winampGetMediaLibraryPlugin
Static task
static1
Behavioral task
behavioral1
Sample
68516c889a54d9c5cb68132ea8983ab8ac42c111ec1fa31d0451b38739214e8e.dll
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
68516c889a54d9c5cb68132ea8983ab8ac42c111ec1fa31d0451b38739214e8e.dll
Resource
win10v2004-20221111-en
General
-
Target
68516c889a54d9c5cb68132ea8983ab8ac42c111ec1fa31d0451b38739214e8e
-
Size
309KB
-
MD5
20dba1344c70001dd0b720401cdc2670
-
SHA1
5b062b807b60f4adef7b59f81fc32caa77ce829c
-
SHA256
68516c889a54d9c5cb68132ea8983ab8ac42c111ec1fa31d0451b38739214e8e
-
SHA512
6b79fecaae4beb95bcc96959d5005788c39e403e8a6e2f29d86883c83eb35d749a2c95b35d1cd4cf2c2ccb6a62d80457a4372ca805a9481d537587876ad2e315
-
SSDEEP
6144:/vIna1HjOLxjwvW9o04Or8GnOtsY4CxKvVnRD1oUOzrxy5f0iWF/G+:/gYoxM+9o3nG0IBRD7Ok5YF/5
Malware Config
Signatures
Files
-
68516c889a54d9c5cb68132ea8983ab8ac42c111ec1fa31d0451b38739214e8e.dll windows x86
4647b2d4f9d2432d2af721e65f0901ec
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
shlwapi
StrToIntW
StrChrW
PathFindExtensionW
PathIsSameRootA
PathIsUNCA
PathAddBackslashA
PathCommonPrefixA
PathRemoveExtensionW
PathRemoveBlanksW
StrFormatByteSizeW
PathFindFileNameW
PathStripToRootW
PathFindNextComponentW
PathGetDriveNumberW
PathQuoteSpacesW
PathUnquoteSpacesW
SHStrDupW
PathAddBackslashW
PathIsURLW
PathCombineW
PathCombineA
PathRemoveFileSpecA
comctl32
ImageList_Draw
winmm
mciSendCommandW
kernel32
lstrcmpiA
lstrlenA
GlobalFree
lstrcmpiW
lstrlenW
FindFirstFileA
FindClose
lstrcpynW
lstrcmpW
FindFirstFileW
FindNextFileA
FindNextFileW
Sleep
GlobalAlloc
GetCurrentDirectoryW
GetShortPathNameW
CreateDirectoryA
CreateDirectoryW
QueueUserAPC
GetTempPathW
GetTempFileNameW
MulDiv
CopyFileW
DeleteFileW
GetPrivateProfileIntW
WritePrivateProfileStringW
CompareStringW
GetPrivateProfileStringW
EnterCriticalSection
LeaveCriticalSection
lstrcmpA
DeleteCriticalSection
InterlockedIncrement
InterlockedDecrement
CloseHandle
CreateFileW
GetFileSizeEx
SetLastError
GetDiskFreeSpaceExW
GetFileAttributesW
SetFileAttributesW
CopyFileExW
MoveFileExW
CreateThread
FormatMessageW
LocalFree
GetFileInformationByHandle
FileTimeToSystemTime
GetDateFormatW
GetTimeFormatW
GetModuleHandleW
WaitForSingleObject
TerminateThread
GetCurrentProcess
DuplicateHandle
GetCurrentThread
SetErrorMode
LoadLibraryW
GetProcAddress
FreeLibrary
QueryDosDeviceW
GetDriveTypeA
SetThreadPriority
GetCurrentThreadId
SleepEx
DeviceIoControl
GetVolumeInformationW
GetLogicalDrives
QueryPerformanceCounter
QueryPerformanceFrequency
lstrcpyA
GetVolumeInformationA
WritePrivateProfileStringA
WaitForSingleObjectEx
CreateEventW
SetEvent
lstrcpyW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
DisableThreadLibraryCalls
InterlockedCompareExchange
RaiseException
LoadLibraryA
InterlockedExchange
LocalAlloc
GetTempFileNameA
lstrcpynA
GetTempPathA
GetTickCount
WideCharToMultiByte
GetLastError
MultiByteToWideChar
IsDebuggerPresent
InitializeCriticalSection
user32
SendMessageA
SetDlgItemInt
GetDlgCtrlID
SetDlgItemTextA
IsWindowEnabled
InsertMenuItemW
DeleteMenu
IsWindowVisible
CharPrevA
GetClassNameW
GetWindowTextLengthW
SetForegroundWindow
MessageBeep
FlashWindowEx
LoadIconW
wsprintfA
CopyAcceleratorTableW
MapVirtualKeyW
GetKeyNameTextW
RegisterWindowMessageW
GetCursorPos
MapWindowPoints
SetMenuItemInfoW
CopyRect
CallWindowProcW
EndPaint
ValidateRect
IntersectRect
BeginPaint
GetWindowTextW
GetSystemMetrics
CharPrevW
CharLowerBuffW
CharUpperBuffW
IsCharUpperW
IsCharLowerW
DefWindowProcW
PostQuitMessage
MsgWaitForMultipleObjectsEx
PostThreadMessageW
UnregisterClassW
CreateWindowExW
SendMessageW
PostMessageW
MessageBoxW
GetDlgItemTextW
DrawTextW
ShowWindow
RegisterClassW
GetClassInfoW
DrawFocusRect
GetFocus
FillRect
GetDC
OffsetRect
SetRect
GetSysColor
RedrawWindow
GetAncestor
GetDCEx
RemovePropW
SetWindowLongW
InvalidateRect
InflateRect
GetClientRect
SetWindowPos
EndDeferWindowPos
DeferWindowPos
GetMenuItemCount
BeginDeferWindowPos
GetMenuItemInfoW
CharLowerW
CharUpperW
SendNotifyMessageW
RegisterWindowMessageA
SetPropW
CharNextA
DispatchMessageW
TranslateMessage
GetMessageW
DestroyWindow
IsWindow
ReleaseCapture
GetCapture
ScreenToClient
SetCapture
GetAsyncKeyState
PtInRect
SetRectEmpty
GetWindowLongW
ClientToScreen
PeekMessageW
CheckMenuItem
GetWindowRect
GetSubMenu
SetTimer
KillTimer
EnumChildWindows
EnableWindow
LoadImageW
GetParent
GetWindowThreadProcessId
GetPropW
FindWindowExW
CharNextW
UpdateWindow
SetDlgItemTextW
EndDialog
IsDlgButtonChecked
CheckDlgButton
SendDlgItemMessageW
SetWindowTextW
GetDlgItem
ReleaseDC
gdi32
GetObjectW
CreateFontIndirectW
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CreateSolidBrush
DeleteDC
SetBkColor
CreateRectRgn
CombineRgn
GetTextMetricsW
StretchBlt
SetBkMode
CreateBitmap
GetTextExtentPoint32W
GetDeviceCaps
CreateFontW
GetTextColor
GetStockObject
DeleteObject
GetBkColor
LineTo
MoveToEx
SetTextColor
CreatePen
SelectClipRgn
ExcludeClipRect
ExtTextOutW
SelectObject
comdlg32
GetOpenFileNameW
advapi32
RegCloseKey
RegOpenKeyW
RegQueryValueExW
shell32
DragQueryFileA
SHBrowseForFolderW
SHGetFolderPathW
SHGetMalloc
DragFinish
SHGetPathFromIDListW
ShellExecuteW
ole32
CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc
CoInitializeEx
CoUninitialize
oleaut32
SysFreeString
msvcr90
_initterm_e
_initterm
_encoded_null
_malloc_crt
_decode_pointer
_onexit
_lock
_encode_pointer
__dllonexit
_unlock
_aligned_malloc
strchr
calloc
_strdup
tolower
strncpy
wcschr
memmove
realloc
_wfopen
_purecall
_wcsnicmp
_wcsicmp
_strnicmp
_stricmp
_wcsdup
wcsstr
memcpy
_wtoi
atoi
strstr
fclose
fprintf
fopen
memcmp
toupper
??2@YAPAXI@Z
_unlink
memset
_vsnwprintf
_vsnprintf
free
malloc
wcslen
strlen
wcsncpy
??3@YAXPAX@Z
_crt_debugger_hook
__clean_type_info_names_internal
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_except_handler4_common
__CppXcptFilter
_adjust_fdiv
_amsg_exit
__CxxFrameHandler3
Exports
Exports
Sections
.text Size: 116KB - Virtual size: 116KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 17KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 49KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rmnet Size: 113KB - Virtual size: 116KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE