de69f60adf1981adc1ed47f19216acfacfc13a2bc19807a54f1acd4f6fab4f34

Sharing

Copy URL

Twitter E-mail

General

Target

de69f60adf1981adc1ed47f19216acfacfc13a2bc19807a54f1acd4f6fab4f34
Size

56KB
MD5

03f77591f78d024d19e54437740209ca
SHA1

204458f503c3b8b589bdcf60d71eb3f01518fd1f
SHA256

de69f60adf1981adc1ed47f19216acfacfc13a2bc19807a54f1acd4f6fab4f34
SHA512

d7dd455b49cd7f589cf7a5a39a92cddd1b161f923dafdcbc97fc85bd26ceaab782563bd14278602851e44e7d6da12eb24592cd853e90282aacfdd962de188269
SSDEEP

1536:eBOOXD1kKH4LvUF+Zfb4xSrYCMJ73ln0inC:eBOOX6c+FNkb7Vn04C

Score

N/A

Malware Config

Signatures

Files

de69f60adf1981adc1ed47f19216acfacfc13a2bc19807a54f1acd4f6fab4f34
.dll windows x86

37af4e2a16214bdc74a9b970839193df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

SendDlgItemMessageW
GetMessageW
PeekMessageW
CharNextW
BeginPaint
GetPropW
SetWindowPos
UpdateWindow
LoadCursorW
TranslateMessage
GetMonitorInfoW
DeferWindowPos
MapWindowPoints
FrameRect
SetCapture
GetClientRect
MsgWaitForMultipleObjects
wsprintfW
GetLastActivePopup
FindWindowExW
BeginDeferWindowPos
EnableWindow
GetDlgItem
GetDesktopWindow
PostThreadMessageW
InvalidateRect
EndDeferWindowPos
SetCursor
RegisterClassExW
SetWindowLongW
IsWindowEnabled
FillRect
GetWindowThreadProcessId
GetDC
MonitorFromWindow
GetKeyState
ReleaseCapture
ReleaseDC
GetSysColor
GetClassNameW
PostMessageW

kernel32

VirtualAlloc
GlobalUnlock
WideCharToMultiByte
GetFileSize
GetCurrentDirectoryA
VirtualAlloc
ReadFile
InterlockedDecrement
FindFirstFileA
WriteFile
IsBadReadPtr
MulDiv
GetFileAttributesA
GetCurrentProcessId
FindClose
SetFileAttributesA
lstrcmpiA
ReadProcessMemory
CreateFileA
FindNextFileA
GetPrivateProfileStructA
OpenProcess
ResumeThread
VirtualQueryEx
GlobalAlloc
WritePrivateProfileStructA
GlobalLock
VirtualFree
CreateSemaphoreA
lstrcpyA
GetHandleInformation
LoadLibraryA
SetFilePointer
GetTempPathA
GetProcAddress
GetStartupInfoA
DeleteFileA

gdi32

DeleteObject
SetBkMode
CreatePen
BitBlt
SetLayout
Ellipse
SetBkColor
CreateSolidBrush
GetObjectW
RealizePalette
CreateHalftonePalette
GetDeviceCaps
SetTextColor
SelectObject
LineTo
SelectPalette

Exports

Exports

CreateProcessNotify
ie4urftp

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

37af4e2a16214bdc74a9b970839193df

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 52KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 52KB - Virtual size: 52KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB