5c3712763273bfb7adf820add3bed5dfc2a65b0fa68406c308da2d8111fb69b9

Sharing

Copy URL Twitter E-mail

General

Target

5c3712763273bfb7adf820add3bed5dfc2a65b0fa68406c308da2d8111fb69b9
Size

104KB
MD5

d847d747a4f4bf46c363c393ba050abb
SHA1

0814c1d2ed040c9b3c129d4649583878d5e63cc9
SHA256

5c3712763273bfb7adf820add3bed5dfc2a65b0fa68406c308da2d8111fb69b9
SHA512

96b3e8dcc531d911b2d3e1bdc94a0ae5a7abfcea46240bda6c5c7df5dd8383820db72f97e15fe667703054f7386b12dcf87ae778864e2e2f486572e302a9c702
SSDEEP

1536:l+BxKsEJ8AOt1Eaj0+pGPOgaRlok5HhJ+7eaPvYo1ynWYbzkr5Em7MuLW:MBZFthQIgOLyw+7eEYoCBkCm7p

Score

N/A

Malware Config

Signatures

Files

5c3712763273bfb7adf820add3bed5dfc2a65b0fa68406c308da2d8111fb69b9
.dll regsvr32 windows x86

0f8cf6294db62de027d6a938af259579

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
InitializeCriticalSection
InterlockedExchange
CreateMutexA
GetProcAddress
WriteFile
MoveFileA
UnmapViewOfFile
GetModuleHandleA
Sleep
GetModuleFileNameA
GetLastError
CopyFileA
GetSystemTimeAsFileTime
CreateProcessA
ExpandEnvironmentStringsA
DeleteFileA
InterlockedIncrement
EnterCriticalSection
WaitForSingleObject
HeapAlloc
VirtualProtect
GetComputerNameA
ReadFile
CreateDirectoryA
VirtualQuery
CreateThread
HeapFree
LocalFree
InterlockedDecrement
LockResource
GetCompressedFileSizeW
IsBadWritePtr
GlobalGetAtomNameA
GetCurrentThreadId
CompareFileTime
ReadFileEx
PulseEvent
GetEnvironmentStrings
FindVolumeClose
FindResourceW
FindAtomA
OpenProcess
FindNextFileA
EnumResourceLanguagesW
lstrcatA
DeleteCriticalSection
UpdateResourceA
FindResourceExA
GetTempFileNameW
SizeofResource
LocalFlags
SetNamedPipeHandleState
HeapDestroy
PeekConsoleInputW
GetDefaultCommConfigW
WriteConsoleA
SetEnvironmentVariableA
Beep
ChangeTimerQueueTimer
GetCommandLineW
ResetEvent
WriteConsoleInputA
IsValidCodePage
FindFirstFileA
IsProcessorFeaturePresent
IsBadHugeReadPtr
lstrcpynW
ReadProcessMemory
GetVersionExW
FreeEnvironmentStringsW
LCMapStringW
FreeResource
OpenMutexA
GetFileInformationByHandle
GlobalMemoryStatusEx
GetSystemInfo
GetFileType
GetWindowsDirectoryW
GetNumberFormatW
LockFile
lstrcmpiA
ReadConsoleInputA
GetCurrentThread
HeapReAlloc
SetFileApisToOEM
GetHandleInformation
SetConsoleTitleA
WriteConsoleW
FindFirstVolumeMountPointW
OpenFile
GetVolumeInformationA
GetExitCodeProcess
SetHandleInformation
EnumResourceNamesW
LCMapStringA
IsBadStringPtrW
SetConsoleScreenBufferSize
GetTempFileNameA
UnlockFile
GetFileAttributesW
ReadDirectoryChangesW
CreateFileMappingW
LoadResource
LocalAlloc
SetConsoleWindowInfo
RtlUnwind
InterlockedCompareExchange
DeviceIoControl
LocalUnlock
PostQueuedCompletionStatus
CreateTimerQueueTimer
SearchPathA
CreateProcessW
lstrcatW
CancelWaitableTimer
GetSystemPowerStatus
ExpandEnvironmentStringsW
SetHandleCount
SearchPathW
SetConsoleActiveScreenBuffer
GetBinaryTypeA
ResumeThread
lstrlenW
GetCurrentProcess
CreateSemaphoreA
GetConsoleScreenBufferInfo
CreateMutexW
GetSystemWindowsDirectoryA
HeapSize
SetVolumeMountPointW
VerifyVersionInfoW
MapViewOfFileEx
GetLongPathNameW
SetVolumeLabelA
FileTimeToDosDateTime
WaitForMultipleObjectsEx
ExitThread
lstrcmpiW
FindCloseChangeNotification
CreateToolhelp32Snapshot

ole32

OleSaveToStream
CreateDataCache
OleQueryCreateFromData
OleSetMenuDescriptor
CoQueryProxyBlanket
CoCreateFreeThreadedMarshaler
StgCreateDocfile
OleRun
CoFileTimeNow
CoGetObjectContext
CoImpersonateClient
CoCreateGuid
OleDestroyMenuDescriptor
RevokeDragDrop
OleCreateLinkToFile
CoFreeUnusedLibrariesEx
CoSetProxyBlanket
OleUninitialize
CoWaitForMultipleHandles
StringFromGUID2
CreateILockBytesOnHGlobal
CoMarshalInterThreadInterfaceInStream
CoAllowSetForegroundWindow
OleCreateMenuDescriptor
OleTranslateAccelerator
CoGetCallContext
StgIsStorageFile
CreateBindCtx
CoGetMarshalSizeMax
CoUninitialize
CoTaskMemAlloc
OleSetContainedObject
CoInitialize
CoTaskMemFree

user32

CheckDlgButton
SetScrollPos
SetPropA
GetIconInfo
SetForegroundWindow
FindWindowW
InsertMenuA
ReplyMessage
DialogBoxIndirectParamA
SetMenuDefaultItem
PostThreadMessageA
SendDlgItemMessageW
RemovePropW
GetSysColor
GetMenuStringA
GetWindowRgn
CharNextA
IsIconic
BeginPaint
ToAscii
InsertMenuItemA
AppendMenuA
SetWindowWord
DefWindowProcW
RemovePropA
CreateCursor
LoadIconA
GetDlgItem
GetUpdateRgn
EnumDesktopsW
MsgWaitForMultipleObjects
SetWindowTextA
GetPropW
GetSystemMetrics
DestroyMenu
DrawTextA
AllowSetForegroundWindow
FrameRect
GetMonitorInfoW
EnumChildWindows
SetActiveWindow
CharPrevA
GetWindowLongW
GetClassInfoExA
SubtractRect
SetRect
CreateAcceleratorTableW
SetDlgItemInt
PeekMessageA
DefMDIChildProcW
LoadImageA
GetUserObjectInformationA
SendNotifyMessageA
CreateMenu
LookupIconIdFromDirectory
DrawTextW
MessageBoxIndirectW
CharUpperW
DrawIcon
SetClassLongA
CopyRect
DrawFrameControl
GetGUIThreadInfo
MessageBeep
SystemParametersInfoA
GetNextDlgTabItem
DispatchMessageA
WinHelpW
UnregisterClassA
MessageBoxExA
NotifyWinEvent
LoadCursorW
InvalidateRect
GetMenuCheckMarkDimensions
UpdateWindow
CharPrevW
SetSysColors
LoadMenuA
SetScrollRange
GetMenuItemInfoW
PostQuitMessage
LoadStringW
LoadBitmapA
GetMenuDefaultItem
GetMenuItemInfoA
TabbedTextOutW
GetClassInfoExW
EndDeferWindowPos
ShowWindow
EndPaint
GetProcessDefaultLayout
IsZoomed
DefFrameProcW
GetInputState
IsWindowVisible
FindWindowExA
IsDialogMessageW
ShowScrollBar
CreateIconIndirect
DrawFocusRect
MonitorFromRect
wvsprintfW
MessageBoxExW
OffsetRect
GetSystemMenu
SendMessageTimeoutW
GetCaretBlinkTime
InsertMenuW
IsWindowEnabled
RemoveMenu
GetMonitorInfoA
GetMenuItemRect
CreateIcon
GetMessageTime
DeferWindowPos
CharLowerA
SetWindowsHookExA
GetClientRect
UnhookWindowsHookEx
GetMessageA
GetWindowThreadProcessId
FindWindowA
CallNextHookEx
DefWindowProcA
SetWindowLongA
CreateWindowExA
GetWindow
MsgWaitForMultipleObjectsEx

shlwapi

PathIsRelativeW
SHRegGetValueW
wnsprintfA
PathIsNetworkPathW
PathIsUNCW
PathCanonicalizeW
StrStrIW
wvnsprintfW
UrlCombineW
PathGetDriveNumberW
PathMatchSpecW
PathFindExtensionW
PathUndecorateW
StrCpyNW
PathGetCharTypeA
UrlCreateFromPathW
PathIsUNCServerW
UrlCanonicalizeW
StrCmpW
StrStrW
PathQuoteSpacesW
StrNCatW
PathCompactPathW
SHDeleteValueW
StrDupA
PathIsRootW
UrlUnescapeW
SHDeleteKeyA
StrCpyW
PathIsURLW

shell32

DragFinish
SHChangeNotify
CommandLineToArgvW
ShellAboutW
ShellExecuteExA
SHGetDesktopFolder
SHGetMalloc
SHSetLocalizedName
SHPathPrepareForWriteW
SHAddToRecentDocs
SHParseDisplayName
SHGetPathFromIDListW
DragQueryFileA
SHGetPathFromIDListA
SHBindToParent

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f8cf6294db62de027d6a938af259579

Headers

File Characteristics

Imports

kernel32

ole32

user32

shlwapi

shell32

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 3KB