4e992099558f0df650510c71c59ebb3de0ac71a1e5a2102a8de3384f1f343dce

Sharing

Copy URL

Twitter E-mail

General

Target

4e992099558f0df650510c71c59ebb3de0ac71a1e5a2102a8de3384f1f343dce
Size

849KB
MD5

8c89f291516629c51df803b4a0e18420
SHA1

870b9a377247c8a33a2b6bd071703478a27aa859
SHA256

4e992099558f0df650510c71c59ebb3de0ac71a1e5a2102a8de3384f1f343dce
SHA512

a3f72b828ca66e08d22a26dbfb3a6af86e82b77b4b3dc9d6cf7bb8533d7f69e023e05e6fd5950809399b042bfe40d5b3c26b1e54e4b944f6d9be274efc54956e
SSDEEP

24576:3m2dCqE8tlph3687leI/N+Yqz6tIZ07hsX:W2dXPph3687t/4YQ6Iq6

Score

N/A

Malware Config

Signatures

Files

4e992099558f0df650510c71c59ebb3de0ac71a1e5a2102a8de3384f1f343dce
.dll windows x86

16d14cca1cb3190efd48de69ba2982c7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
SetFilePointer
GetCommandLineA
MulDiv
GetProcessHeap
UnhandledExceptionFilter
GetCommandLineW
GetCurrentThread
GetStdHandle
GetEnvironmentStrings
ReadFile
GetCurrentThreadId
GlobalLock
SetLastError
HeapReAlloc
LoadResource
InterlockedIncrement
SetStdHandle
LCMapStringA
SetUnhandledExceptionFilter
GetStartupInfoA
GlobalFree
GlobalReAlloc
GetVersion
FreeLibrary
GetConsoleCP
SetEnvironmentVariableA
FindClose
LocalFileTimeToFileTime
GlobalUnlock
RaiseException
GlobalHandle
DeleteCriticalSection
GetCurrentProcessId
GlobalDeleteAtom
FlushFileBuffers
GetModuleFileNameA
GetSystemDirectoryA
TlsFree
LockFile
SetHandleCount
WriteFile
LocalReAlloc
CloseHandle
FreeEnvironmentStringsA
GetStringTypeA
InterlockedDecrement
GetVersionExA
GetTimeZoneInformation
FreeResource
UnlockFile
VirtualQuery
GetFileSize
lstrlenA
CompareStringA
HeapSize
FileTimeToSystemTime
ExitProcess
DuplicateHandle
GetWindowsDirectoryA
GetFileType
lstrcmpA
HeapAlloc
GetSystemTimeAsFileTime
IsDebuggerPresent
RtlUnwind
VirtualFree
GetConsoleMode
GetLastError
TerminateProcess
SizeofResource
SystemTimeToFileTime
SetFileTime
GetConsoleOutputCP
ConvertDefaultLocale
HeapFree
InterlockedExchange
CreateFileA
GlobalFlags
GetFileTime
EnterCriticalSection
LockResource
GetSystemInfo
LeaveCriticalSection
GetLocaleInfoA
Sleep
TlsGetValue
EnumResourceLanguagesW
SetEndOfFile
GetACP
GetThreadLocale
InitializeCriticalSection
QueryPerformanceCounter
FileTimeToLocalFileTime
TlsSetValue
HeapCreate
SetErrorMode
TlsAlloc
HeapDestroy
VirtualProtect
LocalFree
GetModuleHandleA
GetOEMCP
FindAtomA
AddAtomA
LocalAlloc
WriteConsoleA
LoadLibraryA
GetProcAddress
ReadConsoleInputA
GlobalAlloc
GetTickCount

user32

SetParent
DestroyWindow
BringWindowToTop
GetMenuState
InflateRect
GetWindowPlacement
ScreenToClient
CopyRect
GetTopWindow
TrackPopupMenu
GetWindowRect
SetWindowContextHelpId
GetKeyState
GetWindowRgn
GetMenuCheckMarkDimensions
SetWindowPos
SetScrollPos
SetScrollRange
DeferWindowPos
LockWindowUpdate
UpdateWindow
DestroyIcon
IntersectRect
FillRect
GetLastActivePopup
SetWindowRgn
SetActiveWindow
OffsetRect
GetSysColorBrush
BeginDeferWindowPos
UnhookWindowsHookEx
CheckMenuItem
SetMenu
ClientToScreen
SendDlgItemMessageA
KillTimer
GetFocus
DeleteMenu
CreatePopupMenu
CallNextHookEx
PtInRect
GetSystemMetrics
ValidateRect
GetWindowThreadProcessId
GetMessagePos
IsRectEmpty
GetDlgCtrlID
GetScrollRange
DestroyMenu
InvalidateRect
ShowWindow
EnableMenuItem
InvalidateRgn
GetWindow
SetTimer
GetNextDlgTabItem
GetMessageTime
IsZoomed
GetWindowDC
GetClientRect
BeginPaint
RedrawWindow
ReuseDDElParam
AdjustWindowRectEx
EndDeferWindowPos
GetMenu
GetDC
IsIconic
SetCapture
UnregisterClassA
GetDesktopWindow
GetMenuItemCount
GetSysColor
GetMenuItemID
IsWindow
MessageBeep
GetScrollInfo
WindowFromPoint
MapWindowPoints
MapDialogRect
SetRect
GetActiveWindow
ShowOwnedPopups
IsChild
SetForegroundWindow
GetSystemMenu
GetSubMenu
ScrollWindow
GetDCEx
ReleaseDC
GetCapture
DrawIcon
GetCursorPos
GetParent
SetCursor
ReleaseCapture
GetScrollPos
EqualRect
SetRectEmpty
GetDlgItem
EndPaint
GetNextDlgGroupItem
UnpackDDElParam
SystemParametersInfoA
PostQuitMessage
SetFocus
ShowScrollBar
GetForegroundWindow
MoveWindow
IsWindowVisible
SetScrollInfo
TranslateMessage
IsWindowEnabled
SetMenuItemBitmaps
GetKeyboardType
EndDialog

gdi32

ScaleWindowExtEx
GetBkColor
RestoreDC
SetBkMode
SetBkColor
SaveDC
CreateCompatibleBitmap
GetClipBox
GetStockObject
IntersectClipRect
DeleteDC
SetMapMode
CreateSolidBrush
GetTextColor
DeleteObject
SelectObject
GetDeviceCaps
OffsetRgn
GetWindowExtEx
ExtSelectClipRgn
ExcludeClipRect
CreateBitmap
CreateEllipticRgn
BitBlt
CreateCompatibleDC
CreateRectRgn
PatBlt
SetWindowExtEx
StretchDIBits
RectVisible
SetViewportOrgEx
Ellipse
SetViewportExtEx
CreateRectRgnIndirect
SelectClipRgn
ScaleViewportExtEx
GetMapMode
CreatePatternBrush
GetPixel
Escape
DPtoLP
PtVisible
OffsetViewportOrgEx
SetRectRgn
CombineRgn
GetRgnBox
SetTextColor

advapi32

RegCloseKey
SetFileSecurityW

shell32

DragFinish

ole32

CoFreeUnusedLibraries
OleInitialize
CoRegisterMessageFilter
CoRevokeClassObject
CoGetClassObject
CreateStreamOnHGlobal
CLSIDFromString
CreateILockBytesOnHGlobal
CoCreateInstance
CLSIDFromProgID
OleUninitialize
OleFlushClipboard
StgCreateDocfileOnILockBytes
OleIsCurrentClipboard
StgOpenStorageOnILockBytes

oleaut32

VariantTimeToSystemTime
SysStringLen
SafeArrayDestroy
VariantCopy
VariantClear
OleLoadPicture
VariantChangeType
SysAllocStringLen
OleCreateFontIndirect
VariantInit
SysAllocString
SysFreeString
SystemTimeToVariantTime

comctl32

ImageList_LoadImageW

shlwapi

PathIsUNCW
PathRemoveExtensionW
PathFindExtensionW
PathStripToRootW
PathFileExistsW
PathFindFileNameW

wldap32

ord201

userenv

UnloadUserProfile

Sections

.text
Size: 474KB - Virtual size: 474KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 343KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

16d14cca1cb3190efd48de69ba2982c7

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

wldap32

userenv

Sections

.text Size: 474KB - Virtual size: 474KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 343KB - Virtual size: 363KB

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 474KB - Virtual size: 474KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 343KB - Virtual size: 363KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 3KB - Virtual size: 3KB