3cc3adcfdbe359ac3156d479335a0ba61714bd639bed5969be5f8b9a519071cf

Sharing

Copy URL

Twitter E-mail

General

Target

3cc3adcfdbe359ac3156d479335a0ba61714bd639bed5969be5f8b9a519071cf
Size

133KB
MD5

4c929336363a72ebdf42bc8879b7f539
SHA1

16e5508a90d39d0ad3bd01c1097332cca22149dc
SHA256

3cc3adcfdbe359ac3156d479335a0ba61714bd639bed5969be5f8b9a519071cf
SHA512

eac6dc1b9b36f84fd627ff5465f25e7ccaddf1e5afb33272c526375a0918d877803782248d83e0967e5b48c19c4eff672ab376fe2014a558eb03e1823bfe8e93
SSDEEP

3072:pUcKB7cPs5UmgwAwq1EKVyv5meWRz9bODrP:5zmgwAJReWR5OrP

Score

N/A

Malware Config

Signatures

Files

3cc3adcfdbe359ac3156d479335a0ba61714bd639bed5969be5f8b9a519071cf
.dll regsvr32 windows x86

0603e4780f0b174cfc24933098bb5ded

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
GetModuleFileNameW
FreeLibrary
SizeofResource
LoadResource
FindResourceW
LoadLibraryExW
GetModuleHandleW
WideCharToMultiByte
LockResource
FindResourceExW
DeviceIoControl
CloseHandle
CreateFileW
EnterCriticalSection
GlobalUnlock
GlobalLock
GlobalAlloc
GetFileAttributesW
lstrcatW
CreateProcessW
GetProcAddress
SetThreadLocale
GetThreadLocale
SetFilePointer
LoadLibraryA
InterlockedDecrement
InterlockedIncrement
lstrcmpiW
GetLastError
DeleteCriticalSection
InitializeCriticalSection
RaiseException
lstrcmpiA
lstrlenW
lstrlenA
GlobalFree
MultiByteToWideChar
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
GetConsoleCP
GetSystemTimeAsFileTime
GetCurrentProcessId
SetStdHandle
GetConsoleMode
GetTickCount
InterlockedExchange
GetACP
GetLocaleInfoA
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
RtlUnwind
GetCurrentThreadId
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualFree
VirtualAlloc
HeapCreate
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
LCMapStringA
LCMapStringW
Sleep
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter

user32

CharNextW
CharLowerA
UnregisterClassA

advapi32

RegQueryValueExW
RegOpenKeyW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW

ole32

CoInitialize
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateGuid
CoCreateInstance

oleaut32

LoadRegTypeLi
RegisterTypeLi
SysAllocString
VariantClear
VariantInit
LoadTypeLi
UnRegisterTypeLi
SysStringLen
VarUI4FromStr
SysFreeString

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
NP_GetEntryPoints
NP_Initialize
NP_Shutdown

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0603e4780f0b174cfc24933098bb5ded

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

version

Exports

Exports

Sections

.text Size: 73KB - Virtual size: 73KB

.rdata Size: 31KB - Virtual size: 30KB

.data Size: 8KB - Virtual size: 15KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 10KB - Virtual size: 9KB

.text
Size: 73KB - Virtual size: 73KB

.rdata
Size: 31KB - Virtual size: 30KB

.data
Size: 8KB - Virtual size: 15KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 10KB - Virtual size: 9KB