d7786237aa07287f6afe6dcc3569085f07b9e784edcacaf2021e84f62e0dc5d7

Sharing

Copy URL Twitter E-mail

General

Target

d7786237aa07287f6afe6dcc3569085f07b9e784edcacaf2021e84f62e0dc5d7
Size

552KB
MD5

4e00d67baf1c2e3222fa2293cb58bc80
SHA1

339503c17191ef9bb4dd4292623789bdcf86d76a
SHA256

d7786237aa07287f6afe6dcc3569085f07b9e784edcacaf2021e84f62e0dc5d7
SHA512

ebb647654a63415f7a07386e76f7fba3d8a751efde723b588eb618d04b53e4f7389fa4e94293b851e878db1702fb318bfbc1fd345165e2285ad203884ba42cd5
SSDEEP

6144:S8mP1iRkRUuAQbvlr2Y0WthrBziguQQR1qT8RoRaQ1X62iDUuvWKQl/SBKzbgHP3:S8+iuKkvlHthrZe5MfuvL6aBKAP

Score

N/A

Malware Config

Signatures

Files

d7786237aa07287f6afe6dcc3569085f07b9e784edcacaf2021e84f62e0dc5d7
.dll regsvr32 windows x86

c62effff42307fc9e2ce23fdad766a5e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wsock32

inet_addr
ntohs
ntohl

kernel32

CreateThread
ResetEvent
CreateEventA
LocalFree
LocalAlloc
GetProcAddress
GetVersionExA
SetThreadLocale
GetThreadLocale
WaitForSingleObjectEx
DeleteFileA
MoveFileA
SetFileAttributesA
GetTempFileNameA
ExpandEnvironmentStringsA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
IsValidCodePage
GetOEMCP
GetCPInfo
HeapSize
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStdHandle
WriteFile
ExitProcess
HeapCreate
HeapDestroy
GetCommandLineA
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapReAlloc
RtlUnwind
VirtualQuery
GetSystemInfo
VirtualProtect
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
GetLocaleInfoA
GetACP
InterlockedExchange
GetCurrentProcessId
GetConsoleCP
GetConsoleMode
SetFilePointer
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
FlushFileBuffers
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
ReadFile
MultiByteToWideChar
WideCharToMultiByte
lstrlenW
GetTickCount
Sleep
TerminateThread
WaitForSingleObject
CloseHandle
CreateWaitableTimerA
SetWaitableTimer
GetLocalTime
SetEvent
GlobalHandle
GlobalFree
lstrcmpA
SetLastError
GetCurrentThreadId
GlobalAlloc
GlobalLock
RaiseException
GlobalUnlock
GetCurrentProcess
FlushInstructionCache
LoadLibraryA
MulDiv
LockResource
GetModuleHandleA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
FreeLibrary
GetModuleFileNameA
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InterlockedIncrement
IsDBCSLeadByte
lstrcmpiA
lstrlenA
GetLastError
DeleteCriticalSection
InitializeCriticalSection
QueryPerformanceCounter

user32

GetWindowRect
SystemParametersInfoA
MapWindowPoints
SetWindowContextHelpId
GetSysColor
ClientToScreen
ScreenToClient
InvalidateRgn
RedrawWindow
SetCapture
GetWindow
ReleaseCapture
FillRect
DestroyAcceleratorTable
GetDesktopWindow
CreateAcceleratorTableA
GetWindowTextLengthA
RegisterWindowMessageA
DialogBoxIndirectParamA
GetActiveWindow
GetDlgItemTextA
SetDlgItemTextA
GetClassNameA
MapDialogRect
MsgWaitForMultipleObjects
PeekMessageA
DispatchMessageA
CreateDialogParamA
MessageBoxA
CreateWindowExA
GetParent
SetFocus
GetFocus
IsChild
RegisterClassExA
InvalidateRect
IsWindow
GetKeyState
CallWindowProcA
BeginPaint
GetClientRect
EndPaint
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
SetWindowPos
LoadCursorA
GetClassInfoExA
GetWindowLongA
UnionRect
PtInRect
WinHelpA
GetDC
ReleaseDC
GetDialogBaseUnits
SetWindowLongA
IsDialogMessageA
MoveWindow
ShowWindow
DefWindowProcA
DestroyWindow
SetWindowTextA
GetWindowTextA
EnableWindow
GetDlgItem
SendDlgItemMessageA
SendMessageA
EndDialog
LoadStringA
CharNextA
UnregisterClassA

gdi32

SetViewportOrgEx
GetClipRgn
CreateRectRgn
SelectClipRgn
Rectangle
SetTextAlign
TextOutA
GetStockObject
GetObjectA
CreateSolidBrush
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
LPtoDP
SetMapMode
DeleteDC
CreateDCA
CreateMetaFileA
SaveDC
SetWindowOrgEx
SetWindowExtEx
RestoreDC
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
GetDeviceCaps
CreateFontIndirectA
SelectObject
GetTextMetricsA
GetTextExtentPointA
DeleteObject

advapi32

RegEnumKeyExA
RegQueryValueExA
OpenSCManagerA
OpenServiceA
QueryServiceStatus
StartServiceA
CloseServiceHandle
RegDeleteKeyA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA

shell32

ShellExecuteA

ole32

OleInitialize
CreateStreamOnHGlobal
CLSIDFromString
OleLockRunning
StringFromGUID2
CreateOleAdviseHolder
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleUninitialize
CLSIDFromProgID
CoGetClassObject
CoCreateInstance
OleSaveToStream
WriteClassStm
OleLoadFromStream
ProgIDFromCLSID
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoUninitialize
CoInitializeEx
OleRegEnumVerbs

oleaut32

RegisterTypeLi
UnRegisterTypeLi
VarBstrCmp
SystemTimeToVariantTime
SafeArrayCreateVector
OleCreateFontIndirect
OleCreatePropertyFrame
DispCallFunc
VarBstrCat
SafeArrayAccessData
SafeArrayUnaccessData
LoadTypeLi
LoadRegTypeLi
VariantChangeType
VarUI4FromStr
CreateErrorInfo
SetErrorInfo
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysAllocStringLen
VariantCopy
VariantClear
VariantInit
SysFreeString
SysStringLen

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
RegisterRunDll

Sections

.text
Size: 224KB - Virtual size: 222KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c62effff42307fc9e2ce23fdad766a5e

Headers

File Characteristics

Imports

wsock32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 224KB - Virtual size: 222KB

.rdata Size: 64KB - Virtual size: 61KB

.data Size: 24KB - Virtual size: 32KB

.rsrc Size: 40KB - Virtual size: 39KB

.reloc Size: 28KB - Virtual size: 26KB

.rmnet Size: 60KB - Virtual size: 60KB

.text Size: 108KB - Virtual size: 108KB

.text
Size: 224KB - Virtual size: 222KB

.rdata
Size: 64KB - Virtual size: 61KB

.data
Size: 24KB - Virtual size: 32KB

.rsrc
Size: 40KB - Virtual size: 39KB

.reloc
Size: 28KB - Virtual size: 26KB

.rmnet
Size: 60KB - Virtual size: 60KB

.text
Size: 108KB - Virtual size: 108KB