d39bdde121d691a3480b0684b3681a85ee9a2553b4037d2c319f0e48d9a89650

General

Target

d39bdde121d691a3480b0684b3681a85ee9a2553b4037d2c319f0e48d9a89650
Size

24KB
MD5

64cf484ea4ca21ff464538c64e344f80
SHA1

2a27ac364eae2a5b0f2625f2775205a80e51334f
SHA256

d39bdde121d691a3480b0684b3681a85ee9a2553b4037d2c319f0e48d9a89650
SHA512

93e5d8f12fec90e8542137155c1c70a468a668bd81b5396c112a8ee9f2415c2758fd2f418ae2015f9e721b10bea9f2eac9a3dbb2877fbe54790a9c21f09744f9
SSDEEP

384:1rD7R47dof5hbk0pNH5najHihrIvyC+MmNthgNangxWoN+fXYQUNmXldv0mymMcY:1rD7bTbtDnarICyCpiteNNP8ZUNtVCz2

Score

N/A

Malware Config

Signatures

Files

d39bdde121d691a3480b0684b3681a85ee9a2553b4037d2c319f0e48d9a89650
.dll regsvr32 windows x86

9dcbbe195fcce02ed63f79b575e7bbc8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
GlobalHandle
lstrlenW
ReleaseMutex
HeapAlloc
GetProcessHeap
VirtualAlloc
DeleteFileW
GetFileInformationByHandle
lstrcpynW
RemoveDirectoryW
ReleaseSemaphore
ResetEvent
GetExitCodeThread
CreateProcessW
GetCurrentProcess
SetEvent
GetLastError
InterlockedExchange
Sleep
InterlockedCompareExchange
DuplicateHandle
GetStdHandle
TerminateThread
IsValidCodePage
CopyFileW
GetExitCodeProcess
IsProcessorFeaturePresent
ExitProcess

ole32

OleUninitialize
CoUninitialize

user32

GetMenuItemID
GetCursorPos
RedrawWindow
GetMenuItemCount
InvalidateRect
MoveWindow
MsgWaitForMultipleObjects
SetScrollPos
DestroyWindow
IntersectRect
SendDlgItemMessageW
GetSysColor
SetParent
GetCapture
LoadIconW
CheckDlgButton
GetWindowLongW
DispatchMessageW

advapi32

GetTokenInformation
OpenProcessToken

shell32

SHGetMalloc

gdi32

SetBkMode
GetStockObject
LineTo

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 152B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9dcbbe195fcce02ed63f79b575e7bbc8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

user32

advapi32

shell32

gdi32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 512B - Virtual size: 152B

.reloc Size: 1024B - Virtual size: 548B

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 512B - Virtual size: 152B

.reloc
Size: 1024B - Virtual size: 548B