e3c9833ca18264f581c71c97da7680b1169d4d0a1096bd19e116d6fa9cead4b8

Sharing

Copy URL Twitter E-mail

General

Target

e3c9833ca18264f581c71c97da7680b1169d4d0a1096bd19e116d6fa9cead4b8
Size

2.7MB
MD5

73a1f4b4c6593a1eaa19aa9ab19aa32f
SHA1

4e10a702c82aa98eda1f3c09ff8a7f9a56080cb2
SHA256

e3c9833ca18264f581c71c97da7680b1169d4d0a1096bd19e116d6fa9cead4b8
SHA512

549616efa8a698cbcd3ae3610fb25f3a7d5b26d6bd7c0315d00b9d5a42e11344c789e2d5b92ecb6eb8fc0650dcf220a94744b15701486f43bec3674a4563c63e
SSDEEP

24576:5g8st52ufpQmTlCllYH2hBfR27XlOqI8MekjELndrkLPdhsWb:57cfpvCPYH2hBfR271OqXn0Pdhs2

Score

N/A

Malware Config

Signatures

Files

e3c9833ca18264f581c71c97da7680b1169d4d0a1096bd19e116d6fa9cead4b8
.dll regsvr32 windows x86

96154d9abf94db6f93fd00edcc8589f0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
HeapFree
HeapAlloc
GetCommandLineA
GetProcessHeap
HeapReAlloc
VirtualAlloc
GetSystemInfo
VirtualQuery
ExitProcess
HeapSize
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
GetStdHandle
SetHandleCount
GetFileType
GetStartupInfoA
GetConsoleCP
GetConsoleMode
GetTimeFormatA
GetDateFormatA
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetExitCodeProcess
GetCurrentDirectoryA
GetDriveTypeA
CreateFileA
SetEnvironmentVariableA
SetEnvironmentVariableW
GetFileTime
InterlockedCompareExchange
WritePrivateProfileStringW
FindResourceExW
SetErrorMode
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
GetShortPathNameW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetThreadLocale
WaitForSingleObject
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
CompareStringA
lstrlenA
VirtualProtect
FormatMessageW
MulDiv
FreeResource
GlobalAddAtomW
GlobalFindAtomW
CompareStringW
GetVersionExA
RaiseException
InterlockedExchange
LocalAlloc
GetFileSize
ReadFile
CreateProcessW
GlobalHandle
GlobalFree
GetCurrentProcessId
CreateThread
Sleep
GlobalGetAtomNameW
GlobalDeleteAtom
GetLocaleInfoA
GetLocaleInfoW
GlobalFlags
GlobalSize
GetTempPathW
GetTempFileNameW
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
LoadLibraryExW
OpenSemaphoreW
DeleteFileW
GetTickCount
lstrcpyW
lstrcatW
lstrcpynW
lstrcmpiW
GetVersionExW
GetCurrentThreadId
lstrcmpW
InterlockedIncrement
lstrlenW
WideCharToMultiByte
CreateFileW
WriteFile
CloseHandle
LoadLibraryA
GetUserDefaultLCID
FreeLibrary
FindNextFileW
InterlockedDecrement
OutputDebugStringA
GetModuleFileNameW
SetLastError
GetLastError
LoadLibraryW
FindFirstFileW
FindClose
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
GetVersion
GetFileAttributesW
GetProcAddress
GetModuleHandleW
GetModuleFileNameA
GetModuleHandleA

user32

InvalidateRgn
GetNextDlgGroupItem
RegisterClipboardFormatW
PostThreadMessageW
TabbedTextOutW
MapDialogRect
GetAsyncKeyState
MoveWindow
IsDlgButtonChecked
SetDlgItemTextW
CheckDlgButton
CreateDialogIndirectParamW
IsWindowEnabled
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
GetMenuState
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetWindowTextLengthW
GetLastActivePopup
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
TrackPopupMenu
GetMenu
GetMenuItemID
GetMenuItemCount
IsRectEmpty
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
GetDlgCtrlID
DefWindowProcW
SetWindowPos
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
FlashWindowEx
WaitForInputIdle
IsWindowVisible
EnumChildWindows
GetClassNameW
ShowWindow
SetWindowTextW
EqualRect
EnumClipboardFormats
IsClipboardFormatAvailable
GetClipboardData
FindWindowW
DdeInitializeW
DdeCreateStringHandleW
DdeConnect
DdeGetLastError
DdeClientTransaction
DdeDisconnect
DdeFreeStringHandle
DdeUninitialize
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
EnumWindows
GetWindowTextW
DrawTextW
SetRectEmpty
MessageBeep
FillRect
PostMessageW
ScreenToClient
DrawIconEx
GetSystemMetrics
wsprintfW
DrawTextExW
CallWindowProcW
BringWindowToTop
RemoveMenu
ReleaseCapture
SetCursor
LoadCursorW
WindowFromPoint
GetDesktopWindow
SetCapture
SetWindowLongW
SetActiveWindow
TranslateAcceleratorW
GetWindowLongW
PtInRect
LoadAcceleratorsW
DestroyIcon
DrawFocusRect
OffsetRect
CopyAcceleratorTableW
GetSysColorBrush
SetWindowContextHelpId
CharNextW
CharUpperW
GetMessageW
ValidateRect
PostQuitMessage
DestroyMenu
EndPaint
BeginPaint
GetWindowDC
CreateWindowExW
GrayStringW
UnregisterClassA
RedrawWindow
SendMessageW
EnableWindow
LoadIconW
GetMessagePos
GetDC
GetWindow
GetSysColor
GetClientRect
MapWindowPoints
LoadBitmapW
EnableMenuItem
GetSystemMenu
UpdateWindow
GetParent
WaitMessage
DispatchMessageW
TranslateMessage
IsDialogMessageW
PeekMessageW
IsWindow
LoadMenuW
GetCursorPos
InflateRect
UnregisterClassW
GetCursor
MessageBoxW
GetActiveWindow
SetParent
CopyRect
GetWindowRect
CallNextHookEx
SetFocus
UnhookWindowsHookEx
ReleaseDC
SetRect
DrawStateW
SystemParametersInfoW
GetFocus
InvalidateRect
ClientToScreen
GetSubMenu
SetWindowsHookExW
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
KillTimer
SetTimer
GetKeyState

gdi32

ExtSelectClipRgn
CreatePen
GetTextMetricsW
DPtoLP
GetBkColor
GetTextColor
EnumFontFamiliesExW
GetRgnBox
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
GetMapMode
GetTextExtentPoint32W
MoveToEx
LineTo
SetMapMode
SetBkMode
RestoreDC
SaveDC
CreateRectRgnIndirect
GetDeviceCaps
CreateBitmap
GetClipBox
PatBlt
GetPixel
SetPixel
GetCurrentObject
GetStockObject
SetBkColor
SetTextColor
CreateSolidBrush
DeleteObject
SetStretchBltMode
StretchBlt
CreateDIBSection
SelectObject
BitBlt
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
CreateFontIndirectW
GetObjectW

comdlg32

GetFileTitleW

advapi32

RegQueryValueW
RegEnumKeyW
RegSetValueW
RegCreateKeyExW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyW
RegEnumValueW
RegDeleteValueW
RegOpenKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

ShellExecuteW
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteExW
SHGetSpecialFolderPathW
ExtractIconW

shlwapi

PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathFileExistsW
PathIsUNCW

oledlg

OleUIBusyW

ole32

OleFlushClipboard
OleIsCurrentClipboard
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoDisconnectObject
StringFromGUID2
CoRevokeClassObject
CoRegisterClassObject
CoRegisterMessageFilter
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
OleRun

oleaut32

SysAllocStringByteLen
SysStringByteLen
SysFreeString
CreateErrorInfo
VariantInit
VariantClear
SafeArrayUnaccessData
SafeArrayAccessData
VariantCopy
SafeArrayCreateEx
GetRecordInfoFromGuids
VariantTimeToSystemTime
SystemTimeToVariantTime
VarBstrFromDate
SysAllocStringLen
SysStringLen
UnRegisterTypeLi
SafeArrayPutElement
SafeArrayCreateVector
SafeArrayGetElement
VarDateFromStr
VarUdateFromDate
SafeArrayCreate
VariantChangeType
RegisterTypeLi
LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
SafeArrayDestroy
GetErrorInfo
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
SetAppName
SetResourceLang

Sections

.text
Size: 892KB - Virtual size: 891KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 228KB - Virtual size: 226KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 96KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 164KB - Virtual size: 164KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

96154d9abf94db6f93fd00edcc8589f0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

Exports

Exports

Sections

.text Size: 892KB - Virtual size: 891KB

.rdata Size: 228KB - Virtual size: 226KB

.data Size: 24KB - Virtual size: 40KB

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.reloc Size: 96KB - Virtual size: 94KB

.text Size: 164KB - Virtual size: 164KB

.text
Size: 892KB - Virtual size: 891KB

.rdata
Size: 228KB - Virtual size: 226KB

.data
Size: 24KB - Virtual size: 40KB

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

.reloc
Size: 96KB - Virtual size: 94KB

.text
Size: 164KB - Virtual size: 164KB