76bdaabf8949388778890ee3fc08b5a70a2b537ebdfa18070fe599e7529b7f1c[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

76bdaabf8949388778890ee3fc08b5a70a2b537ebdfa18070fe599e7529b7f1c.dll
Size

220KB
MD5

46417ad0fc33783c298b7441aced2c1a
SHA1

05404bf3c5f4f534b1139e921891f46842c14286
SHA256

76bdaabf8949388778890ee3fc08b5a70a2b537ebdfa18070fe599e7529b7f1c
SHA512

59ea726334a61ce34fdfee0da930b282fefbfbd7fe0ccc289fb633ad7897fbf89a7a277e0ad187d9443bd08436d36343f7e57f484ff3d10ec645e228cad7cf94
SSDEEP

3072:Xsc7rew/Ceylv8MTVy1D9/2tQwG4n4x4mCLhK6Z6U43xDdXsAg0FujVAJkRK1lrT:XrPe86g9/rC4xpCt48AOpAJUk3j

Score

N/A

Malware Config

Signatures

Files

76bdaabf8949388778890ee3fc08b5a70a2b537ebdfa18070fe599e7529b7f1c.dll
.dll windows x86

fe09112422a36e740a996ed7d6eeee11

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
OpenProcess
MultiByteToWideChar
Sleep
GetTempPathA
K32GetModuleFileNameExA
GetLastError
GetFileAttributesA
CreateFileA
FileTimeToSystemTime
LoadLibraryA
DeleteFileA
CloseHandle
HeapAlloc
GetProcAddress
VerSetConditionMask
GetProcessHeap
WinExec
VerifyVersionInfoW
SystemTimeToTzSpecificLocalTime
CreateProcessA
GetFileTime
GetComputerNameA
CreateMutexA
FindClose
FindNextFileA
HeapFree
FindFirstFileA
HeapSize
WriteConsoleW
FlushFileBuffers
SetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindFirstFileExA
GetConsoleCP
WriteFile
GetACP
GetFileType
GetStdHandle
ReadConsoleW
GetConsoleMode
HeapReAlloc
GetLogicalDrives
GetModuleFileNameA
CreateDirectoryW
CreateFileW
GetFileAttributesExW
SetEndOfFile
SetFilePointerEx
AreFileApisANSI
WideCharToMultiByte
FormatMessageW
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetModuleHandleW
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetStringTypeW
LCMapStringW
GetCPInfo
LocalFree
SetEvent
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
RaiseException
RtlUnwind
FreeLibrary
LoadLibraryExW
InterlockedFlushSList
ExitProcess
GetModuleHandleExW
ReadFile

advapi32

RegEnumKeyExA
RegCloseKey
RegOpenKeyExA
GetUserNameA
RegQueryValueExA

ole32

CoUninitialize
CoCreateInstance
CoInitializeEx

oleaut32

VariantClear
SysAllocString
SysFreeString
VariantInit

ws2_32

WSACleanup
send
socket
connect
inet_addr
WSASocketA
recv
htons
WSAStartup
gethostbyname
inet_ntoa
closesocket
WSAConnect

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

wtsapi32

WTSFreeMemory
WTSEnumerateProcessesA

iphlpapi

GetAdaptersInfo

Exports

Exports

message

Sections

.text
Size: 148KB - Virtual size: 147KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 4.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 400B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe09112422a36e740a996ed7d6eeee11

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

ole32

oleaut32

ws2_32

version

wtsapi32

iphlpapi

Exports

Exports

Sections

.text Size: 148KB - Virtual size: 147KB

.rdata Size: 57KB - Virtual size: 56KB

.data Size: 3KB - Virtual size: 4.6MB

.gfids Size: 512B - Virtual size: 400B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 148KB - Virtual size: 147KB

.rdata
Size: 57KB - Virtual size: 56KB

.data
Size: 3KB - Virtual size: 4.6MB

.gfids
Size: 512B - Virtual size: 400B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 9KB - Virtual size: 9KB