8b24b9b95cc85f956bc3c287131a70e5b21d0911e7ec57cea45bf0a76a47482e

Sharing

Copy URL

Twitter E-mail

General

Target

8b24b9b95cc85f956bc3c287131a70e5b21d0911e7ec57cea45bf0a76a47482e
Size

207KB
MD5

03c6f6ef40feb7768a3e42f09ec5a190
SHA1

a7f8216bae4f379f549f5094c1ed0d7a8aed187c
SHA256

8b24b9b95cc85f956bc3c287131a70e5b21d0911e7ec57cea45bf0a76a47482e
SHA512

b48685f9a3cb86dca3652695b290e0ceb0c77231d979bbc6ff2ae6756caedb131b053117e303858c9127b3b2a5f156a03a70a272a5051411fc056d58c74a62e3
SSDEEP

3072:r2nJLPzYL5AcH7BfdOnGkLkalhVi1BIIOXFwBQpKBVHlKj/Gz7Qo+oTImMqiY:rGVQAcHdfdOG9aP8PHDZB/Kj/47mkHM

Score

N/A

Malware Config

Signatures

Files

8b24b9b95cc85f956bc3c287131a70e5b21d0911e7ec57cea45bf0a76a47482e
.dll regsvr32 windows x86

282ab4084f47e3d52f7361377f375f8f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcmpiW
GetModuleHandleA
GetProcAddress
GetThreadLocale
GetLastError
SetThreadLocale
lstrlenW
GetModuleFileNameW
GetModuleHandleW
LoadLibraryExW
FreeLibrary
DeleteCriticalSection
LockResource
EnterCriticalSection
RaiseException
MultiByteToWideChar
GetFileAttributesW
LeaveCriticalSection
SizeofResource
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
LoadResource
FindResourceW
FindResourceExW
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoA
lstrlenA
OutputDebugStringA
GetTickCount
CloseHandle
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
GetCurrentThreadId
GetCommandLineA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapCreate
VirtualFree
VirtualAlloc
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
LCMapStringW
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
RtlUnwind
SetFilePointer
GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
LoadLibraryA
LCMapStringA
GetStringTypeA
GetStringTypeW
VirtualQuery

user32

CharNextW

advapi32

RegOpenKeyExW
CryptGetHashParam
CryptAcquireContextW
CryptReleaseContext
CryptCreateHash
CryptDestroyHash
CryptHashData
RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegQueryValueExW
RegDeleteValueW
RegDeleteKeyW
RegQueryInfoKeyW
RegCreateKeyExW

ole32

CoCreateInstance
CoTaskMemAlloc
StringFromGUID2
CoTaskMemRealloc
CoTaskMemFree

oleaut32

VariantInit
SysAllocStringLen
SafeArrayUnaccessData
VarUI4FromStr
SysFreeString
VariantChangeType
SafeArrayCreate
SafeArrayDestroy
SafeArrayAccessData
VariantClear

mkunicode

Utf8ToUtf16

rpcrt4

RpcStringFreeA
UuidToStringA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 788B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

282ab4084f47e3d52f7361377f375f8f

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

mkunicode

rpcrt4

Exports

Exports

Sections

.text Size: 114KB - Virtual size: 113KB

.rdata Size: 18KB - Virtual size: 18KB

.data Size: 7KB - Virtual size: 14KB

.rsrc Size: 1024B - Virtual size: 788B

.reloc Size: 9KB - Virtual size: 8KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 114KB - Virtual size: 113KB

.rdata
Size: 18KB - Virtual size: 18KB

.data
Size: 7KB - Virtual size: 14KB

.rsrc
Size: 1024B - Virtual size: 788B

.reloc
Size: 9KB - Virtual size: 8KB

.rmnet
Size: 56KB - Virtual size: 60KB