3f21dd41c9d5b9b220ec58bfdb0d3914d82c28c58bc5e1cd40d280ca5fc4bff1

Sharing

Copy URL Twitter E-mail

General

Target

3f21dd41c9d5b9b220ec58bfdb0d3914d82c28c58bc5e1cd40d280ca5fc4bff1
Size

1.1MB
MD5

07fd57b8ca4500adc45f00a3d2440fa0
SHA1

db53cf0f976b254abdabd7df688edf3d8e61ad76
SHA256

3f21dd41c9d5b9b220ec58bfdb0d3914d82c28c58bc5e1cd40d280ca5fc4bff1
SHA512

6a7bd166de34f8a8e362be875d5496cb93ee3588cd768fa3b37086ad00838f724f6758c579ce21041b1c214a9b091a4ba6a5dbe723083c945f8bfeda96efaac2
SSDEEP

24576:bp2G61fY62if0Vra3QSNhJK6hIAloY3XjrN/H:bcGifY6tOaASNhJK6hPaG/R

Score

N/A

Malware Config

Signatures

Files

3f21dd41c9d5b9b220ec58bfdb0d3914d82c28c58bc5e1cd40d280ca5fc4bff1
.dll windows x86

171634aabc6eff9406d434016ff974c3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr80

_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
?terminate@@YAXXZ
_itoa_s
wcsncpy_s
_ultoa_s
_ltoa_s
_ismbcdigit
ceil
_snwprintf_s
_mbsnbcmp
_mbsnbicmp
_fullpath
atol
__argv
__argc
sscanf_s
_beginthreadex
_endthreadex
_mbsdec
_strdup
atoi
_expand
strtod
strtoul
strtol
_makepath_s
memcpy_s
_splitpath_s
_vsnprintf_s
_snscanf_s
labs
abs
_ismbblead
_msize
strcat_s
strncpy_s
_snprintf_s
_errno
_purecall
_mktime64
_localtime64_s
realloc
fclose
fflush
ftell
fseek
fgets
fputs
fwrite
clearerr_s
ferror
feof
fread
__doserrno
_fdopen
_open_osfhandle
_fileno
_get_osfhandle
strcpy_s
abort
memcmp
sprintf_s
_mbsnbcpy_s
_wcsicmp
_mbschr
memcpy
calloc
vswprintf_s
_mbspbrk
memmove_s
wcsspn
_mbsrchr
_vscprintf
wcscmp
_mbscoll
memmove
_mbsspn
wcsstr
memset
_mbsinc
_ismbcspace
wcscpy_s
wcspbrk
free
vsprintf_s
_mbsstr
_wcsupr_s
strlen
wcslen
_mbscspn
_mbscmp
wcsrchr
wcscoll
_vscwprintf
_mbslwr_s
_recalloc
_mbsicoll
_wcslwr_s
malloc
_resetstkoflw
_mbsicmp
iswspace
wcscspn
_mbsupr_s
_wcsicoll
_mbsrev
wcschr
_wcsrev
_CxxThrowException
__clean_type_info_names_internal
__CxxFrameHandler3

kernel32

GetSystemTimeAsFileTime
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
InterlockedCompareExchange
Sleep
GetEnvironmentVariableW
WideCharToMultiByte
LoadResource
LockResource
MultiByteToWideChar
GetStringTypeExW
CompareStringA
lstrlenA
GetLastError
FormatMessageA
FindResourceExA
lstrlenW
FindResourceA
InterlockedExchange
LocalFree
lstrcmpiA
GetStringTypeExA
GetEnvironmentVariableA
CompareStringW
SizeofResource
lstrcmpiW
GetVersion
SetLastError
GetAtomNameA
GlobalGetAtomNameA
lstrcmpA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
CreateFileA
FindClose
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
CloseHandle
LockFile
GetThreadLocale
UnlockFile
SetEndOfFile
GetFileSize
MoveFileA
DeleteFileA
GetModuleFileNameA
GetShortPathNameA
LoadLibraryA
GetProcAddress
DuplicateHandle
GetCurrentProcess
GlobalLock
GlobalSize
GlobalAlloc
GlobalUnlock
GlobalReAlloc
GlobalFree
SystemTimeToFileTime
LocalFileTimeToFileTime
SetFileAttributesA
SetFileTime
GetFileTime
GetFileAttributesA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
GetModuleHandleA
GetModuleFileNameW
FreeLibrary
InterlockedDecrement
LeaveCriticalSection
TlsGetValue
LocalReAlloc
TlsSetValue
LocalAlloc
TlsAlloc
InitializeCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
EnterCriticalSection
WaitForSingleObject
CreateSemaphoreA
ReleaseSemaphore
CreateMutexA
ReleaseMutex
CreateEventA
WaitForMultipleObjects
GlobalAddAtomA
GetCurrentThreadId
GetVersionExA
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GetCurrentProcessId
MulDiv
GetProfileIntA
VirtualProtect
RaiseException
GlobalFlags
GetDiskFreeSpaceA
GetTempFileNameA
LocalLock
LocalUnlock
GetTempPathA
SearchPathA
ResumeThread
SuspendThread
SetEvent
SetThreadPriority
ConvertDefaultLocale
EnumResourceLanguagesA
GetCurrentThread
GetLocaleInfoA
SetErrorMode
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
InterlockedIncrement
FindNextFileA
GetTickCount
CopyFileA
GetUserDefaultLCID
IsDBCSLeadByte
lstrcpyW
lstrcpyA
GetSystemTime
LoadLibraryExA
GetACP

gdi32

GetNearestColor
OffsetRgn
SetBrushOrgEx
GetRgnBox
CreateMetaFileA
CopyMetaFileA
LPtoDP
Ellipse
CreateEllipticRgn
SetAbortProc
AbortDoc
EndDoc
EndPage
StartPage
DPtoLP
SetRectRgn
CombineRgn
GetMapMode
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
OffsetClipRgn
GetPixel
ExcludeClipRect
SelectClipRgn
OffsetWindowOrgEx
EnumMetaFile
PlayMetaFile
ModifyWorldTransform
PlayMetaFileRecord
SetWorldTransform
GetObjectType
SetGraphicsMode
ExtSelectClipRgn
SetStretchBltMode
CreateDIBPatternBrushPt
GetClipRgn
SetROP2
CreateRectRgn
SetPolyFillMode
CreateHatchBrush
SelectClipPath
SetBkMode
CreateSolidBrush
PolyBezierTo
ExtCreatePen
SelectPalette
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
StartDocA
ArcTo
EnumFontFamiliesExA
CreateDCA
BitBlt
CreateRectRgnIndirect
UnrealizeObject
Rectangle
CreatePen
CreatePatternBrush
CreateBitmap
PatBlt
TextOutA
DeleteMetaFile
CloseMetaFile
GetBkMode
GetCurrentPositionEx
GetROP2
GetTextAlign
ScaleWindowExtEx
RestoreDC
SetWindowExtEx
ScaleViewportExtEx
SaveDC
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
CreateFontIndirectA
SetWindowOrgEx
GetWindowOrgEx
GetTextFaceA
GetViewportOrgEx
GetDeviceCaps
GetTextColor
Escape
GetStretchBltMode
RectVisible
GetPolyFillMode
ExtTextOutA
PtVisible
MoveToEx
GetStockObject
GetTextMetricsA
GetTextExtentPoint32A
DeleteDC
StretchDIBits
SelectObject
DeleteObject
GetCharWidthA
CreateFontA
GetBkColor
CreateCompatibleDC
CreateCompatibleBitmap
SetBkColor
GetObjectA
GetClipBox
SetTextColor

user32

ScreenToClient
GetSysColor
GetClassInfoExA
EnableWindow
GetParent
GetMenu
IsWindow
GetWindow
EqualRect
GetClassNameA
IsChild
DeferWindowPos
GetClientRect
GetLastActivePopup
GetClassInfoA
AdjustWindowRectEx
MapWindowPoints
MessageBoxA
GetForegroundWindow
SetPropA
GetFocus
RegisterClassA
GetTopWindow
SetForegroundWindow
SetWindowsHookExA
SetActiveWindow
SetFocus
GetMessageTime
SetScrollPos
CreateWindowExA
SendDlgItemMessageA
GetMessagePos
GetScrollPos
RegisterWindowMessageA
SetScrollRange
UpdateWindow
DestroyWindow
GetKeyState
GetScrollRange
WinHelpA
PostMessageA
GetDlgCtrlID
ShowScrollBar
IsIconic
SendMessageA
GetWindowPlacement
DefWindowProcA
GetCapture
LoadIconA
GetWindowTextLengthA
SetScrollInfo
GetWindowRect
GetWindowTextA
GetScrollInfo
SystemParametersInfoA
GetPropA
GetDlgItem
IsWindowVisible
CallWindowProcA
SetWindowPlacement
ScrollWindow
PtInRect
RemovePropA
TrackPopupMenu
OffsetRect
GetWindowLongA
TrackPopupMenuEx
IntersectRect
SetWindowLongA
GetMenuItemCount
PeekMessageA
CallNextHookEx
BeginDeferWindowPos
SetWindowPos
DispatchMessageA
GetClassLongA
CopyRect
GetSubMenu
EndDeferWindowPos
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
InsertMenuItemA
ReleaseCapture
SetCursor
UnpackDDElParam
BringWindowToTop
ReuseDDElParam
GetDesktopWindow
IsWindowEnabled
ShowWindow
GetWindowThreadProcessId
GetActiveWindow
LoadMenuA
DestroyMenu
CreatePopupMenu
InvalidateRect
GetMenuItemID
ClientToScreen
GetMessageA
TranslateMessage
LoadCursorA
GetCursorPos
WaitMessage
WindowFromPoint
SetCapture
DefFrameProcA
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
RedrawWindow
InflateRect
SetRect
KillTimer
SetTimer
GetDC
ReleaseDC
IsZoomed
AppendMenuA
SetParent
IsRectEmpty
GetSystemMenu
DeleteMenu
GetDCEx
LockWindowUpdate
DrawTextA
DrawTextExA
GetTabbedTextExtentA
GrayStringA
UnionRect
MapVirtualKeyA
GetKeyNameTextA
LoadBitmapA
FillRect
DrawFocusRect
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
GetAsyncKeyState
MapDialogRect
GetDialogBaseUnits
TabbedTextOutA
GetWindowDC
BeginPaint
EndPaint
GetMenuItemInfoA
GetMenuStringA
GetSysColorBrush
SetWindowTextA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
MoveWindow
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
GetMenuState
ModifyMenuA
GetMenuCheckMarkDimensions
DestroyIcon
SetCursorPos
DestroyCursor
SetWindowRgn
DrawIcon
FindWindowA
MessageBeep
IsClipboardFormatAvailable
RemoveMenu
ValidateRect
PostQuitMessage
UnregisterClassA
ShowOwnedPopups
InsertMenuA
RegisterClipboardFormatA
CopyAcceleratorTableA
SendNotifyMessageA
InSendMessage
PostThreadMessageA
CreateMenu
WindowFromDC
CountClipboardFormats
SetWindowContextHelpId
CharNextA
InvalidateRgn
GetNextDlgGroupItem
ClipCursor
DrawEdge
EnumChildWindows
MsgWaitForMultipleObjects
UnhookWindowsHookEx
GetSystemMetrics
CharUpperA
CharUpperW
OemToCharBuffA
SetMenu
CharLowerW
CharLowerA
CharToOemBuffA

shlwapi

UrlUnescapeA
PathFindFileNameA
PathRemoveExtensionA
PathFindExtensionA
PathStripToRootA
PathIsUNCA

Sections

.text
Size: 924KB - Virtual size: 923KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

171634aabc6eff9406d434016ff974c3

Headers

DLL Characteristics

File Characteristics

Imports

msvcr80

kernel32

gdi32

user32

shlwapi

Sections

.text Size: 924KB - Virtual size: 923KB

.data Size: 20KB - Virtual size: 26KB

.rsrc Size: 48KB - Virtual size: 45KB

.reloc Size: 80KB - Virtual size: 78KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 924KB - Virtual size: 923KB

.data
Size: 20KB - Virtual size: 26KB

.rsrc
Size: 48KB - Virtual size: 45KB

.reloc
Size: 80KB - Virtual size: 78KB

.rmnet
Size: 60KB - Virtual size: 60KB