cc206678c5c43b699f57048b992de42118f8c750e88d48ad2d6014e0b5b1c03b

Sharing

Copy URL

Twitter E-mail

General

Target

cc206678c5c43b699f57048b992de42118f8c750e88d48ad2d6014e0b5b1c03b
Size

144KB
MD5

791b561958cad0eceb4ff010c383d0b3
SHA1

70b299e720293638c24309a5c9c3a09c3e55dfda
SHA256

cc206678c5c43b699f57048b992de42118f8c750e88d48ad2d6014e0b5b1c03b
SHA512

a268517452493979762795841ab4b0838f9d6fd6402978698c12dd7a386d24ebf11d3758091cd95718a79735b59b074952a86f79e8c44dc5bedcbd4b2243ce69
SSDEEP

3072:mxW8Dr5Dkyq6SPTZunOoyWyY9pm/WQNK:b8hk6SPTqXyWyCL

Score

N/A

Malware Config

Signatures

Files

cc206678c5c43b699f57048b992de42118f8c750e88d48ad2d6014e0b5b1c03b
.dll windows x64

b6e46f4974098ae45aefa5d9d970bc00

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

gdiplus

GdipCloneImage
GdiplusStartup
GdipFree
GdipDisposeImage
GdiplusShutdown
GdipAlloc
GdipSaveImageToStream
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipCreateBitmapFromGdiDib

ws2_32

ntohl
htonl

kernel32

UnhandledExceptionFilter
CreateFileW
FlushFileBuffers
WriteConsoleW
SetStdHandle
HeapSize
LCMapStringW
GetProcAddress
LocalFree
lstrlenA
lstrlenW
LoadLibraryA
GetLastError
WaitForMultipleObjects
GetSystemTime
lstrcmpA
GetModuleHandleA
ExitProcess
SetUnhandledExceptionFilter
ExitThread
Sleep
FreeLibrary
LocalAlloc
FormatMessageA
InitializeCriticalSectionAndSpinCount
GetConsoleMode
GetConsoleCP
OutputDebugStringW
LoadLibraryExW
GetStringTypeW
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
GetCurrentProcess
RtlVirtualUnwind
RtlCaptureContext
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetStartupInfoW
DeleteCriticalSection
GetFileType
RtlPcToFileHeader
GetModuleFileNameW
WriteFile
SetFilePointerEx
WaitForSingleObject
RaiseException
LoadLibraryExA
CreateThread
GetCurrentThreadId
TerminateThread
ResumeThread
SetEvent
ReleaseMutex
GetStdHandle
CloseHandle
CreateMutexA
CreateEventA
SystemTimeToFileTime
HeapFree
HeapReAlloc
WideCharToMultiByte
HeapAlloc
RtlLookupFunctionEntry
RtlUnwindEx
MultiByteToWideChar
GetCommandLineA
GetProcessHeap
EncodePointer
DecodePointer
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
SetLastError
GetModuleHandleExW

user32

SendMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
DefWindowProcA
UnregisterClassA
RegisterClassExA
SetWindowLongPtrA
GetWindowLongPtrA
ChangeClipboardChain
SetClipboardViewer
DestroyWindow
CreateWindowExA

ole32

CoUninitialize
CreateStreamOnHGlobal
CoInitializeEx
CoInitializeSecurity
CoCreateInstance
CoInitialize

oleaut32

VariantChangeType
VariantCopy
VariantClear
VariantInit
SafeArrayGetVartype
SafeArrayGetElement
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetDim
SysFreeString
SysAllocString
SafeArrayPtrOfIndex

activeds

ord9

Exports

Exports

DeinitServerExtension
InitServerExtension
ReflectiveLoader

Sections

.text
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b6e46f4974098ae45aefa5d9d970bc00

Headers

DLL Characteristics

File Characteristics

Imports

gdiplus

ws2_32

kernel32

user32

ole32

oleaut32

activeds

Exports

Exports

Sections

.text Size: 87KB - Virtual size: 87KB

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 9KB - Virtual size: 18KB

.pdata Size: 5KB - Virtual size: 5KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 87KB - Virtual size: 87KB

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 9KB - Virtual size: 18KB

.pdata
Size: 5KB - Virtual size: 5KB

.reloc
Size: 2KB - Virtual size: 1KB