c04955cbbfe125dad7f6ed2f64e45048984be8dead8da3a14324d3e56af80564

Sharing

Copy URL

Twitter E-mail

General

Target

c04955cbbfe125dad7f6ed2f64e45048984be8dead8da3a14324d3e56af80564
Size

80KB
MD5

b2e9eb1993c0f4aab886a3ad359c1cb9
SHA1

3f3d084c37eeda872223795b4dbc9ab0cc68232d
SHA256

c04955cbbfe125dad7f6ed2f64e45048984be8dead8da3a14324d3e56af80564
SHA512

722b02103b661712acd0a81ae5f9e363a19cf4e1de8fab40b115a4a6c2e731a759d6abc4cfa65a142da5fdc3f7cbe7ccf024137edc9a501c46e37e3be84e8fc6
SSDEEP

1536:fCZbzExj4y52j/k9wNYEGtyQFHoGSLdCBjTxrZnrYy:6Fi0K2JNXcyQFHWoBjTxrFrY

Score

N/A

Malware Config

Signatures

Files

c04955cbbfe125dad7f6ed2f64e45048984be8dead8da3a14324d3e56af80564
.dll windows x86

c15a040dbdb12509be99774625efe558

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
SetConsoleWindowInfo
SetConsoleScreenBufferSize
ReadFileEx
ClearCommError
OpenMutexW
CopyFileExW
FindFirstVolumeMountPointW
ResetEvent
GetFileSizeEx
SetHandleInformation
FindFirstVolumeW
WinExec
SetLocalTime
DeleteFileA
ReadConsoleA
FindNextFileA
GetWindowsDirectoryA
GetModuleFileNameW
GetVersionExW
GetDiskFreeSpaceA
GetConsoleCP
UnlockFile
IsBadReadPtr
PostQueuedCompletionStatus
LocalLock
IsValidLocale
ReplaceFileW
AllocConsole
AddAtomW
FreeResource
GetCurrentDirectoryA
FindFirstChangeNotificationA
GetSystemPowerStatus
GetSystemDefaultUILanguage
SleepEx
DuplicateHandle
BindIoCompletionCallback
CreateWaitableTimerA
VirtualUnlock
SetComputerNameA
FlushViewOfFile
CreateTimerQueue
CreateNamedPipeW
SizeofResource
EnumResourceLanguagesA
OpenProcess
GetLogicalDrives
CompareFileTime
GetEnvironmentVariableW
GetUserDefaultLCID
SetConsoleMode
FreeConsole
HeapCreate
MoveFileW
FlushConsoleInputBuffer
CreateMutexW
DosDateTimeToFileTime
GetProfileStringA
GetCPInfo
SetConsoleActiveScreenBuffer
WaitForSingleObjectEx
WaitForMultipleObjects
GetLocalTime
GetDriveTypeA
CreateRemoteThread
GlobalFree
GetEnvironmentVariableA
RegisterWaitForSingleObjectEx
SetCurrentDirectoryA
SetInformationJobObject
FreeEnvironmentStringsW
UnregisterWaitEx
SetVolumeLabelW
GetFileInformationByHandle
UpdateResourceA
SetProcessWorkingSetSize
IsBadStringPtrA
GetConsoleScreenBufferInfo
GetFullPathNameW
LockResource
WriteProfileStringA
Sleep
GetSystemDefaultLangID
CreateToolhelp32Snapshot
GetAtomNameA
MultiByteToWideChar
GetSystemWow64DirectoryW
FillConsoleOutputAttribute
FindResourceExW
WaitNamedPipeW
ReadFile
SetTimeZoneInformation
GetLongPathNameW
PulseEvent
LocalFlags
SetEndOfFile
TerminateJobObject
GetProfileSectionA
GetSystemWindowsDirectoryA
VerifyVersionInfoW
UnregisterWait
lstrcpyA
ResumeThread
GetVolumePathNamesForVolumeNameW
GetQueuedCompletionStatus
GetFileAttributesW
InterlockedDecrement
WaitForSingleObject
ReleaseMutex
lstrcpyW
CopyFileA
VirtualQuery
GetModuleHandleA
MapViewOfFile
CloseHandle
CreateMutexA
InterlockedExchange
LeaveCriticalSection
LoadLibraryA
GetModuleFileNameA
CreateDirectoryA
EnterCriticalSection
GetLastError
GetProcAddress
CreateFileMappingA
GetSystemTimeAsFileTime
CreateThread
HeapAlloc
HeapFree
lstrlenA
GetComputerNameA
GlobalFindAtomA

user32

UnpackDDElParam
OpenDesktopA
CheckRadioButton
GetGUIThreadInfo
GetInputState
SetWindowTextA
IsCharAlphaW
GrayStringA
CreateWindowExA
CharPrevW
GetScrollBarInfo
GetMenuCheckMarkDimensions
PostMessageW
SetWindowsHookExW
ChangeDisplaySettingsExW
ShowWindow
ShowCaret
SendDlgItemMessageA
InSendMessage
DrawEdge
PtInRect
SetCapture
SetDlgItemInt
SetWindowTextW
GetParent
DrawTextA
wsprintfW
TranslateMDISysAccel
CreateDialogIndirectParamA
GetScrollPos
GetAncestor
PeekMessageW
GetClassLongW
MessageBoxExW
SetCursor
CopyRect
GetClassInfoW
GetTabbedTextExtentA
GetCursorPos
GetCapture
DrawIconEx
MonitorFromWindow
DestroyAcceleratorTable
DialogBoxParamW
GetClassInfoA
DrawStateA
SetProcessDefaultLayout
CharPrevA
GetForegroundWindow
GetDlgCtrlID
GetDesktopWindow
IsDialogMessageA
FindWindowW
AllowSetForegroundWindow
ToUnicodeEx
FlashWindow
ToAscii
DefWindowProcA
EndDeferWindowPos
GetDlgItemInt
CallMsgFilterW
SetProcessWindowStation
WinHelpW
MapVirtualKeyExW
GetMenuStringA
SetParent
DefFrameProcA
GetMessageTime
GetFocus
SetDlgItemTextW
GetScrollRange
OpenIcon
GetMenuState
GetPropW
LoadImageW
VkKeyScanW
InsertMenuItemA
InsertMenuItemW
InsertMenuA
GetCaretPos
GetClassInfoExW
GetWindowPlacement
SetClassLongA
RemoveMenu
GetWindowLongA
ModifyMenuW
MessageBoxIndirectA
DrawTextExW
CharLowerBuffW
UnhookWindowsHook
FindWindowA
DialogBoxIndirectParamA
UpdateLayeredWindow
EnumDesktopsW
CreateIcon
CharToOemW
CreateIconFromResourceEx
GetClassInfoExA
DeferWindowPos
UnregisterHotKey
GetTopWindow
TabbedTextOutA
InvertRect
GetNextDlgGroupItem
GetSystemMenu
DrawMenuBar
PostQuitMessage
CopyAcceleratorTableW
CharNextExA
ChangeMenuA
CreateCursor
GetWindowContextHelpId
TranslateAcceleratorW
SetRectEmpty
SetPropA
TabbedTextOutW
NotifyWinEvent
DialogBoxIndirectParamW
GetMessageA
SetWindowsHookExA
CallNextHookEx
SetTimer
CallWindowProcW

shlwapi

PathRemoveFileSpecW
SHAutoComplete
SHRegGetValueW
SHDeleteKeyA
UrlCanonicalizeW
UrlCreateFromPathW
StrRetToStrW
PathIsDirectoryA
PathFindFileNameW
PathStripToRootW
SHRegSetUSValueW
PathAppendA
UrlGetPartW
StrNCatW
PathQuoteSpacesW
StrCmpNIA
PathRemoveFileSpecA
StrCmpNIW
StrCatBuffW
StrRChrW
PathFindNextComponentW
SHDeleteValueW
PathAppendW
StrToIntA
SHRegGetUSValueW
PathRenameExtensionW
PathParseIconLocationW
PathIsUNCServerW
StrCmpIW
StrStrW
StrCatW
PathMakePrettyW
wnsprintfA
StrToIntExW
StrCatBuffA
StrStrIA
StrStrIW
StrCmpW

shell32

SHBrowseForFolderW
SHSetLocalizedName
ExtractIconW
SHBrowseForFolderA
SHGetMalloc
SHAddToRecentDocs
SHGetPathFromIDListW
SHGetFileInfoA
SHBindToParent
SHGetFileInfoW
SHGetFolderLocation
SHFileOperationW
SHGetSpecialFolderPathA
SHGetPathFromIDListA
DragAcceptFiles
SHGetFolderPathA

gdi32

GetPixelFormat
CreateEnhMetaFileW
GetNearestPaletteIndex
SetBitmapBits
GetBkColor
ExtFloodFill
MoveToEx
AbortPath
EnumFontFamiliesW
AnimatePalette
StrokePath
TextOutW
SetGraphicsMode
GetBrushOrgEx
GetWorldTransform
SetLayout
Polyline
GetMapMode
SelectObject
EnumFontsA
BitBlt
SetViewportExtEx
GetGraphicsMode
CreateCompatibleBitmap
CreateDCW
GetObjectType
SetDIBColorTable
PlayMetaFileRecord
CreateFontIndirectW
SetPixel
StretchBlt
CreateRectRgn
EnumMetaFile
CreateFontW
Chord
CreatePenIndirect
SetTextCharacterExtra
LineTo
PolyBezierTo
CreateICA
CopyMetaFileW
GetRegionData
SetBkColor
CreateEllipticRgnIndirect
WidenPath
PathToRegion
IntersectClipRect
GetCurrentPositionEx
GetWindowOrgEx
SetMapperFlags
GetTextMetricsW
CreateScalableFontResourceA
CreateBrushIndirect
PtInRegion
GetTextCharset
StartDocW
PaintRgn
SetSystemPaletteUse
GetSystemPaletteUse
GetEnhMetaFileHeader
CloseFigure
PolyDraw

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c15a040dbdb12509be99774625efe558

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

shell32

gdi32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 55KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 4KB - Virtual size: 1008B

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 4KB - Virtual size: 1008B

.reloc
Size: 4KB - Virtual size: 2KB