57d7c31ca0ab853241c87580540e56037e4087425f217a4bb32a397797a4277c

Sharing

Copy URL Twitter E-mail

General

Target

57d7c31ca0ab853241c87580540e56037e4087425f217a4bb32a397797a4277c
Size

965KB
MD5

a0ab8e16a4094640a560477e4819db37
SHA1

dcb22310e2fd2f46f9e5e0a0ee9b7dda14ef9759
SHA256

57d7c31ca0ab853241c87580540e56037e4087425f217a4bb32a397797a4277c
SHA512

7c7169a55afbf5833bc69859d0ef4b72c3876e696dfae33d638ef52ebab9861d8b9e33cd1fe286673c161107c802e76b8ba07939bcc1e26b4200144752f7c9c0
SSDEEP

6144:kw3uIXb+imlxJDa2eA+lvKzUA38RcxxpcAcA6Pw1vu6:j6a2FyvKzUfv0u

Score

N/A

Malware Config

Signatures

Files

57d7c31ca0ab853241c87580540e56037e4087425f217a4bb32a397797a4277c
.dll windows x86

91fc7ba9e23cd54b7f6434c0817a2a60

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

??2@YAPAXI@Z
wcsstr
_onexit
__dllonexit
_except_handler3
_adjust_fdiv
_initterm
wcsncpy
sprintf
strncpy
_ltow
_itow
strstr
_ftol
swprintf
wcschr
wcscmp
fopen
fread
malloc
fclose
free
fseek
fwrite
wcscpy
wcscat
wcslen
??3@YAXPAX@Z

kernel32

GlobalAlloc
GlobalFree
InterlockedIncrement
SetLastError
lstrcpynW
InterlockedDecrement
FreeLibrary
GetModuleHandleA
GetLastError
GetModuleHandleW
GetProcAddress
LoadLibraryW
GetModuleFileNameW
OutputDebugStringA
GetPrivateProfileIntW
CopyFileW
GetWindowsDirectoryW
GetSystemDefaultLangID
GetPrivateProfileStringW
FindClose
CreateDirectoryW
FindFirstFileW
OutputDebugStringW
GetSystemDirectoryW
SetFileAttributesW
SetFilePointer
WriteFile
ReadFile
CloseHandle
CreateFileW
GetFileSize
LocalFree
LocalAlloc
GetSystemInfo
WideCharToMultiByte
MultiByteToWideChar
GetVersionExW
WritePrivateProfileStringW
DeleteFileW
LoadLibraryA
MulDiv
GetTempPathW

user32

LoadCursorW
CallWindowProcW
SendMessageW
GetClientRect
PtInRect
GetWindowRect
GetDlgItem
GetParent
GetCursorPos
SendDlgItemMessageW
GetClassNameW
EnumChildWindows
GetWindowTextW
PostMessageW
GetKeyState
GetDC
SetDlgItemTextW
CreateWindowExW
DialogBoxParamW
SetWindowPos
SetWindowLongW
SetCursor
GetDlgItemTextW
CheckRadioButton
ShowWindow
EnableWindow
GetDlgItemInt
DefWindowProcW
GetWindowLongW
EnumWindows
DestroyWindow
EndPaint
BeginPaint
EndDialog
SetFocus
ReleaseDC
LoadBitmapW
IsDlgButtonChecked
LoadImageW
SetWindowTextW
wsprintfW
DestroyIcon
LoadIconW
FillRect
MessageBoxW

winspool.drv

EndDocPrinter
EndPagePrinter
WritePrinter
StartPagePrinter
StartDocPrinterW
SetFormW
AddFormW
DeleteFormW
EnumFormsW
GetPrinterW

advapi32

RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW

gdi32

SetBkMode
FloodFill
ExtTextOutW
GetDIBits
BitBlt
SetDIBits
SetTextAlign
GetObjectW
SelectObject
SetStretchBltMode
StretchBlt
DeleteDC
GetTextExtentPoint32W
CreateFontW
CreateCompatibleBitmap
CreateFontIndirectW
GetDeviceCaps
DeleteObject
EnumFontFamiliesExW
CreateCompatibleDC

shell32

ShellExecuteW
SHGetPathFromIDListW
SHBrowseForFolderW

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 179KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 40.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 672KB - Virtual size: 671KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91fc7ba9e23cd54b7f6434c0817a2a60

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

winspool.drv

advapi32

gdi32

shell32

Exports

Exports

Sections

.text Size: 179KB - Virtual size: 178KB

.data Size: 35KB - Virtual size: 40.4MB

.rsrc Size: 672KB - Virtual size: 671KB

.reloc Size: 78KB - Virtual size: 78KB

.text
Size: 179KB - Virtual size: 178KB

.data
Size: 35KB - Virtual size: 40.4MB

.rsrc
Size: 672KB - Virtual size: 671KB

.reloc
Size: 78KB - Virtual size: 78KB