9fbe95087f7b7ec954fe1efdfdbaedcceb3c213258776cf65fc9fd2f82702705[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

9fbe95087f7b7ec954fe1efdfdbaedcceb3c213258776cf65fc9fd2f82702705.dll
Size

725KB
MD5

f9a8832111a34ec9c23bb93be10868b1
SHA1

8912fb1d447a0e60e5c4cd23fdf824b4d17667c3
SHA256

9fbe95087f7b7ec954fe1efdfdbaedcceb3c213258776cf65fc9fd2f82702705
SHA512

9e51eec050e8cb22b60fc0f21e07c06f5f37494f6ab7750754ba8410d013ee39d19ba0501cd276206664cec889989d0cdeb6f31a4386f16cab75bbc8bc0e1eb3
SSDEEP

12288:S3uQLzGUV1AFffsYuaQt8de+l5UeinhnGQe:S3dCffsBayGXrUo

Score

N/A

Malware Config

Signatures

Files

9fbe95087f7b7ec954fe1efdfdbaedcceb3c213258776cf65fc9fd2f82702705.dll
.dll windows x86

62fdcbe092946db1732e81d173396554

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObjectEx
CreateThread
ExitThread
GetTickCount64
VirtualAllocEx
GetCommandLineA
GetFileAttributesA
QueryPerformanceCounter
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetVersion
GetTickCount
GetModuleHandleA
GetModuleHandleW
lstrcmpA
lstrcmpiA
lstrlenA
CloseHandle
CreateFileW
SetFilePointerEx
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
SetStdHandle
HeapReAlloc
HeapSize
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
GetSystemTimeAsFileTime
InitializeSListHead
TerminateProcess
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
EncodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
GetProcAddress
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapFree
HeapAlloc
MultiByteToWideChar
LCMapStringW
MoveFileExW
DecodePointer
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineW
WideCharToMultiByte
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetProcessHeap
GetStdHandle
GetFileType
GetStringTypeW
WriteConsoleW

user32

EndDialog
DialogBoxParamA
SendMessageA
LoadIconA
FindWindowA

shlwapi

PathFindOnPathA
PathGetDriveNumberA
PathFileExistsA
StrToIntA
PathFindExtensionA
PathFindSuffixArrayA

Exports

Exports

DllUnregisterServer
DrawThemeIcon
bodywork
concertizer
isoparaffin
pseudobrachial
tapperer

Sections

.text
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 62KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 155KB - Virtual size: 158KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 350KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

62fdcbe092946db1732e81d173396554

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

shlwapi

Exports

Exports

Sections

.text Size: 146KB - Virtual size: 146KB

.rdata Size: 62KB - Virtual size: 62KB

.data Size: 155KB - Virtual size: 158KB

.rsrc Size: 350KB - Virtual size: 350KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 146KB - Virtual size: 146KB

.rdata
Size: 62KB - Virtual size: 62KB

.data
Size: 155KB - Virtual size: 158KB

.rsrc
Size: 350KB - Virtual size: 350KB

.reloc
Size: 9KB - Virtual size: 9KB