RepEngSyncU[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

RepEngSyncU.dll
Size

38KB
MD5

51f56acd7e27961ce05d157f09e96e3d
SHA1

c0ca97ea6f239e82d7818b5a807cc0e49a1c868f
SHA256

d6df6f15e228e17706432ed60179e25d145c8d0056255c389485f30ef974c01f
SHA512

15b4f007dcf631609c4c01a3cdedf318b3d99c37ea10e6312cd497f93c02e0a2e08f87adb3ceba00b11e085ce6ac397e8e64ccd4b285a618b8be780cc0d910ae
SSDEEP

768:4++3IX3YQZNVFE9AOqSPQ/2J/27BJPbhD9KUieTnUQ:U3IX3YeaTqSPMF0gTnU

Score

N/A

Malware Config

Signatures

Files

RepEngSyncU.dll
.dll windows x86

ed7f77d1df31a383c7f14f2b3e8dcacc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
RaiseException
InitializeCriticalSection
DeleteCriticalSection
DisableThreadLibraryCalls
GetLastError
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
MultiByteToWideChar
GetCurrentThreadId
GetTickCount
GetModuleHandleW
GetModuleFileNameW
CloseHandle
OpenProcess
GetProcAddress
LoadLibraryW
lstrlenW
GlobalAlloc
GlobalSize
CreateProcessW
GetPrivateProfileIntW
EnterCriticalSection
LeaveCriticalSection
HeapDestroy
HeapAlloc
lstrlenA
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
ExitProcess
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
GetVersionExA

user32

CallNextHookEx
RegisterWindowMessageW
DestroyWindow
UnhookWindowsHookEx
UnregisterClassA
MessageBoxW
FindWindowW
GetTopWindow
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
SendMessageW
GetWindowThreadProcessId
GetWindowLongW
GetParent
GetForegroundWindow
SendMessageTimeoutW
SetForegroundWindow
SystemParametersInfoW
MsgWaitForMultipleObjects
PeekMessageW
TranslateMessage
DispatchMessageW
PostQuitMessage
KillTimer
SetTimer
PostThreadMessageW
LoadStringW
SetWindowsHookExW
UnregisterClassW
RegisterClassW
CreateWindowExW
DefWindowProcW
GetMessageExtraInfo
ClientToScreen
IsWindow
PostMessageW
CharLowerW

ole32

CoMarshalInterface
CreateStreamOnHGlobal
CoUnmarshalInterface
CoGetClassObject
CLSIDFromProgID
CoCreateInstance

oleaut32

SysAllocString
SysFreeString
SysStringLen
SysAllocStringByteLen
SysStringByteLen
VariantInit
VariantClear
SysAllocStringLen
SysReAllocStringLen
VarBstrCat

msvcr71

iswdigit
_wtoi
vswprintf
wcsncpy
?terminate@@YAXXZ
??1type_info@@UAE@XZ
__security_error_handler
__CppXcptFilter
_adjust_fdiv
malloc
_initterm
_onexit
__dllonexit
??3@YAXPAX@Z
memset
wcsstr
_access
wcsrchr
wcschr
__CxxFrameHandler
??_U@YAPAXI@Z
wcscmp
wcscpy
wcslen
memmove
iswspace
realloc
_CxxThrowException
free
_except_handler3

Exports

Exports

?InstallReplaySyncHook@@YA_NXZ
?SetReplaySyncMask@@YA_NW4MASK@@PAUtagPOINT@@@Z
?UninstallReplaySyncHook@@YA_NXZ
?WaitReplaySyncRetMsg@@YA_NI@Z

Sections

.text
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 472B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

REPLAY_S
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 816B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ed7f77d1df31a383c7f14f2b3e8dcacc

Headers

File Characteristics

Imports

kernel32

user32

ole32

oleaut32

msvcr71

Exports

Exports

Sections

.text Size: 26KB - Virtual size: 25KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 472B

REPLAY_S Size: 512B - Virtual size: 32B

.rsrc Size: 1024B - Virtual size: 816B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 26KB - Virtual size: 25KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 472B

REPLAY_S
Size: 512B - Virtual size: 32B

.rsrc
Size: 1024B - Virtual size: 816B

.reloc
Size: 2KB - Virtual size: 2KB