aac19f72e175009b5db35af52b3ab618db67812f9293ab519c98491fd15c8400

Sharing

Copy URL Twitter E-mail

General

Target

aac19f72e175009b5db35af52b3ab618db67812f9293ab519c98491fd15c8400
Size

128KB
MD5

110e575b91b6f1b69706dd788edefd69
SHA1

02c2996a9034a960794af47314ef3620f9d4e5b0
SHA256

aac19f72e175009b5db35af52b3ab618db67812f9293ab519c98491fd15c8400
SHA512

9ed21df3f206430431c62181d11a236211937a82251816e0c6862149f792c3302bc712659e94d9fad460063cf426066463d327923f30d578f18e40d970ae9fb1
SSDEEP

3072:2+ZzPQ1gLR/YtRdqrfhBniO5cPYjQ2Ir3GGqkdigrSL6H2:2+ZzFRQxa3nf5lc223GwEgrrW

Score

N/A

Malware Config

Signatures

Files

aac19f72e175009b5db35af52b3ab618db67812f9293ab519c98491fd15c8400
.dll windows x86

43be7f91ee4a60c8f6b4adddfbe645e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeLibrary
GetCommMask
FlushViewOfFile
IsDBCSLeadByte
GetProcessWorkingSetSize
WaitNamedPipeW
BeginUpdateResourceW
GetProfileIntW
GetTapePosition
SetCommState
HeapCompact
IsValidLocale
VirtualAlloc
OpenWaitableTimerA
FindFirstChangeNotificationA
GetSystemTime
GetCommandLineA
WaitForSingleObject
SetComputerNameA
AddAtomA
GetNumberOfConsoleMouseButtons
WritePrivateProfileStringA
OpenSemaphoreA
VerLanguageNameA
RtlUnwind
SetConsoleDisplayMode
GetCPInfoExW
GetProcAddress
SetProcessAffinityMask
GetCommModemStatus
GetFileInformationByHandle
TlsFree
GetModuleHandleA
GetLocalTime
Thread32Next
GetPrivateProfileIntW
MapViewOfFile
GetConsoleCP
AllocConsole
LoadLibraryA
OpenProfileUserMapping
OpenSemaphoreW
GetVersion
GetHandleInformation

user32

DdeQueryStringW
GetWindowRgn
EnumDesktopWindows
LoadImageA
CharPrevA
DlgDirListComboBoxW
GrayStringW
ScrollWindow
CreateMDIWindowW
IsCharAlphaA
MapWindowPoints
GetShellWindow
MessageBoxA
WINNLSEnableIME
WINNLSGetIMEHotkey
SetDlgItemInt
SetSystemMenu
GetSubMenu
CreateIcon
ChangeClipboardChain
AppendMenuW
CreateAcceleratorTableW
GetNextDlgTabItem
UpdateLayeredWindow
CopyRect
PaintDesktop
OpenIcon
ReplyMessage
GetClassInfoExW
PtInRect
DdeSetUserHandle
DestroyCaret
EqualRect
SetDeskWallpaper
GetWindowWord
WindowFromPoint
EnableMenuItem
DdeCreateStringHandleA
DdeFreeDataHandle
MapVirtualKeyA
ScrollDC
CopyAcceleratorTableA
GetLastActivePopup
FindWindowW
EnumPropsA
WINNLSGetEnableStatus
GetAltTabInfoA
wvsprintfW
GetParent
SetMessageExtraInfo

gdi32

CreateCompatibleBitmap
AddFontMemResourceEx
StrokePath
ScaleViewportExtEx
DeleteDC
SetBoundsRect
CreatePolyPolygonRgn
GetGlyphOutlineA
GetEnhMetaFileHeader
CombineRgn
GetROP2
SelectFontLocal
Pie
FloodFill
GetObjectA
SetSystemPaletteUse
SelectObject
GetEnhMetaFilePixelFormat
PatBlt
GetBoundsRect
SetPixelFormat
GetTextMetricsA
GetStockObject
SetTextColor
GetMetaFileW
CreateCompatibleDC
ExtFloodFill
SetColorSpace
GetGlyphIndicesW

advapi32

LsaQuerySecret
GetAccessPermissionsForObjectW
CloseEventLog
DestroyPrivateObjectSecurity
CryptSetHashParam
GetAuditedPermissionsFromAclW
CopySid
RegisterServiceCtrlHandlerW
AddUsersToEncryptedFile
LsaLookupSids
CryptEncrypt
SetSecurityDescriptorSacl
TrusteeAccessToObjectA
GetAccessPermissionsForObjectA
GetSecurityDescriptorLength

opengl32

glColor3f
glClearAccum
glColorMaterial
glTexCoord2s
glDebugEntry
glTexParameteriv
glEnd
glIndexfv
glBitmap
glLightModelfv
glPixelStoref
glPixelStorei
glGetMapfv
glDepthRange
glDrawPixels
glVertex3i
glMatrixMode
glTranslatef
glEvalCoord2fv
glLineStipple
wglGetCurrentDC
glGenTextures
wglSwapLayerBuffers
glLightModelf
wglCreateContext
glLineWidth
glGetError
glVertex4fv
glRasterPos3d
glClearDepth
glMaterialf
glTranslated
wglMakeCurrent
glEvalPoint1
glEdgeFlag
glBlendFunc
glColor4s
glEvalMesh1
glColor4fv
wglSwapMultipleBuffers
glTexGenfv
glEvalMesh2
glTexCoord1sv
wglDeleteContext
glLightfv
glColor3b
wglSetLayerPaletteEntries
glColorMask
glTexCoord3s
glIndexd
glRenderMode
glRasterPos2sv
glCopyTexImage1D
glTexGenf
glNormal3sv
glFogi
glColor3ubv
glVertex3iv
glGetLightiv
glGetPixelMapfv
glTexCoord2fv
glColor3fv

shell32

StrChrW
StrCmpNIA
StrChrIW
StrStrIW

shlwapi

PathRemoveExtensionA
PathIsUNCA
ChrCmpIA
StrDupW
PathIsPrefixW
StrToIntW
PathBuildRootW
PathMakePrettyA
SHDeleteValueA
PathAddExtensionA
SHOpenRegStreamW
PathCommonPrefixA
PathIsUNCServerA
PathSearchAndQualifyA
StrToIntExA
IntlStrEqWorkerA
SHRegSetUSValueW
PathIsRelativeW
PathSkipRootA
PathStripToRootW
PathUnquoteSpacesA
PathFindNextComponentW
PathFindExtensionA
PathIsRootA
SHRegGetBoolUSValueW
PathIsSameRootA
SHRegDeleteEmptyUSKeyW
PathIsUNCServerShareW
PathSkipRootW
PathFindExtensionW
PathCanonicalizeA
SHRegGetUSValueA
PathRemoveBlanksA
PathSearchAndQualifyW
GetMenuPosFromID
SHRegDeleteUSValueW
PathIsURLW
PathCommonPrefixW
PathIsContentTypeW
SHRegWriteUSValueW
SHRegCreateUSKeyA
PathIsUNCServerW
SHEnumValueA
StrIsIntlEqualA
PathAppendA
HashData
PathRemoveBackslashA
UrlGetLocationW
SHEnumValueW
PathGetCharTypeA
PathFileExistsW

msvcrt

printf
_unlink
ferror
sin
fprintf
fclose
_wcsrev
fwrite
fread
feof
sprintf
_mbctokata
wcsncat
fputc
fsetpos
fopen
_getdiskfree
memset
fwprintf
ftell
wcschr
fputs
_mbsspn
fseek

Exports

Exports

Dondyqtob
Fisnvctxq
Fwck
Ppzekmbzx
Wksuitn
Xayn
Ziutesgo
Zjnvdht

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43be7f91ee4a60c8f6b4adddfbe645e3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

opengl32

shell32

shlwapi

msvcrt

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 52KB - Virtual size: 48KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 52KB - Virtual size: 48KB

.reloc
Size: 8KB - Virtual size: 7KB