66930411b56937cf09bcb9763f9ee43cb852f6569c739c8cbf644534fb14e13e

Sharing

Copy URL Twitter E-mail

General

Target

66930411b56937cf09bcb9763f9ee43cb852f6569c739c8cbf644534fb14e13e
Size

275KB
MD5

9327cfa471bd251ed5488340e2b7c9d7
SHA1

7cb1be760532f21bef33ebec9ae874d37d5177db
SHA256

66930411b56937cf09bcb9763f9ee43cb852f6569c739c8cbf644534fb14e13e
SHA512

1993a694e8e1756029349eec99aa7a02648a58ca779761dcd37fa66678fc47df04b768b088126c04f1b6232dfc4146b531b0ee884fe2edd7b1c40fd2720464e8
SSDEEP

6144:xgPq+rjLrt24QgzcOSGDBtzwO8dACed1luTvqFrWNqKa1APcZVS:x+rjQJgpBtsHmpFmI2PcfS

Score

N/A

Malware Config

Signatures

Files

66930411b56937cf09bcb9763f9ee43cb852f6569c739c8cbf644534fb14e13e
.dll windows x86

870ec61332e27865db0a76aad2eb1378

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

kernel32

GetModuleHandleA
GetProcAddress
GetProcessHeap
GetProcessPriorityBoost
GetSystemTimeAsFileTime
GetThreadLocale
GetTickCount
GetVersionExA
GlobalAlloc
GlobalFree
GlobalHandle
GlobalLock
GlobalUnlock
HeapAlloc
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedIncrement
IsDBCSLeadByte
IsProcessorFeaturePresent
LeaveCriticalSection
LoadLibraryA
LoadLibraryExA
GetLocaleInfoA
LockFileEx
LockResource
MapViewOfFileEx
MulDiv
QueryPerformanceCounter
RaiseException
SizeofResource
VirtualAlloc
VirtualFree
VirtualProtect
WaitForSingleObjectEx
WideCharToMultiByte
_lwrite
lstrcmpA
lstrcmpiA
lstrlenW
DeleteCriticalSection
DeviceIoControl
EnterCriticalSection
ExitProcess
FindResourceA
FlushInstructionCache
GetCurrentThreadId
FreeLibrary
GetCurrentProcessId
GetCurrentProcess
GetConsoleWindow
GetACP
LocalHandle

user32

GetDlgCtrlID
GetDlgItem
GetFocus
GetMenuItemID
GetParent
GetSysColor
GetSystemMenu
GetWindow
GetWindowLongA
GetWindowRect
IsWindow
LoadCursorA
LoadStringA
MapDialogRect
RedrawWindow
RegisterWindowMessageA
ReleaseDC
SendMessageA
SetCapture
SetCursor
SetFocus
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
TileWindows
UnregisterDeviceNotification
WINNLSEnableIME
WindowFromDC
wsprintfA
GetDesktopWindow
GetDC
GetCursorPos
GetClientRect
GetCaretPos
FillRect
EndPaint
EndDialog
DialogBoxIndirectParamA
DestroyWindow
DestroyAcceleratorTable
DdeGetLastError
CreateWindowExA
CreateAcceleratorTableA
CheckDlgButton
CharNextA
BringWindowToTop
BeginPaint
AttachThreadInput
DdeClientTransaction

ddraw

GetDDSurfaceLocal
DDInternalLock

advapi32

RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegQueryInfoKeyA
RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA

shell32

DuplicateIcon
SHBindToParent
SHFreeNameMappings
SHGetMalloc
SHLoadNonloadedIconOverlayIdentifiers
DragAcceptFiles

Exports

Exports

CreateMarkers
CreatePolygon
MatrixRotationZ
mpegInSeekSample

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

870ec61332e27865db0a76aad2eb1378

Headers

File Characteristics

Imports

comctl32

kernel32

user32

ddraw

advapi32

shell32

Exports

Exports

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 134KB - Virtual size: 133KB

.data Size: 43KB - Virtual size: 43KB

.rsrc Size: 51KB - Virtual size: 50KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 134KB - Virtual size: 133KB

.data
Size: 43KB - Virtual size: 43KB

.rsrc
Size: 51KB - Virtual size: 50KB

.reloc
Size: 1KB - Virtual size: 1KB