acc8b15116258d6285abc0ad5c5cd4bdc351cbae0ffc6d59745cdab776cbf6aa

Sharing

Copy URL Twitter E-mail

General

Target

acc8b15116258d6285abc0ad5c5cd4bdc351cbae0ffc6d59745cdab776cbf6aa
Size

92KB
MD5

6ccac8438092d7f417d7b78d5e380db1
SHA1

4871f6f7a6079f199ab032d464daa9b8b6ef8b53
SHA256

acc8b15116258d6285abc0ad5c5cd4bdc351cbae0ffc6d59745cdab776cbf6aa
SHA512

4589616c0cff75a575e4ca232419a4d73613bd0328b228f8627a163523a09ef94bec41270360db15105f26f5757c4d35aab3ed8a22c2dd9ac3e60eb288f5c641
SSDEEP

1536:GFz4GNsNO+H29cOL+Nxw480MUqOsyooVceMiqt3TCPVXNNiyr:gKynl30MUqXyooCeMi43TAXNNi2

Score

N/A

Malware Config

Signatures

Files

acc8b15116258d6285abc0ad5c5cd4bdc351cbae0ffc6d59745cdab776cbf6aa
.dll regsvr32 windows x86

514464114db16cea34fecfc4d3516164

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStartupInfoA
GetCompressedFileSizeW
ExpandEnvironmentStringsW
WaitNamedPipeA
EnumSystemLocalesA
CreateRemoteThread
WaitForSingleObjectEx
GetLongPathNameW
HeapValidate
FillConsoleOutputCharacterW
LockResource
CreateProcessW
FindResourceA
GetProfileIntA
LocalLock
lstrcmpW
CreatePipe
CreateTimerQueueTimer
CreateMailslotA
GetDiskFreeSpaceW
HeapReAlloc
SetFilePointerEx
GlobalFree
InterlockedCompareExchange
GlobalGetAtomNameA
IsBadCodePtr
GetDriveTypeW
CreateEventA
lstrcpynW
SetLocalTime
WriteProfileStringA
GetExitCodeThread
TransactNamedPipe
GetDateFormatW
WriteProfileStringW
VerifyVersionInfoA
GetProfileStringA
WinExec
UnregisterWait
GetTempPathA
GetFileType
GetBinaryTypeA
FindFirstChangeNotificationA
GetProfileSectionA
IsBadHugeReadPtr
AddAtomA
GetDefaultCommConfigW
SetFileAttributesA
ConnectNamedPipe
GetExitCodeProcess
OpenSemaphoreW
GetConsoleOutputCP
lstrcpyA
GetVersionExW
CreateFileW
CreateDirectoryW
GlobalMemoryStatusEx
GetStdHandle
PeekConsoleInputA
SetConsoleCtrlHandler
LockFile
FindAtomW
GetUserDefaultLCID
PulseEvent
GetProcessVersion
GetCurrentThreadId
LocalFileTimeToFileTime
GetShortPathNameW
FindNextChangeNotification
Beep
GetEnvironmentStringsW
SetConsoleTitleA
HeapLock
SetProcessShutdownParameters
CreateToolhelp32Snapshot
GetStringTypeW
UnlockFile
CreateWaitableTimerA
ReadConsoleW
CompareStringW
ExitThread
DuplicateHandle
GetModuleFileNameW
TerminateThread
LocalAlloc
GetSystemInfo
OpenFileMappingA
GetDriveTypeA
GetSystemWindowsDirectoryA
GetStringTypeA
GetTimeFormatW
FormatMessageA
FindNextVolumeMountPointW
FindResourceExA
CreateIoCompletionPort
OpenFileMappingW
GetSystemDirectoryW
OpenMutexW
HeapUnlock
IsBadWritePtr
PurgeComm
GetFileAttributesExW
OpenJobObjectW
SetHandleInformation
GetThreadPriority
ClearCommError
SetStdHandle
ReadConsoleA
GetDiskFreeSpaceA
GetCurrentThread
GetShortPathNameA
GetHandleInformation
IsBadHugeWritePtr
SetVolumeLabelW
GetFileAttributesExA
CopyFileW
LoadResource
GetFileAttributesW
DisconnectNamedPipe
VerifyVersionInfoW
GetVolumePathNameW
DeleteFileA
MapViewOfFile
CreateFileMappingA
InitializeCriticalSection
WaitForSingleObject
VirtualProtect
HeapFree
GetModuleFileNameA
GetLastError
ReleaseMutex
GetModuleHandleA
InterlockedExchange
LeaveCriticalSection
HeapAlloc
CreateFileA
GetProcAddress
CopyFileA
GetTickCount
CreateThread
GetCurrentProcessId
Sleep
VirtualQuery
CreateProcessA
EnterCriticalSection
GetComputerNameA
WideCharToMultiByte
LoadLibraryA

ole32

CoGetMalloc
StgOpenStorage
StgCreateDocfileOnILockBytes
OleGetAutoConvert
OleCreateLinkToFile
OleCreateLinkFromData
CoRevertToSelf
CreateDataCache
GetHGlobalFromStream
StgIsStorageFile
OleCreate
OleDestroyMenuDescriptor
CoAllowSetForegroundWindow
CoLockObjectExternal
OleLoadFromStream
IIDFromString
CoTaskMemAlloc
CoInitialize
CoTaskMemFree
CoUninitialize
CoCreateInstance
ReadFmtUserTypeStg
OleIsRunning
OleSaveToStream
OleCreateLink
OleSetContainedObject
CoTaskMemRealloc
CoImpersonateClient
CreateItemMoniker
CreateDataAdviseHolder
CoMarshalInterface
OleSetMenuDescriptor
OleTranslateAccelerator

advapi32

RegUnLoadKeyW
DeregisterEventSource
EnumServicesStatusW
ConvertSidToStringSidA
RegEnumKeyExA
RegCreateKeyExA
ConvertStringSecurityDescriptorToSecurityDescriptorA
RegSetValueExA
SetNamedSecurityInfoA
RegOpenKeyExA
LookupAccountNameA
GetUserNameA
EnumServicesStatusExW
QueryServiceConfigA
EnumServicesStatusA
CreateProcessAsUserA
RegOpenKeyW
ImpersonateNamedPipeClient
RegQueryValueW
QueryServiceStatus
RegisterServiceCtrlHandlerA
CreateServiceA
OpenProcessToken
IsTextUnicode
RegRestoreKeyW
ReadEventLogA
GetAclInformation
RegSaveKeyW
RegDeleteValueA
ReportEventA
GetEffectiveRightsFromAclW
QueryServiceLockStatusW
RegEnumKeyExW
RegSetValueW
StartServiceW
OpenEventLogA
GetServiceDisplayNameW
CloseEventLog
RegCreateKeyA
EnumDependentServicesA
OpenServiceA
OpenThreadToken
ReportEventW
MapGenericMask
IsTokenRestricted

shell32

SHAddToRecentDocs
SHGetFolderPathAndSubDirW
SHFormatDrive
SHChangeNotify
ExtractIconW
SHBrowseForFolderA
ShellExecuteExA
DragQueryFileA
SHPathPrepareForWriteW
SHGetInstanceExplorer
SHGetFolderPathA
ShellAboutW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 68KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

514464114db16cea34fecfc4d3516164

Headers

File Characteristics

Imports

kernel32

ole32

advapi32

shell32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 64KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 68KB - Virtual size: 64KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB