0d460a28b713043d1251bd3b22283cb2

Sharing

Copy URL Twitter E-mail

General

Target

0d460a28b713043d1251bd3b22283cb2
Size

72KB
MD5

0d460a28b713043d1251bd3b22283cb2
SHA1

842e6f8affa19750c77082e998de2d955671d66f
SHA256

55eb501f39c0584f07279a2b8014714100c4e9c2dd928c5d1d491acf4aaa99df
SHA512

e9ea7c3f66b27eae93d0d93c01ea86d8eac57ba6a495c14a42c10ba384af6b5920250d5c24a692056d4bd44f95cfec0a10cfe327e286c2ffe2e1275b97541c0d
SSDEEP

1536:G26ldiBXjn/AXVKnTZeD/cQVOPNwkpBxT8+mJj:jiAn/Y8n9eD/yNNpDT8+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d460a28b713043d1251bd3b22283cb2

Files

0d460a28b713043d1251bd3b22283cb2
.dll windows:4 windows x86 arch:x86

d814f3ee57cad0cc5b2f97d8db8fc8c6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GlobalAddAtomA
WriteFileEx
DeleteFileW
SetConsoleScreenBufferSize
CreateTimerQueueTimer
GetEnvironmentStringsW
IsBadHugeReadPtr
EnumResourceNamesA
LocalHandle
InterlockedCompareExchange
VerifyVersionInfoW
ReadConsoleInputW
WriteFile
CreateMailslotA
ReadFileEx
GetVersionExA
ResumeThread
VirtualFree
GetTempPathA
MoveFileExW
ReadConsoleInputA
WaitForMultipleObjectsEx
SleepEx
SetFilePointerEx
ReplaceFileW
FindResourceW
VerLanguageNameW
TerminateProcess
LocalLock
GlobalGetAtomNameW
GetConsoleCP
PeekNamedPipe
CreateDirectoryW
FindAtomA
InterlockedExchangeAdd
GetStringTypeExW
GetEnvironmentVariableA
InterlockedIncrement
SetTimeZoneInformation
IsValidLanguageGroup
MapViewOfFileEx
CompareStringW
CreateIoCompletionPort
GetProfileStringW
LocalFlags
GetVolumeInformationA
GetFileInformationByHandle
GetCurrentDirectoryW
CreateNamedPipeW
OpenEventW
PulseEvent
GetStringTypeW
GlobalAddAtomW
EnumUILanguagesW
CreatePipe
FindFirstVolumeW
PurgeComm
SetComputerNameA
ClearCommError
RtlUnwind
lstrcpyA
GetTimeZoneInformation
GlobalMemoryStatusEx
OpenProcess
LCMapStringW
AreFileApisANSI
RemoveDirectoryW
SetEnvironmentVariableW
GetFileAttributesExW
GetNumberFormatW
GetProcessVersion
FillConsoleOutputCharacterW
AllocConsole
DuplicateHandle
HeapReAlloc
DeviceIoControl
GetSystemPowerStatus
GlobalFindAtomW
GetDateFormatA
GetComputerNameA
OpenEventA
GetFileTime
WriteProfileStringW
GetConsoleMode
GetComputerNameExW
GetDriveTypeA
SetDefaultCommConfigW
GetExitCodeProcess
ExpandEnvironmentStringsW
GetFileAttributesExA
GlobalDeleteAtom
FindNextFileW
GetCPInfo
WriteProcessMemory
GetComputerNameW
GetDiskFreeSpaceExW
WaitNamedPipeA
GetVersion
GetTempPathW
GetUserDefaultUILanguage
CompareStringA
DeleteTimerQueueEx
CreateEventA
DosDateTimeToFileTime
GlobalFree
CreateJobObjectW
SetSystemTime
GetSystemWindowsDirectoryA
SetLocalTime
BindIoCompletionCallback
GetSystemDefaultUILanguage
FindFirstFileA
GetDateFormatW
GetSystemTime
GetTimeFormatA
TerminateJobObject
HeapUnlock
GetShortPathNameA
CopyFileExW
GlobalFlags
FindResourceA
SetLastError
CreateFileMappingW
RegisterWaitForSingleObjectEx
FindNextVolumeMountPointW
UnregisterWait
FindFirstFileExW
GetLocaleInfoW
Sleep
GetStartupInfoW
FindNextVolumeW
HeapFree
MapViewOfFile
CreateDirectoryA
GetModuleHandleA
InitializeCriticalSection
UnmapViewOfFile
lstrlenA
VirtualProtect
CreateThread
LocalFree
WaitForSingleObject
GetSystemTimeAsFileTime
VirtualQuery
GetProcessHeap
CreateFileMappingA
MoveFileExA
GetLastError
LoadLibraryA
EnterCriticalSection
CloseHandle
InterlockedExchange
GetProcAddress
lstrcpyW
CopyFileA
CreateProcessA
HeapAlloc
EnumResourceNamesW

user32

OemToCharA
SetScrollPos
SendDlgItemMessageW
EnumDesktopsW
GetPropW
PeekMessageA
EnumDisplaySettingsW
FindWindowExW
HideCaret
ShowWindow
GetUpdateRgn
ModifyMenuA
ChangeDisplaySettingsW
SetMenuItemBitmaps
GetIconInfo
EndDeferWindowPos
PostMessageA
WinHelpW
GetWindowTextW
GetMonitorInfoW
DrawFocusRect
CharNextExA
SetWindowTextW
MonitorFromRect
IsRectEmpty
GetMonitorInfoA
MessageBoxExA
CreateIcon
DefFrameProcA
GetClassInfoExW
WindowFromDC
GetKeyNameTextA
DefFrameProcW
GetProcessWindowStation
FillRect
IntersectRect
ShowOwnedPopups
GetClassLongA
CreatePopupMenu
SendInput
SetCaretPos
CharUpperW
SetDlgItemInt
CopyImage
GetClassInfoExA
MapWindowPoints
CreateDialogParamA
GetWindowWord
IsWindowVisible
CharNextA
SetDlgItemTextW
ReleaseCapture
OpenWindowStationW
RemovePropW
DrawTextExW
GetClassInfoA
ReleaseDC
IsDialogMessageA
GetWindowContextHelpId
SendMessageA
CharUpperA
CreateCursor
FindWindowA
LoadMenuW
DrawTextW
GetMenuItemID
GetMenuState
GetMessagePos
GetThreadDesktop
RemovePropA
PostMessageW
SetDlgItemTextA
BeginDeferWindowPos
TranslateAcceleratorA
ChangeMenuA
GetShellWindow
GetUserObjectInformationW
SetWindowPos
CopyIcon
FreeDDElParam
TabbedTextOutA
SetForegroundWindow
LoadStringW
GetWindowLongA
IsCharAlphaA
UnionRect
AdjustWindowRect
CallWindowProcA
GetWindowRgn
PeekMessageW
DialogBoxParamW
CheckMenuItem
SetMenu
LoadImageW
CopyAcceleratorTableW
GetCaretBlinkTime
InsertMenuW
GetKeyNameTextW
GetWindowLongW
SendNotifyMessageA
LoadStringA
SetWindowPlacement
CreateDialogIndirectParamA
InSendMessage
DeleteMenu
CheckMenuRadioItem
DestroyCaret
ModifyMenuW
IsIconic
UnpackDDElParam
BeginPaint
DialogBoxIndirectParamA
PostThreadMessageW
TranslateAcceleratorW
IsWindowEnabled
GetTopWindow
GetSystemMenu
SetRectEmpty
SetPropW
GetMenuItemInfoA
IsWindow
GetWindowPlacement
ShowWindowAsync
UnregisterClassA
ShowCaret
KillTimer
UnhookWindowsHookEx
DispatchMessageA
SetWindowsHookExA
OpenDesktopA

advapi32

SetSecurityInfo
RegSetValueExA
RegDeleteValueA
GetUserNameA
RegConnectRegistryW
OpenServiceW
RegCreateKeyExW
OpenServiceA
DuplicateToken
RegEnumKeyExW
RegLoadKeyA
RegEnumValueW
StartServiceW
ImpersonateLoggedOnUser
RegSaveKeyExW
QueryServiceStatus
RegUnLoadKeyW
RegEnumKeyW
ImpersonateAnonymousToken
RegQueryValueExW
StartServiceCtrlDispatcherA
RegEnumValueA
RegQueryValueA
RegisterEventSourceW
GetOldestEventLogRecord
ReadEventLogA
RegConnectRegistryA
RegQueryValueW
RegSaveKeyW
OpenSCManagerA
RegCreateKeyExA
RegSaveKeyA
GetNumberOfEventLogRecords
StartServiceCtrlDispatcherW
MapGenericMask
RegSetValueW
QueryServiceConfig2W
ImpersonateNamedPipeClient
RegUnLoadKeyA
StartServiceA
QueryServiceStatusEx

gdi32

CreateEnhMetaFileW
ExtTextOutA
DeleteEnhMetaFile
GetSystemPaletteUse
GetGlyphOutlineW
GetPolyFillMode
StartDocA
SetColorAdjustment
GetOutlineTextMetricsA
SetMiterLimit
LPtoDP
GetGlyphOutlineA
GetRegionData
CreateFontW
CreateEnhMetaFileA
SetPolyFillMode
PlayMetaFileRecord
SetViewportOrgEx
DPtoLP
StretchBlt
SetTextJustification
GetPath
GetObjectA
IntersectClipRect
SetRectRgn
SetPixel
UpdateColors
GetObjectType
SetWindowOrgEx
GetTextCharset
PolyBezierTo
CreateHatchBrush
GetTextExtentPointA
GetTextExtentExPointW
GetEnhMetaFileBits
CreateFontIndirectW
EnumFontFamiliesExW
SetTextAlign
GetWindowOrgEx
PlayEnhMetaFileRecord
StartDocW
SelectObject
EnumFontFamiliesExA
GetStockObject
GetNearestColor
CreateBitmap
SetSystemPaletteUse
CreatePen
OffsetWindowOrgEx
CloseMetaFile
SetDCBrushColor
CopyMetaFileW
ExtFloodFill
GetCurrentPositionEx
StrokeAndFillPath
GetNearestPaletteIndex
SetBkColor
GetGraphicsMode
CreateMetaFileA
SetBitmapDimensionEx
GetCharWidthW
Chord
ScaleViewportExtEx
PatBlt
CreateRoundRectRgn
ExtEscape
CreateRectRgn
GetWindowExtEx
GetFontData
GetViewportExtEx
PolyPolyline
RoundRect
EnumFontFamiliesA
PtInRegion
AddFontResourceA
CreateFontIndirectA
GetPaletteEntries
FillPath
CreatePolygonRgn
GetCharWidth32W
GetLayout
EndPage
ExtCreateRegion
CloseFigure
CreateBrushIndirect
SetGraphicsMode

Exports

Exports

DllInit
DllInstall

Sections

.text
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 972B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d814f3ee57cad0cc5b2f97d8db8fc8c6

Headers

File Characteristics

Imports

kernel32

user32

advapi32

gdi32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 45KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 4KB - Virtual size: 972B

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 48KB - Virtual size: 45KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 4KB - Virtual size: 972B

.reloc
Size: 4KB - Virtual size: 2KB