a635c2a6c7e4b6b8d912c6aadd5b5d09c4ca9e499df6229901058d1deca4977e

Sharing

Copy URL

Twitter E-mail

General

Target

a635c2a6c7e4b6b8d912c6aadd5b5d09c4ca9e499df6229901058d1deca4977e
Size

377KB
MD5

8cbe7a375c83265d6a4e92d19247e720
SHA1

bfb1cc47548efd6c9930b0a41471d88b98c7a30b
SHA256

a635c2a6c7e4b6b8d912c6aadd5b5d09c4ca9e499df6229901058d1deca4977e
SHA512

a174335aaa75d19a2fb1123262cede24e6265ec4082ee1e7a7228d3efd81be7856e8158ab6ff44b1e94a43e946b91bfd7fe6d5e47c3bb13370df331fe42ad9cb
SSDEEP

6144:INApvHrlpcZXPvegFFRvjdcq0GOAiIu/hdFcwHrT7Hxi+DOD/CROAWg2mkp5rJgR:Iszlp6XPvegFvr1rOl7OwLT7H5DOrC/0

Score

N/A

Malware Config

Signatures

Files

a635c2a6c7e4b6b8d912c6aadd5b5d09c4ca9e499df6229901058d1deca4977e
.dll regsvr32 windows x86

a9d5a9467068a950aca10d226cf265df

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
SetEndOfFile
SetFilePointer
CloseHandle
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ExitProcess
CreateThread
OpenThread
ResumeThread
VirtualAlloc
GetProcAddress
LoadLibraryA
CreateActCtxA
ActivateActCtx
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetModuleHandleW
GetCurrentProcess
TerminateProcess
InterlockedFlushSList
RtlUnwind
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
GetModuleHandleExW
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
GetFileAttributesExW
CompareStringW
LCMapStringW
FindClose
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStdHandle
GetFileType
GetStringTypeW
HeapSize
HeapReAlloc
SetStdHandle
DecodePointer
RaiseException
CreateFileW
WriteFile
FlushFileBuffers
GetConsoleCP
GetConsoleMode
SetFilePointerEx
WriteConsoleW

Exports

Exports

DllRegisterServer
GDyZ
GHQvB58h2E
LGv5I
Mqae01id
SNifCw242OCD

Sections

.text
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 117KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9d5a9467068a950aca10d226cf265df

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 102KB - Virtual size: 101KB

.rdata Size: 144KB - Virtual size: 144KB

.data Size: 117KB - Virtual size: 120KB

.gfids Size: 512B - Virtual size: 164B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 6KB - Virtual size: 6KB

.text
Size: 102KB - Virtual size: 101KB

.rdata
Size: 144KB - Virtual size: 144KB

.data
Size: 117KB - Virtual size: 120KB

.gfids
Size: 512B - Virtual size: 164B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 6KB - Virtual size: 6KB