00219dc2d3f509b3041a3d3ac9990c1ff8bb21f36c52507db907d1bf03983081

General

Target

00219dc2d3f509b3041a3d3ac9990c1ff8bb21f36c52507db907d1bf03983081
Size

84KB
MD5

e0c5ca44f72b1f04ec5dfb6f8a1f0e60
SHA1

1807bfc17165c8ca47b23eef907746de862386db
SHA256

00219dc2d3f509b3041a3d3ac9990c1ff8bb21f36c52507db907d1bf03983081
SHA512

07cbe0ab4664ad12ed7b7a38601854b67478f4a3d06d5d614de9e48758b3129c9bbf6ad6faec342ae441ce134f1a52c2bfe50113efbdc5af25ee46074a1cacc7
SSDEEP

768:MNTecI67wm3vELhKDoI4Eft3ss/jK2R9WLnYLLBgZNdt43HQRAKpjw:MNTeY7XvEGovEfF55R0LCLBiUwR/pjw

Score

N/A

Malware Config

Signatures

Files

00219dc2d3f509b3041a3d3ac9990c1ff8bb21f36c52507db907d1bf03983081
.dll windows x86

15096e225181606d1e5b26fea888be65

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
FormatMessageA
GetCommConfig
GetCommandLineA
GetCurrentProcess
GetModuleHandleA
DuplicateHandle
GetTickCount
LocalFree
OpenProcess
lstrcpyA
lstrlenA
CreateEventA
CloseHandle
GetCurrentThread
GetOEMCP
CreateFileW
VirtualAlloc
GetProcessHeap
GetStartupInfoW
GetOverlappedResult
ReadFile

user32

GetWindowTextA
IsDialogMessageA
KillTimer
LoadBitmapA
LoadImageA
LoadStringA
PostQuitMessage
RegisterClassA
ReleaseDC
ScreenToClient
SendDlgItemMessageA
SendMessageA
SetDlgItemTextA
SetForegroundWindow
SetTimer
SetWindowPos
SetWindowTextA
ShowWindow
TranslateMessage
UnregisterClassA
wsprintfA
GetMessageA
GetDlgItem
GetDC
DispatchMessageA
DestroyWindow
DestroyIcon
DefWindowProcA
CreateDialogParamA
LoadIconW
LoadIconA
LoadCursorA
GetWindowRect

gdi32

SelectObject
GetStockObject
DeleteObject
GetTextExtentPoint32A

advapi32

RegQueryInfoKeyW
RegEnumKeyW
RegOpenKeyExA
RegDeleteKeyW

shell32

Shell_NotifyIconA

msvcrt

memmove
_vsnwprintf

Sections

.text
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

text2
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

15096e225181606d1e5b26fea888be65

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

msvcrt

Sections

.text Size: 59KB - Virtual size: 58KB

text2 Size: 512B - Virtual size: 20B

.rdata Size: 2KB - Virtual size: 1KB

.data Size: 20KB - Virtual size: 20KB

.rsrc Size: 1024B - Virtual size: 776B

.text
Size: 59KB - Virtual size: 58KB

text2
Size: 512B - Virtual size: 20B

.rdata
Size: 2KB - Virtual size: 1KB

.data
Size: 20KB - Virtual size: 20KB

.rsrc
Size: 1024B - Virtual size: 776B