e7b86b28f6c34759b833dd75454ced85ae428e6c604e8d210be2d2f8fe008192

Sharing

Copy URL

Twitter E-mail

General

Target

e7b86b28f6c34759b833dd75454ced85ae428e6c604e8d210be2d2f8fe008192
Size

91KB
MD5

189f8238009c22ac5cf868a1ff22ad34
SHA1

1984cf4b11c797ade5b3cf935f3dffb6a92ee66b
SHA256

e7b86b28f6c34759b833dd75454ced85ae428e6c604e8d210be2d2f8fe008192
SHA512

49bd6fbb48c13ad74f7cf8789ae41cbb03c5ffee9398175b331449ea2bcb6fad6ac4094379eb89654e3922abc07c9e83cc3c7ec751c234f79242efc90cc7a99a
SSDEEP

1536:rvywNibV65B/PvhOW6gAQVZlPgEU7lGTOEcRSLfdKUoHvVOCPl3jLm1CMA/cR:rPUV0n1AQVZlHOEeSbdKUMVOCPl3jLmF

Score

N/A

Malware Config

Signatures

Files

e7b86b28f6c34759b833dd75454ced85ae428e6c604e8d210be2d2f8fe008192
.dll windows x86

2a01ea577cbdef15c7ce9b32dcae285d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
_initterm
??1type_info@@UAE@XZ
calloc
_beginthreadex
wcscat
wcsncat
_wcsnicmp
wcschr
_snprintf
strncpy
wcstombs
fputs
wcslen
wcsrchr
_except_handler3
free
_wcsupr
wcsstr
fopen
fclose
fgets
mbstowcs
wcscpy
atoi
realloc
strcmp
malloc
strchr
strcat
_CxxThrowException
memcmp
strcpy
strstr
strlen
_ftol
ceil
memmove
_EH_prolog
__CxxFrameHandler
memcpy
??3@YAXPAX@Z
??2@YAPAXI@Z
memset
wcsncpy

user32

GetWindowRect
MoveWindow
GetCursorInfo
GetCursorPos
ReleaseDC
GetDesktopWindow
GetDC
GetSystemMetrics
SetRect
MapVirtualKeyW
DestroyCursor
ShowWindow
MessageBoxW
CharNextW
FindWindowW
PostMessageW
GetProcessWindowStation
CloseDesktop
SetThreadDesktop
OpenInputDesktop
DispatchMessageW
TranslateMessage
GetMessageW
wsprintfW
SetProcessWindowStation
OpenWindowStationW
GetUserObjectInformationW
GetThreadDesktop
OpenDesktopW
CreateWindowExW
CloseWindow
SendMessageW
IsWindow
LoadCursorW

kernel32

Sleep
ExitProcess
lstrcpyW
GetVersionExW
MultiByteToWideChar
GetProcAddress
CancelIo
ResetEvent
VirtualAlloc
VirtualFree
CreateThread
ResumeThread
SetEvent
WaitForSingleObject
TerminateThread
CloseHandle
GetFileAttributesW
GetTickCount
CopyFileW
SetFileAttributesW
GetSystemDirectoryW
LoadLibraryW
FreeConsole
LocalFree
lstrcmpW
LocalReAlloc
LocalAlloc
GetLocalTime
GetModuleHandleA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
LocalSize
GetCurrentProcess
lstrcmpiW
DeleteFileA
GetFileSize
lstrcatW
SetErrorMode
CreateProcessW
lstrlenW
CreateEventW
SetUnhandledExceptionFilter

winmm

waveOutGetNumDevs
waveOutWrite
waveInStart
waveInAddBuffer
waveInPrepareHeader
waveInOpen
waveInGetNumDevs
waveOutPrepareHeader
waveOutOpen
waveInReset
waveInUnprepareHeader
waveInClose
waveOutReset
waveOutUnprepareHeader
waveOutClose
waveInStop

ws2_32

inet_addr
getpeername
getsockname
__WSAFDIsSet
ioctlsocket
inet_ntoa
gethostname
send
select
recv
ntohs
closesocket
socket
gethostbyname
htons
connect
setsockopt
WSAIoctl
WSACleanup
WSAStartup

msvfw32

ICSeqCompressFrame
ICSeqCompressFrameStart
ICSendMessage
ICOpen
ICClose
ICCompressorFree
ICSeqCompressFrameEnd

msvcp60

??1?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAE@XZ
?assign@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@PBGI@Z
?_Tidy@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@AAEX_N@Z
?assign@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@QAEAAV12@ABV12@II@Z
?npos@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@2IB
?_C@?1??_Nullstr@?$basic_string@GU?$char_traits@G@std@@V?$allocator@G@2@@std@@CAPBGXZ@4GB

Exports

Exports

DDD_DDDInfo
End_DDDInfo
Get_DDDInfo
MMM_DDDInfo
Run_DDDInfo
ServiceMain
aaa_DDDInfo
axxx_DDDInfo
cxxx_DDDInfo
eee_DDDInfo
exxx_DDDInfo
www_DDDInfo
xxx_DDDInfo
zzz_DDDInfo

Sections

.text
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 728B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2a01ea577cbdef15c7ce9b32dcae285d

Headers

File Characteristics

Imports

msvcrt

user32

kernel32

winmm

ws2_32

msvfw32

msvcp60

Exports

Exports

Sections

.text Size: 59KB - Virtual size: 59KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 13KB - Virtual size: 25KB

.rsrc Size: 1024B - Virtual size: 728B

.reloc Size: 5KB - Virtual size: 5KB

.text
Size: 59KB - Virtual size: 59KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 13KB - Virtual size: 25KB

.rsrc
Size: 1024B - Virtual size: 728B

.reloc
Size: 5KB - Virtual size: 5KB