d13f1454e70d987db4961dd0f8d7e8bd59c5f0957089780d2aead5b37e4ef939

Sharing

Copy URL Twitter E-mail

General

Target

d13f1454e70d987db4961dd0f8d7e8bd59c5f0957089780d2aead5b37e4ef939
Size

179KB
MD5

4f14c716cd5a1c8f13f5fb149b4f122f
SHA1

769cff4d23a5df54f0caa1e2a5f2a5621d7f5d99
SHA256

d13f1454e70d987db4961dd0f8d7e8bd59c5f0957089780d2aead5b37e4ef939
SHA512

07b73db6f643f40860668b0264616da8b0a9845c57a3e064ac199122bd4a70dec25665696de5cd6d687e3112af658ed6487a0a6e35a98aca9641e7e55b8725d1
SSDEEP

3072:p7GSay+pkOrCAPDJqvWy5VmzLja8ihpl054+T28zs6ROAG4u:Ey+frLgpmzLja8ifl054+aKsWv

Score

N/A

Malware Config

Signatures

Files

d13f1454e70d987db4961dd0f8d7e8bd59c5f0957089780d2aead5b37e4ef939
.dll windows x86

7ce4d40a627497a206a0475630388ff3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupOpenLog
SetupLogErrorW
SetupDiSetClassInstallParamsW
SetupDiOpenDevRegKey
SetupDiInstallDevice
SetupDiGetDeviceRegistryPropertyW
SetupDiGetClassInstallParamsW
SetupDiCreateDevRegKeyW
SetupCloseLog
CM_Create_Range_List
CMP_UnregisterNotification

kernel32

GetCurrentThreadId
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetSystemTimeAsFileTime
GetCurrentProcess
GetWindowsDirectoryW
LocalAlloc
MultiByteToWideChar
OutputDebugStringW
QueryPerformanceCounter
SetLastError
SetUnhandledExceptionFilter
TerminateProcess
UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
lstrcmpiW
lstrcpynW
GetComputerNameW
ExitProcess
DisableThreadLibraryCalls
DeviceIoControl
CreateFileW
CompareStringW
CloseHandle
GetTickCount
lstrlenW

advapi32

OpenServiceW
ChangeServiceConfigW
CloseServiceHandle
StartServiceW
RegSetValueExW
RegSetKeySecurity
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegCloseKey
OpenSCManagerW
CreateServiceW
ConvertStringSecurityDescriptorToSecurityDescriptorW
ControlService
QueryServiceConfigW

gdi32

GetAspectRatioFilterEx
CloseEnhMetaFile

msvcrt

wcscmp
_vsnwprintf
_except_handler3

user32

DialogBoxParamW
EnableWindow
EndDialog
GetDlgItem
GetParent
GetWindowLongW
GetWindowTextW
IsWindowEnabled
LoadStringW
SendMessageW
SetWindowLongW
SetWindowTextW
ShowWindow

shell32

ShellExecuteW
SHExtractIconsW

Exports

Exports

CreateStreamOnFile
GetRichEdClassStringW
HrFindInetTimeZone
PszFromANSIStreamA
ReplaceChars

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ce4d40a627497a206a0475630388ff3

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

kernel32

advapi32

gdi32

msvcrt

user32

shell32

Exports

Exports

Sections

.text Size: 54KB - Virtual size: 54KB

.rdata Size: 90KB - Virtual size: 89KB

.data Size: 28KB - Virtual size: 28KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 54KB - Virtual size: 54KB

.rdata
Size: 90KB - Virtual size: 89KB

.data
Size: 28KB - Virtual size: 28KB

.rsrc
Size: 6KB - Virtual size: 5KB