7bd7808411aecfcbf3d9876d0ca6114e67beaa6f5a4029b4ac20eef728df48b9

Sharing

Copy URL Twitter E-mail

General

Target

7bd7808411aecfcbf3d9876d0ca6114e67beaa6f5a4029b4ac20eef728df48b9
Size

133KB
MD5

ff2fa6ce574300fdd0f22bb6af4ba320
SHA1

497553b655160b2fdfe52845ea453def9100176e
SHA256

7bd7808411aecfcbf3d9876d0ca6114e67beaa6f5a4029b4ac20eef728df48b9
SHA512

39121b7e03077b8c845073275846eae4648c200f39c174df8389f2870231274a5368f8bf49d85f6dd83e18f0d5a615bd64992e0862815ab2d6a73dfe13ff4c71
SSDEEP

3072:wJwJ2OQ4UhPEf9PgOsRp89W/LaZyR0CUutVNj:wSJ2OQ3hPK3sR16O0CzV

Score

N/A

Malware Config

Signatures

Files

7bd7808411aecfcbf3d9876d0ca6114e67beaa6f5a4029b4ac20eef728df48b9
.dll windows x86

1137ecbe1472bd833fe197da745bc5b6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
SetFilePointer
lstrlenA
MultiByteToWideChar
WideCharToMultiByte
lstrcatA
IsBadReadPtr
GetTickCount
GetCurrentThread
CloseHandle
GetPrivateProfileStringA
SetEndOfFile
LockResource
HeapDestroy
GlobalUnlock
InterlockedDecrement
GlobalMemoryStatus
GlobalAlloc
RemoveDirectoryA
GetModuleFileNameA
GetStartupInfoA
ReadFile
GetVersion
GetCurrentThreadId
lstrcmpA
GetFileSize
GetSystemInfo
SetFileAttributesA
DeleteCriticalSection
WaitForSingleObject
lstrlenW
Sleep
GetFileTime
GetProcAddress
ResumeThread
LoadLibraryA
GetComputerNameA
GetLastError
LocalAlloc
GlobalLock
InterlockedExchange
MoveFileA
FileTimeToSystemTime
GetVersionExA
SetThreadPriority
GetLocaleInfoA
GetVolumeInformationA
GetDiskFreeSpaceA
CreateFileMappingA
GetTempPathA
GetThreadPriority
GetModuleHandleA
FindResourceA
WritePrivateProfileStringA
WriteFile
GlobalFree
GetFileAttributesA
CreateMutexA
InterlockedIncrement
FormatMessageA
MapViewOfFile
CreateProcessA
SystemTimeToFileTime
ExitProcess
HeapAlloc
GetCurrentProcess
HeapCreate
VirtualProtectEx
LoadLibraryExA
LocalFree
UnmapViewOfFile
SetFileTime
EnterCriticalSection
GetSystemTime
InitializeCriticalSection
lstrcpyA
LoadResource
FreeLibrary

user32

CheckMenuItem
SetMenuItemInfoA
GetWindowLongA
GetWindowRect
DeleteMenu
GetSysColor
MapWindowPoints
FillRect
SetWindowPos
DrawFrameControl
RegisterClipboardFormatA
SystemParametersInfoA
PeekMessageA
IsIconic
GetTopWindow
GetKeyState
GetMenuDefaultItem
GetNextDlgTabItem
PostThreadMessageA
SetCursor
SetMenuDefaultItem
DrawEdge
CallNextHookEx
DestroyMenu
CreateWindowExA
RegisterWindowMessageA
ModifyMenuA
IntersectRect
CreateCaret
HideCaret
PostQuitMessage
RedrawWindow
BeginDeferWindowPos
GetActiveWindow
DrawIconEx
IsRectEmpty
ShowCaret
ReleaseCapture
DeferWindowPos
GetCursorPos
OffsetRect
SetRectEmpty
GetWindow
CopyRect
GetSubMenu
InsertMenuA
BringWindowToTop
MessageBoxA
EndDeferWindowPos
GetMenu
LoadCursorA
InvalidateRect
LoadImageA
InflateRect
wvsprintfA
GetSystemMenu
WindowFromPoint
ClientToScreen
GetParent
ReleaseDC
GetClientRect
AdjustWindowRectEx
SendMessageA
SetParent
GetMessagePos
EqualRect
UpdateWindow
DestroyCaret
SetWindowContextHelpId
GetDC
PostMessageA
PtInRect
SetRect
GetMenuItemCount
GetCapture
SetCaretPos
GetMessageA
SetTimer
GetDCEx
EnableMenuItem
KillTimer
IsMenu
GetMenuItemInfoA
UnhookWindowsHookEx
FlashWindow
IsZoomed
SetForegroundWindow
LockWindowUpdate
WaitMessage
SetCapture
TrackPopupMenu
UnionRect
GetMenuStringA
DispatchMessageA
GetMenuItemID
SetWindowsHookExA
GetDlgCtrlID
ScreenToClient
EnableWindow
GetMenuState
GetClassLongA
AppendMenuA
IsWindow
RemoveMenu
LoadBitmapA
GetDesktopWindow
DrawTextA
MapDialogRect
CreatePopupMenu
LoadMenuA
IsWindowVisible
GetSystemMetrics

shell32

SHBrowseForFolderA
ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHFileOperationA

ole32

CoGetClassObject
StringFromCLSID
CLSIDFromString
CoCreateGuid
StringFromGUID2
CoTaskMemFree

oleaut32

SysFreeString
VariantClear
SysAllocStringLen

comctl32

ImageList_EndDrag
ImageList_AddMasked
ord8
ImageList_BeginDrag
ImageList_DragLeave
ImageList_SetBkColor
ImageList_DragEnter
ImageList_GetImageCount

wininet

InternetAutodialHangup
InternetGetConnectedState

wsock32

ntohs
WSAAsyncSelect
shutdown
recv
htons
gethostbyname
getpeername
connect
send
bind
inet_addr
accept
socket
ioctlsocket
WSAGetLastError
closesocket
getsockname
listen
WSASetLastError

msvcrt

__dllonexit
__CxxFrameHandler
?terminate@@YAXXZ
exit
clock
_mbschr
??1type_info@@UAE@XZ
_chdir
longjmp
malloc
isdigit
_CxxThrowException
strncat
ctime
_purecall
fgets
free
_ftime
memmove
_acmdln
localtime
_chdrive
atol
_onexit
vsprintf
_fstat
atoi
__setusermatherr
time
_mbsinc
atof
_mbctoupper
gmtime
_itoa
sprintf
_open
__RTDynamicCast
_setjmp3
fclose
__getmainargs
_lseek
__p__fmode
_XcptFilter
_close
_except_handler3
isalnum
_CIpow
fopen
qsort
_strdup
rand
fprintf
isalpha
_ftol
floor
_initterm
_setmbcp
__set_app_type
strncpy
_exit
??8type_info@@QBEHABV0@@Z
wcscpy
_adjust_fdiv
_endthread
wcslen
fseek

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 888B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1137ecbe1472bd833fe197da745bc5b6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shell32

ole32

oleaut32

comctl32

wininet

wsock32

msvcrt

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 25KB - Virtual size: 24KB

.data Size: 58KB - Virtual size: 79KB

.rsrc Size: 1024B - Virtual size: 888B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 25KB - Virtual size: 24KB

.data
Size: 58KB - Virtual size: 79KB

.rsrc
Size: 1024B - Virtual size: 888B

.reloc
Size: 2KB - Virtual size: 1KB