ec4fa7f20afb51b8ef83ebd664512f1eea1e1df9ce6f5188f7b6e7d96e513ac4

Sharing

Copy URL Twitter E-mail

General

Target

ec4fa7f20afb51b8ef83ebd664512f1eea1e1df9ce6f5188f7b6e7d96e513ac4
Size

84KB
MD5

9674503a82aa01b2841de32ee0727d89
SHA1

3178f29374902fa1ea919324a3fcc7febcf2076a
SHA256

ec4fa7f20afb51b8ef83ebd664512f1eea1e1df9ce6f5188f7b6e7d96e513ac4
SHA512

3c13f93924eb075742060a480fa372f7308c74c2b133ce2f3b4180693848ae928181de0fe12c89ee8727802ceabff00c656c5e629cc0f444f24db6493b40ec93
SSDEEP

1536:dB4jtMmfSxmw6fpnxYYEtV4dIO6gD3OsWR3vUN:MjZfeORxLEtCHNOv1vc

Score

N/A

Malware Config

Signatures

Files

ec4fa7f20afb51b8ef83ebd664512f1eea1e1df9ce6f5188f7b6e7d96e513ac4
.dll windows x86

20487a005d6848fd233ac108b7e4915c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VerLanguageNameW
lstrcpynW
GetHandleInformation
CreateFileMappingW
TerminateJobObject
OpenMutexW
FlushFileBuffers
GetCurrentProcessId
SetFilePointerEx
EnumUILanguagesW
SearchPathA
GetConsoleOutputCP
MultiByteToWideChar
CompareStringW
FindFirstVolumeW
GetModuleHandleExW
GetSystemWindowsDirectoryA
FindResourceW
SwitchToThread
GetComputerNameExW
RtlMoveMemory
SetupComm
RegisterWaitForSingleObject
GetVersionExW
ReadConsoleA
LocalHandle
GetFileInformationByHandle
MoveFileExA
GlobalGetAtomNameW
DeleteTimerQueue
HeapSize
PeekNamedPipe
GlobalReAlloc
FindFirstChangeNotificationA
VirtualFree
GlobalHandle
UnregisterWaitEx
GetStartupInfoW
HeapWalk
GetDriveTypeW
GetStringTypeW
LocalSize
GetProfileIntW
FindResourceA
WaitForMultipleObjects
CreateNamedPipeW
WTSGetActiveConsoleSessionId
SetCommState
ExitThread
SetVolumeMountPointW
GetProfileIntA
IsBadWritePtr
OpenEventW
CreateProcessW
SetConsoleWindowInfo
FileTimeToSystemTime
GlobalMemoryStatus
WaitForMultipleObjectsEx
AddAtomA
GlobalDeleteAtom
GetOverlappedResult
IsValidLocale
IsWow64Process
CreateConsoleScreenBuffer
FindResourceExA
ResetEvent
HeapValidate
CreateJobObjectW
GlobalFindAtomW
CancelWaitableTimer
GetVersion
SetComputerNameA
MoveFileA
SetConsoleMode
MoveFileExW
UnlockFileEx
OpenThread
CreateFileA
SetEvent
WriteFile
UnmapViewOfFile
HeapFree
GetProcAddress
CopyFileA
GetVolumeInformationA
GetSystemDirectoryA
InitializeCriticalSectionAndSpinCount
GetProcessHeap
CloseHandle
GetModuleHandleA
LocalFree
MapViewOfFile
LoadLibraryA
lstrlenA
lstrlenW
CreateDirectoryA
SetLastError
TerminateThread

ole32

CoWaitForMultipleHandles
CreatePointerMoniker
ReadFmtUserTypeStg
CreateDataAdviseHolder
OleRegGetUserType
OleTranslateAccelerator
CoQueryProxyBlanket
StringFromGUID2
CoDisconnectObject
OleCreateLinkToFile
OleLoad
CoMarshalInterThreadInterfaceInStream
OleRegGetMiscStatus
CoCreateInstanceEx
CreateILockBytesOnHGlobal
CoInitialize
CoTaskMemFree
CoUninitialize
CLSIDFromString
CoTaskMemAlloc

user32

ToAsciiEx
SetProcessWindowStation
DefWindowProcW
SetProcessDefaultLayout
LoadIconW
TranslateAcceleratorA
SendMessageTimeoutW
DispatchMessageW
TrackPopupMenuEx
HideCaret
IsDialogMessageW
DrawEdge
ClientToScreen
MonitorFromWindow
ReleaseDC
SetMenu
MapDialogRect
DrawFocusRect
GetDCEx
EndTask
ReplyMessage
FrameRect
SystemParametersInfoA
GetParent
CreateDialogParamW
SetMenuDefaultItem
GetClassInfoA
DialogBoxIndirectParamA
IsRectEmpty
CharNextW
ShowScrollBar
WaitForInputIdle
SetClassLongA
wsprintfW
SetClassLongW
SendDlgItemMessageW
PackDDElParam
GetClassInfoW
GetDialogBaseUnits
BeginPaint
IsZoomed
IsWindow
CreateWindowExA
GetInputState
GrayStringW
GetMessageTime
CharLowerBuffA
MonitorFromPoint
SetWindowRgn
SetActiveWindow
GetClassInfoExW
GetWindowPlacement
GetSubMenu
AllowSetForegroundWindow
SendNotifyMessageA
DefMDIChildProcA
SendDlgItemMessageA
GetSysColor
UnpackDDElParam
SendMessageTimeoutA
CopyAcceleratorTableW
EnumWindowStationsW
MapVirtualKeyW
MsgWaitForMultipleObjectsEx
wvsprintfW
IsMenu
SetPropA
ExitWindowsEx
GetMessageA
GetClassNameA
CreateDialogIndirectParamW

shlwapi

StrStrIA
SHRegGetValueW
StrCmpNIA
PathRemoveBackslashW
StrToIntExW
PathIsPrefixW
StrChrA
wnsprintfA
SHSetValueA
PathRemoveBlanksW
StrCpyNW
SHGetValueA
PathGetCharTypeW
AssocCreate
PathFindExtensionW
PathUndecorateW
PathIsNetworkPathW
StrStrIW

gdi32

LineTo
EnumEnhMetaFile
GetMapMode
PolyBezier
GetStretchBltMode
GetPixelFormat
GetDIBits
CreateDCW
CreateMetaFileW
SetDIBits
CreateHalftonePalette
CreateEllipticRgnIndirect
StretchDIBits
CreateDiscardableBitmap
DeleteObject
ModifyWorldTransform
CreateFontW
SetTextAlign
GetSystemPaletteEntries
StrokeAndFillPath
CreateCompatibleBitmap
GetCharWidthA
OffsetRgn
GetOutlineTextMetricsA
GetObjectA
UnrealizeObject
Polyline
ArcTo
CreateICW
StartDocA
CreateMetaFileA
GetTextExtentPoint32A
PatBlt
SwapBuffers
ResizePalette
IntersectClipRect
GetMetaFileA
DPtoLP
GetEnhMetaFileHeader
GetTextFaceA
EqualRgn

Exports

Exports

CPlApplet

Sections

.text
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20487a005d6848fd233ac108b7e4915c

Headers

File Characteristics

Imports

kernel32

ole32

user32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 57KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 60KB - Virtual size: 57KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 2KB