d6a04b9a48c21ace47d50a4681238ee2

Sharing

Copy URL Twitter E-mail

General

Target

d6a04b9a48c21ace47d50a4681238ee2
Size

578KB
MD5

d6a04b9a48c21ace47d50a4681238ee2
SHA1

ffb07177077b5be4258adfbff8d7972f589036f4
SHA256

e2ef3556450075840768fa44e71070246cca670348e4b379d10c4bba1152b4be
SHA512

3049e950996587c64a1ad89d23e0018065cb38c5bc44ae0e38297e6120c148f3a3c01a09829af3c5d95e062148c2c55e8adf31dd7e89723732e2ddeef8f733bc
SSDEEP

6144:spKof+r1nt9hpFV95JUVtQ/DoD7RTL8QihGj/pbvAO/M5mvBES2C:sit9j9c9D7RTIQihGLpbvW5s2C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6a04b9a48c21ace47d50a4681238ee2

Files

d6a04b9a48c21ace47d50a4681238ee2
.dll windows:4 windows x86 arch:x86

8614f6cc2293be15476eb45d2a28a343

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

comctl32

ImageList_Create
_TrackMouseEvent
ImageList_Destroy
InitCommonControlsEx
ImageList_Add
ImageList_AddMasked

shlwapi

SHAutoComplete

shared

??0uCallStackTracker@@QAE@PBD@Z
??1uCallStackTracker@@QAE@XZ
_uGetMenuItemType@8
_uGetMenuString@16
_uModifyMenu@20
_uTabCtrl_SetItem@12
_stricmp_utf8_ex@16
_uGetFileAttributes@4
_uDragQueryFile@12
_uDragQueryFileCount@4
_uAppendMenu@16
_uSendMessageText@16
_uFormatSystemErrorMessage@8
_uGetWindowText@8
_uSortStringCreate@4
_uSortStringFree@4
_uSortStringCompare@8
_uLoadImage@24
_uExtTextOut@32
_uGetTextExtentPoint32@16
_uSetWindowText@8
_ModalDialog_Switch@4
_uStringCompare@8
_uShellNotifyIconEx@32
_uFixAmpersandChars@8
_uSetDlgItemText@12
_FindOwningPopup@4
_uGetDlgItemText@12
_uTreeView_InsertItem@8
_uTabCtrl_InsertItem@12
_uCharLower@4
_uListBox_GetText@12
_uChooseColor@12
_uGetFullPathName@8
_uGetTextHeight@4
_uGetOpenFileName@32
_uSendDlgItemMessageText@20
_uLoadLibrary@4
_uGetModuleFileName@8
_stricmp_utf8_partial@12
_stricmp_utf8@8
_uMessageBox@16
_uPrintfV@12
_uGetFontHeight@4
_uRegisterWindowMessage@4
_uShellNotifyIcon@24
_uFixAmpersandChars_v2@8

kernel32

ReadFile
HeapSize
Sleep
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
GetOEMCP
GetACP
InterlockedIncrement
InterlockedDecrement
MulDiv
CloseHandle
GetLastError
CreateEventW
SetLastError
GetLocalTime
GetCurrentThreadId
GetVersionExW
FreeLibrary
GetProcAddress
LoadLibraryW
LockResource
LoadResource
FindResourceW
QueryPerformanceCounter
QueryPerformanceFrequency
GetCPInfo
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetProcessHeap
GetVersionExA
GetCommandLineA
RtlUnwind
HeapAlloc
HeapReAlloc
HeapFree
RaiseException
LoadLibraryA
InterlockedExchange
LocalAlloc
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetSystemTimeAsFileTime
GetTickCount
WideCharToMultiByte
MultiByteToWideChar
FormatMessageW
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetFilePointer
GetConsoleCP
GetConsoleMode
SetStdHandle
CreateFileW
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
CreateFileA

user32

EndDialog
IsZoomed
GetSystemMetrics
GetWindowPlacement
GetCursorPos
GetMonitorInfoW
SetWindowsHookExW
UnhookWindowsHookEx
IsWindow
SetWindowPlacement
SystemParametersInfoW
RegisterClassW
MessageBoxW
RegisterWindowMessageW
FindWindowW
GetSysColorBrush
UpdateWindow
SendDlgItemMessageW
EnableWindow
CreateDialogParamW
TrackPopupMenuEx
ValidateRect
GetUpdateRect
SetDlgItemInt
GetDlgItemInt
IsWindowEnabled
SetForegroundWindow
IsIconic
UnregisterClassW
DestroyIcon
SetLayeredWindowAttributes
GetDlgItem
CallNextHookEx
LoadImageW
IntersectRect
GetAncestor
RealChildWindowFromPoint
ChildWindowFromPoint
LoadCursorW
SetCursor
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
MonitorFromPoint
GetCapture
WindowFromPoint
IsChild
GetSysColor
BeginPaint
EndPaint
GetMenuItemCount
GetDoubleClickTime
ShowScrollBar
GetScrollInfo
ScrollWindowEx
DrawFocusRect
SetRectEmpty
GetParent
GetAsyncKeyState
GetNextDlgTabItem
SetScrollInfo
IsWindowVisible
SetCapture
ReleaseCapture
GetFocus
SetFocus
MapWindowPoints
AppendMenuW
SetMenuItemInfoW
FillRect
FrameRect
CreatePopupMenu
TrackPopupMenu
DestroyMenu
GetWindowLongW
DefWindowProcW
ClientToScreen
GetWindowRect
PtInRect
PostMessageW
GetKeyState
GetDC
ReleaseDC
TrackMouseEvent
CallWindowProcW
RedrawWindow
SetWindowLongW
ScreenToClient
ChildWindowFromPointEx
ShowWindow
SetParent
SetWindowPos
SendMessageW
SetTimer
GetMessagePos
CreateWindowExW
GetClientRect
DestroyWindow
KillTimer
DrawEdge
InvalidateRect
GetWindow
MapDialogRect
GetSubMenu
GetMenuState
GetMenuItemID
DialogBoxParamW
InsertMenuW

gdi32

SetPixel
SetWindowOrgEx
OffsetWindowOrgEx
CombineRgn
CreateRectRgnIndirect
CreateDIBSection
GdiFlush
CreateDIBitmap
GetObjectW
GetTextExtentExPointW
SetTextAlign
GetDeviceCaps
EnumFontFamiliesExW
SetBkMode
SetTextColor
CreateCompatibleDC
CreateCompatibleBitmap
CreatePen
MoveToEx
LineTo
BitBlt
DeleteDC
CreateSolidBrush
SelectObject
DeleteObject
CreateFontIndirectW

comdlg32

ChooseFontW

ole32

ReleaseStgMedium
RevokeDragDrop
RegisterDragDrop
DoDragDrop
OleInitialize
OleUninitialize

Exports

Exports

foobar2000_get_interface

Sections

.text
Size: 408KB - Virtual size: 407KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.transU
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8614f6cc2293be15476eb45d2a28a343

Headers

File Characteristics

Imports

comctl32

shlwapi

shared

kernel32

user32

gdi32

comdlg32

ole32

Exports

Exports

Sections

.text Size: 408KB - Virtual size: 407KB

.rdata Size: 87KB - Virtual size: 87KB

.data Size: 10KB - Virtual size: 21KB

.rsrc Size: 24KB - Virtual size: 24KB

.reloc Size: 45KB - Virtual size: 44KB

.transU Size: 2KB - Virtual size: 1KB

.text
Size: 408KB - Virtual size: 407KB

.rdata
Size: 87KB - Virtual size: 87KB

.data
Size: 10KB - Virtual size: 21KB

.rsrc
Size: 24KB - Virtual size: 24KB

.reloc
Size: 45KB - Virtual size: 44KB

.transU
Size: 2KB - Virtual size: 1KB