b46e7493c405292d85c18a2242266c571de5bf4026532141bf3d8b3396c00213

Sharing

Copy URL Twitter E-mail

General

Target

b46e7493c405292d85c18a2242266c571de5bf4026532141bf3d8b3396c00213
Size

248KB
MD5

1290203e63d8be9732efc738736b6250
SHA1

15c2bfb7fc151acb767373cbcdea951905cabe43
SHA256

b46e7493c405292d85c18a2242266c571de5bf4026532141bf3d8b3396c00213
SHA512

1bfcd3d376410587a8405f01bd727b728faff9b6cdd9327c11ca0e6864adf7a3b06b199bac186560d0d790a62e49a816ee9b860c4cac535ca503780da0bef526
SSDEEP

6144:t/GkJzvt9tWjkUSsnUscIf4kEqcm/Y/qILPxCdZc:wkJzDQjkUM/I4q5QS0pCPc

Score

N/A

Malware Config

Signatures

Files

b46e7493c405292d85c18a2242266c571de5bf4026532141bf3d8b3396c00213
.dll windows x86

ea1bb93e46a84c45cc12f56dff86b3fa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
_initterm
free
memmove
wcslen
_wsplitpath
_wmakepath
_adjust_fdiv
wcschr
wcsrchr
atof
_wtoi
??2@YAPAXI@Z
??3@YAXPAX@Z
wcstombs
mbstowcs
_vsnwprintf

kernel32

GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetVersionExW
lstrlenW
LocalFree
lstrcpynW
LocalAlloc
lstrlenA
GetPrivateProfileStringW
lstrcmpiW
FreeLibrary
GetProcAddress
LoadLibraryW
GetPrivateProfileSectionW
GlobalFree
GlobalAlloc
lstrcpyW
lstrcatW
GetWindowsDirectoryW
CompareStringW
lstrcmpW
GetLastError
OutputDebugStringW
_lclose
_lwrite
_lcreat
GetPrivateProfileIntW
UnmapViewOfFile
CloseHandle
MapViewOfFile
CreateFileMappingW
SetLastError
Sleep
FindClose
FindFirstFileW
_llseek
_lread
_lopen
SetFileAttributesW
ExpandEnvironmentStringsW
CreateProcessW
GetCurrentProcess
WaitForSingleObject
CreateEventW
DeleteFileW
GetModuleHandleW
CreateThread
CreateSemaphoreW
WriteFile
CreateFileW
GetTempFileNameW
GetCurrentDirectoryW
GetTempPathW
GetShortPathNameW
GetFullPathNameW
GetSystemDirectoryW
FindNextFileW
GetFileAttributesW
GetModuleFileNameW
SetCurrentDirectoryW
SetEvent
LocalReAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId

user32

SetTimer
MessageBoxW
wsprintfW
ShowWindow
LoadStringW
SetDlgItemTextW
SetWindowTextW
FindWindowW
GetParent
EndDialog
GetDlgItemTextW
DialogBoxParamW
RegisterWindowMessageA
SetWindowPos
KillTimer
PostMessageW
SendMessageW
CharNextW
CharPrevW
GetWindowTextW
IsWindowVisible
EnumWindows
DispatchMessageW
MsgWaitForMultipleObjects
SetForegroundWindow
SetFocus
CreateDialogParamW
IsWindow
UpdateWindow
ExitWindowsEx
DefWindowProcW
PostQuitMessage
CreateWindowExW
RegisterClassW
LoadCursorW
LoadIconW
DestroyWindow
TranslateMessage
GetMessageW
SetRect
ReleaseDC
GetDC
GetWindowRect
GetDlgItem
SetWindowLongW
GetWindowLongW
PeekMessageW
GetClassNameW

gdi32

GetDeviceCaps
GetStockObject

advapi32

RegOpenKeyW
RegSetValueExW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
OpenProcessToken
RegDeleteValueW
RegCreateKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW

shell32

SHGetPathFromIDListW
SHGetMalloc
ShellExecuteW
SHGetSpecialFolderLocation
ShellExecuteExW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

tapi32

lineTranslateAddressW
lineShutdown
lineInitialize
lineGetTranslateCapsW

oleaut32

VariantInit
SysAllocString
SysFreeString

ole32

CoCreateInstance
CoInitialize
CoUninitialize

Exports

Exports

AutoDialLogon
AutoDialLogonA
AutoDialLogonW
AutoDialSignup
AutoDialSignupA
AutoDialSignupW
IEAKProcessISP
IEAKProcessISPA
IEAKProcessISPW
Signup

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

ea1bb93e46a84c45cc12f56dff86b3fa

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

shell32

version

tapi32

oleaut32

ole32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 47KB

.data Size: 4KB - Virtual size: 4KB

.rsrc Size: 20KB - Virtual size: 18KB

.reloc Size: 4KB - Virtual size: 3KB

.text Size: 168KB - Virtual size: 168KB

.text
Size: 48KB - Virtual size: 47KB

.data
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 20KB - Virtual size: 18KB

.reloc
Size: 4KB - Virtual size: 3KB

.text
Size: 168KB - Virtual size: 168KB