winampGetMediaLibraryPlugin
Static task
static1
Behavioral task
behavioral1
Sample
75b109ae6df9609162e7706e54969753.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
75b109ae6df9609162e7706e54969753.dll
Resource
win10v2004-20231215-en
General
-
Target
75b109ae6df9609162e7706e54969753
-
Size
271KB
-
MD5
75b109ae6df9609162e7706e54969753
-
SHA1
fb32d8dc0e3d2f1fbcad1e5b129493f1516e6fcc
-
SHA256
e6242f31c3acab913184823dbf50fbd054d1bf74509ada61d6ecd9c4a2b8e8a4
-
SHA512
f01e0731e26ba49761fd6547953ede588121448919f0c55aa91c44e980cf438f1cc6931aed3ab9f5738f34240fabd3abf93af31116e82444a451f0fdf7b7d7ba
-
SSDEEP
6144:lrPEQ07VpYMm2K+bUQJc4GCF2Zoq+lj6x69eIzU5Mn:lAJxCg7dc4GC4Zojlk69
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 75b109ae6df9609162e7706e54969753
Files
-
75b109ae6df9609162e7706e54969753.dll windows:4 windows x86 arch:x86
7bd1821d51055be4ddec11d5a2fa1bba
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
comctl32
ord17
ImageList_GetIconSize
ImageList_Create
InitCommonControlsEx
shlwapi
PathFindExtensionW
PathFindFileNameW
PathCombineW
PathCombineA
PathIsURLW
SHAutoComplete
wnsprintfW
StrStrW
StrCmpNIW
PathRemoveExtensionW
PathRemoveFileSpecW
kernel32
FindClose
lstrcmpiW
GlobalFree
lstrcpynW
MultiByteToWideChar
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
lstrcpynA
CreateThread
WideCharToMultiByte
GetSystemTime
GetTempPathW
GetTempFileNameW
SetFilePointer
ReadFile
DeleteFileW
InitializeCriticalSection
DeleteCriticalSection
GetTempFileNameA
CreateFileA
CreateDirectoryA
GetModuleHandleA
lstrcmpW
GetShortPathNameW
DeleteFileA
MulDiv
WaitForSingleObject
lstrlenW
GlobalAddAtomW
GlobalDeleteAtom
GetDateFormatW
GetTimeFormatW
CompareStringW
QueryPerformanceCounter
Sleep
QueryPerformanceFrequency
LoadLibraryW
GetProcAddress
FreeLibrary
QueueUserAPC
SetThreadPriority
GetCurrentThread
WaitForMultipleObjectsEx
ResetEvent
CreateEventA
SetEvent
FindFirstFileA
FindNextFileA
FindNextFileW
LocalAlloc
DisableThreadLibraryCalls
RaiseException
LoadLibraryA
InterlockedExchange
GetLongPathNameW
GetLongPathNameA
GetFileSize
GetLastError
GetFileAttributesExW
CreateFileW
GetFileTime
CloseHandle
EnterCriticalSection
LeaveCriticalSection
GetTickCount
GetFileAttributesW
FindFirstFileW
user32
OffsetRect
CreateWindowExW
GetFocus
FillRect
GetDC
ReleaseDC
RemoveMenu
CharLowerW
TrackPopupMenu
InsertMenuW
FindWindowExW
GetDlgCtrlID
FrameRect
InflateRect
GetUpdateRect
ValidateRect
IsWindowVisible
SetRect
MapWindowPoints
GetSysColor
ReleaseCapture
SetCapture
CallWindowProcW
RemovePropW
DefWindowProcA
DefWindowProcW
GetPropW
SetPropW
IsWindowUnicode
GetWindowTextW
CharPrevW
CallWindowProcA
SetScrollPos
GetScrollInfo
ShowScrollBar
SetScrollInfo
GetWindow
CheckRadioButton
LoadImageA
DrawTextW
IntersectRect
DrawFocusRect
CopyRect
UpdateWindow
EnableMenuItem
DrawTextA
GetWindowLongW
SetFocus
CheckMenuItem
SetMenuItemInfoW
PeekMessageA
DestroyMenu
ClientToScreen
GetUpdateRgn
CreateWindowExA
IsWindow
SetCursorPos
ValidateRgn
GetCapture
RedrawWindow
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetCursor
InvalidateRgn
SendMessageA
SetWindowTextW
SetDlgItemTextW
SendDlgItemMessageA
SetTimer
KillTimer
EndDialog
PostMessageA
SetWindowTextA
wsprintfW
SetWindowLongA
GetWindowLongA
GetDlgItem
GetParent
IsDlgButtonChecked
GetDlgItemTextW
SetWindowPos
GetClientRect
SendDlgItemMessageW
GetAsyncKeyState
LoadCursorA
InsertMenuItemW
GetSubMenu
SetWindowLongW
wsprintfA
DestroyWindow
SetMenuItemInfoA
SetMenuInfo
GetMenuItemInfoA
GetMenuItemCount
GetMenuInfo
GetMenuState
GetSystemMetrics
GetMenuStringW
LoadStringA
MessageBoxA
CharNextW
TrackPopupMenuEx
GetCursorPos
AppendMenuW
CreatePopupMenu
SetDlgItemInt
SetDlgItemTextA
GetDlgItemInt
InvalidateRect
IsWindowEnabled
ShowWindow
SendMessageW
PostMessageW
EnableWindow
CheckDlgButton
PtInRect
ScreenToClient
GetWindowRect
MessageBoxW
GetDlgItemTextA
gdi32
CreateRectRgn
OffsetRgn
CombineRgn
DeleteObject
GetObjectW
CreateCompatibleDC
CreateDIBSection
SelectObject
BitBlt
DeleteDC
SetTextColor
CreatePen
MoveToEx
LineTo
GetCharWidth32A
ExtTextOutW
SetBkColor
GetCurrentObject
GetObjectA
CreateFontIndirectA
CreateCompatibleBitmap
GetStockObject
CreateSolidBrush
IntersectClipRect
GetTextMetricsA
shell32
DragQueryFileW
ShellExecuteA
ShellExecuteW
SHGetDesktopFolder
DragFinish
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHFileOperationW
SHGetFileInfoW
ole32
CoCreateInstance
CoTaskMemFree
CoUninitialize
CoInitialize
oleaut32
SafeArrayCreateVector
SafeArrayUnaccessData
VariantInit
SafeArrayAccessData
tataki
?getBits@BltCanvas@@QAEPAXXZ
??0SkinBitmap@@QAE@PAVifc_canvas@@@Z
?stretch@SkinBitmap@@QAEXPAVifc_canvas@@HHHH@Z
??1BltCanvas@@UAE@XZ
??0BltCanvas@@QAE@HHPAUHWND__@@H@Z
?cloneDC@DCCanvas@@QAEHPAUHDC__@@PAVBaseWnd@@@Z
?getHDC@Canvas@@QAEPAUHDC__@@XZ
?isInvalid@SkinBitmap@@QAEHXZ
?getBits@SkinBitmap@@UAEPAXXZ
??0AutoSkinBitmap@@QAE@PB_W@Z
?stretchToRectAlpha@SkinBitmap@@QAEXPAVifc_canvas@@PAUtagRECT@@H@Z
?getBitmap@AutoSkinBitmap@@QAEPAVSkinBitmap@@XZ
??1DCCanvas@@UAE@XZ
??0DCCanvas@@QAE@PAUHDC__@@PAVBaseWnd@@@Z
?blitAlpha@SkinBitmap@@QAEXPAVifc_canvas@@HHH@Z
??1SkinBitmap@@QAE@XZ
??0SkinBitmap@@QAE@PAKHH_N@Z
Init
?Release@SkinBitmap@@QAEXXZ
??1AutoSkinBitmap@@UAE@XZ
Quit
nscrt
_i64toa
??2@YAPAXI@Z
??3@YAXPAX@Z
_purecall
_vsnprintf
memcmp
fclose
fwprintf
fwrite
_wfopen
fputwc
fputws
??_V@YAXPAX@Z
??_U@YAPAXI@Z
strstr
strcpy
strlen
memset
wcschr
localtime
wcsncpy
atoi
wcscmp
wcscpy
calloc
sprintf
realloc
malloc
wcslen
_vsnwprintf
time
free
wcsstr
_wtoi
strcmp
memcpy
qsort
towupper
srand
rand
_localtime64
_wtof
_itow
_wtoi64
memmove
__dllonexit
_onexit
_initterm
_adjust_fdiv
__CppXcptFilter
_except_handler3
_wcsicmp
_wcsdup
_strdup
_wcsnicmp
_unlink
_stricmp
_itoa
_strnicmp
wcscat
__CxxFrameHandler
Exports
Exports
Sections
.text Size: 169KB - Virtual size: 169KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 28KB - Virtual size: 27KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 51KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 19KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.text Size: 226KB - Virtual size: 228KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE