571d7d05949e430f4bc743bdc2ed9a4f49eb101476b402d8eebc3e47f92c24ff

Sharing

Copy URL

Twitter E-mail

General

Target

571d7d05949e430f4bc743bdc2ed9a4f49eb101476b402d8eebc3e47f92c24ff
Size

224KB
MD5

1fee3a782c91b1b7e77a753d3b5f7897
SHA1

32ffa53978772bf7cd108c741879acd50b68b24d
SHA256

571d7d05949e430f4bc743bdc2ed9a4f49eb101476b402d8eebc3e47f92c24ff
SHA512

1b76cc05f3f13e85059b1c43b88a993d86f83d0726fcf9dbbbcb826187611cb37f3f4585fdad66195f6748b38817ec808dc3adaf6794825a67fd191584f2cd58
SSDEEP

3072:2JMBwY63FIC7EM4XUBU6hYTBbuDJ9PWPYdc6cNPprJB+MnR5XJwLOjx:lb6v+wYVqd9eAdJcfr1

Score

N/A

Malware Config

Signatures

Files

571d7d05949e430f4bc743bdc2ed9a4f49eb101476b402d8eebc3e47f92c24ff
.dll regsvr32 windows x86

c8b9d5de833cbf23998388e9555ae84c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
InitializeCriticalSectionAndSpinCount
SetEndOfFile
GetProcessHeap
LoadLibraryA
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
TlsAlloc
VirtualProtect
FindNextFileW
FindClose
SetSystemPowerState
FormatMessageW
Sleep
LoadLibraryW
GetSystemTimeAsFileTime
SetEvent
WaitForSingleObject
GetCPInfo
FindFirstChangeNotificationW
FindFirstFileW
GetEnvironmentVariableW
GetCommandLineW
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedExchange
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
HeapFree
HeapAlloc
SetFileAttributesA
GetFileAttributesA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapReAlloc
CloseHandle
GetCurrentThreadId
GetCommandLineA
RaiseException
RtlUnwind
LCMapStringA
LCMapStringW
GetACP
GetOEMCP
IsValidCodePage
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsSetValue
TlsFree
SetLastError
HeapCreate
HeapDestroy
VirtualFree
VirtualAlloc
GetFileType
CreateFileA
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
HeapSize
SetStdHandle
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
ReadFile
SetFilePointer
GetModuleHandleA

user32

GetMessagePos
DefWindowProcW
DrawTextW
CallNextHookEx
FindWindowW
EnumWindows
GetClassInfoExW
GetDC
GetAsyncKeyState
GetWindowLongW
GetWindowTextW
GetClassNameW
ReleaseDC
EnumChildWindows
ShowWindow
UpdateWindow

gdi32

GetClipBox
CreateBitmap
SetBkColor
SetTextColor
GetCharWidthW

ole32

OleUninitialize
OleInitialize

advapi32

SetEntriesInAclW
OpenProcessToken
OpenThreadToken
OpenSCManagerW
StartServiceCtrlDispatcherW
OpenServiceW
RegEnumKeyW
RegCreateKeyExW
RegQueryValueExW
InitializeSecurityDescriptor
RegSetValueExW
RegCloseKey
ControlService
RegisterServiceCtrlHandlerW
RegOpenKeyExW
FreeSid
CreateServiceW
SetServiceStatus
AllocateAndInitializeSid
QueryServiceStatus
LookupPrivilegeValueW
SetSecurityDescriptorDacl
RegDeleteKeyW

comdlg32

GetSaveFileNameW
GetOpenFileNameW
CommDlgExtendedError
ChooseColorW
ChooseFontW

comctl32

ImageList_DragEnter
ImageList_Draw
ImageList_ReplaceIcon

Exports

Exports

DllRegisterServer
Lotonce
Passhuge
Southblood

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 368KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 876B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c8b9d5de833cbf23998388e9555ae84c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

advapi32

comdlg32

comctl32

Exports

Exports

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 28KB - Virtual size: 368KB

.rsrc Size: 1024B - Virtual size: 876B

.reloc Size: 12KB - Virtual size: 12KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 28KB - Virtual size: 368KB

.rsrc
Size: 1024B - Virtual size: 876B

.reloc
Size: 12KB - Virtual size: 12KB