GrandDogSetup[.]dll

Sharing

Copy URL

Twitter E-mail

General

Target

GrandDogSetup.dll
Size

940KB
MD5

01e44e1c59c7f5a8a6b8bc4f37c58047
SHA1

10234b5dd68733a6e3b823695512e4e4ea5b0f3f
SHA256

b157dcfa2ba4edf1b4684663ece6562952e3a504732fc28320e0bd493fda9c67
SHA512

8615077d2c9147a4bc9970c040147cd0703e67f82263e86b5ec28b8953cae898f71e664f75dc92dbfd84a1ae8f9559e048dc4a3757902486f510123f93f57f16
SSDEEP

24576:oj8qJC+uzMiod0+uysxwSoPdVoBjCvuF17+2NdJfGM3AV7:U8edb1RSoPdVoXGMc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
GrandDogSetup.dll

Files

GrandDogSetup.dll
.dll windows:4 windows x86 arch:x86

1e23abad031e76f7db35b0a25b3d3570

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetCurrentProcess
SetFilePointer
FlushFileBuffers
RtlUnwind
GetCommandLineA
RaiseException
ExitProcess
TerminateProcess
HeapSize
HeapReAlloc
GetACP
WritePrivateProfileStringA
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
MulDiv
lstrcpynA
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GetModuleFileNameA
GlobalAlloc
lstrcmpA
GetCurrentThread
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetVersion
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GetWindowsDirectoryA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GlobalLock
GlobalUnlock
GlobalFree
LocalAlloc
LocalFree
lstrlenA
SetLastError
LoadLibraryA
GetProcAddress
FreeLibrary
CompareStringA
MoveFileExA
GetVersionExA
GetFileSize
HeapCreate
HeapAlloc
HeapDestroy
ReadFile
HeapFree
FindFirstFileA
FindNextFileA
FindClose
RemoveDirectoryA
GetCurrentDirectoryA
SetCurrentDirectoryA
CreateProcessA
WaitForSingleObject
GetExitCodeProcess
GetExitCodeThread
GetModuleHandleA
FindResourceA
LoadResource
LockResource
CreateFileA
SizeofResource
WriteFile
CloseHandle
Sleep
lstrcpyA
lstrcatA
GetEnvironmentVariableA
CreateDirectoryA
GetLastError
SetFileAttributesA
DeleteFileA
GetSystemDirectoryA

user32

IsDialogMessageA
SetWindowTextA
ShowWindow
LoadStringA
PostQuitMessage
SetCursor
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
UnregisterClassA
GetClassNameA
PtInRect
ClientToScreen
ReleaseDC
GetDC
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
GetSysColorBrush
DestroyMenu
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
LoadIconA
PostMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
AdjustWindowRectEx
GetClientRect
CopyRect
IsWindowVisible
GetTopWindow
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetFocus
GetMenuState
EndDialog
GetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
MessageBoxA
EnableWindow
SetActiveWindow
BringWindowToTop
SetForegroundWindow
SendMessageA
CallNextHookEx

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
RestoreDC
SaveDC
DeleteDC
GetStockObject
GetDeviceCaps
SelectObject
DeleteObject
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegQueryValueExA
RegDeleteKeyA
DeleteService
OpenSCManagerA
OpenServiceA
ControlService
QueryServiceStatus
CreateServiceA
StartServiceA
CloseServiceHandle
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

ShellExecuteExA

comctl32

ord17

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

Exports

Exports

CheckVersion
CheckVersionEx
Install
Uninstall

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 792KB - Virtual size: 790KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1e23abad031e76f7db35b0a25b3d3570

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

version

Exports

Exports

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 20KB - Virtual size: 18KB

.data Size: 16KB - Virtual size: 29KB

.rsrc Size: 792KB - Virtual size: 790KB

.reloc Size: 16KB - Virtual size: 15KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 20KB - Virtual size: 18KB

.data
Size: 16KB - Virtual size: 29KB

.rsrc
Size: 792KB - Virtual size: 790KB

.reloc
Size: 16KB - Virtual size: 15KB