d9dbc06753f33e0b2fdbc032e972e58a210e28ec634480f9345c1b4855ad6870

Sharing

Copy URL Twitter E-mail

General

Target

d9dbc06753f33e0b2fdbc032e972e58a210e28ec634480f9345c1b4855ad6870
Size

1.2MB
MD5

f868ce3c3ef3d443ae4806b8cc3b8fb6
SHA1

68fccf0520ea560908fa4e3428e7465d6cb60929
SHA256

d9dbc06753f33e0b2fdbc032e972e58a210e28ec634480f9345c1b4855ad6870
SHA512

eab0c702aeacc8ebe56870aaf7c66d80f846391cc90ba85d92f7991b58198f640f80990e9fce957eb81ac135df8343e6ac1c4f822fd70e1f0b8651b8f8ae661c
SSDEEP

24576:3byHIy1t8yqvQpSMiVOG38F8K/CNL1Q2NNIZ1BhVD5:eHI2tpQQwdOG3cZ/21Q2oZr9

Score

N/A

Malware Config

Signatures

Files

d9dbc06753f33e0b2fdbc032e972e58a210e28ec634480f9345c1b4855ad6870
.dll windows x86

d3c06bc08e8023c711128e27bfe005be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ctloadrs

?CTLoadMUIAwareResourceLibrary@@YGJPBG000PAUtagCTMUIAWARERESOURCELIBRARYINFO@@@Z
?CTFreeMUIAwareResourceLibrary@@YGJUtagCTMUIAWARERESOURCELIBRARYINFO@@@Z

uploaderwebinterface

??0CTCMultipartSender@CTUploader@@QAE@XZ
??1CTCMultipartSender@CTUploader@@UAE@XZ
?CreateData@CTCMultipartSender@CTUploader@@UAEHXZ
GetThumnail
?GetMp4ThumbnailForVadoCentral@@YGHPBGPAPAUHBITMAP__@@JJ@Z
_IsMp4File@4
GetStreamLength
?Add@CTCFileList@CTUploader@@QAEXPAVCTCFileInformation@2@@Z
??1CTCFileInformation@CTUploader@@UAE@XZ
??0CTCFileInformation@CTUploader@@QAE@XZ
?Append@CTCFileList@CTUploader@@QAEXPAV12@@Z
?Clear@CTCFileList@CTUploader@@QAEXXZ
?GetNumOfSuccessFiles@CTCMultiUploader@CTUploader@@QBEKXZ
??1CTCMultiUploader@CTUploader@@UAE@XZ
??0CTCMultiUploader@CTUploader@@QAE@XZ
?GetUploadingCounter@CTCMultiUploader@CTUploader@@QBEKXZ
?DestroyData@CTCMultipartSender@CTUploader@@UAEXXZ
?SpecialRequest@CTCSender@CTUploader@@UAE?AW4CTREQUESTRESULT@2@XZ
CTNewMemoryAndCopyStringW
?MULTI_PART_FORM_FORMAT@CTCHttpHeader@CTUploader@@2QBGB
CTDeleteMemory
??0CTCMultipartUploader@CTUploader@@QAE@XZ
??1CTCMultipartUploader@CTUploader@@UAE@XZ
?CreateData@CTCMultipartUploader@CTUploader@@UAEHXZ
?SpecialRequest@CTCUploader@CTUploader@@UAE?AW4CTREQUESTRESULT@2@XZ
?DestroyData@CTCMultipartUploader@CTUploader@@UAEXXZ
?DoRequest@CTCRequester@CTUploader@@QAE?AW4CTREQUESTRESULT@2@XZ
?IsRunning@CTCVideoThumbnailLoader@CTUploader@@QAEHXZ
?SetTerminate@CTCVideoThumbnailLoader@CTUploader@@QAEXH@Z
?MsgEndThread@CTCVideoThumbnailLoader@CTUploader@@QAEXXZ
?CloseThreadHandle@CTCVideoThumbnailLoader@CTUploader@@QAEXXZ
??0CTCFileList@CTUploader@@QAE@XZ
??0CTCVideoThumbnailLoader@CTUploader@@QAE@XZ
?ReleaseAll@CTCFileList@CTUploader@@QAEXXZ
??1CTCFileList@CTUploader@@QAE@XZ
??1CTCVideoThumbnailLoader@CTUploader@@QAE@XZ
?GetFirst@CTCFileList@CTUploader@@QAEPAVCTCFileInformation@2@XZ
?Next@CTCFileList@CTUploader@@QAEPAVCTCFileInformation@2@PAV32@@Z
?SetFileList@CTCVideoThumbnailLoader@CTUploader@@QAEXPAVCTCFileList@2@@Z
?SetSize@CTCVideoThumbnailLoader@CTUploader@@QAEXJJ@Z
?SetListView@CTCVideoThumbnailLoader@CTUploader@@QAEHPAUHWND__@@@Z
?AppendFiles@CTCVideoThumbnailLoader@CTUploader@@QAEHPAVCTCFileList@2@@Z
?IsEmpty@CTCFileList@CTUploader@@QAE_NXZ
?Reset@CTCMultiUploader@CTUploader@@QAEXXZ
?SetUploader@CTCMultiUploader@CTUploader@@QAEXPAVCTCUploader@2@@Z
?SetUploadWnd@CTCMultiUploader@CTUploader@@QAEXPAUHWND__@@@Z
?SetUploadingList@CTCMultiUploader@CTUploader@@QAEXPAVCTCFileList@2@@Z
?Stop@CTCMultiUploader@CTUploader@@QAEXXZ
?Continue@CTCMultiUploader@CTUploader@@QAEXXZ
?IsRunning@CTCMultiUploader@CTUploader@@QAEHXZ
?GetCount@CTCFileList@CTUploader@@QAEKXZ
?AppendFiles@CTCMultiUploader@CTUploader@@QAEHPAVCTCFileList@2@@Z
?CloseUploadThreadHandle@CTCMultiUploader@CTUploader@@QAEXXZ

kernel32

FileTimeToLocalFileTime
FindFirstFileW
GetVersionExA
LoadLibraryA
CompareStringW
GlobalFindAtomW
GetModuleHandleA
DeleteFileW
GetThreadLocale
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetVolumeInformationW
GetFullPathNameW
CreateFileW
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
SetErrorMode
GetCurrentProcessId
FileTimeToSystemTime
WritePrivateProfileStringW
GlobalFlags
InterlockedIncrement
lstrlenA
GetFileAttributesW
GetFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
HeapAlloc
GetCommandLineA
GetProcessHeap
RaiseException
RtlUnwind
ExitProcess
HeapReAlloc
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
SetStdHandle
GetFileType
Sleep
GetStdHandle
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetCurrentDirectoryA
GetDriveTypeA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
FindNextFileW
FindClose
GlobalUnlock
FormatMessageW
LocalFree
lstrlenW
MulDiv
GlobalAddAtomW
FreeResource
GlobalFree
GlobalDeleteAtom
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
InterlockedExchange
GlobalLock
lstrcmpW
GlobalAlloc
FreeLibrary
InterlockedDecrement
WaitForSingleObject
GetCurrentThreadId
CloseHandle
GetModuleFileNameW
GetProcAddress
LoadLibraryW
GetLastError
SetLastError
GetTickCount
MultiByteToWideChar
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
SizeofResource
GetModuleHandleW
InterlockedCompareExchange

user32

SendDlgItemMessageA
SendDlgItemMessageW
LoadIconW
RegisterWindowMessageW
EndDialog
GetNextDlgTabItem
IsWindowEnabled
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
MoveWindow
ShowWindow
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
ClientToScreen
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
CharUpperW
UnregisterClassW
GetWindowThreadProcessId
GetSysColorBrush
LoadCursorW
CharNextW
CopyAcceleratorTableW
IsRectEmpty
SetRect
InvalidateRect
InvalidateRgn
SetCapture
ReleaseCapture
GetNextDlgGroupItem
MessageBeep
DestroyMenu
RegisterClipboardFormatW
PostThreadMessageW
SetActiveWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
WinHelpW
SetForegroundWindow
UpdateWindow
GetClientRect
GetMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetWindowLongW
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
GetMenuItemID
GetMenuItemCount
GetSubMenu
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
GetWindow
MapDialogRect
SetWindowPos
SetCursor
PostMessageW
PostQuitMessage
UnhookWindowsHookEx
SetWindowsHookExW
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
BringWindowToTop
GetDesktopWindow
GetWindowRect
IsWindow
SendMessageW
GetParent
GetDC
EnableWindow
MessageBoxW
IsChild
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
SetWindowContextHelpId
CallNextHookEx
UnregisterClassA

gdi32

GetTextExtentPoint32W
CreateBitmap
GetDeviceCaps
GetClipBox
SetTextColor
SetBkColor
GetObjectW
SaveDC
RestoreDC
SetMapMode
DeleteObject
GetViewportExtEx
GetWindowExtEx
TextOutW
ExtTextOutW
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
PtVisible
GetStockObject
CreateRectRgnIndirect
GetBkColor
GetTextColor
GetRgnBox
GetMapMode
RectVisible

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegSetValueExW
RegCreateKeyExW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

SHGetFileInfoW
SHGetFolderPathW

comctl32

ImageList_Remove

shlwapi

PathFindFileNameW
PathAppendW
PathRemoveFileSpecW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
UrlUnescapeW

oledlg

OleUIBusyW

ole32

StgOpenStorageOnILockBytes
CLSIDFromProgID
CLSIDFromString
CoTaskMemFree
CoTaskMemAlloc
CoGetClassObject
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

SysFreeString
SysAllocStringLen
SysStringLen
VariantClear
VariantChangeType
VariantInit
OleCreateFontIndirect
VariantTimeToSystemTime
SystemTimeToVariantTime
SafeArrayDestroy
SysAllocString
VariantCopy

wininet

InternetCanonicalizeUrlW
InternetCrackUrlW

Exports

Exports

CTGetUploaderPluginID
CTGetUploaderPluginLogo
CTGetUploaderPluginTooltipDescription
CTInitializeUploaderPlugin
CTRequestToCancelUploadFiles
CTTerminateUploaderPlugin
CTUploadFiles
FilterDllMsg

Sections

.text
Size: 320KB - Virtual size: 317KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3c06bc08e8023c711128e27bfe005be

Headers

File Characteristics

Imports

ctloadrs

uploaderwebinterface

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

wininet

Exports

Exports

Sections

.text Size: 320KB - Virtual size: 317KB

.rdata Size: 84KB - Virtual size: 80KB

.data Size: 88KB - Virtual size: 102KB

.rsrc Size: 16KB - Virtual size: 14KB

.reloc Size: 40KB - Virtual size: 39KB

.text
Size: 320KB - Virtual size: 317KB

.rdata
Size: 84KB - Virtual size: 80KB

.data
Size: 88KB - Virtual size: 102KB

.rsrc
Size: 16KB - Virtual size: 14KB

.reloc
Size: 40KB - Virtual size: 39KB