788f5c531303cada110bebe6d3917d52f19bab3957e4ebbaeb6ace7f0281dbf8

Sharing

Copy URL Twitter E-mail

General

Target

788f5c531303cada110bebe6d3917d52f19bab3957e4ebbaeb6ace7f0281dbf8
Size

195KB
MD5

fefb8e40636279483d3b342e26217153
SHA1

2d1d6e142942560a4406b48259e751ca9c664a1c
SHA256

788f5c531303cada110bebe6d3917d52f19bab3957e4ebbaeb6ace7f0281dbf8
SHA512

b036e0d005bd15f0589895edae24e2db5d7e5646c845795480d82a66f0788c2606abd4c3576ca2e76a8817697a23b1f0692acc3a4b6fc9f8270996d288f3989a
SSDEEP

3072:wIDZHsJ2lOax64jmaM5Aay1DjWfryjMs8+1uzuzbw9XP2zU4q4whhq:wmm4jlGSCDyjMW5s9XPMO

Score

N/A

Malware Config

Signatures

Files

788f5c531303cada110bebe6d3917d52f19bab3957e4ebbaeb6ace7f0281dbf8
.dll windows x86

280ea6e786d133fe7a4c52914cba8115

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
malloc
_initterm
free

user32

EndDialog
SetWindowLongA
GetWindowLongA
SetFocus
LoadStringA
SendDlgItemMessageA
DialogBoxParamA
GetForegroundWindow
EnableWindow
GetDlgItemTextA
SetWindowPos
GetDesktopWindow
GetWindowRect
SetTimer
wsprintfA
GetParent
SetDlgItemTextA
KillTimer
DispatchMessageA
TranslateMessage
PeekMessageA
GetDlgItem

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
MultiByteToWideChar
WideCharToMultiByte
GetProcessHeap
HeapReAlloc
HeapFree
HeapAlloc
GetTickCount
Sleep
lstrlenA
CreateFileA
SetCommState
SetupComm
SetCommTimeouts
CreateThread
SetThreadPriority
ResumeThread
CreateEventA
WaitCommEvent
DeleteCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
LeaveCriticalSection
EnterCriticalSection
PurgeComm
EscapeCommFunction
WaitForSingleObject
SetCommMask
SetEvent
CloseHandle
GetOverlappedResult
GetLastError
ReadFile
ClearCommError
WriteFile
GetCommState
ExitThread
WaitForMultipleObjects

tapi32

lineGetID
lineGetCallInfo
lineGetDevCaps
lineAnswer
lineDrop
lineMakeCall
lineClose
lineConfigDialog
lineNegotiateAPIVersion
lineOpen
lineDeallocateCall
lineShutdown
lineInitialize

dplayx

gdwDPlaySPRefCount

Exports

Exports

SPInit

Sections

.text
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

280ea6e786d133fe7a4c52914cba8115

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

user32

kernel32

tapi32

dplayx

Exports

Exports

Sections

.text Size: 15KB - Virtual size: 14KB

.data Size: 172KB - Virtual size: 173KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 15KB - Virtual size: 14KB

.data
Size: 172KB - Virtual size: 173KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 1KB - Virtual size: 1KB