a33c51fcaf5e68cf81830621f6ef94a44794780631db7cd30db6ebe148eb7a22

Sharing

Copy URL Twitter E-mail

General

Target

a33c51fcaf5e68cf81830621f6ef94a44794780631db7cd30db6ebe148eb7a22
Size

397KB
MD5

5e980accdbd9d0043d4654a4e42b2a6d
SHA1

b01d020fca25353a4dc587dc6a775722185924d2
SHA256

a33c51fcaf5e68cf81830621f6ef94a44794780631db7cd30db6ebe148eb7a22
SHA512

c89cf20ddcf57635e4f4c956af00450ecc49d068d78ef1e4cdccb82c5f3a19f6e04193f5acc13321fc0d9eef1aa06bb0f725bd352bb3535803d363ea90e7925c
SSDEEP

6144:8UzGKLDwg70vKaXSTTLM5TUWWC5vjOugYmav4N7oqeV:9H7EK+/5gMavY9vl

Score

N/A

Malware Config

Signatures

Files

a33c51fcaf5e68cf81830621f6ef94a44794780631db7cd30db6ebe148eb7a22
.dll windows x86

a093c0242aac09412a44d2be8ce24931

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
CreateDirectoryA
GetVersionExA
GetProfileStringA
GetTickCount
FormatMessageA
Sleep
ExitProcess
GlobalGetAtomNameA
GetFileSize
lstrlenA
FindAtomA
GetTimeFormatA
LocalFree
DeleteAtom
LocalAlloc
AddAtomA
lstrcatA
lstrcmpA
lstrcmpiA
GlobalDeleteAtom
GlobalAddAtomA
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
FindResourceA
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetThreadPriority
GetCommConfig
SetCommConfig
SetCommTimeouts
SetCommBreak
CommConfigDialogA
ClearCommBreak
GetOverlappedResult
WaitCommEvent
ExitThread
ClearCommError
GetCommModemStatus
SetCommMask
PurgeComm
GetSystemDirectoryA
CreateProcessA
SetupComm
GetFileTime
FileTimeToDosDateTime
DosDateTimeToFileTime
SetFileTime
MoveFileA
GetLocalTime
GlobalSize
LoadResource
SizeofResource
LockResource
LoadLibraryA
SetEndOfFile
SetCurrentDirectoryA
GetFullPathNameA
FindFirstFileA
FindNextFileA
FindClose
SetFilePointer
WriteFile
GetVolumeInformationA
FreeLibrary
ReadFile
CreateFileA
GlobalFree
InitializeCriticalSection
DeleteCriticalSection
WaitForSingleObject
TerminateThread
CloseHandle
ResetEvent
SetEvent
CreateEventA
CreateThread
WaitForMultipleObjects
EnterCriticalSection
LeaveCriticalSection
IsDBCSLeadByte
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcpyA
DeleteFileA
GetCurrentDirectoryA
OutputDebugStringA
GetModuleFileNameA
GetModuleFileNameW
SetLastError
LoadLibraryW
GetProcAddress
GetModuleHandleW
GetLastError
TerminateProcess
GetModuleHandleA

msvcrt

_adjust_fdiv
_setjmp3
atol
strtoul
_except_handler3
_initterm
longjmp
localtime
mktime
_itoa
calloc
qsort
bsearch
strncpy
sprintf
_ftol
_strnicmp
memmove
strchr
isdigit
_local_unwind2
atoi
strtok
_stricmp
realloc
time
malloc
free

user32

SetCursor
GetWindowPlacement
PostQuitMessage
SetMenuItemInfoA
TrackPopupMenu
ClientToScreen
GetSubMenu
IsZoomed
IsWindowVisible
GetMenu
PtInRect
ScreenToClient
GetCursorPos
GetMenuItemRect
GetMenuItemCount
SystemParametersInfoA
AdjustWindowRectEx
UpdateWindow
SetWindowPlacement
CallWindowProcA
RemovePropA
GetPropA
SetPropA
CharNextExA
CharPrevA
GetMessageA
SetForegroundWindow
LoadAcceleratorsA
InvertRect
GetFocus
GetCaretBlinkTime
ReleaseCapture
SetCapture
GetDoubleClickTime
IntersectRect
FillRect
SetScrollInfo
InvalidateRect
ScrollWindow
GetUpdateRect
SetScrollPos
MapWindowPoints
GetDesktopWindow
OffsetRect
InflateRect
ShowWindow
SendMessageTimeoutA
CharUpperA
IsWindowEnabled
CheckDlgButton
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
IsMenu
LoadMenuA
DestroyMenu
SetWindowTextA
IsClipboardFormatAvailable
DestroyWindow
GetClientRect
GetSysColor
DrawIcon
DrawFocusRect
LoadIconA
GetWindowRect
SetWindowPos
GetDlgCtrlID
WinHelpA
IsDialogMessageA
SetDlgItemTextA
GetClassNameA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
PeekMessageA
GetKeyboardState
SetKeyboardState
GetKeyState
SetTimer
MessageBoxA
KillTimer
EnumWindows
GetWindowTextA
GetClassInfoA
LoadCursorA
DefWindowProcA
CreateWindowExA
UnregisterClassA
RegisterClassA
BeginPaint
EndPaint
GetSystemMetrics
MoveWindow
SendMessageA
GetDC
ReleaseDC
PostMessageA
DialogBoxParamA
wsprintfA
EndDialog
GetWindowLongA
IsDlgButtonChecked
GetDlgItemInt
GetDlgItem
SetFocus
MessageBeep
SetWindowLongA
GetParent
SendDlgItemMessageA
SetDlgItemInt
LoadStringA
CreateDialogParamA
IsWindow
GetDlgItemTextA
IsIconic
EnableWindow

advapi32

RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegEnumValueA
RegOpenKeyA
RegQueryValueExA

winspool.drv

ClosePrinter
OpenPrinterA

tapi32

lineConfigDialog
lineTranslateAddress
lineShutdown
lineInitialize
lineAnswer
lineDrop
lineClose
lineGetLineDevStatus
lineGetAddressCaps
lineGetID
lineDial
lineOpen
lineSetAppPriority
lineSetStatusMessages
lineGetDevConfig
lineNegotiateAPIVersion
lineGetDevCaps
lineGetCountry
lineGetTranslateCaps
lineTranslateDialog
lineSetCurrentLocation
lineSetDevConfig
lineMakeCall

gdi32

DeleteDC
DPtoLP
GetObjectA
SelectObject
CreateFontIndirectA
GetDeviceCaps
DeleteObject
TextOutA
SetBkMode
GetTextExtentPointA
SetLayout
GetLayout
ExtTextOutA
SetBkColor
StartPage
EndPage
CreateDCA
StartDocA
SetAbortProc
GetTextMetricsA
EndDoc
GetTextExtentPoint32A
GetStockObject
GetBkMode
SetTextColor
GetTextColor
CreateHatchBrush
CreatePen
CreateSolidBrush
LineTo
MoveToEx
SetBrushOrgEx
SetTextAlign

wsock32

send
WSACleanup
closesocket
shutdown
WSAGetLastError
recv
WSAAsyncGetHostByName
connect
WSAAsyncSelect
htons
ioctlsocket
bind
listen
accept
socket
WSAStartup

shell32

ShellAboutA
SHGetPathFromIDListA
SHBrowseForFolderA
SHChangeNotify
DragQueryFileA

ole32

CoInitialize

Exports

Exports

DllCanUnloadNow
DllGetClassObject
InitInstance
MessageLoop
sessQuerySysFileHdl
sessQueryTranslateHdl
sfGetSessionItem
sfPutSessionItem

Sections

.text
Size: 247KB - Virtual size: 247KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a093c0242aac09412a44d2be8ce24931

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

winspool.drv

tapi32

gdi32

wsock32

shell32

ole32

Exports

Exports

Sections

.text Size: 247KB - Virtual size: 247KB

.data Size: 67KB - Virtual size: 70KB

.rsrc Size: 71KB - Virtual size: 71KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 247KB - Virtual size: 247KB

.data
Size: 67KB - Virtual size: 70KB

.rsrc
Size: 71KB - Virtual size: 71KB

.reloc
Size: 10KB - Virtual size: 9KB