6c283ed6e31b8d169d43594d9f9ae966f73cfa0ccba6e12cbde6502f46f349f1

Sharing

Copy URL Twitter E-mail

General

Target

6c283ed6e31b8d169d43594d9f9ae966f73cfa0ccba6e12cbde6502f46f349f1
Size

228KB
MD5

4aa45c84230b9b2560875eabb7aea4d1
SHA1

904c3d119a52b5df8696d14fb5052935ddb8ac2d
SHA256

6c283ed6e31b8d169d43594d9f9ae966f73cfa0ccba6e12cbde6502f46f349f1
SHA512

25fc026267c0c5b884e29675ca1235b00ca8e496443e41d5062f170f2f6c4aa6ccf77a3b639f054aad5752562de3a469afc1a6df07ed58b4333fccfbf889ecae
SSDEEP

3072:n4Ol4j7sfmKSmFALN7EfPaFbtmZS07mdamZ9JIrwhMOo3aMm7GJc:n4OmAzSnR7sahtv07AburAXM9m

Score

N/A

Malware Config

Signatures

Files

6c283ed6e31b8d169d43594d9f9ae966f73cfa0ccba6e12cbde6502f46f349f1
.dll regsvr32 windows x86

4ad90f9f3d6bcca0e8dd77c88c1816e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
GlobalLock
GlobalUnlock
GetCurrentProcess
FlushInstructionCache
lstrlenW
lstrlenA
InterlockedDecrement
EnterCriticalSection
InterlockedIncrement
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WideCharToMultiByte
MultiByteToWideChar
CreateThread
SetCommMask
QueryPerformanceFrequency
QueryPerformanceCounter
WaitForSingleObject
SetEvent
CreateEventA
GetCurrentThreadId
GetCurrentThread
lstrcmpiA
lstrcmpA
ResetEvent
GetModuleFileNameA
LocalAlloc
LocalFree
TlsAlloc
GlobalFree
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
SetErrorMode
lstrcatA
lstrcpyA
lstrcpynA
GetVersion
SetLastError
GetLastError
GlobalFlags
WritePrivateProfileStringA
GetProcAddress
GetModuleHandleA
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
FreeLibrary
LoadLibraryA
GetProcessVersion
SetFilePointer
FlushFileBuffers
SetEndOfFile
GetVolumeInformationA
GetCPInfo
GetOEMCP
RtlUnwind
GetCommandLineA
HeapAlloc
HeapFree
ExitProcess
TerminateProcess
RaiseException
HeapSize
HeapReAlloc
GetACP
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetDriveTypeA
DeviceIoControl
PurgeComm
GetTickCount
Sleep
ClearCommError
ReadFile
WriteFile
CloseHandle
CreateFileA
SetupComm
GetCommState
SetCommState
GetCommTimeouts
GlobalDeleteAtom
SetCommTimeouts

user32

UnregisterClassA
GetClassNameA
GetWindowRect
GetDlgCtrlID
GetWindow
ClientToScreen
SetWindowTextA
GetWindowTextA
wsprintfA
GetMenuItemCount
TabbedTextOutA
DrawTextA
GrayStringA
GetSystemMetrics
GetWindowPlacement
IsIconic
SystemParametersInfoA
RegisterWindowMessageA
SetForegroundWindow
GetMessagePos
GetMessageTime
RemovePropA
GetPropA
SetPropA
GetClassLongA
UnhookWindowsHookEx
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconA
LoadCursorA
GetSysColorBrush
LoadStringA
DestroyMenu
GetActiveWindow
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
IsWindowEnabled
EnableWindow
SetCursor
SendMessageA
PostMessageA
PostQuitMessage
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
GetMessageA
DispatchMessageA
TranslateMessage
PeekMessageA
SetDlgItemTextA
ReleaseDC
BeginPaint
GetClientRect
EndPaint
InvalidateRect
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
SetWindowPos
IsWindow
GetParent
SetFocus
GetFocus
IsChild
DestroyWindow
CreateWindowExA
CallWindowProcA
GetWindowLongA
SetWindowLongA
ShowWindow
UnionRect
PtInRect
GetKeyState
DefWindowProcA
MessageBoxA
GetForegroundWindow
GetDC
GetDlgItem
EndDialog
DialogBoxParamA

gdi32

SetTextColor
OffsetViewportOrgEx
SetViewportExtEx
DeleteObject
ScaleViewportExtEx
ScaleWindowExtEx
SetBkColor
GetStockObject
SelectObject
CreateBitmap
GetObjectA
Escape
ExtTextOutA
RectVisible
PtVisible
StretchDIBits
TextOutA
SetTextAlign
Rectangle
CreateRectRgnIndirect
DeleteMetaFile
CloseMetaFile
RestoreDC
SetWindowExtEx
SetWindowOrgEx
SaveDC
CreateMetaFileA
DeleteDC
SetViewportOrgEx
SetMapMode
LPtoDP
GetDeviceCaps
GetClipBox

ole32

OleRegEnumVerbs
OleRegGetUserType
OleRegGetMiscStatus
CreateDataAdviseHolder
CoTaskMemAlloc
CoTaskMemFree
CreateOleAdviseHolder

oleaut32

VariantClear
OleCreatePropertyFrame
SysFreeString
SysAllocString
LoadRegTypeLi
SysStringLen

comctl32

ord17

atl

ord23
ord16
ord21
ord15
ord18
ord26
ord27
ord31
ord58
ord43
ord44
ord50
ord30
ord51
ord46
ord32
ord57

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ad90f9f3d6bcca0e8dd77c88c1816e3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

comctl32

atl

winspool.drv

advapi32

Exports

Exports

Sections

.text Size: 152KB - Virtual size: 149KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 24KB - Virtual size: 363KB

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 16KB - Virtual size: 15KB

.text
Size: 152KB - Virtual size: 149KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 24KB - Virtual size: 363KB

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 16KB - Virtual size: 15KB