6d7c038c8a06d79d7a35d15c3c2006ee

Sharing

Copy URL Twitter E-mail

General

Target

6d7c038c8a06d79d7a35d15c3c2006ee
Size

3.7MB
MD5

6d7c038c8a06d79d7a35d15c3c2006ee
SHA1

9e0d1421893b8181eed1e67cac84bdd91a4c080c
SHA256

63b77d12dffff243b4670cc0981dfc5ca65edaa4b7a4d4e17b59787ea9f9d1b6
SHA512

915443ebe05e1487f475bd6bc61f3105d0624883f89b049a3ae87455261f714926e818ef67ea9f1e2fa61b4d1bca175dfd697244de9e03cea72dcc500e520a39
SSDEEP

98304:4L65SzJZBtfGLcey5kL62YTATDL5ce0beOUhbULmPsu1Aer2ALjAGV0zFLOAkGk/:4L65e+c/iPJAeeGeFLOyomFHKnPAG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6d7c038c8a06d79d7a35d15c3c2006ee

Files

6d7c038c8a06d79d7a35d15c3c2006ee
.dll windows:5 windows x86 arch:x86

d981f9b9d6fba82bf0fc343dd10d43cc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

EncodePointer
DecodePointer
InterlockedCompareExchange
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
ExpandEnvironmentStringsA
GetEnvironmentVariableA
GetEnvironmentVariableW
GlobalFlags
GlobalFindAtomA
GetSystemTime
LocalUnlock
LocalLock
GlobalGetAtomNameA
GetAtomNameA
SuspendThread
ResumeThread
SetEvent
CopyFileA
WaitForMultipleObjects
CreateEventA
ReleaseMutex
CreateMutexA
ReleaseSemaphore
CreateSemaphoreA
WaitForSingleObject
FormatMessageA
SetFileAttributesA
LocalFileTimeToFileTime
GetFileAttributesExA
GetFileSizeEx
FindNextFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetShortPathNameA
GetStringTypeExA
GetThreadLocale
FindClose
FindFirstFileA
GetVolumeInformationA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
GetProfileIntA
SystemTimeToFileTime
ReplaceFileA
SetFileTime
GetFileTime
GetFullPathNameA
GetDiskFreeSpaceA
VirtualProtect
RaiseException
lstrcpyW
lstrcmpW
lstrlenW
GetVersion
IsDBCSLeadByte
GetUserDefaultLCID
FindResourceExW
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalAddAtomA
GetCurrentProcessId
SetErrorMode
GlobalDeleteAtom
CompareStringA
GetCurrentThread
GetSystemDefaultUILanguage
ConvertDefaultLocale
GetUserDefaultUILanguage
LoadLibraryExA
SearchPathA
GlobalSize
GetFileAttributesA
GetFileSize
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsFree
TlsAlloc
LocalFree
LocalAlloc
GetModuleFileNameA
GetModuleFileNameW
ReleaseActCtx
CreateActCtxW
SetThreadPriority
GetLocaleInfoA
GetNumberFormatA
lstrcmpiA
GetWindowsDirectoryA
GetTickCount
FindResourceA
GlobalFree
lstrcmpA
GetCurrentDirectoryA
Sleep
InterlockedDecrement
InterlockedIncrement
SetFilePointer
CreateFileA
GetTempFileNameA
GetTempPathA
CloseHandle
GetModuleHandleW
InterlockedExchange
FreeLibrary
GetVersionExA
GetSystemDirectoryW
MulDiv
GetOEMCP
GetCPInfo
lstrlenA
LoadLibraryW
DeleteFileA
GetACP
InitializeCriticalSection
GetCurrentThreadId
GlobalUnlock
GlobalLock
GlobalAlloc
lstrcpyA
ActivateActCtx
GetProcAddress
GetModuleHandleA
LoadLibraryA
DeactivateActCtx
SetLastError
WideCharToMultiByte
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetLastError
InitializeCriticalSectionAndSpinCount
FindResourceW
LoadResource
LockResource
SizeofResource
IsProcessorFeaturePresent

msvcr100

memmove_s
strlen
memset
memcpy_s
toupper
strnlen
wcslen
wmemcpy_s
abort
_mbslwr_s
__CxxFrameHandler3
wcscspn
wcsspn
_wcsicmp
_mbscmp
vsprintf_s
_vscprintf
_mbschr
_mbsinc
_ismbcspace
_mbsstr
_purecall
free
malloc
labs
ldiv
atoi
_mbsupr_s
calloc
sqrt
atan2
_mbsicmp
_mbspbrk
_mbsrchr
_mbscspn
_mbsspn
clock
memcpy
abs
cos
sin
floor
fabs
ceil
exp
_splitpath_s
_mbscoll
_mbsicoll
wcscat_s
_mbsnbcmp
wcscpy_s
strcpy_s
_ismbcdigit
_ismbcalpha
_ismbcalnum
_ismbcprint
_mbctoupper
_mbctolower
atol
memcmp
sscanf_s
wcstombs_s
_localtime64_s
_endthread
_beginthread
_strdup
_makepath_s
_time64
strtod
_resetstkoflw
_recalloc
_errno
_snprintf_s
wcstoul
strcat_s
__argc
__argv
_strnicmp
_ismbblead
_mbsnbcpy_s
sprintf_s
wcsnlen
wcsrchr
_itoa_s
_ltoa_s
_mbsnbicmp
_mktime64
wcscmp
_snscanf_s
_vsnprintf_s
strtol
strtoul
realloc
_mbsdec
_fullpath
_get_osfhandle
_fileno
_open_osfhandle
_fdopen
__doserrno
fread
feof
ferror
clearerr_s
fwrite
fputs
fgets
fseek
ftell
fflush
fclose
_ultoa_s
wcsncpy_s
_snwprintf_s
_endthreadex
_beginthreadex
strncpy_s
_msize
_expand
wcschr
_vscwprintf
memmove
wcscoll
_mbsrev
vswprintf_s
_wcslwr_s
_wcsupr_s
wcsstr
_wcsicoll
wcspbrk
_wcsrev
iswspace
_unlock
__dllonexit
_lock
_onexit
?terminate@@YAXXZ
_malloc_crt
_encoded_null
_initterm
_initterm_e
_amsg_exit
__CppXcptFilter
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
__clean_type_info_names_internal
_CxxThrowException

user32

GetWindowTextLengthA
GetTabbedTextExtentW
GetDlgItem
CreateDialogIndirectParamA
GetActiveWindow
EndDialog
GetPropA
RemovePropA
SetPropA
MapDialogRect
GetMessageTime
GetMessagePos
GetDialogBaseUnits
GetDCEx
RemoveMenu
MsgWaitForMultipleObjectsEx
CharNextA
SetWindowContextHelpId
IsDialogMessageA
ClipCursor
SendNotifyMessageA
InSendMessage
GetMenuStringA
WindowFromDC
SetScrollRange
AdjustWindowRectEx
GetTabbedTextExtentA
CountClipboardFormats
LoadBitmapA
GetMenu
SetMenu
GetClassInfoExA
CreateWindowExA
SetWindowPlacement
TrackPopupMenuEx
RegisterClassA
WinHelpA
GetScrollRange
SetScrollInfo
GetScrollInfo
ScrollWindow
MonitorFromWindow
GetMenuCheckMarkDimensions
LoadAcceleratorsA
LoadMenuA
UnpackDDElParam
ReuseDDElParam
InsertMenuItemA
GetMenuBarInfo
GetWindowDC
BeginPaint
EndPaint
DefFrameProcA
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
RealChildWindowFromPoint
OemToCharBuffA
CharToOemBuffA
SetRect
PtInRect
InvalidateRect
UpdateWindow
SetTimer
ScreenToClient
GetCursorPos
IsWindowVisible
GetClientRect
KillTimer
SetRectEmpty
GetWindowRect
SendMessageA
EnableWindow
IsCharLowerA
GetKeyNameTextA
GetKeyboardLayout
MapVirtualKeyExA
SetMenuItemBitmaps
SetWindowLongA
MessageBoxA
GetWindowThreadProcessId
ShowOwnedPopups
UnregisterClassA
PostQuitMessage
DrawEdge
CharUpperBuffA
RegisterClipboardFormatA
InsertMenuA
IsWindowEnabled
ShowScrollBar
FrameRect
GetWindowRgn
ReleaseDC
GetDC
GetDoubleClickTime
GetWindowTextA
EnumChildWindows
GrayStringA
HideCaret
SetMenuDefaultItem
GetMenuDefaultItem
GetScrollPos
EnableScrollBar
UpdateLayeredWindow
SetFocus
GetMessageA
GetLastActivePopup
SubtractRect
DrawFrameControl
GetMenuItemInfoA
CheckMenuItem
GetMenuState
SetWindowTextA
LoadIconW
LoadImageW
CharUpperA
MapVirtualKeyA
ToAsciiEx
GetKeyboardState
CopyAcceleratorTableA
CreateAcceleratorTableA
DestroyCursor
IsClipboardFormatAvailable
GetClassLongA
GetSysColor
EnumDisplayMonitors
DestroyWindow
GetTopWindow
DestroyAcceleratorTable
NotifyWinEvent
SetWindowRgn
DeleteMenu
ModifyMenuA
IsZoomed
IsMenu
GetSystemMenu
GetNextDlgTabItem
EnableMenuItem
SetScrollPos
IntersectRect
CreatePopupMenu
AppendMenuA
EndDeferWindowPos
BeginDeferWindowPos
GetKeyState
LockWindowUpdate
SetWindowPos
UnionRect
GetUpdateRect
UnhookWindowsHookEx
SetWindowsHookExA
CallNextHookEx
SetLayeredWindowAttributes
ValidateRect
LoadCursorA
SystemParametersInfoA
MonitorFromPoint
GetMonitorInfoA
DrawIcon
GetForegroundWindow
IsIconic
GetMenuItemID
GetMenuItemCount
GetWindow
DefWindowProcA
GetClassInfoA
PostThreadMessageA
GetSubMenu
LoadMenuW
DestroyMenu
GetSystemMetrics
TranslateAcceleratorA
LoadAcceleratorsW
GetCapture
DrawStateA
CloseClipboard
SetClipboardData
EmptyClipboard
OffsetRect
GetAsyncKeyState
GetDesktopWindow
WaitMessage
DispatchMessageA
TranslateMessage
PeekMessageA
SetForegroundWindow
LoadCursorW
GetFocus
IsChild
TrackPopupMenu
LoadIconA
GetNextDlgGroupItem
DrawFocusRect
SetCursor
GetWindowLongA
CopyImage
GetIconInfo
FillRect
LoadImageA
CopyRect
LoadBitmapW
MapWindowPoints
MessageBeep
SetCursorPos
DrawTextExA
DrawTextA
TabbedTextOutA
InvalidateRgn
MoveWindow
CreateMenu
SetActiveWindow
InvertRect
CallWindowProcA
WindowFromPoint
ClientToScreen
SetCapture
ReleaseCapture
CopyIcon
BringWindowToTop
RegisterWindowMessageA
DestroyIcon
GetClassNameA
SetParent
ShowWindow
GetWindowPlacement
RedrawWindow
IsRectEmpty
GetDlgCtrlID
PostMessageA
DeferWindowPos
EqualRect
GetSysColorBrush
SetClassLongA
IsWindow
GetParent
DrawIconEx
SendDlgItemMessageA
InflateRect
OpenClipboard

gdi32

Rectangle
GetStockObject
GetPaletteEntries
CreatePalette
RealizePalette
GetNearestPaletteIndex
GetSystemPaletteEntries
GetPixel
CreatePolygonRgn
PtInRegion
FrameRgn
CreateCompatibleBitmap
SetPixelV
BitBlt
GetRgnBox
CreateRectRgnIndirect
OffsetRgn
CreateDIBSection
SetPixel
Ellipse
GetBkColor
CreateFontIndirectA
GetDeviceCaps
GetTextCharsetInfo
EnumFontFamiliesA
CreatePen
CreatePatternBrush
CreateDIBitmap
SetPaletteEntries
ExtFloodFill
StartPage
EndPage
EndDoc
DeleteDC
GetCurrentObject
PatBlt
CreateRectRgn
CombineRgn
GetBoundsRect
FillRgn
SetRectRgn
CreateRoundRectRgn
EnumFontFamiliesExA
StretchBlt
SetDIBColorTable
CreateBitmap
SetBkColor
SelectPalette
GetDIBits
Polyline
ExtTextOutA
CreateHatchBrush
CreateEllipticRgn
RoundRect
StretchDIBits
CreateFontA
GetCharWidthA
LPtoDP
CreateMetaFileA
CloseMetaFile
DeleteMetaFile
GetViewportOrgEx
PtVisible
RectVisible
TextOutA
Escape
GetClipBox
Polygon
GetCurrentPositionEx
MoveToEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SaveDC
RestoreDC
GetROP2
GetBkMode
GetPolyFillMode
GetStretchBltMode
GetNearestColor
GetTextFaceA
GetWindowExtEx
GetViewportExtEx
SetTextColor
SetMapMode
SetWindowExtEx
ScaleWindowExtEx
GetTextExtentPoint32W
GetTextExtentPointA
GetWindowOrgEx
SetWindowOrgEx
IntersectClipRect
CreateDCA
SetBrushOrgEx
SetAbortProc
StartDocA
DPtoLP
AbortDoc
CopyMetaFileA
UnrealizeObject
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
OffsetWindowOrgEx
SelectClipRgn
ExcludeClipRect
OffsetClipRgn
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetLayout
SetLayout
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
SelectClipPath
GetClipRgn
ExtSelectClipRgn
PlayMetaFileRecord
PlayMetaFile
EnumMetaFile
ExtCreatePen
CreateDIBPatternBrushPt
GetMapMode
GetTextColor
GetObjectType
SelectObject
DeleteObject
CreateCompatibleDC
CreateSolidBrush
GetObjectA
GetTextExtentPoint32A
GetTextAlign
GetTextMetricsA

shlwapi

PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
PathRemoveExtensionA
PathFindFileNameA
PathFindExtensionA
SHStrDupW
UrlUnescapeA

comctl32

ImageList_GetIcon
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Remove
ImageList_ReplaceIcon
ImageList_Create
ImageList_Destroy
ImageList_GetIconSize
ImageList_DrawEx

msimg32

AlphaBlend
TransparentBlt

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 212KB - Virtual size: 212KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d981f9b9d6fba82bf0fc343dd10d43cc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcr100

user32

gdi32

shlwapi

comctl32

msimg32

Sections

.text Size: 2.6MB - Virtual size: 2.6MB

.data Size: 36KB - Virtual size: 57KB

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.reloc Size: 212KB - Virtual size: 212KB

.text
Size: 2.6MB - Virtual size: 2.6MB

.data
Size: 36KB - Virtual size: 57KB

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

.reloc
Size: 212KB - Virtual size: 212KB