0f9967a8a9715e0109f9e5012da8c56226c8d08ec6b2525bf9761582016ec633

Sharing

Copy URL Twitter E-mail

General

Target

0f9967a8a9715e0109f9e5012da8c56226c8d08ec6b2525bf9761582016ec633
Size

1020KB
MD5

b217f7e3b4a8c9f60b5f88eda4ddce2a
SHA1

63a8f46d5ae20463e365645708007c169bec40c3
SHA256

0f9967a8a9715e0109f9e5012da8c56226c8d08ec6b2525bf9761582016ec633
SHA512

363bdd666637c728253c35a3dd605305076eb6e9af50b5ae8558419a0bbf82f3d3a34ddee2eff6d7d17328e54816679d3b5a48ce9afc455c963af12301949eba
SSDEEP

24576:1LBDjbH+H9XPi/NjSy+3n8kpmg/CYWpBw2F4oCnsYZ9zY8SZ:OPXLCx/w2F4ow3ZdSZ

Score

N/A

Malware Config

Signatures

Files

0f9967a8a9715e0109f9e5012da8c56226c8d08ec6b2525bf9761582016ec633
.dll windows x86

61fe781b9fafa7c51aca51f5254d8022

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
GetStdHandle
SetHandleCount
SetUnhandledExceptionFilter
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
LCMapStringA
IsBadWritePtr
VirtualAlloc
DeleteCriticalSection
InitializeCriticalSection
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
GetVersion
GetCommandLineA
HeapReAlloc
TerminateProcess
ExitProcess
LeaveCriticalSection
EnterCriticalSection
RaiseException
InterlockedIncrement
InterlockedDecrement
MoveFileA
HeapAlloc
HeapFree
RtlUnwind
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
SetEndOfFile
GetSystemDirectoryA
GetUserDefaultLCID
GetLongPathNameA
GetCurrentProcess
GetWindowsDirectoryA
SetFileAttributesA
SetLastError
GetLastError
GetModuleHandleA
GetDiskFreeSpaceA
DeleteFileA
GetFileSize
SetFilePointer
ReadFile
WriteFile
CreateFileA
CreateProcessA
FindFirstFileA
FindNextFileA
FindClose
RemoveDirectoryA
GetLogicalDriveStringsA
lstrcpynA
GetVolumeInformationA
GetTempPathA
GlobalAlloc
GlobalHandle
GlobalLock
GlobalUnlock
GlobalFree
MultiByteToWideChar
GetVersionExA
IsDBCSLeadByte
LoadLibraryA
GetProcAddress
FreeLibrary
WideCharToMultiByte
CreateDirectoryA
GetFileAttributesA
GetDriveTypeA
CloseHandle
lstrcatA
ExitThread
lstrcmpA
lstrlenA
GetModuleFileNameA
lstrcpyA
TlsGetValue
GetTickCount

user32

SetCursorPos
GetMessageA
PtInRect
ReleaseCapture
SetCapture
ClipCursor
GetCursorPos
WindowFromPoint
ClientToScreen
GetWindowPlacement
SetTimer
CharNextA
LoadStringA
DrawFocusRect
GetKeyState
GetParent
GetPropA
RemovePropA
SetPropA
GetClassLongA
CallWindowProcA
GetSystemMetrics
DrawTextA
GetSysColorBrush
FillRect
RegisterClassExA
DefWindowProcA
InflateRect
FrameRect
SetWindowRgn
GetClassNameA
SetClassLongA
MessageBoxA
KillTimer
CreateDialogParamA
DispatchMessageA
TranslateMessage
PeekMessageA
GetSysColor
LoadImageA
DestroyIcon
CreateWindowExA
SetWindowLongA
GetDlgItem
InvalidateRect
GetDesktopWindow
IsDialogMessageA
DestroyWindow
PostMessageA
SetWindowTextA
DrawIconEx
LoadIconA
GetIconInfo
EndDialog
DialogBoxParamA
GetFocus
SetScrollInfo
SetScrollRange
ScrollWindowEx
SetScrollPos
ScreenToClient
GetWindowTextA
GetSystemMenu
DeleteMenu
AppendMenuA
SetForegroundWindow
IsWindowVisible
SetActiveWindow
SystemParametersInfoA
GetDlgItemInt
GetDlgItemTextA
LoadCursorA
SetCursor
wsprintfA
SetFocus
IsDlgButtonChecked
IsWindowEnabled
CheckDlgButton
MoveWindow
SendMessageA
GetActiveWindow
SetDlgItemInt
EnableWindow
ShowWindow
UpdateWindow
SendDlgItemMessageA
GetDlgCtrlID
BeginPaint
GetDC
GetClientRect
ReleaseDC
EndPaint
SetDlgItemTextA
LoadBitmapA
GetWindowLongA
IsIconic
GetWindowRect
SetWindowPos

gdi32

CreateCompatibleDC
SelectObject
SetStretchBltMode
StretchBlt
DeleteDC
GetObjectA
DeleteObject
GetStockObject
SetBrushOrgEx
UnrealizeObject
CreatePatternBrush
CreateBitmapIndirect
CreateCompatibleBitmap
DeleteColorSpace
GetTextMetricsA
SetICMMode
SetICMProfileA
SetColorSpace
CreateColorSpaceA
GetLogColorSpaceA
GetColorSpace
PaintRgn
CreateRectRgn
OffsetRgn
PathToRegion
GdiFlush
SetTextAlign
CombineRgn
CreateRectRgnIndirect
ExtTextOutA
SetBkColor
SetTextColor
LineTo
MoveToEx
CreatePen
BitBlt
GetTextExtentPoint32A
SetBkMode
EndPath
CloseFigure
BeginPath
CreateSolidBrush
CreateDIBSection
ExcludeClipRect
Rectangle
Polyline
SetROP2
SetDIBitsToDevice
GetDIBits
PatBlt
StretchDIBits

advapi32

RegQueryInfoKeyA
RegCloseKey
RegQueryValueExA
GetUserNameA
RegEnumValueA
RegDeleteKeyA
RegEnumKeyExA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA

shell32

ShellExecuteA
SHGetFileInfoA
SHGetSpecialFolderLocation
SHGetMalloc
SHGetDesktopFolder
SHChangeNotify
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetSpecialFolderPathA

ole32

CoUninitialize
CoTaskMemFree
CoInitialize

comctl32

CreatePropertySheetPageA
PropertySheetA
ord6

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Exports

Exports

DllMain
UIConnectUI
UIEntryFromExe

Sections

.text
Size: 652KB - Virtual size: 650KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 304KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61fe781b9fafa7c51aca51f5254d8022

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

comctl32

version

Exports

Exports

Sections

.text Size: 652KB - Virtual size: 650KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 304KB - Virtual size: 314KB

.rsrc Size: 4KB - Virtual size: 1008B

.reloc Size: 36KB - Virtual size: 34KB

.text
Size: 652KB - Virtual size: 650KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 304KB - Virtual size: 314KB

.rsrc
Size: 4KB - Virtual size: 1008B

.reloc
Size: 36KB - Virtual size: 34KB