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringA
GetProcessVersion
GetCPInfo
GetOEMCP
GetTickCount
RtlUnwind
GetTimeZoneInformation
GetSystemTime
HeapFree
HeapAlloc
RaiseException
GetCommandLineA
ExitProcess
TerminateProcess
SetStdHandle
GetFileType
GetACP
HeapSize
HeapReAlloc
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
Sleep
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GlobalFlags
MulDiv
InterlockedExchange
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
SetLastError
GetFileTime
GetFileSize
GetFileAttributesA
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
FileTimeToLocalFileTime
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentProcess
DuplicateHandle
GetLastError
GetThreadLocale
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
lstrcpyA
GetModuleHandleA
GetProcAddress
GlobalUnlock
FormatMessageA
LocalFree
FindResourceA
LoadResource
LockResource
GlobalFree
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedIncrement
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
WaitForSingleObject
WriteFile
InterlockedDecrement
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
WinExec
GetShortPathNameA
GetComputerNameA
GetSystemInfo
GetVersionExA
CloseHandle
CreateFileA
DeviceIoControl
GetTempPathA
DeleteFileA
GetLocalTime
FindFirstFileA
CreateDirectoryA
VirtualAlloc
FindNextFileA

user32

PostThreadMessageA
CopyAcceleratorTableA
GetSysColorBrush
LoadCursorA
LoadStringA
GrayStringA
DrawTextA
TabbedTextOutA
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
PtInRect
GetClassNameA
UnregisterClassA
CharUpperA
CharNextA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
GetClientRect
CopyRect
RegisterClipboardFormatA
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetNextDlgGroupItem
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
EnableWindow
MessageBoxA
CharLowerBuffA
IsCharAlphaNumericA
PostQuitMessage
PostMessageA
FindWindowA
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SetWindowLongA
RegisterWindowMessageA
OffsetRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
EndDialog
SetActiveWindow
IsWindow
DestroyMenu
MessageBeep
GetSystemMetrics
CreateDialogIndirectParamA
SendMessageA
SetCursor
GetDesktopWindow
GetWindowLongA
IsWindowEnabled
GetLastActivePopup
GetParent
SetWindowsHookExA
GetCursorPos
PeekMessageA
IsWindowVisible
ValidateRect
CallNextHookEx
GetKeyState
GetActiveWindow
DispatchMessageA
TranslateMessage
GetMessageA
GetNextDlgTabItem
GetFocus
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
SetWindowContextHelpId
GetWindow
SetWindowPos
MapDialogRect
GetDlgItem
DestroyWindow
SetRect

gdi32

PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
DPtoLP
GetMapMode
GetWindowExtEx
GetViewportExtEx
LPtoDP
CreateBitmap
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
GetStockObject
GetDeviceCaps
GetBkColor
GetTextColor
GetObjectA
SetBkColor
SetTextColor
GetClipBox

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegOpenKeyExA
GetUserNameA
RegQueryValueExA
RegDeleteValueA
RegSetValueExA
RegCloseKey
RegCreateKeyExA

shell32

ShellExecuteExA
SHGetSpecialFolderLocation
SHGetPathFromIDListA

comctl32

ord17

oledlg

ord8

ole32

CoTaskMemFree
CoTaskMemAlloc
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoInitialize
CoInitializeSecurity
CoCreateInstance
CoUninitialize
OleInitialize
CoSetProxyBlanket

olepro32

ord253

oleaut32

SysAllocString
SysAllocStringLen
VariantCopy
SysAllocStringByteLen
VariantChangeType
VariantTimeToSystemTime
SysStringLen
VariantClear
VarDateFromStr
SysFreeString

wininet

HttpOpenRequestA
InternetGetLastResponseInfoA
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetSetOptionExA
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetConnectA
HttpSendRequestA
InternetOpenA
InternetSetOptionA
InternetOpenUrlA
HttpQueryInfoA
InternetReadFile
InternetCloseHandle

iphlpapi

GetAdaptersInfo

Exports

Exports

DownloadSaveFiles
ExecuteProgram
SoftSendRequest
execInstallSet
execUnInstallSet
initInstall

Sections

.text
Size: 184KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4d6db5dd15eb5c2a0caa095f108f8b27

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wininet

iphlpapi

Exports

Exports

Sections

.text Size: 184KB - Virtual size: 181KB

.rdata Size: 48KB - Virtual size: 46KB

.data Size: 24KB - Virtual size: 36KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 28KB - Virtual size: 24KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 184KB - Virtual size: 181KB

.rdata
Size: 48KB - Virtual size: 46KB

.data
Size: 24KB - Virtual size: 36KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 28KB - Virtual size: 24KB

.rmnet
Size: 60KB - Virtual size: 60KB