8401a30f0bb40c07080ac2add29aa6e02123dfb3f0bd1f84f98acb3d74b9aca4

Sharing

Copy URL Twitter E-mail

General

Target

8401a30f0bb40c07080ac2add29aa6e02123dfb3f0bd1f84f98acb3d74b9aca4
Size

167KB
MD5

217ece803f3b30f1c914e832a3c9ad4a
SHA1

2db9a8592a759bdac9637b7d89b9c5323a6ed661
SHA256

8401a30f0bb40c07080ac2add29aa6e02123dfb3f0bd1f84f98acb3d74b9aca4
SHA512

43e50d67074b05767fb7525c19e70d9272b1c67c8c1a23bf03bf35545ca4150c398593384a730cc7fa172574ad11c800c28dcb3c1a74ee9a8bdb775046e6eabb
SSDEEP

3072:Q3MQ4qqFqBwSckDdgUkx+Aj9Anp4BoWVdO38RKgA2Vh:Q3MQ4qHmSnDGUkwAj9Anp4BnjkMz

Score

N/A

Malware Config

Signatures

Files

8401a30f0bb40c07080ac2add29aa6e02123dfb3f0bd1f84f98acb3d74b9aca4
.dll windows x86

4f4e1366428798649bb6dc0253d83559

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EndDialog
EnableWindow
SetWindowLongW
GetDlgItem
ShowWindow
SetWindowTextW
DialogBoxParamW
SendMessageW
LoadStringW
IsWindowEnabled
GetWindowTextW
GetWindowLongW
GetParent

advapi32

CloseServiceHandle
StartServiceW
RegSetValueExW
RegSetKeySecurity
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegCloseKey
QueryServiceConfigW
OpenServiceW
OpenSCManagerW
CreateServiceW
ConvertStringSecurityDescriptorToSecurityDescriptorW
ChangeServiceConfigW
ControlService

kernel32

UnhandledExceptionFilter
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
TerminateProcess
VirtualProtect
lstrcmpiW
lstrcpynW
lstrlenW
VirtualFree
CloseHandle
CompareStringW
CreateFileW
DeviceIoControl
DisableThreadLibraryCalls
ExitProcess
GetComputerNameW
GetCurrentProcess
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetModuleHandleW
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
GetTickCount
GetWindowsDirectoryW
LocalAlloc
MultiByteToWideChar
OutputDebugStringW
QueryPerformanceCounter
SetLastError
GetProcAddress

msvcrt

wcscmp
_vsnwprintf
_except_handler3

shell32

ShellExecuteW
SHExtractIconsW

gdi32

GetAspectRatioFilterEx
CloseEnhMetaFile

setupapi

CMP_UnregisterNotification
CM_Create_Range_List
SetupCloseLog
SetupDiCreateDevRegKeyW
SetupDiGetClassInstallParamsW
SetupDiGetDeviceRegistryPropertyW
SetupDiInstallDevice
SetupDiOpenDevRegKey
SetupDiSetClassInstallParamsW
SetupLogErrorW
SetupOpenLog

Exports

Exports

CreateDatabase
GetRecordPosition
HriCopyStream
Swap
fGetBrowserUrlEncoding

Sections

.text
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f4e1366428798649bb6dc0253d83559

Headers

DLL Characteristics

File Characteristics

Imports

user32

advapi32

kernel32

msvcrt

shell32

gdi32

setupapi

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 36KB

.rdata Size: 84KB - Virtual size: 83KB

.data Size: 40KB - Virtual size: 43KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 36KB - Virtual size: 36KB

.rdata
Size: 84KB - Virtual size: 83KB

.data
Size: 40KB - Virtual size: 43KB

.rsrc
Size: 5KB - Virtual size: 5KB