de71534d327b27e0db6027de039045bd0ed4d2550e0f3fc192a0e13e5292731d

Sharing

Copy URL

Twitter E-mail

General

Target

de71534d327b27e0db6027de039045bd0ed4d2550e0f3fc192a0e13e5292731d
Size

448KB
MD5

32fa7cad61cfac9db0c11e90f7639dc0
SHA1

c945a3428455ad8d56284cccafdfcb3e91bbb174
SHA256

de71534d327b27e0db6027de039045bd0ed4d2550e0f3fc192a0e13e5292731d
SHA512

790a77ca6aacced6e1670574db7abee5905d1578274eb9517d3b502daf01409484e4d8d388d9289168c7f824da4c7b3a9ecd4262be04afda34cf762a484f3e5e
SSDEEP

12288:4dosPJKAw62zmk4hccQQhKe6tflzexulxxe:7B6kA8es+ulx8

Score

N/A

Malware Config

Signatures

Files

de71534d327b27e0db6027de039045bd0ed4d2550e0f3fc192a0e13e5292731d
.dll regsvr32 windows x86

80a754551f7e84c734cf110702e0f73a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetNumberOfInterfaces
GetIfEntry

msi

ord70
ord45

ole32

CoCreateInstance
GetHGlobalFromStream
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CreateStreamOnHGlobal
OleUninitialize
OleInitialize
StringFromGUID2

oleaut32

VarUI4FromStr
SysFreeString
VariantClear

kernel32

LockResource
FindResourceExW
lstrlenA
WideCharToMultiByte
GetLocaleInfoW
LoadLibraryW
EnumResourceLanguagesW
IsValidLocale
GetSystemDefaultLCID
CloseHandle
CreateFileW
FileTimeToDosDateTime
FileTimeToLocalFileTime
GetFileInformationByHandle
GetLocalTime
IsBadWritePtr
GetModuleHandleW
GetProcAddress
GetFullPathNameW
GetTempPathW
GetDiskFreeSpaceW
CreateDirectoryW
FindNextFileW
DeleteFileW
SetFileAttributesW
RemoveDirectoryW
FindClose
FindFirstFileW
GetCurrentThreadId
FormatMessageW
IsBadReadPtr
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
HeapCreate
GlobalReAlloc
GlobalSize
GetNumberFormatW
MulDiv
GetTickCount
QueryPerformanceFrequency
QueryPerformanceCounter
Sleep
FreeResource
GetModuleFileNameA
VirtualQuery
SetErrorMode
GetVersionExA
GlobalMemoryStatus
GetSystemInfo
GetModuleFileNameW
LoadLibraryExW
FindResourceW
LoadResource
SizeofResource
MultiByteToWideChar
FreeLibrary
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls
lstrcpynW
GlobalHandle
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
lstrcmpiW
GetLastError
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
lstrlenW
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
ExitProcess
GetCurrentProcessId
GetFileAttributesW
GetSystemTimeAsFileTime

advapi32

RegDeleteKeyW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegQueryValueExW
RegEnumKeyW
RegOpenKeyW
RegCreateKeyW
RegSetValueW
RegQueryValueW
RegDeleteValueW

user32

GetClassInfoW
RegisterClassW
SetForegroundWindow
BringWindowToTop
FindWindowW
EnableWindow
GetParent
SetWindowPlacement
GetFocus
GetCursorPos
GetSysColor
IntersectRect
SystemParametersInfoW
IsIconic
GetWindowPlacement
IsDlgButtonChecked
EndDialog
SetWindowTextW
GetDlgItem
ShowWindow
GetClientRect
GetSystemMenu
MapWindowPoints
GetSystemMetrics
CreateWindowExW
SetDlgItemTextW
SetWindowPos
CheckDlgButton
SetWindowLongW
GetWindowLongW
GetLastActivePopup
SetWindowsHookExW
MessageBoxW
UnregisterClassW
GetWindowTextW
CallNextHookEx
UnhookWindowsHookEx
GetWindow
SendMessageW
CharNextA
LoadStringW
LoadMenuIndirectW
LoadMenuW
GetDesktopWindow
GetWindowRect
DestroyWindow
wsprintfW
LoadImageW
LoadIconW
LoadCursorW
LoadBitmapW
GetMenuStringW
ModifyMenuW
GetMenuItemInfoW
EnableMenuItem
GetMenuState
DeleteMenu
GetMenuItemCount
GetMenuItemID
CreateAcceleratorTableW
LoadAcceleratorsW
DialogBoxIndirectParamW
DialogBoxParamW
CreateDialogIndirectParamW
CreateDialogParamW
GetDC
ReleaseDC
CharNextW
wsprintfA
SetCursor
GetClassNameW
DestroyCursor
GetSubMenu

gdi32

DeleteObject
GetObjectW
CreateCompatibleBitmap
LineTo
ExtTextOutW
CreateDIBitmap
GetPixel
CreateBitmap
SelectObject
SetBkColor
BitBlt
SetTextColor
CreateFontW
GetTextCharset
CreatePen
CreateSolidBrush
CreatePatternBrush
CreateBitmapIndirect
GetNearestColor
GetTextFaceW
GetTextMetricsW
PtVisible
GetClipBox
GetDCOrgEx
RectVisible
GetTextExtentPoint32W
CreateDCW
DeleteDC
CreateFontIndirectW
GetStockObject
MoveToEx
Polygon
CreateCompatibleDC
GetDeviceCaps

msvcr70

_purecall
free
malloc
_except_handler3
swprintf
wcscpy
wcsncpy
wcslen
wcsstr
_wcsicmp
towupper
memset
_msize
memmove
toupper
swscanf
wcscmp
calloc
_wtoi
isspace
iswspace
wcscat
wcspbrk
_wmakepath
_wsplitpath
iswdigit
_CIpow
floor
_wtol
_wtoi64
wcstod
_mbscpy
__dllonexit
_onexit
_initterm
_adjust_fdiv
__security_error_handler
realloc

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

comctl32

ImageList_LoadImageW

winmm

sndPlaySoundW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 248KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

80a754551f7e84c734cf110702e0f73a

Headers

File Characteristics

Imports

iphlpapi

msi

ole32

oleaut32

kernel32

advapi32

user32

gdi32

msvcr70

version

comctl32

winmm

Exports

Exports

Sections

.text Size: 112KB - Virtual size: 109KB

.rdata Size: 28KB - Virtual size: 24KB

.data Size: 4KB - Virtual size: 42KB

.rsrc Size: 44KB - Virtual size: 40KB

.reloc Size: 8KB - Virtual size: 7KB

.text Size: 248KB - Virtual size: 248KB

.text
Size: 112KB - Virtual size: 109KB

.rdata
Size: 28KB - Virtual size: 24KB

.data
Size: 4KB - Virtual size: 42KB

.rsrc
Size: 44KB - Virtual size: 40KB

.reloc
Size: 8KB - Virtual size: 7KB

.text
Size: 248KB - Virtual size: 248KB