017187a1b6d58c69d90d81055db031f1a7569a3b95743679b21e44ea82cfb6c7[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

017187a1b6d58c69d90d81055db031f1a7569a3b95743679b21e44ea82cfb6c7.dll
Size

758KB
MD5

5ec7f63f046d8448c7ffe9e18ec6a801
SHA1

6dc2a2edec3fa1c654787d7c95d35c64160e474a
SHA256

017187a1b6d58c69d90d81055db031f1a7569a3b95743679b21e44ea82cfb6c7
SHA512

c5224b1b56fba762b91a3d7fff997ff7458c0810c2f08749ee2414c72c701e508dd24f76460b9519cde3f5f9f948df0f832d6d00963ba9259c8c8c481fb083ff
SSDEEP

12288:hzpOeaSduvwNfPW1ofKW56ECQ2YP/b9877G59QNFZCE1daFJB1iFtyyvywr9S5Np:WSd07on1POvG8EE1dS1iFtyyawr9S5Np

Score

1^/10

Malware Config

Signatures

Files

017187a1b6d58c69d90d81055db031f1a7569a3b95743679b21e44ea82cfb6c7.dll
.dll windows x86

8e1ee04a99c77bd54c6dc55214ffa2e3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
OpenEventW
CreateEventW
Sleep
CloseHandle
CreateThread
ExitProcess
GetLastError
ReadFile
WriteFile
SetFilePointer
CreateFileW
UnmapViewOfFile
GetFileInformationByHandle
FileTimeToSystemTime
GetLocalTime
GetFileSize
SystemTimeToFileTime
WideCharToMultiByte
GetTickCount
GetCurrentProcess
DuplicateHandle
GetProcAddress
GetFileSizeEx
SetFilePointerEx
LoadLibraryW
VirtualQuery
GetSystemPowerStatus
GetSystemTimeAsFileTime
GetModuleFileNameW
ExitThread
GetProcessId
TlsSetValue
GetCurrentThreadId
ReleaseMutex
TlsAlloc
TlsGetValue
TlsFree
OpenThread
SetHandleInformation
SetThreadAffinityMask
QueryPerformanceFrequency
QueryPerformanceCounter
EnterCriticalSection
InterlockedDecrement
LeaveCriticalSection
SetEvent
ResetEvent
InterlockedIncrement
WriteConsoleW
GetProcessHeap
HeapSize
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
DecodePointer
DeleteCriticalSection
SetLastError
InitializeCriticalSectionAndSpinCount
SwitchToThread
GetModuleHandleW
EncodePointer
MultiByteToWideChar
LCMapStringW
GetLocaleInfoW
GetStringTypeW
GetCPInfo
TryEnterCriticalSection
SetThreadPriority
GetExitCodeThread
GetSystemInfo
GetEnvironmentVariableW
SetEnvironmentVariableW
GetComputerNameW
GetVersionExA
GetVersionExW
InterlockedExchange
WaitForMultipleObjects
CreateMutexW
InitializeSListHead
WaitForSingleObjectEx
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
GetCurrentProcessId
TerminateProcess
RtlUnwind
RaiseException
InterlockedPushEntrySList
InterlockedFlushSList
FreeLibrary
LoadLibraryExW
GetFileType
FreeLibraryAndExitThread
GetModuleHandleExW
GetModuleFileNameA
HeapFree
HeapAlloc
GetACP
GetStdHandle
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
SetStdHandle
FlushFileBuffers
GetConsoleCP
GetConsoleMode
ReadConsoleW
HeapReAlloc
FindClose

user32

CharUpperW

advapi32

RegisterServiceCtrlHandlerExW
GetUserNameW
SetServiceStatus

ole32

CoCreateGuid

gdiplus

GdiplusStartup
GdipGetImageEncodersSize
GdipGetImageEncoders

shlwapi

PathRemoveFileSpecW
PathFindFileNameW
PathFileExistsW

iphlpapi

GetAdaptersInfo

Exports

Exports

DllEntry
ServiceMain
colorpack
graphicspack
packbegin
packstored

Sections

.text
Size: 531KB - Virtual size: 531KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 129KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 65KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 744B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e1ee04a99c77bd54c6dc55214ffa2e3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

gdiplus

shlwapi

iphlpapi

Exports

Exports

Sections

.text Size: 531KB - Virtual size: 531KB

.rdata Size: 129KB - Virtual size: 128KB

.data Size: 65KB - Virtual size: 117KB

.rsrc Size: 1024B - Virtual size: 744B

.reloc Size: 30KB - Virtual size: 29KB

.text
Size: 531KB - Virtual size: 531KB

.rdata
Size: 129KB - Virtual size: 128KB

.data
Size: 65KB - Virtual size: 117KB

.rsrc
Size: 1024B - Virtual size: 744B

.reloc
Size: 30KB - Virtual size: 29KB