c0ce2e720a62efb5b7ee541920681ec6cdb63985e219f0ea5da96bddc8fa6b7e

Sharing

Copy URL Twitter E-mail

General

Target

c0ce2e720a62efb5b7ee541920681ec6cdb63985e219f0ea5da96bddc8fa6b7e
Size

449KB
MD5

4b4cdf578838b7bbfa1ed8d45154ea93
SHA1

5e44b6aabf37f204b77193cbfd7783ba64c5989d
SHA256

c0ce2e720a62efb5b7ee541920681ec6cdb63985e219f0ea5da96bddc8fa6b7e
SHA512

060f9d611f4990cca531c9271945f257b0b4cde0e30f982eab64f41fd5d22397649dcc03bac8b2ac3dbc26c25328ec496bbeddf22e26e2f5b75f3ea791a28897
SSDEEP

12288:Ia7qF2VTg/ahqTiK6FNioYCkNuhLZt8Ob062648ALb4c:hqgVTg/yq3owuLvhb0625H4

Score

N/A

Malware Config

Signatures

Files

c0ce2e720a62efb5b7ee541920681ec6cdb63985e219f0ea5da96bddc8fa6b7e
.dll windows x86

9bdd58c3a25b975188017422eb780e48

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetSelectedDevice
SetupDiGetDeviceInstanceIdA
SetupDiGetDeviceInstallParamsW
SetupDiGetDeviceInfoListClass
SetupDiGetCustomDevicePropertyW
SetupDecompressOrCopyFileA
CM_Get_Res_Des_Data
CM_Get_Device_ID_ListA
CM_Get_DevNode_Custom_PropertyW

version

GetFileVersionInfoA
GetFileVersionInfoSizeA

user32

UpdateWindow
SendMessageA
RegisterClassA
CharLowerA
CreateIconFromResourceEx
DestroyCursor
DispatchMessageA
EndDialog
EndPaint
GetFocus
LoadAcceleratorsW
LoadImageA
MessageBoxIndirectA
PostMessageA

winmm

midiOutReset
midiOutSetVolume
midiOutUnprepareHeader
midiStreamClose
midiStreamOut
midiStreamPosition
mixerGetDevCapsA
mixerGetLineControlsA
mixerMessage
mixerOpen
mmGetCurrentTask
mmTaskBlock
mmTaskCreate

kernel32

HeapAlloc
GetCalendarInfoW
GetBinaryTypeA
FindFirstChangeNotificationA
ExitProcess
EnumDateFormatsExW
DnsHostnameToComputerNameA
DeleteFileA
CreatePipe
CreateMailslotA
lstrcatW
_hwrite
_hread
WritePrivateProfileStringW
VerSetConditionMask
VerLanguageNameA
UnlockFileEx
SetTimerQueueTimer
SetSystemTime
SetLastError
SetComputerNameA
SetCommMask
OpenFile
LocalHandle
IsBadStringPtrA
CreateHardLinkA
GetWindowsDirectoryW
GetUserDefaultLCID
GetTimeFormatW
GetTickCount
GetThreadTimes
GetSystemDirectoryW
GetProcAddress
GetNumberFormatA
GetFileSize
GetFileAttributesW
CreateEventW
GetCommandLineA

ntdll

ZwOpenIoCompletion
ZwGetDevicePowerState
ZwFindAtom
ZwAssignProcessToJobObject
ZwAdjustGroupsToken
ZwAccessCheckByTypeResultListAndAuditAlarm
RtlUnicodeToMultiByteSize
RtlTryEnterCriticalSection
RtlSetOwnerSecurityDescriptor
RtlRealSuccessor
RtlQueryAtomInAtomTable
RtlNtStatusToDosError
RtlLockHeap
RtlLeaveCriticalSection
RtlIntegerToUnicodeString
RtlInitializeAtomPackage
RtlGetVersion
RtlGetLongestNtPathLength
RtlExtendedMagicDivide
RtlDeleteTimerQueue
RtlDelete
NtCreateProcess
NtCreateSemaphore
NtOpenSection
NtQueryMultipleValueKey
NtQueryMutant
NtReadVirtualMemory
NtWaitForMultipleObjects
RtlConvertToAutoInheritSecurityObject
RtlCopySid
RtlCreateUnicodeStringFromAsciiz

comdlg32

PageSetupDlgW
PageSetupDlgA
LoadAlterBitmap
GetOpenFileNameW
GetOpenFileNameA
GetFileTitleW
CommDlgExtendedError
ChooseFontA
ChooseColorW

Sections

.text
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 362KB - Virtual size: 667KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9bdd58c3a25b975188017422eb780e48

Headers

DLL Characteristics

File Characteristics

Imports

setupapi

version

user32

winmm

kernel32

ntdll

comdlg32

Sections

.text Size: 58KB - Virtual size: 58KB

.data Size: 362KB - Virtual size: 667KB

.rsrc Size: 27KB - Virtual size: 26KB

.text
Size: 58KB - Virtual size: 58KB

.data
Size: 362KB - Virtual size: 667KB

.rsrc
Size: 27KB - Virtual size: 26KB