839cab9077a1b423b1c40fc3764c4bae8530a2a54476280f7a1802527334dd80

Sharing

Copy URL Twitter E-mail

General

Target

839cab9077a1b423b1c40fc3764c4bae8530a2a54476280f7a1802527334dd80
Size

850KB
MD5

0c7ffbaa98bd3c701516c2b63a7716c0
SHA1

dcf181234cf3dfbc6ae4a6ddbdef6b3cc3c57b66
SHA256

839cab9077a1b423b1c40fc3764c4bae8530a2a54476280f7a1802527334dd80
SHA512

07a68c16293baa284efd448a8d603caf92758b6c0dc1116a65282504dd1a17019f402233ce479cedaed7d3a36f4905186999000594c87e055eba5860cba9d080
SSDEEP

12288:Ksa92FGpRouuxAdyHAT4XoFoMeIMcIPBDngpdH8U3XoyYMrNHQhyK1Z9X4CluH1W:e2EpGAdyC7eVd5w6UgAHQhvdluHRIxX

Score

N/A

Malware Config

Signatures

Files

839cab9077a1b423b1c40fc3764c4bae8530a2a54476280f7a1802527334dd80
.dll windows x86

2d5bce782cc1d70608a8392e11b563bf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
SetFileTime
FlushFileBuffers
CloseHandle
GlobalAlloc
CreateFileA
InterlockedIncrement
SetHandleCount
FreeEnvironmentStringsA
GlobalFlags
GetSystemInfo
FileTimeToSystemTime
DuplicateHandle
GetConsoleCP
FreeResource
QueryPerformanceCounter
SetFilePointer
GetSystemTimeAsFileTime
InitializeCriticalSection
lstrcmpA
GlobalHandle
GetModuleFileNameA
InterlockedDecrement
GetSystemDirectoryA
UnlockFile
GlobalLock
RaiseException
GetVersionExA
GetLocaleInfoA
FindClose
HeapDestroy
HeapSize
TerminateProcess
GlobalUnlock
GlobalReAlloc
SystemTimeToFileTime
GlobalFree
CompareStringA
TlsFree
EnumResourceLanguagesW
lstrlenA
GetFileSize
GetCurrentThreadId
GlobalDeleteAtom
ReadFile
GetConsoleMode
GetCurrentThread
Sleep
GetStringTypeA
SetLastError
DeleteCriticalSection
HeapReAlloc
FileTimeToLocalFileTime
TlsSetValue
WriteFile
GetWindowsDirectoryA
GetProcessHeap
SetErrorMode
LockResource
GetCommandLineW
VirtualFree
VirtualQuery
SetEnvironmentVariableA
FreeLibrary
GetStdHandle
IsDebuggerPresent
ConvertDefaultLocale
MulDiv
TlsAlloc
LeaveCriticalSection
UnhandledExceptionFilter
InterlockedExchange
LockFile
SetEndOfFile
RtlUnwind
LoadResource
VirtualAlloc
GetVersion
GetEnvironmentStrings
SetUnhandledExceptionFilter
SetStdHandle
GetThreadLocale
GetConsoleOutputCP
EnterCriticalSection
GetFileType
GetStartupInfoA
HeapAlloc
TlsGetValue
VirtualProtect
GetCurrentProcessId
GetTimeZoneInformation
LCMapStringA
LocalFileTimeToFileTime
GetACP
GetCommandLineA
GetFileTime
LocalReAlloc
SizeofResource
HeapFree
ExitProcess
LocalFree
GetModuleHandleA
GetOEMCP
FindAtomA
AddAtomA
LocalAlloc
WriteConsoleA
LoadLibraryA
GetProcessVersion
GetProcAddress
ReadConsoleInputA
HeapCreate
GetTickCount

user32

ReuseDDElParam
ScreenToClient
MoveWindow
SetMenu
CopyRect
KillTimer
TrackPopupMenu
CheckMenuItem
InvalidateRgn
GetClientRect
GetSubMenu
GetSysColorBrush
SetWindowPos
GetWindowDC
GetDlgCtrlID
GetMessageTime
AdjustWindowRectEx
GetWindowThreadProcessId
GetCursorPos
BeginDeferWindowPos
GetMenuItemID
GetSysColor
UpdateWindow
GetWindow
GetWindowRgn
GetDCEx
ReleaseCapture
SendDlgItemMessageA
InvalidateRect
GetActiveWindow
GetMenu
IsWindowEnabled
GetNextDlgGroupItem
DestroyMenu
ClientToScreen
SetRect
RedrawWindow
GetSystemMetrics
SetCursor
GetParent
DestroyIcon
GetNextDlgTabItem
IsChild
CallNextHookEx
MapDialogRect
GetKeyState
FillRect
SystemParametersInfoA
GetSystemMenu
ShowOwnedPopups
SetScrollInfo
DrawIcon
PtInRect
GetDlgItem
GetFocus
IsRectEmpty
IsWindow
ShowScrollBar
PostQuitMessage
InflateRect
CreatePopupMenu
GetScrollPos
IsIconic
GetMenuState
GetTopWindow
MessageBeep
SetParent
SetScrollRange
DestroyWindow
EndDialog
UnregisterClassA
IsWindowVisible
SetCapture
GetWindowRect
ScrollWindow
EndPaint
WindowFromPoint
EnableMenuItem
UnpackDDElParam
EndDeferWindowPos
MapWindowPoints
SetScrollPos
SetWindowRgn
SetFocus
GetDesktopWindow
SetForegroundWindow
ShowWindow
SetActiveWindow
ReleaseDC
BeginPaint
GetMenuCheckMarkDimensions
EqualRect
UnhookWindowsHookEx
GetMessagePos
SetWindowContextHelpId
SetRectEmpty
GetLastActivePopup
GetForegroundWindow
DeferWindowPos
DeleteMenu
SetMenuItemBitmaps
GetCapture
GetMenuItemCount
GetScrollRange
IntersectRect
TranslateMessage
GetScrollInfo
OffsetRect
IsZoomed
ValidateRect
SetTimer
GetDC
LockWindowUpdate
GetWindowPlacement
BringWindowToTop

gdi32

GetBkColor
DeleteObject
CreateBitmap
GetClipBox
IntersectClipRect
SetMapMode
GetDeviceCaps
DeleteDC
SaveDC
CreateCompatibleBitmap
Ellipse
CreateSolidBrush
GetRgnBox
RestoreDC
CreatePatternBrush
CombineRgn
GetWindowExtEx
SetWindowExtEx
OffsetRgn
CreateRectRgn
SelectClipRgn
SetViewportExtEx
SetViewportOrgEx
RectVisible
Escape
StretchDIBits
PtVisible
SelectObject
BitBlt
GetPixel
CreateEllipticRgn
SetBkColor
ExtSelectClipRgn
GetTextColor
SetTextColor
ScaleViewportExtEx
ExcludeClipRect
GetStockObject
PatBlt
SetRectRgn
CreateRectRgnIndirect
GetMapMode
OffsetViewportOrgEx
DPtoLP
SetBkMode
ScaleWindowExtEx
CreateCompatibleDC

advapi32

SetFileSecurityW
RegCloseKey

shell32

DragFinish
DragAcceptFiles

ole32

CreateStreamOnHGlobal
OleIsCurrentClipboard
CoCreateInstance
StgCreateDocfileOnILockBytes
OleFlushClipboard
CoRegisterMessageFilter
CoGetClassObject
CLSIDFromString
CoFreeUnusedLibraries
CLSIDFromProgID
CreateILockBytesOnHGlobal
CoRevokeClassObject
StgOpenStorageOnILockBytes
OleUninitialize
OleInitialize

oleaut32

VariantInit
VariantCopy
SysAllocStringLen
SysAllocString
SafeArrayDestroy
VariantClear
SystemTimeToVariantTime
VariantChangeType
OleCreateFontIndirect
VariantTimeToSystemTime
SysFreeString
SysStringLen
OleLoadPicture

comctl32

ImageList_LoadImageW

shlwapi

PathFileExistsW
PathFindExtensionW
PathIsUNCW
PathFindFileNameW
PathRemoveExtensionW
PathStripToRootW

wldap32

ord201

userenv

UnloadUserProfile

Sections

.text
Size: 474KB - Virtual size: 474KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 344KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d5bce782cc1d70608a8392e11b563bf

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

wldap32

userenv

Sections

.text Size: 474KB - Virtual size: 474KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 344KB - Virtual size: 363KB

.rsrc Size: 16KB - Virtual size: 15KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 474KB - Virtual size: 474KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 344KB - Virtual size: 363KB

.rsrc
Size: 16KB - Virtual size: 15KB

.reloc
Size: 3KB - Virtual size: 3KB