eb7d8111aaffce0c9baa510490ff711e2c451895869116a7d00eeb44b4c0cdeb

Sharing

Copy URL

Twitter E-mail

General

Target

eb7d8111aaffce0c9baa510490ff711e2c451895869116a7d00eeb44b4c0cdeb
Size

217KB
MD5

1993603b6181b721d20fc3fa06f2aff0
SHA1

5fdec012c95fef960d2935245fb8829b530c0b45
SHA256

eb7d8111aaffce0c9baa510490ff711e2c451895869116a7d00eeb44b4c0cdeb
SHA512

d30c904567545012dc90f8277e03b073f1db990a0fcdd7923379af047ec6c4c9a954b4b8acb96aa05ebb6e902dd612d8cb51713a3ea7f9a3ab3ef1abbf63f0e2
SSDEEP

6144:QPa3p/H4ctxiYSiC20e/nrFtVRx2RG1XD:QIp1dC20CxtVRxasXD

Score

N/A

Malware Config

Signatures

Files

eb7d8111aaffce0c9baa510490ff711e2c451895869116a7d00eeb44b4c0cdeb
.dll regsvr32 windows x86

688f01d651621ba4a5e862956a81a43b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_REMOVABLE_RUN_FROM_SWAP
IMAGE_FILE_NET_RUN_FROM_SWAP

Imports

kernel32

FreeLibrary
GetProcAddress
LoadLibraryExA
GetModuleHandleA
IsDBCSLeadByte
SizeofResource
LoadResource
FindResourceExA
GetModuleFileNameA
GetThreadLocale
SetThreadLocale
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
LockResource
FindFirstFileW
FindNextFileW
FindClose
LoadLibraryW
CreateDirectoryW
CopyFileW
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
GetCommandLineA
GetVersionExA
GetSystemInfo
VirtualAlloc
VirtualProtect
VirtualQuery
GetModuleHandleW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
SetLastError
GetCurrentThreadId
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
ExitProcess
LoadLibraryExW
VirtualFree
GetStdHandle
GetFileType
SetHandleCount
GetStartupInfoA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
GetTickCount
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WriteFile
OutputDebugStringA
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
RtlUnwind
Sleep
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
SetFilePointer
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetStdHandle
GetConsoleOutputCP
WriteConsoleA
WriteConsoleW
CreateFileA
CloseHandle
FlushFileBuffers
GetFileAttributesW
ExpandEnvironmentStringsW
lstrcmpiA
GetLastError
RaiseException
MultiByteToWideChar
WideCharToMultiByte
HeapCreate

ole32

StringFromGUID2
CoTaskMemAlloc
CoGetMalloc
CoTaskMemRealloc
CoTaskMemFree
StringFromCLSID
CoCreateInstance

oleaut32

LoadTypeLi
UnRegisterTypeLi
SysAllocStringLen
LoadRegTypeLi
SysFreeString
VarUI4FromStr
RegisterTypeLi
SysStringLen
SysAllocString

user32

UnregisterClassA
CharNextA

advapi32

RegEnumValueW
RegQueryInfoKeyA
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExW
RegQueryValueExW
RegCloseKey

shell32

SHGetFileInfoA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 84KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

688f01d651621ba4a5e862956a81a43b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

oleaut32

user32

advapi32

shell32

Exports

Exports

Sections

.text Size: 84KB - Virtual size: 84KB

.data Size: 4KB - Virtual size: 11KB

.idata Size: 3KB - Virtual size: 3KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 13KB - Virtual size: 13KB

.text Size: 109KB - Virtual size: 112KB

.text
Size: 84KB - Virtual size: 84KB

.data
Size: 4KB - Virtual size: 11KB

.idata
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 13KB - Virtual size: 13KB

.text
Size: 109KB - Virtual size: 112KB