0b6a5e593ec86d34285016ab2665d58143c52b59a37eedbd21a34db250e3bc83

General

Target

0b6a5e593ec86d34285016ab2665d58143c52b59a37eedbd21a34db250e3bc83
Size

152KB
MD5

6eca3890433a4e102c887fa0362008a1
SHA1

52297af07beaba0014e651f95920d1194147dd22
SHA256

0b6a5e593ec86d34285016ab2665d58143c52b59a37eedbd21a34db250e3bc83
SHA512

1241308541b3234f9b12f460751e0b644601d96704cbcc7e397d6eb26d05c3625d499897fc470c9c7d2fc25d1292077544426a893d0ea273034f3437f5d0aef0
SSDEEP

3072:Ya5QsvSTDZBbaFIb/VIS6r4tfZDpO7ZBsXUd:YyfvSTDZsFIb9ISPDs

Score

N/A

Malware Config

Signatures

Files

0b6a5e593ec86d34285016ab2665d58143c52b59a37eedbd21a34db250e3bc83
.dll regsvr32 windows x86

1aca2326f04714e5a21de17575bfc9eb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalLock
FindResourceExW
SizeofResource
GetSystemTime
InterlockedIncrement
CreateWaitableTimerW
ReadFile
SetEndOfFile
Sleep
FileTimeToSystemTime
LoadLibraryW
GetUserDefaultLangID
GetProcAddress
GetModuleHandleW
GetFileSize
GetModuleFileNameW
SetEvent
SetFilePointer
SetThreadPriority
GetCurrentProcessId
SetCurrentDirectoryW
FreeLibrary
LoadLibraryA
CreateThread
lstrlenW
SuspendThread
CancelWaitableTimer
GetDriveTypeW
LockResource

user32

LoadImageW
GetWindowRect
DefWindowProcW
GetParent
PostThreadMessageW
SetCursor
VkKeyScanW
PostQuitMessage
GetSysColor
WindowFromPoint
DialogBoxParamW
GetDlgItem
SetForegroundWindow
ReleaseDC
DrawTextW
GetCursorPos
OffsetRect
GetClassNameW
EnableWindow
PostMessageW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.zucej
Size: 132KB - Virtual size: 129KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ivyo
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ljogtu
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1aca2326f04714e5a21de17575bfc9eb

Headers

File Characteristics

Imports

kernel32

user32

Exports

Exports

Sections

.zucej Size: 132KB - Virtual size: 129KB

.ivyo Size: 4KB - Virtual size: 1KB

.ljogtu Size: 4KB - Virtual size: 7KB

.reloc Size: 8KB - Virtual size: 6KB

.zucej
Size: 132KB - Virtual size: 129KB

.ivyo
Size: 4KB - Virtual size: 1KB

.ljogtu
Size: 4KB - Virtual size: 7KB

.reloc
Size: 8KB - Virtual size: 6KB