154fa6b21b5a38f941d4c312fbeba1bbc4204ba1eae86aca4dab48234aee49aa

Sharing

Copy URL Twitter E-mail

General

Target

154fa6b21b5a38f941d4c312fbeba1bbc4204ba1eae86aca4dab48234aee49aa
Size

76KB
MD5

8b4301e6ce9974072619d5e99670f292
SHA1

ab33f81a2ea54e10cc92fcc7a95fd47a1b22bbe5
SHA256

154fa6b21b5a38f941d4c312fbeba1bbc4204ba1eae86aca4dab48234aee49aa
SHA512

f442e9c46da94471e498cfe09dcb1e867b94e64fe47b5a8ed2e39ed42cbb6384cfca4f3d88be526b5940760d6ad2811f864f6a9038cd02b5a1c7406355ec7101
SSDEEP

1536:YDTcpSxKyp1wnzfyNC0CKoPaQhRSWu9poi0oiYyq18lPSKz+:cTcpSx1uzfEbQqWHi9iYyq1uPXi

Score

N/A

Malware Config

Signatures

Files

154fa6b21b5a38f941d4c312fbeba1bbc4204ba1eae86aca4dab48234aee49aa
.dll windows x86

9d789e815fa0881b6c2ddbdc540ece77

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteConsoleInputA
GetLogicalDriveStringsA
GetFullPathNameA
GetShortPathNameA
ReadConsoleW
ReadConsoleA
LocalAlloc
GetStringTypeExW
AssignProcessToJobObject
ExitThread
GetConsoleCP
VerifyVersionInfoA
lstrcmpiW
FreeResource
GlobalHandle
SetTimeZoneInformation
ChangeTimerQueueTimer
FreeEnvironmentStringsW
ReadDirectoryChangesW
CreateFileMappingW
WaitForMultipleObjects
GetStringTypeA
TerminateProcess
GetWindowsDirectoryW
LocalReAlloc
SetWaitableTimer
EnumUILanguagesW
ReadConsoleInputA
WinExec
SizeofResource
GetThreadTimes
GlobalMemoryStatusEx
CreateMailslotW
GlobalAddAtomW
GlobalFindAtomA
CreateMutexW
FormatMessageA
GetFileInformationByHandle
GetFileAttributesExW
GlobalGetAtomNameA
GetEnvironmentStrings
WriteConsoleA
InterlockedCompareExchange
SetVolumeLabelA
SetConsoleTextAttribute
LockFile
CreateFileA
RegisterWaitForSingleObject
ReadProcessMemory
GetLocaleInfoW
lstrcatA
IsBadCodePtr
HeapReAlloc
GetCurrentProcessId
GetVolumeInformationW
GetThreadPriority
GetLocalTime
SetFileAttributesA
QueueUserAPC
DosDateTimeToFileTime
SetEndOfFile
GetTickCount
OpenSemaphoreA
PeekConsoleInputA
lstrcpynA
CreatePipe
FindNextVolumeMountPointW
FindResourceExW
GetLocaleInfoA
FormatMessageW
GetDefaultCommConfigW
EnumSystemLocalesA
GlobalReAlloc
VerLanguageNameW
SetLocalTime
ConnectNamedPipe
RtlUnwind
SetCurrentDirectoryW
GetConsoleMode
IsValidLanguageGroup
GetProfileStringW
GetProfileSectionA
DeleteFileA
IsBadReadPtr
GetSystemDirectoryW
IsProcessorFeaturePresent
HeapSize
GetWindowsDirectoryA
GetTempFileNameW
HeapUnlock
CallNamedPipeA
TerminateThread
FindClose
GlobalAlloc
DeleteTimerQueueEx
GlobalFree
RemoveDirectoryA
PulseEvent
SetStdHandle
WriteProfileStringW
LCMapStringW
GetNumberFormatW
CopyFileA
ReadConsoleInputW
CreateMailslotA
SystemTimeToFileTime
VirtualAlloc
ReleaseSemaphore
FindFirstVolumeMountPointW
GetHandleInformation
GetLongPathNameW
ResumeThread
TransactNamedPipe
VirtualUnlock
MoveFileW
ReplaceFileW
HeapFree
lstrlenW
MapViewOfFile
CreateDirectoryA
UnmapViewOfFile
GetModuleFileNameA
GetComputerNameA
VirtualQuery
VirtualProtect
GetProcAddress
CreateMutexA
CreateProcessA
CreateFileMappingA
HeapAlloc
EnterCriticalSection
lstrcpyW
lstrcatW
CloseHandle
WaitForSingleObject
lstrlenA
LoadLibraryA
CreateThread
GetLastError
GetSystemTimeAsFileTime
LeaveCriticalSection
GetStringTypeW

user32

GetIconInfo
MapWindowPoints
DrawIconEx
DestroyIcon
ShowOwnedPopups
OffsetRect
IntersectRect
PtInRect
GetTopWindow
wsprintfA
GetUserObjectInformationA
GetWindow
GetMenu
InsertMenuItemA
ToAsciiEx
GetWindowTextLengthA
LoadMenuA
SendMessageTimeoutW
InsertMenuItemW
InvertRect
SendMessageW
PostMessageA
LoadIconW
IsChild
DefMDIChildProcW
SetScrollInfo
BeginDeferWindowPos
GrayStringW
WaitForInputIdle
SetDlgItemTextA
GetMenuCheckMarkDimensions
DrawStateA
AppendMenuA
EndPaint
SetCaretPos
CheckRadioButton
BroadcastSystemMessageW
IsCharAlphaW
GetKeyNameTextW
AttachThreadInput
SetMenuDefaultItem
MessageBoxA
PostQuitMessage
GetCaretBlinkTime
SetWindowWord
LoadBitmapA
OemToCharA
CharToOemA
LoadAcceleratorsA
GetDlgItemTextW
GetMonitorInfoA
GetWindowRect
GetInputState
DrawAnimatedRects
LockWindowUpdate
ReplyMessage
CreateMenu
GetUserObjectInformationW
SetMenuItemInfoW
AllowSetForegroundWindow
GetCursorPos
DialogBoxParamA
ScreenToClient
PeekMessageW
WaitMessage
CopyAcceleratorTableA
TrackPopupMenuEx
MsgWaitForMultipleObjects
MonitorFromRect
GetPropW
GetClassNameW
UpdateWindow
ChildWindowFromPointEx
GetSystemMenu
GetMessageExtraInfo
GetLastActivePopup
GetUpdateRect
GetSysColor
GetMenuItemInfoW
GetCaretPos
GetWindowDC
FillRect
CheckMenuRadioItem
ScrollWindow
ChangeDisplaySettingsW
SetProcessWindowStation
ScrollDC
FlashWindow
CharLowerA
MoveWindow
AdjustWindowRect
DefFrameProcW
IsCharAlphaNumericA
EnableMenuItem
OpenIcon
SetWindowContextHelpId
DrawTextExW
ReleaseCapture
DrawFocusRect
IsIconic
UnionRect
GetAncestor
GetScrollRange
HideCaret
OpenWindowStationA
CharPrevW
DispatchMessageW
GetDCEx
CreateCaret
GrayStringA
MessageBoxIndirectA
GetForegroundWindow
AppendMenuW
MessageBoxExA
FreeDDElParam
GetMenuState
SetPropW
DeferWindowPos
ChangeDisplaySettingsExW
DrawEdge
ExitWindowsEx
GetWindowWord
SetParent
SendDlgItemMessageW
SendNotifyMessageA
wsprintfW
DefDlgProcA
GetFocus
GetMessageA
UnhookWindowsHookEx
SetTimer
KillTimer
CallNextHookEx
SetMenuItemInfoA

shlwapi

StrCmpW
SHRegGetBoolUSValueW
StrCpyNW
PathAddExtensionW
StrTrimW
SHGetValueW
SHAutoComplete
PathStripToRootW
UrlCreateFromPathW
SHStrDupW
StrStrA
StrChrA
SHRegGetValueW
PathCombineW
PathSetDlgItemPathW
PathAddBackslashA
StrFormatByteSizeW
SHCreateStreamOnFileW
PathSkipRootW
PathIsDirectoryW
StrToIntA
PathMatchSpecW
PathGetCharTypeW
AssocQueryStringW
SHRegGetUSValueW
UrlIsW
StrCmpNIW
StrCmpNW
StrStrIW
PathBuildRootW

advapi32

RegSetValueExA
RegDeleteValueA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA
ReportEventW
QueryServiceLockStatusW
RegDeleteKeyW
RegisterServiceCtrlHandlerExA
GetServiceKeyNameW
OpenServiceW
MakeAbsoluteSD
RegSetValueA
SetThreadToken
RegQueryValueExW
EnumServicesStatusW
RegisterEventSourceW
RegNotifyChangeKeyValue
GetNumberOfEventLogRecords
RegOpenCurrentUser
ControlService
RegCreateKeyExA
GetOldestEventLogRecord
LockServiceDatabase
RegisterServiceCtrlHandlerExW
EnumServicesStatusExW
RegSaveKeyExW
RegSaveKeyW
UnlockServiceDatabase
GetInheritanceSourceW
RegConnectRegistryW
GetServiceDisplayNameW
RegDeleteValueW
NotifyChangeEventLog
RegConnectRegistryA
RegCreateKeyW

gdi32

GetMetaFileA
CreateHatchBrush
CreateCompatibleBitmap
IntersectClipRect
GetViewportExtEx
GetClipRgn
ExtEscape
TextOutW
GetStockObject
FillPath
CopyMetaFileA
PlayEnhMetaFile
SetRectRgn
SetPixel
GetTextAlign
GetMetaFileBitsEx
SetGraphicsMode
GetNearestPaletteIndex
CreateDiscardableBitmap
ScaleViewportExtEx
SelectObject
AnimatePalette
SetROP2
EndPath
CreateRectRgnIndirect
GetRegionData
SetTextColor
CreatePalette
CreateBitmap
ExtTextOutW
CreateEnhMetaFileA
GetEnhMetaFileBits
DPtoLP
GetWindowOrgEx
CreatePatternBrush
GetLayout
SetDCBrushColor
InvertRgn
GetPath
SetBrushOrgEx
SetBkMode
GetWinMetaFileBits
FlattenPath
SetDIBits
SetPolyFillMode
GetTextCharsetInfo
GetCharABCWidthsW
GetTextFaceW
GetSystemPaletteUse
SetColorAdjustment
OffsetWindowOrgEx
GetPixel
SetTextJustification
GetGlyphOutlineA
AbortDoc
SelectPalette
SetMapperFlags
CreateBitmapIndirect
GetFontResourceInfoW
SetSystemPaletteUse
ResetDCA
StretchDIBits
ScaleWindowExtEx
EqualRgn

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 976B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d789e815fa0881b6c2ddbdc540ece77

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

advapi32

gdi32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 51KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 976B

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 51KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 976B

.reloc
Size: 4KB - Virtual size: 2KB