b98505da84a3a6857d84ae3d6a96f6957e32c2e57e8c91cfdee098a5e63ed2e8

Sharing

Copy URL Twitter E-mail

General

Target

b98505da84a3a6857d84ae3d6a96f6957e32c2e57e8c91cfdee098a5e63ed2e8
Size

63KB
MD5

c53009cf84182a484e03c5b9cff5d220
SHA1

3e7849fc2a48f7f810fd59df9a3d0e6962797f88
SHA256

b98505da84a3a6857d84ae3d6a96f6957e32c2e57e8c91cfdee098a5e63ed2e8
SHA512

78ef4fb09c2e39ede03ed0d1f82be4f33ca812ebd8dfebfb214b1b06744d1d2b85878fcd1308375788a7e1ed14d835fdfce805f29d5a08eed3126c4ac13cc6aa
SSDEEP

1536:HT16YSFYQMFVloxu7na++fVWC2B6xiASH6rx3:zMYSmwUnSkSxiASqx3

Score

N/A

Malware Config

Signatures

Files

b98505da84a3a6857d84ae3d6a96f6957e32c2e57e8c91cfdee098a5e63ed2e8
.dll windows x86

fe46a6af922269116fba98e2602e4a3d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LockResource
SetPriorityClass
GlobalDeleteAtom
FileTimeToSystemTime
GetACP
SetThreadPriority
SuspendThread
lstrlenW
CloseHandle
GetSystemInfo
MapViewOfFile
lstrcatA
TerminateProcess
WaitForSingleObject
SetLastError
HeapFree
CreateEventA
GetLongPathNameA
FlushFileBuffers
FindFirstFileA
VirtualQueryEx
MapViewOfFileEx
GetModuleHandleA
GlobalAlloc
lstrcmpiA
CreateProcessA
lstrcpyW
IsBadWritePtr
GetComputerNameW
CreateDirectoryW
_lopen
MoveFileW
ResumeThread
VirtualProtectEx
HeapAlloc
HeapSize
DeviceIoControl
InterlockedDecrement
GetCommandLineW
EnterCriticalSection
QueryPerformanceCounter
GetModuleHandleA
WaitForMultipleObjects
GlobalUnlock
GetSystemTimeAsFileTime
FormatMessageA
GlobalLock
CreateFileMappingW
UnmapViewOfFile
LoadLibraryA

prntpapi

_Rteps
_Eps
_Getctype
_LSinh
_Strcoll
_LNan
_FXbig
_Stod
_Mbrtowc
_Getcvt
_LDtest
_Exp
_FDtest
_FSinh
_LSnan

user32

RegisterClassA
CallWindowProcA
GetWindowTextW
WinHelpA
CharToOemA
SendMessageW
EndDialog
DefWindowProcW
IsDialogMessageA
GetWindowTextLengthW
RegisterWindowMessageA
SetWindowPos
LoadStringA
CheckDlgButton
DrawIconEx
GetMessageA
WindowFromPoint
CountClipboardFormats
CloseClipboard
InsertMenuA
SetScrollInfo
DeleteMenu
GetDC
GetKeyboardState
CharLowerBuffW
LoadMenuA
ScrollWindow
TranslateAcceleratorA
SetWindowTextA
ReleaseDC
GetMenuItemID
OffsetRect
LoadCursorA
GetDlgItemTextW
CharNextW
ExitWindowsEx
GetKeyState
RedrawWindow
DestroyCaret
RegisterClipboardFormatA
ModifyMenuW
IsWindow
GetSystemMetrics

advapi32

RegQueryValueA
RegQueryValueExA
RegSetValueW
RegSetValueA

gdi32

SetBkColor
CreatePen
SetTextColor
SetTextAlign
GetDeviceCaps
ExtTextOutA
CreateFontIndirectA
CreateCompatibleBitmap
TextOutW
SaveDC
CreateDCA

comdlg32

CommDlgExtendedError
ChooseFontA

shell32

ExtractIconW
ExtractAssociatedIconA

version

GetFileVersionInfoA

Exports

Exports

CreateProcessNotify
DllClientCleanup
componui
AllocADsStr
DllClientStartup
BuildLDAPPathFromADsPath
BuildADsParentPath

Sections

.text
Size: 55KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe46a6af922269116fba98e2602e4a3d

Headers

File Characteristics

Imports

kernel32

prntpapi

user32

advapi32

gdi32

comdlg32

shell32

version

Exports

Exports

Sections

.text Size: 55KB - Virtual size: 56KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 1KB - Virtual size: 4KB

.rsrc Size: 512B - Virtual size: 4KB

.reloc Size: 512B - Virtual size: 4KB

.text
Size: 55KB - Virtual size: 56KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 512B - Virtual size: 4KB

.reloc
Size: 512B - Virtual size: 4KB