c9a2458bcec0fea7ea34b9abc0e01c96c4d042d20e0f88cff6178bf07cc526bb

General

Target

c9a2458bcec0fea7ea34b9abc0e01c96c4d042d20e0f88cff6178bf07cc526bb
Size

12KB
MD5

389c99686fc78e10670dbe470719d4ae
SHA1

5a8be328fe9133c9ed15e2830e26deed4855ef57
SHA256

c9a2458bcec0fea7ea34b9abc0e01c96c4d042d20e0f88cff6178bf07cc526bb
SHA512

aa089b2035973fb802b289011c3ae0bd6077ab8a87cbb6bc595a050f10fe39e3256e2e20e756869a1d2303360ac6975d29517c7c1679f510f7284476d83273f1
SSDEEP

384:JgdoVhzX3IYsv2CbUQaFitqAABRKI2YjXsEQoRYCCD31pNmmIWJM7XlUsFDdQLik:pV+sXsEQJg+BsFDdA

Score

N/A

Malware Config

Signatures

Files

c9a2458bcec0fea7ea34b9abc0e01c96c4d042d20e0f88cff6178bf07cc526bb
.dll windows x86

389692c1bc267b8c5d179a166655d95e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

avicap32

capGetDriverDescriptionA
capCreateCaptureWindowA

winmm

PlaySoundA

kernel32

SetThreadPriority
WaitForSingleObject
ReadFile
DeleteFileA
Sleep
HeapAlloc
GetProcessHeap
HeapFree
CreateThread
lstrcpyA
WriteFile
CloseHandle
SetFilePointer
GetModuleHandleA
CreateFileA
lstrlenA

user32

GetForegroundWindow
GetActiveWindow
GetWindowTextA
DispatchMessageA
SetKeyboardState
GetMessageA
SetWindowsHookExA
PostThreadMessageA
SendMessageA
IsWindow
DestroyWindow
CreateWindowExA
wvsprintfA
wsprintfA
GetKeyboardState
ToAscii
CallNextHookEx
GetDesktopWindow
MessageBoxA
UnhookWindowsHookEx
GetKeyNameTextA

gdi32

CreateDCA
GetDeviceCaps
CreateCompatibleDC
DeleteDC
CreateDIBSection
SelectObject
BitBlt
GetDIBColorTable
DeleteObject

Exports

Exports

InstallPlugin
PluginVersion
TerminatePlugin

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 834B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

389692c1bc267b8c5d179a166655d95e

Headers

DLL Characteristics

File Characteristics

Imports

avicap32

winmm

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 6KB - Virtual size: 6KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 732B

.reloc Size: 1024B - Virtual size: 834B

.text
Size: 6KB - Virtual size: 6KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 732B

.reloc
Size: 1024B - Virtual size: 834B