ff7c28d0ce95594c399f9cf9220fc6f284848a00cc3ac35ae9ea10a17aba586c

Sharing

Copy URL Twitter E-mail

General

Target

ff7c28d0ce95594c399f9cf9220fc6f284848a00cc3ac35ae9ea10a17aba586c
Size

256KB
MD5

28ba09c794ae413bebc121a8922cd8e0
SHA1

ad1c3d0336351cb7f506fe5ff29bd7224b9f705f
SHA256

ff7c28d0ce95594c399f9cf9220fc6f284848a00cc3ac35ae9ea10a17aba586c
SHA512

ca0c0469d1ff4b8e4a383bc8bffe4ae5d5aa7431c48a4d13e719dfc12c229006a44b44cd583be0e281f7f79724e0abfad7922c3701f6e3110e5a3ef7d426296e
SSDEEP

6144:q7/KaBbbdxmAQ7IKC33gQITXg+Zgfb2Cu:q7bxQEqQE7gfbQ

Score

N/A

Malware Config

Signatures

Files

ff7c28d0ce95594c399f9cf9220fc6f284848a00cc3ac35ae9ea10a17aba586c
.dll windows x86

9ed9f246d589ab602aa4bb124e42835a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
GetLastError
GetModuleFileNameA
GetDateFormatA
GetTimeFormatA
GetNumberFormatA
GlobalMemoryStatus
FileTimeToLocalFileTime
FileTimeToSystemTime
FindFirstFileA
CreateFileA
CreateFileMappingA
MapViewOfFile
ReadFile
UnmapViewOfFile
CloseHandle
LoadResource
SizeofResource
LockResource
FreeResource
FindResourceA
FindResourceExA
GetSystemDirectoryA
lstrcatA
WideCharToMultiByte
lstrcpynA
GetModuleHandleA
GetSystemDefaultLCID
GetPrivateProfileStringA
GetLocaleInfoA
GetProcAddress
FreeLibrary
GetWindowsDirectoryA
GetACP
SetThreadLocale
SetFilePointer
MultiByteToWideChar
GetStringTypeA
InterlockedIncrement
GetStringTypeW
WriteFile
GetEnvironmentStringsW
InterlockedDecrement
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetEnvironmentStrings
GetFileType
GetStdHandle
GetStartupInfoA
TlsGetValue
SetHandleCount
TlsFree
TlsAlloc
SetLastError
GetCurrentThreadId
GetUserDefaultLCID
TlsSetValue
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GlobalFree
GetVersionExA
RtlUnwind
GetCPInfo
EnterCriticalSection
DeleteCriticalSection
lstrcmpiA
LeaveCriticalSection
LoadLibraryA
HeapReAlloc
InitializeCriticalSection
VirtualFree
HeapCreate
VirtualAlloc
GetEnvironmentVariableA
GetVersion
HeapDestroy
TerminateProcess
ExitProcess
GetCommandLineA
HeapAlloc
HeapFree
Sleep
GetLocaleInfoW
GetOEMCP
LCMapStringA
LCMapStringW
SetStdHandle
GlobalLock
GlobalAlloc
GlobalUnlock
FlushFileBuffers
lstrlenA
lstrcpyA
OutputDebugStringA

user32

SetWindowPos
LoadCursorA
IsDlgButtonChecked
RegisterClassA
OffsetRect
ReleaseDC
GetWindowDC
FillRect
GetParent
EndPaint
SendMessageA
GetUpdateRect
BeginPaint
CopyRect
CopyImage
GetClientRect
GetWindowLongA
GetSysColor
GetDC
IsWindowEnabled
DefWindowProcA
SetWindowLongA
IsWindowVisible
SetCursor
SetCapture
ReleaseCapture
GetCursorPos
PtInRect
MapWindowPoints
DeferWindowPos
KillTimer
wsprintfA
InvalidateRect
GetWindowRect
GetClassNameA
BeginDeferWindowPos
EndDeferWindowPos
EnumChildWindows
GetDlgItem
SetWindowTextA
GetWindowTextA
EndDialog
RegisterClipboardFormatA
CheckDlgButton
GetFocus
DialogBoxParamA
SetPropA
DrawTextA
GetPropA
RemovePropA
ExitWindowsEx
GetCursor
MessageBoxA
CreateWindowExA
ShowWindow
SetDlgItemTextA
EnableWindow
SetTimer
LoadImageA
WinHelpA
CharLowerA
UpdateWindow
SendDlgItemMessageA
DrawEdge
GetCapture
GetAsyncKeyState
PostMessageA
DrawFocusRect
CallWindowProcA
SetFocus
InflateRect

gdi32

SetBkColor
DPtoLP
RoundRect
GetTextColor
CreatePalette
CreateDIBitmap
RealizePalette
SelectPalette
DeleteObject
DeleteDC
PatBlt
CreatePatternBrush
GetPixel
BitBlt
SetMapMode
GetMapMode
CreateCompatibleBitmap
CreateBitmap
GetObjectA
SelectObject
CreateCompatibleDC
StretchBlt
GetCurrentObject
UpdateColors
SetStretchBltMode
GetTextExtentPoint32A
GetTextMetricsA
CreateFontIndirectA
GetStockObject
SelectClipRgn
CreatePolygonRgn
CreateSolidBrush
CreateRectRgn
ExtEscape
SetBrushOrgEx
CreateDCA
CreateDIBSection
SetBkMode
GetNearestColor
CreatePen
Polygon
ExtSelectClipRgn
SetTextColor
GetDeviceCaps
CreateRoundRectRgn
MoveToEx
LineTo
Rectangle

advapi32

LookupPrivilegeValueA
RegCloseKey
AdjustTokenPrivileges
OpenProcessToken
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA

shell32

ShellExecuteA
FindExecutableA

ole32

CoInitialize
CoCreateInstance
CoUninitialize

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageA

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

winmm

timeGetTime

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9ed9f246d589ab602aa4bb124e42835a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

comctl32

version

winmm

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 83KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 24KB - Virtual size: 30KB

.rsrc Size: 52KB - Virtual size: 51KB

.reloc Size: 8KB - Virtual size: 7KB

.text Size: 72KB - Virtual size: 72KB

.text
Size: 84KB - Virtual size: 83KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 24KB - Virtual size: 30KB

.rsrc
Size: 52KB - Virtual size: 51KB

.reloc
Size: 8KB - Virtual size: 7KB

.text
Size: 72KB - Virtual size: 72KB