5101edd1a811be10b4b8adfa59c73e29dc35f53a852a9d027361b16deb93c7f1

Sharing

Copy URL

Twitter E-mail

General

Target

5101edd1a811be10b4b8adfa59c73e29dc35f53a852a9d027361b16deb93c7f1
Size

240KB
MD5

cce103a8c691ca329c1bfd8f12918072
SHA1

c3367be1792e9b56ee499dcc06c88429ad6902ac
SHA256

5101edd1a811be10b4b8adfa59c73e29dc35f53a852a9d027361b16deb93c7f1
SHA512

5768374b32dfec575a11e992a29c6501830c558aa4da019869b8a60d4d47398de78bc38f21a2b00bfd308242b8d6d4d7ca0c64e129ded43850e7f55a941b8f03
SSDEEP

6144:WTOAkRjUmqjDtFQHo7l37jaxIZm8ezKMH0Q4eK:WTOAkRj7IqoRHaxYmzzs

Score

N/A

Malware Config

Signatures

Files

5101edd1a811be10b4b8adfa59c73e29dc35f53a852a9d027361b16deb93c7f1
.dll regsvr32 windows x86

70f0e0e6c23e7132a1353eea56b45d73

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

advapi32

RegQueryValueExA
RegCloseKey
RegQueryInfoKeyA
RegCreateKeyExA
RegEnumKeyA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegDeleteValueA
RegSetValueExA
RegEnumValueA
RegFlushKey

gdi32

ExtTextOutA
SetBkColor
GetRgnBox
CreateRectRgnIndirect
CreateFontIndirectA
DeleteObject
GetDeviceCaps
GetStockObject
SetTextColor
GetTextColor
GetTextExtentPoint32A
GetTextMetricsA
SelectObject
GetTextExtentPoint32W
GetObjectType
GetBitmapBits
GetObjectA
SetBkMode
RectInRegion
OffsetRgn
LineTo
MoveToEx
CreatePen
SelectClipRgn
SetPixel
GetBkColor
SelectClipPath
EndPath
CloseFigure
BeginPath
UpdateColors
DeleteDC
BitBlt
RealizePalette
SelectPalette
CreateCompatibleDC
CreateCompatibleBitmap
CreatePalette
CreateRectRgn
CreateBitmap
GetPixel
SetWindowOrgEx
OffsetWindowOrgEx

kernel32

SetFileAttributesA
MultiByteToWideChar
WideCharToMultiByte
SizeofResource
LoadResource
FindResourceA
lstrcmpiA
IsDBCSLeadByte
HeapDestroy
InterlockedIncrement
InterlockedDecrement
LoadLibraryA
FlushInstructionCache
GetCurrentProcess
GetCurrentThreadId
GetSystemDirectoryA
CreateThread
GetLocalTime
CopyFileA
FindClose
FindNextFileA
FindFirstFileA
DebugBreak
HeapReAlloc
HeapFree
GetShortPathNameA
SetCurrentDirectoryA
LockResource
FlushFileBuffers
SetFilePointer
SetThreadPriority
ResumeThread
GetUserDefaultLangID
CompareFileTime
SystemTimeToFileTime
WritePrivateProfileSectionA
GetPrivateProfileIntA
GetPrivateProfileStringA
SetEvent
ResetEvent
CreateEventA
GetCommandLineA
GetDriveTypeA
GetFileAttributesA
GetCurrentDirectoryA
WaitForMultipleObjects
WritePrivateProfileStringA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
SetLastError
RemoveDirectoryA
HeapCreate
GetVersionExA
GetSystemInfo
HeapAlloc
DisableThreadLibraryCalls
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryExA
GetProcAddress
EnterCriticalSection
FreeLibrary
LeaveCriticalSection
GetModuleHandleA
lstrlenW
DeleteFileA
CreateProcessA
CreateFileA
GetFileSize
ReadFile
WriteFile
GetExitCodeProcess
lstrcpyA
GetLastError
GetModuleFileNameA
CreateDirectoryA
lstrcmpA
GetTickCount
GetCurrentProcessId
WaitForSingleObject
ReleaseMutex
lstrlenA
lstrcpynA
lstrcatA
CreateMutexA
CloseHandle
GetWindowsDirectoryA
MoveFileA

ole32

CoCreateGuid
CLSIDFromProgID
CoGetInterfaceAndReleaseStream
CreateOleAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
StringFromGUID2
CoFreeUnusedLibraries
CoMarshalInterThreadInterfaceInStream

oleaut32

SysFreeString
VariantInit
VariantClear
SysAllocStringLen
LoadTypeLi
RegisterTypeLi
LoadRegTypeLi
SysStringLen
VariantChangeTypeEx
SysAllocString

user32

GetAsyncKeyState
GetIconInfo
CreateIcon
DestroyIcon
GetWindow
GetClassNameA
BeginPaint
GetClientRect
EndPaint
InvalidateRect
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
SetWindowPos
IsWindow
DestroyWindow
SetFocus
GetFocus
IsChild
GetClassInfoExA
LoadCursorA
CreateWindowExA
ShowWindow
UnionRect
PtInRect
GetKeyState
CharNextA
LoadStringA
MessageBoxA
CallWindowProcA
GetWindowLongA
DefWindowProcA
SetWindowLongA
SetForegroundWindow
PostMessageA
GetParent
GetWindowRect
MapWindowPoints
GetSysColor
SendMessageA
SetTimer
PostQuitMessage
KillTimer
wsprintfA
GetMessageA
TranslateMessage
DispatchMessageA
GetWindowLongW
IsWindowUnicode
SetWindowLongW
CallWindowProcW
DefWindowProcW
MoveWindow
RegisterClassExA
UpdateWindow
ReleaseCapture
DrawIconEx
TrackPopupMenuEx
GetUpdateRgn
ClientToScreen
ScreenToClient
SetCapture
GetForegroundWindow
ValidateRect
DrawEdge
GetActiveWindow
IsRectEmpty
GetMessagePos
GetMessageTime
CallNextHookEx
SetWindowsHookExA
EnumWindows
PeekMessageA
GetWindowThreadProcessId
GetKeyboardType
SystemParametersInfoA
ReleaseDC
GetDC
IsWindowVisible
LoadImageA
SetWindowTextA
GetWindowTextLengthA
SetRectEmpty
EnableMenuItem
GetMenuItemInfoA
CheckMenuItem
GetWindowDC
GetDesktopWindow
SetMenuItemInfoA
InflateRect
CreatePopupMenu
DrawTextW
DrawTextA
CreateWindowExW
GetWindowTextA
GetWindowTextW
SetWindowTextW
AppendMenuW
AppendMenuA
DestroyMenu
IsMenu
CopyRect
SetRect
UnregisterClassA
WindowFromPoint
GetCursorPos
GetCapture
SubtractRect
FindWindowA
AdjustWindowRectEx
UnhookWindowsHookEx
CreateIconIndirect

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
O
Update

Sections

.text
Size: 156KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

AskTBarS
Size: 4KB - Virtual size: 600B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

70f0e0e6c23e7132a1353eea56b45d73

Headers

File Characteristics

Imports

comctl32

advapi32

gdi32

kernel32

ole32

oleaut32

user32

version

Exports

Exports

Sections

.text Size: 156KB - Virtual size: 155KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 8KB - Virtual size: 11KB

AskTBarS Size: 4KB - Virtual size: 600B

.rsrc Size: 40KB - Virtual size: 38KB

.reloc Size: 12KB - Virtual size: 10KB

.text
Size: 156KB - Virtual size: 155KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 11KB

AskTBarS
Size: 4KB - Virtual size: 600B

.rsrc
Size: 40KB - Virtual size: 38KB

.reloc
Size: 12KB - Virtual size: 10KB