97a83174f70bcc0427ebd7d40f899b08054e80d07f7d980712a0b20ded771bf3

Sharing

Copy URL Twitter E-mail

General

Target

97a83174f70bcc0427ebd7d40f899b08054e80d07f7d980712a0b20ded771bf3
Size

236KB
MD5

672458a303fb64e108d15e6788a47745
SHA1

b2ec09200d9b529be416df6370ddccf0c958e41c
SHA256

97a83174f70bcc0427ebd7d40f899b08054e80d07f7d980712a0b20ded771bf3
SHA512

f99dd69a241c1b7a650046be6a07865756b48b22642ca23ad43984476d71f1afeca9540ddf97adf938e554d8bbd33eb807bec593887433227c8ed14ff4778af5
SSDEEP

6144:jWla+mVEmU1YypPEatCg7WnZjaXm98iF9V:umVUPEFg7WdzFT

Score

N/A

Malware Config

Signatures

Files

97a83174f70bcc0427ebd7d40f899b08054e80d07f7d980712a0b20ded771bf3
.dll regsvr32 windows x86

e4f9baceb0e350e1b9b06cefedd712af

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_stricmp
isdigit
wcsncpy
_ltow
wcsncat
wcschr
_wcsnicmp
_strnicmp
strncpy
_snwprintf
_CxxThrowException
swprintf
tolower
_wcsicmp
wcscpy
_local_unwind2
realloc
_except_handler3
malloc
_purecall
wcslen
wcscat
wcscmp
__CxxFrameHandler
free
atoi
?terminate@@YAXXZ
_onexit
__dllonexit
??1type_info@@UAE@XZ
_adjust_fdiv
_initterm
strncmp
memmove
_itoa
_ltoa
time
srand
rand
atol

kernel32

CloseHandle
FreeLibrary
LoadLibraryA
VirtualAlloc
GetSystemInfo
VirtualQuery
GetLastError
RaiseException
FlushInstructionCache
GetCurrentProcess
HeapFree
GetProcessHeap
HeapAlloc
MultiByteToWideChar
GetCurrentThreadId
WaitForSingleObject
HeapDestroy
GlobalUnlock
GlobalLock
GetProcAddress
GlobalSize
InterlockedExchange
GetExitCodeThread
SetEvent
CreateThread
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
LeaveCriticalSection
OpenFile
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter

user32

SetWindowPos
SetWindowRgn
OffsetRect
EqualRect
ReleaseDC
GetDC
TranslateMessage
GetParent
wsprintfW
DestroyWindow
SetFocus
IsWindow
InvalidateRect
GetActiveWindow
ShowCursor
IntersectRect
GetDesktopWindow
SetCursor
ShowWindow

gdi32

SetMapMode
SetViewportOrgEx
DeleteDC
SaveDC
SetWindowOrgEx
RestoreDC
GetDeviceCaps
CreateRectRgnIndirect
LPtoDP

advapi32

RegCloseKey

rpcrt4

UuidCreate

ole32

OleRegEnumVerbs
OleRegGetUserType
OleRegGetMiscStatus
OleLoadFromStream
CoReleaseMarshalData
CoInitialize
CoUninitialize
CoGetInterfaceAndReleaseStream
CoMarshalInterThreadInterfaceInStream
CLSIDFromProgID
GetHGlobalFromStream
StringFromGUID2
CreateOleAdviseHolder
CoCreateInstance
CoTaskMemFree
OleSaveToStream
WriteClassStm
CoGetMalloc
CreateStreamOnHGlobal

oleaut32

SysAllocString
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
LoadRegTypeLi
SetErrorInfo
CreateErrorInfo
OleCreatePropertyFrame
GetErrorInfo
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayUnlock
SafeArrayLock
SafeArrayPtrOfIndex
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetDim
SysAllocStringLen
SysStringLen
SysFreeString
VariantInit
VariantClear
LoadTypeLi
RegisterTypeLi
UnRegisterTypeLi

msdart

RegEnumValueI
UMSEnterCSWraper
MPDeleteCriticalSection
MPInitializeCriticalSection
RegOpenKeyExI
GetSystemDirectoryI
GetModuleFileNameI
_LoadVersionedResourceEx@16
GetVersionExI
RegDeleteKeyI
CreateEventI
MessageBoxI
LoadLibraryI
GetModuleHandleI
CallWindowProcI
RegCreateKeyExI
RegSetValueExI
PeekMessageI
DispatchMessageI
CreateDCI
RegisterClassExI
LoadCursorI
GetClassInfoExI
CreateWindowExI
SetWindowLongPtrI
DefWindowProcI
RegEnumKeyExI
LoadStringI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4f9baceb0e350e1b9b06cefedd712af

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

rpcrt4

ole32

oleaut32

msdart

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 106KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 108KB - Virtual size: 107KB

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 108KB - Virtual size: 106KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 108KB - Virtual size: 107KB

.reloc
Size: 12KB - Virtual size: 9KB