fddd[.]dll | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fddd.dll
Size

301KB
MD5

6b9b05f85004c2498f124a8018a0cbf7
SHA1

1bc231c3a4da1ed06e8162f6cb00bb38bde78336
SHA256

d5e98b22c05a075ff41917e12b69e7f0b4cbe9ef881e0e135b9e29b620a7a9dc
SHA512

43209ee7f037bda19251fa82f2d7f89c8c4903e2368cb108f2dca9d09288e328b3d2d5bf4a29a2704863d75691236db0b2048f3fdffeb2fc5c977c9fee7f6bc2
SSDEEP

6144:gC+xTejJTnVWWZmzUTTxdGOYwN6hta8SqKOnKs:vYTejJTVWWEzU5dG88dKTs

Score

N/A

Malware Config

Signatures

Files

fddd.dll
.dll windows x86

6176e2a142653611ab9359df2fd44146

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
WaitForSingleObject
CreateThread
GetTickCount64
VirtualAlloc
GetStdHandle
SetStdHandle
SetEnvironmentVariableW
ExpandEnvironmentStringsW
CreateDirectoryW
CreateFileA
CreateFileW
GetDriveTypeW
GetFileAttributesW
SetFileAttributesW
SetUnhandledExceptionFilter
QueryPerformanceCounter
DeviceIoControl
LeaveCriticalSection
ReleaseMutex
GetCurrentProcess
GetCurrentThread
TlsAlloc
TlsGetValue
TlsFree
GetSystemInfo
GetVersion
GetSystemDirectoryW
CreateFileMappingW
FindResourceExW
GetModuleFileNameA
GetProcAddress
LoadResource
FindResourceW
LoadLibraryW
LocalAlloc
lstrcmpiA
lstrlenA
lstrlenW
CreateFileMappingA
SystemTimeToFileTime
GetConsoleCP
ReadConsoleW
WriteConsoleW
CloseHandle
SetFilePointerEx
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
HeapReAlloc
HeapSize
GetStringTypeW
GetFileType
GetProcessHeap
LCMapStringW
GetModuleHandleW
GetTickCount
DecodePointer
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
GetStartupInfoW
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
TerminateProcess
RaiseException
RtlUnwind
InterlockedFlushSList
GetLastError
SetLastError
EncodePointer
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
TlsSetValue
FreeLibrary
LoadLibraryExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
HeapAlloc
HeapFree
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
MultiByteToWideChar
WideCharToMultiByte

user32

SendMessageA
EndDialog
SystemParametersInfoW
LoadBitmapW
GetWindow
GetSysColor
MapWindowPoints
ScreenToClient
GetWindowTextLengthW
RedrawWindow
GetDC
GetSystemMetrics
SetCapture
GetFocus
GetDlgItemTextW
UnregisterClassA
KillTimer
SetTimer

advapi32

RegCloseKey

ole32

CoCreateGuid
CoInitializeEx

shlwapi

PathFileExistsA
PathFindOnPathA

Exports

Exports

Updt
towerwork
unrhetoricalness

Sections

.data
Size: 277KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: - Virtual size: 616B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6176e2a142653611ab9359df2fd44146

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

shlwapi

Exports

Exports

Sections

.data Size: 277KB - Virtual size: 276KB

DATA Size: - Virtual size: 616B

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 14KB - Virtual size: 13KB

.reloc Size: 6KB - Virtual size: 5KB

.data
Size: 277KB - Virtual size: 276KB

DATA
Size: - Virtual size: 616B

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 14KB - Virtual size: 13KB

.reloc
Size: 6KB - Virtual size: 5KB