5e695f9ba30fe14bb00a6c140081825f3d374243db5514c2741be1e0dc4fcff1

Sharing

Copy URL Twitter E-mail

General

Target

5e695f9ba30fe14bb00a6c140081825f3d374243db5514c2741be1e0dc4fcff1
Size

1.0MB
MD5

67c7e791427feefdf0abecb16aa0b6fc
SHA1

12faa938cea00f3cafc0ef1132ef60bb0644db36
SHA256

5e695f9ba30fe14bb00a6c140081825f3d374243db5514c2741be1e0dc4fcff1
SHA512

2e56a22f86dfd301d9940b0133e7455487bf86f259f04446ac966963f7323e8f0fa0fd77c5a71c5a12ea9e5aec4f6eedffbc4d85061711f301a0dc0031b8de8c
SSDEEP

24576:H5Wo+9qpgDGHeaNEjwRsuL9n0LPZGO9FesVywt1oGNpX3nh95kMtNFWuU:V+AWcGjwRsuL9WPZGAFesVFtKApnhn/i

Score

N/A

Malware Config

Signatures

Files

5e695f9ba30fe14bb00a6c140081825f3d374243db5514c2741be1e0dc4fcff1
.dll regsvr32 windows x86

e15beef6d4ff212515f7494364058684

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetErrorMode
Sleep
IsBadCodePtr
InterlockedExchange
lstrcmpiA
HeapAlloc
GetProcessHeap
HeapReAlloc
HeapFree
HeapSize
GetVersionExA
lstrcmpA
LocalAlloc
LoadLibraryA
RaiseException
SetUnhandledExceptionFilter
GetCurrentProcessId
OpenProcess
TerminateProcess
LoadLibraryExA
FreeResource
MapViewOfFile
UnmapViewOfFile
OpenFile
GetFileSize
ReadFile
DisableThreadLibraryCalls
GetProcAddress
FreeLibrary
GetLocaleInfoA
GetSystemTime
SystemTimeToFileTime
GetFileTime
CloseHandle
CompareFileTime
WideCharToMultiByte
GetTickCount
SetLastError
GetLastError
FindClose
DeleteCriticalSection
InitializeCriticalSection
GetUserDefaultLCID
EnterCriticalSection
GetCurrentThreadId
LeaveCriticalSection
GetCurrentProcess
FlushInstructionCache
MulDiv
GlobalAlloc
HeapDestroy
InterlockedDecrement
SizeofResource
LockResource
LoadResource
MultiByteToWideChar
GlobalUnlock
GlobalSize
GlobalLock
GetACP
lstrlenA
GlobalFree
InterlockedIncrement

gdi32

SetPixel
CreateDIBitmap
GetPixel
CreateBrushIndirect
SetBkMode
PatBlt
SetTextAlign
GetStockObject
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
CreateRectRgn
CombineRgn
DPtoLP
EnumFontFamiliesExA
EnumFontFamiliesA
TranslateCharsetInfo
SelectPalette
RealizePalette
SetTextColor
SetBkColor
SelectObject
CreateSolidBrush
CreatePalette
DeleteObject
CreateRectRgnIndirect
GetDeviceCaps
LPtoDP
SaveDC
SetMapMode
SetWindowOrgEx
SetViewportOrgEx
DeleteDC
RestoreDC

user32

GetFocus
IsChild
MoveWindow
BeginPaint
EndPaint
InvalidateRect
IsWindow
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
GetDC
ReleaseDC
UnionRect
PtInRect
wsprintfA
DestroyWindow
GetClientRect
ShowWindow
GetWindowRect
MapWindowPoints
SetWindowPos
SetFocus
UnregisterClassA
IsWindowEnabled
GetCursorPos
ReleaseCapture
SetCapture
GetActiveWindow
GetWindowThreadProcessId
GetKeyState
SendMessageA
TranslateMessage
SetKeyboardState
ClientToScreen
SetCursorPos
LoadImageA
GetSysColorBrush
UpdateWindow
DrawEdge
GetAsyncKeyState
SetCursor
GetSystemMetrics
RedrawWindow
ScreenToClient
SetTimer
KillTimer
MessageBeep
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
IsDlgButtonChecked
CheckDlgButton
SetDlgItemInt
GetDlgItemInt
EndDialog
GetDlgCtrlID
GetDialogBaseUnits
CharNextA
GetDesktopWindow
GetKeyboardLayout
IsWindowUnicode
FillRect
EnableWindow
GetDlgItem
SetRect
SetParent
GetParent
GetSysColor

comctl32

ImageList_AddMasked
ord17
ImageList_Draw
ImageList_Destroy
ImageList_SetBkColor
ImageList_Create

advapi32

RegEnumKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

OleSetClipboard
OleGetClipboard
CoCreateGuid
CoMarshalInterface
CoTaskMemRealloc
CLSIDFromString
StringFromCLSID
CreateBindCtx
GetHGlobalFromStream
CoCreateInstance
StringFromGUID2
CoTaskMemAlloc
CLSIDFromProgID
CoGetClassObject
CoTaskMemFree
OleRegGetMiscStatus
CreateOleAdviseHolder
OleRegGetUserType
OleRegEnumVerbs
OleTranslateAccelerator
ReleaseStgMedium
CreateStreamOnHGlobal

oleaut32

SysAllocStringLen
SetErrorInfo
VarBstrCmp
CreateTypeLib2
RegisterTypeLi
LoadTypeLi
VarUI4FromStr
SafeArrayCopy
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayPutElement
SafeArrayCreate
SafeArrayDestroy
VariantCopy
VarCmp
VariantChangeType
VariantChangeTypeEx
LoadRegTypeLi
GetErrorInfo
VarBstrCat
OleCreatePropertyFrame
SysStringByteLen
SysFreeString
SysAllocString
SysStringLen
VariantInit
VariantClear
SysAllocStringByteLen

msvcr70

wcspbrk
_mbscat
_mbstok
atoi
strstr
_wtol
_wmakepath
vswprintf
_vscwprintf
_local_unwind2
_abnormal_termination
iswdigit
iswalpha
_ltow
_snwprintf
_ultow
swprintf
_stricmp
wcstok
wcstoul
_wcslwr
_wcsupr
wcsstr
qsort
tolower
wcsncat
towlower
bsearch
wcstol
wcsncmp
malloc
realloc
free
_wsplitpath
iswspace
wcsrchr
wcsncpy
wcscmp
_except_handler3
_strnicmp
memset
strtoul
wcschr
wcscpy
wcscat
wcslen
_wcsnicmp
_itow
memmove
??_U@YAPAXI@Z
_wtoi
_wcsicmp
??2@YAPAXI@Z
_purecall
wcscspn
??_V@YAXPAX@Z
??3@YAXPAX@Z
_initterm
_adjust_fdiv
__dllonexit
_onexit
_vsnprintf

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
VSDllRegisterServer
VSDllUnregisterServer

Sections

.text
Size: 688KB - Virtual size: 686KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 184KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e15beef6d4ff212515f7494364058684

Headers

File Characteristics

Imports

kernel32

gdi32

user32

comctl32

advapi32

ole32

oleaut32

msvcr70

Exports

Exports

Sections

.text Size: 688KB - Virtual size: 686KB

.data Size: 20KB - Virtual size: 21KB

.rsrc Size: 132KB - Virtual size: 131KB

.reloc Size: 44KB - Virtual size: 41KB

.text Size: 184KB - Virtual size: 184KB

.text
Size: 688KB - Virtual size: 686KB

.data
Size: 20KB - Virtual size: 21KB

.rsrc
Size: 132KB - Virtual size: 131KB

.reloc
Size: 44KB - Virtual size: 41KB

.text
Size: 184KB - Virtual size: 184KB