80bdff4d233d5a1f869593c4b00f2d2d1c85d2fbecc2de24b965dcef98570b49

Sharing

Copy URL

Twitter E-mail

General

Target

80bdff4d233d5a1f869593c4b00f2d2d1c85d2fbecc2de24b965dcef98570b49
Size

298KB
MD5

5e21272c5986d988eced841a5548d75d
SHA1

eda6dc6a5e781a0654d0dac03e94c1599a7ca996
SHA256

80bdff4d233d5a1f869593c4b00f2d2d1c85d2fbecc2de24b965dcef98570b49
SHA512

5f84be5756adc4898b780fc36c4c03d881f0d0190ef6bda5a24ab4635c3bcd4de9f4b3981bb2a7f9142bbccb98ba17abb98d4be6ca15fa66f6effb2a5ac30c0f
SSDEEP

6144:jO1l3IfJ+5EZ2wD9aVzxefT7fwv91n6MRq8mRzZpQUnVjTAI7sy5OcmvcRBMUzd9:jOv4fJ+5EZ2C9qAfT7fwF1n62qzRfQUE

Score

N/A

Malware Config

Signatures

Files

80bdff4d233d5a1f869593c4b00f2d2d1c85d2fbecc2de24b965dcef98570b49
.dll windows x64

0afa0ad46d7868cee3ee2470d4c79336

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

swprintf
__C_specific_handler
wcscmp
_purecall
_snprintf
strrchr
strchr
_vsnprintf
strstr
setlocale
wcscat
_wsplitpath
_wmakepath
wcslen
wcscpy
wcstombs
_wtoi
wcsncat
mbstowcs
atoi
sprintf
atol
sscanf
wcsstr
_wctime
_close
_fstat
wcsncmp
_wcsicmp
iswdigit
localtime
_wcsupr
wcsncpy
strncmp
memmove
strncpy
mktime
time
_stricmp
toupper
_splitpath
swscanf
strtok
_wopen
_snwprintf
wcsrchr
malloc
free
wcschr
_initterm

kernel32

GetComputerNameW
RtlZeroMemory
OutputDebugStringA
IsBadWritePtr
SetLastError
GetVersion
GetFileAttributesW
GetModuleHandleW
GetModuleHandleA
LoadLibraryA
GetLocalTime
GetTempPathW
lstrcatW
IsValidCodePage
SetFilePointer
lstrlenA
WriteFile
CloseHandle
InitializeCriticalSection
GetLocaleInfoW
LoadLibraryW
GetLastError
GetProcAddress
HeapDestroy
DeleteCriticalSection
FreeLibrary
GetModuleFileNameW
MultiByteToWideChar
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
GlobalLock
GetComputerNameA
IsDBCSLeadByte
SizeofResource
GlobalUnlock
GlobalHandle
MulDiv
GlobalFree
GlobalAlloc
FreeResource
LockResource
LoadResource
FindResourceW
lstrcpyW
GetACP
lstrcpynA
lstrcmpA
GetPrivateProfileSectionA
CreateFileA
CreateFileMappingW
HeapAlloc
GetProcessHeap
HeapFree
Sleep
UnmapViewOfFile
MapViewOfFile
HeapCreate
GetFileSize
CreateFileW
IsDBCSLeadByteEx
lstrcpyA

user32

GetActiveWindow
SystemParametersInfoW
UpdateWindow
wsprintfA
LoadStringW
SetWindowLongPtrW
GetWindowLongPtrW
GetDlgItem
GetSysColorBrush
GetDlgItemTextA
BeginPaint
EndPaint
EnumChildWindows
GetParent
EnableWindow
ShowWindow
IsWindowEnabled
SendMessageW
SetFocus
EndDialog
WinHelpW
GetDlgCtrlID
ChildWindowFromPointEx
ScreenToClient
DestroyIcon
SetCursor
LoadCursorW
PostMessageW
CheckDlgButton
IsDlgButtonChecked
FindWindowExW
DestroyWindow
SetDlgItemTextW
LoadStringA
MessageBoxW
SendDlgItemMessageW
SetDlgItemTextA
LoadIconW
ReleaseDC
GetDC
DrawTextW
DrawIconEx
FillRect
LoadBitmapW
GetWindowRect
RedrawWindow
GetClassNameW
GetClientRect
MoveWindow
GetWindowTextW
SetPropW
GetPropW
GetAncestor
RemovePropW
CallWindowProcW
DialogBoxParamW
CheckRadioButton
wsprintfW
GetDlgItemTextW
SetWindowTextW
GetSysColor

gdi32

CreatePen
Rectangle
SelectPalette
RealizePalette
SetDIBits
CreatePalette
CreateCompatibleDC
GetObjectW
SelectObject
CreateBitmap
CreateCompatibleBitmap
StretchBlt
BitBlt
DeleteDC
ExtEscape
SetBkColor
SetTextColor
CreateSolidBrush
DeleteObject
GetTextMetricsW
GetDeviceCaps
CreateFontIndirectW

advapi32

RegQueryValueExW
RegOpenKeyW
GetUserNameW
RegCloseKey
RegSetValueExW
RegDeleteKeyW
RegOpenKeyExW
RegEnumKeyExW
RegCreateKeyExW
RegQueryValueExA
RegOpenKeyExA
GetUserNameA

shell32

ShellExecuteA
ShellExecuteW

winspool.drv

SetPrinterDataW
GetPrinterDriverW
GetPrinterDataW
GetJobW
EnumPrintersW
GetPrinterW
OpenPrinterW
ClosePrinter
GetFormW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

ole32

CoCreateInstance
CoUninitialize
CoInitialize

rpcrt4

UuidToStringW
UuidCreate
UuidFromStringW
RpcStringFreeW

Exports

Exports

DllCanUnloadNow
DllGetClassObject

Sections

.text
Size: 267KB - Virtual size: 267KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0afa0ad46d7868cee3ee2470d4c79336

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

shell32

winspool.drv

version

ole32

rpcrt4

Exports

Exports

Sections

.text Size: 267KB - Virtual size: 267KB

.data Size: 8KB - Virtual size: 13KB

.pdata Size: 11KB - Virtual size: 10KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 267KB - Virtual size: 267KB

.data
Size: 8KB - Virtual size: 13KB

.pdata
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 8KB - Virtual size: 8KB