76e37ee7cadf37946b3cb086d925cf7eb0f6d9c2327f1622ddaee101c6367e71

Sharing

Copy URL Twitter E-mail

General

Target

76e37ee7cadf37946b3cb086d925cf7eb0f6d9c2327f1622ddaee101c6367e71
Size

1.2MB
MD5

125623e472c588f965a558d5c4fd619f
SHA1

19f4427a92f162213c1622f867c9dba83e0cb844
SHA256

76e37ee7cadf37946b3cb086d925cf7eb0f6d9c2327f1622ddaee101c6367e71
SHA512

2c67dd111e05c9d77b9ed2f3b1ff35fdef2cda6c2534e89ec1d643e5083170963debd8f7de74efb15be9c3b0ab0201df9f9a8d3d74216f7e188ce8a7eb6a7bdd
SSDEEP

24576:t7BgLuT2YVGSlcW5fufe152tt+fQoEUhY0AkcEnrC5:RBbThVGSd5fufw52tt+fQoHAkc+rC5

Score

N/A

Malware Config

Signatures

Files

76e37ee7cadf37946b3cb086d925cf7eb0f6d9c2327f1622ddaee101c6367e71
.dll regsvr32 windows x86

8ef3ea931bc1c7c065e8dc2c95464dd1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFullPathNameA
GetFileAttributesA
GetFileTime
FindResourceExA
RtlUnwind
HeapFree
HeapAlloc
HeapReAlloc
GetCommandLineA
RaiseException
GetTimeZoneInformation
GetSystemTime
GetACP
ExitThread
SetStdHandle
GetFileType
ExitProcess
TerminateProcess
HeapSize
LCMapStringA
LCMapStringW
GetVolumeInformationA
HeapCreate
VirtualFree
VirtualAlloc
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
InterlockedExchange
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
DuplicateHandle
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
WritePrivateProfileStringA
GetPrivateProfileStringA
GlobalAlloc
lstrcmpA
GetCurrentThread
FileTimeToLocalFileTime
FileTimeToSystemTime
SetLastError
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
WaitForSingleObject
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GlobalLock
GlobalUnlock
GlobalFree
GetCurrentDirectoryA
SetCurrentDirectoryA
CreateFileA
GetFileSize
ReadFile
LocalAlloc
LocalFree
Sleep
WinExec
GetWindowsDirectoryA
FormatMessageA
IsBadWritePtr
GetVersionExA
GetVersion
GetSystemDefaultLangID
GetCurrentProcessId
lstrcatA
LoadLibraryA
HeapDestroy
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
GetLastError
SizeofResource
FreeLibrary
GetShortPathNameA
GetProcAddress
GetNumberFormatA
GetTimeFormatA
GetThreadLocale
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
CreateThread
GetDriveTypeA
CloseHandle
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
lstrcpyA
MulDiv
lstrlenA
FindResourceA
LoadResource
LockResource
MultiByteToWideChar
InterlockedDecrement
InterlockedIncrement
GetTickCount
GetLocalTime
lstrlenW
GetEnvironmentVariableA
WideCharToMultiByte

user32

GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
GrayStringA
GetAsyncKeyState
DestroyMenu
UnregisterClassA
CharUpperA
SetForegroundWindow
RegisterWindowMessageA
IsIconic
GetWindowPlacement
SetFocus
SetWindowPos
GetDlgCtrlID
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
GetLastActivePopup
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
IsWindowEnabled
GetDesktopWindow
CopyIcon
IsWindow
SetWindowLongA
SetCursor
PtInRect
RedrawWindow
GetMenuCheckMarkDimensions
DestroyCursor
GetMenuItemID
SetMenuItemBitmaps
DrawStateA
DrawFrameControl
GetMenuStringA
GetMenuItemCount
GetSubMenu
MapWindowPoints
SystemParametersInfoA
SetRect
AdjustWindowRect
GetSysColorBrush
LoadCursorA
GetMenu
IsMenu
GetKeyState
ScreenToClient
IsChild
GetNextDlgTabItem
ClientToScreen
WindowFromPoint
InflateRect
DrawFocusRect
LoadBitmapA
GetFocus
GetForegroundWindow
GetWindowThreadProcessId
FlashWindow
InvalidateRect
MoveWindow
CharNextA
GetClassNameA
MessageBoxA
GetSystemMenu
RemoveMenu
AdjustWindowRectEx
LoadIconA
GetWindowRect
OffsetRect
SetCapture
ReleaseCapture
GetDC
ReleaseDC
GetDialogBaseUnits
PostMessageA
IsWindowVisible
LoadStringA
EnableWindow
MessageBeep
GetMenuState
DispatchMessageA
CheckMenuItem
EnableMenuItem
GetMessageA
TranslateMessage
ValidateRect
ModifyMenuA
GetCursorPos
WinHelpA
DestroyIcon
ShowWindow
GetParent
DrawTextA
KillTimer
LoadImageA
SetTimer
CopyRect
MapDialogRect
GetDlgItem
DestroyWindow
GetClientRect
GetSystemMetrics
GetWindow
SendMessageA
UpdateWindow
PeekMessageA
PostQuitMessage
GetWindowLongA
GetTopWindow
GetCapture
wsprintfA
GetClassInfoA
RegisterClassA
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetSysColor
GetMessagePos

gdi32

CreateBitmap
DeleteDC
StartDocA
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
MoveToEx
LineTo
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
EnumFontFamiliesExA
SetBkColor
SetTextColor
GetClipBox
GetObjectA
GetTextFaceA
CreateFontA
Rectangle
GetTextExtentPoint32A
CreateFontIndirectA
SelectObject
GetTextMetricsA
GetTextExtentPointA
DeleteObject
GetDeviceCaps
GetStockObject
StartPage
EndDoc
EndPage

comdlg32

GetSaveFileNameA
PrintDlgA
GetFileTitleA
GetOpenFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

shell32

ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc

comctl32

PropertySheetA
ImageList_Create
ImageList_Destroy
ImageList_GetImageCount
ImageList_GetIcon
ord17
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_SetBkColor
ImageList_AddMasked
ImageList_ReplaceIcon

ole32

CoInitializeEx
CoTaskMemRealloc
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CoUninitialize
CoCreateInstance

oleaut32

BSTR_UserSize
SysAllocString
SysAllocStringLen
SysStringLen
RegisterTypeLi
LoadTypeLi
VarUI4FromStr
SysFreeString
BSTR_UserMarshal
BSTR_UserUnmarshal
BSTR_UserFree

rpcrt4

CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_CountRefs
CStdStubBuffer_Invoke
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_Disconnect
CStdStubBuffer_Connect
CStdStubBuffer_AddRef
CStdStubBuffer_QueryInterface
IUnknown_Release_Proxy
IUnknown_AddRef_Proxy
IUnknown_QueryInterface_Proxy
NdrOleFree
NdrOleAllocate
NdrDllGetClassObject
NdrDllCanUnloadNow
NdrCStdStubBuffer_Release
NdrDllRegisterProxy
NdrDllUnregisterProxy
CStdStubBuffer_IsIIDSupported

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 380KB - Virtual size: 376KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.orpc
Size: 4KB - Virtual size: 150B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 112KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 528KB - Virtual size: 527KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8ef3ea931bc1c7c065e8dc2c95464dd1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

shell32

comctl32

ole32

oleaut32

rpcrt4

version

Exports

Exports

Sections

.text Size: 380KB - Virtual size: 376KB

.orpc Size: 4KB - Virtual size: 150B

.rdata Size: 112KB - Virtual size: 109KB

.data Size: 44KB - Virtual size: 61KB

.rsrc Size: 528KB - Virtual size: 527KB

.reloc Size: 60KB - Virtual size: 58KB

.text Size: 112KB - Virtual size: 112KB

.text
Size: 380KB - Virtual size: 376KB

.orpc
Size: 4KB - Virtual size: 150B

.rdata
Size: 112KB - Virtual size: 109KB

.data
Size: 44KB - Virtual size: 61KB

.rsrc
Size: 528KB - Virtual size: 527KB

.reloc
Size: 60KB - Virtual size: 58KB

.text
Size: 112KB - Virtual size: 112KB