dd760bf92aef1816a6a42f61a6e339cfd4d7db4ca0afc9e6005ecc91a659ad1e

Sharing

Copy URL

Twitter E-mail

General

Target

dd760bf92aef1816a6a42f61a6e339cfd4d7db4ca0afc9e6005ecc91a659ad1e
Size

222KB
MD5

d17cc8363f002358f9a1365d87d12b99
SHA1

f01990501a71cb760c340f27103675e369a3b6b2
SHA256

dd760bf92aef1816a6a42f61a6e339cfd4d7db4ca0afc9e6005ecc91a659ad1e
SHA512

f95691944ceb6fe4b90b058f1d0f4b7c644fa210976f113c1a57eb9888770ef5d0fd7de11ff1f14cc7656f6487e120903dce1178e9368443bf406843c6b901ca
SSDEEP

6144:REZeFkziXzHgmpeHzo5f6ulmDWv/Ld/tQWUA6mv:RE9iXLgR0ZtoWv/p/1x

Score

N/A

Malware Config

Signatures

Files

dd760bf92aef1816a6a42f61a6e339cfd4d7db4ca0afc9e6005ecc91a659ad1e
.dll windows x86

0a09b6335c2317a42025fe4c51be9362

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memcpy
memset
strchr
??3@YAXPAX@Z
_adjust_fdiv
_amsg_exit
_initterm
free
_vsnwprintf
wcsncmp
_wcsicmp
_wcsnicmp
bsearch
wcschr
malloc
_XcptFilter
??2@YAPAXI@Z
_strnicmp
_vsnprintf

user32

EndDialog
LoadCursorA
SetCursor
GetSystemMetrics
GetSysColor
LoadBitmapA
GetDC
GetDlgItem
DrawTextA
ReleaseDC
PostMessageA
PeekMessageA
SetWindowPos
GetParent
SetWindowTextA
DialogBoxParamA
SendMessageA
LoadImageA
LoadIconA
SendDlgItemMessageA
CharPrevA
CharNextA
DispatchMessageA
TranslateMessage
MsgWaitForMultipleObjects
PeekMessageW
DispatchMessageW
ExitWindowsEx
MessageBoxA
LoadStringA
GetWindowRect

gdi32

SetBkColor
SetTextColor
CreateFontIndirectA
GetTextExtentPointA
ExtTextOutA
CreateCompatibleDC
GetObjectA
BitBlt
DeleteObject
SelectObject
CreateSolidBrush

advapi32

RegSetValueExA
OpenServiceA
CloseServiceHandle
EnumDependentServicesA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegFlushKey
RegDeleteKeyA
RegEnumValueA
RegEnumKeyA
RegQueryValueA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegQueryInfoKeyA
RegOpenKeyExW
RegQueryValueExW
OpenSCManagerA

kernel32

Sleep
InterlockedExchange
CreateFileA
SetFilePointer
GetProfileStringA
GetLocalTime
FormatMessageA
WriteFile
InterlockedCompareExchange
CloseHandle
CreateThread
WideCharToMultiByte
GetProcAddress
MultiByteToWideChar
LoadLibraryExA
FreeLibrary
GetWindowsDirectoryA
SetFileAttributesA
CopyFileA
lstrlenA
LocalAlloc
GetLastError
LocalFree
lstrcmpiA
DisableThreadLibraryCalls
GetVersionExA
GetModuleFileNameA
IsDBCSLeadByte
SetLastError
LoadResource
FindResourceExW
LoadLibraryExW
MapViewOfFile
CreateFileMappingW
CreateFileW
GetLocaleInfoW
GetVersionExW
UnmapViewOfFile
GetSystemDefaultUILanguage
OpenEventW
GetUserDefaultUILanguage
RtlUnwind
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleA
FindResourceW
SearchPathW
GetSystemDirectoryW
LoadLibraryW
GetModuleHandleW
WaitForSingleObject
GetCurrentProcess

shlwapi

SHStrDupW
ord215
PathUnquoteSpacesW
PathGetArgsW
ord157

comctl32

ord335
ord338
ord332
ord329
ord328

ole32

CoTaskMemAlloc
OleInitialize
OleUninitialize
CoTaskMemFree

advpack

NeedReboot
IsNTAdmin

shell32

ShellExecuteExW

Exports

Exports

InitCallback
RunOnceExProcess

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 169KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a09b6335c2317a42025fe4c51be9362

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

user32

gdi32

advapi32

kernel32

shlwapi

comctl32

ole32

advpack

shell32

Exports

Exports

Sections

.text Size: 46KB - Virtual size: 46KB

.data Size: 169KB - Virtual size: 169KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 46KB - Virtual size: 46KB

.data
Size: 169KB - Virtual size: 169KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 3KB - Virtual size: 3KB