b847de23e62ed3ddf0e016256d324906d5f93d69e451f57f4994c9560c9a0b78

Sharing

Copy URL Twitter E-mail

General

Target

b847de23e62ed3ddf0e016256d324906d5f93d69e451f57f4994c9560c9a0b78
Size

159KB
MD5

468a78127dcaa9ba113fd2d69218acab
SHA1

1759cc0f7bf717b6f353d12d1ce6f8934a5aa7a0
SHA256

b847de23e62ed3ddf0e016256d324906d5f93d69e451f57f4994c9560c9a0b78
SHA512

34b2550249f4392775e891750ef0b458d2abfe31a1d184f762c452711301bb29f1100e09d1bbec4514ac419bef17bd86e43a11b86906b8e06912ca555abd3bbf
SSDEEP

3072:TBf5ZnWehRvM+HZurgbkGyIBkjkTKQ+PhetxlRtuBqu1:9h4ejvMeu3GyHkWThIlQqu

Score

N/A

Malware Config

Signatures

Files

b847de23e62ed3ddf0e016256d324906d5f93d69e451f57f4994c9560c9a0b78
.dll windows x86

879b114af849b57f4a3350c4c980fc89

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowWindow
SetWindowsHookExW
SetWindowLongW
SetPropW
SetMenuItemBitmaps
SetLayeredWindowAttributes
SetForegroundWindow
SetFocus
SetCursor
SetClipboardViewer
SendMessageW
ScrollWindowEx
RemovePropW
ReleaseDC
RegisterClassW
PostQuitMessage
PostMessageW
ModifyMenuW
MessageBoxW
MapWindowPoints
LoadIconW
IsWindowVisible
IsWindow
IsIconic
IsDialogMessageW
GrayStringW
GetWindowThreadProcessId
GetWindowTextW
GetWindowRect
GetWindowLongW
GetSystemMetrics
UnregisterClassW
GetSubMenu
GetPropW
GetParent
GetNextDlgTabItem
GetMouseMovePointsEx
SystemParametersInfoA
GetMessagePos
GetMenuState
GetMenuItemID
GetMenuCheckMarkDimensions
GetMenuBarInfo
GetMenu
GetLastActivePopup
GetKeyState
GetForegroundWindow
GetDlgCtrlID
GetCursorPos
GetClassNameW
GetClassInfoW
GetClassInfoExW
GetActiveWindow
FreeDDElParam
ExcludeUpdateRgn
EndPaint
EndDialog
DrawTextW
DrawTextExW
DispatchMessageW
DestroyWindow
DestroyMenu
DdeFreeStringHandle
DdeDisconnect
CreateDialogIndirectParamW
CopyRect
CloseWindow
ClientToScreen
CheckMenuItem
CallWindowProcW
CallNextHookEx
UserHandleGrantAccess
ValidateRect
WinHelpW
UnhookWindowsHookEx
GetMessageTime
UnregisterClassA
GetSysColor
AdjustWindowRectEx

oleaut32

VariantChangeType
VariantInit
VariantClear

advapi32

RegQueryValueW
RegQueryValueExW
RegOpenKeyW
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
LsaEnumeratePrivilegesOfAccount
RegSetValueExW

shlwapi

PathFindExtensionW
PathFindFileNameW

kernel32

VirtualAlloc
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
SizeofResource
SetUnhandledExceptionFilter
VirtualFree
SetStdHandle
SetLastError
SetHandleCount
SetFilePointer
VirtualProtect
ReleaseMutex
ReadFile
RaiseException
QueryPerformanceCounter
PulseEvent
MultiByteToWideChar
MulDiv
Module32FirstW
LockResource
LocalReAlloc
LocalFree
LocalAlloc
LoadResource
LoadLibraryW
LoadLibraryA
LeaveCriticalSection
LCMapStringA
IsDebuggerPresent
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalHandle
WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileStringW
lstrlenW
SetErrorMode
SetThreadIdealProcessor
GetEnvironmentStringsW
GlobalFree
GlobalFlags
GlobalFindAtomW
CloseHandle
CompareStringW
CreateFileA
DeleteCriticalSection
EnterCriticalSection
EnumResourceLanguagesW
ExitProcess
FindResourceW
FlushFileBuffers
FormatMessageW
FreeEnvironmentStringsA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetConsoleCP
GetConsoleMode
GetConsoleOutputCP
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetEnvironmentStringsA
GlobalDeleteAtom
GetFileType
GetLastError
GetLocaleInfoA
GetLocaleInfoW
GetModuleFileNameA
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetOEMCP
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetStdHandle
GetStringTypeA
GetStringTypeW
GetThreadLocale
GetTickCount
GetVersion
GetVersionExA
GlobalAddAtomW
GlobalAlloc

gdi32

SelectObject
ScaleWindowExtEx
ScaleViewportExtEx
SaveDC
RestoreDC
RectVisible
PtVisible
PlayEnhMetaFileRecord
Pie
GetRelAbs
GetClipRgn
ExtTextOutW
EqualRgn
EnumEnhMetaFile
DeleteObject
DeleteDC
CreateHatchBrush
CreateHalftonePalette
UpdateColors
TextOutW
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetTextColor
SetMapMode
SetBkColor

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupCancelTemporarySourceList
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo

shell32

FreeIconList
SHGetFolderPathW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

Exports

Exports

ADeviceStopPlay
Compact
DrawPixels
GetChecksum
UlStripWhitespaceW

Sections

.text
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

879b114af849b57f4a3350c4c980fc89

Headers

DLL Characteristics

File Characteristics

Imports

user32

oleaut32

advapi32

shlwapi

kernel32

gdi32

setupapi

shell32

winspool.drv

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 52KB

.rdata Size: 92KB - Virtual size: 91KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 52KB

.rdata
Size: 92KB - Virtual size: 91KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 1KB - Virtual size: 1KB