c0521c32fc6ef553cb6f9edcdb9692bcb99b83ceaf2f3461b16005501265a30e

Sharing

Copy URL Twitter E-mail

General

Target

c0521c32fc6ef553cb6f9edcdb9692bcb99b83ceaf2f3461b16005501265a30e
Size

196KB
MD5

db48537e0d8fe6ff58fc8f564406bb3f
SHA1

1c9a299a92f54fff1ec7f895f54aeddb80f1e9bf
SHA256

c0521c32fc6ef553cb6f9edcdb9692bcb99b83ceaf2f3461b16005501265a30e
SHA512

833a47784f08b0fd349ee60711c837f3a1136ddc9facbf18f0e728e3a39e9c391662ddb31243e39082173cfd0489e883f2fcf4fe64f65c20e068209a73cee3bd
SSDEEP

3072:rnN5iHE0WFyvF6qg7eSwmNv6q7xY+T1UsXrdeNFNHcMiaUBW0dDQMwKHtaGLdmhx:rnEWEMCSw8v6qP+wAsuMw3YdcvbV3gO

Score

N/A

Malware Config

Signatures

Files

c0521c32fc6ef553cb6f9edcdb9692bcb99b83ceaf2f3461b16005501265a30e
.dll windows x86

a6089df2236280878a72c26b8d7df9cf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrStrIA

kernel32

WritePrivateProfileStringA
GetModuleFileNameA
GetPrivateProfileStringA
GetVersionExA
CloseHandle
FindClose
VirtualAllocEx
DisableThreadLibraryCalls
lstrcmpiA
FindFirstFileA
GetFileAttributesA
ReadProcessMemory
VirtualFreeEx
GetPrivateProfileIntA
OpenProcess
lstrcpynA
lstrlenA
FindNextFileA

user32

IsWindowUnicode
GetDlgItem
MessageBoxA
SetWindowLongA
CreateIcon
GetDC
GetIconInfo
CreateIconIndirect
PtInRect
RegisterWindowMessageA
SendMessageA
SetFocus
CharPrevA
LoadIconA
SetForegroundWindow
GetKeyState
DrawTextA
SendDlgItemMessageA
SetActiveWindow
GetWindowRect
GetClassNameA
SetWindowLongW
EndDialog
GetCursorPos
CheckDlgButton
EnumChildWindows
IsDlgButtonChecked
IsWindow
SetWindowTextA
LoadImageA
MapWindowPoints
EnableWindow
CallWindowProcA
FindWindowA
GetDlgItemTextA
DestroyIcon
GetWindowThreadProcessId
CopyRect
SetDlgItemTextA
ReleaseDC

gdi32

GetObjectA
GetPixel
DeleteObject
CreateBitmap
SetPixel
GetCurrentObject
CreateFontIndirectA
StretchBlt
DeleteDC
SetTextColor
CreateCompatibleDC
CreateCompatibleBitmap
SetStretchBltMode
SelectObject

comdlg32

GetOpenFileNameA

shell32

Shell_NotifyIconA

nscrt

_vsnprintf

Exports

Exports

winampGetGeneralPurposePlugin

Sections

.text
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6089df2236280878a72c26b8d7df9cf

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

gdi32

comdlg32

shell32

nscrt

Exports

Exports

Sections

.text Size: 11KB - Virtual size: 11KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 172KB - Virtual size: 173KB

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 11KB - Virtual size: 11KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 172KB - Virtual size: 173KB

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 1KB - Virtual size: 1KB