5ec7c580d26cbed9ba2d4f74ffbdcd5cad35947d78654aa257209a8c50120258

Sharing

Copy URL Twitter E-mail

General

Target

5ec7c580d26cbed9ba2d4f74ffbdcd5cad35947d78654aa257209a8c50120258
Size

986KB
MD5

9095a980d26947d9d2b4e939055adf24
SHA1

4828d3be7cc4c6fcf711eb17e72a8c3ef4f50d92
SHA256

5ec7c580d26cbed9ba2d4f74ffbdcd5cad35947d78654aa257209a8c50120258
SHA512

9ed369d2230ad7b7bf5bbe7c7adb47d51f4158c0fc8ff15cbae41002fcad4001c3cce44020ca156ccb16d8d596ea09e97dfbd44b03b194207c1b1a43c5a8b71e
SSDEEP

24576:NPl1B78Gpvs4uuj4XX53myl4Rj0+ap/NvJs1QhLstuN2wdgqXspVK:NPR788vmKPUFsUN2uEK

Score

N/A

Malware Config

Signatures

Files

5ec7c580d26cbed9ba2d4f74ffbdcd5cad35947d78654aa257209a8c50120258
.dll regsvr32 windows x86

b312730ea0aa5c95b8235b012ea26a2b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateThread
GetFileInformationByHandle
CompareFileTime
ConnectNamedPipe
VerifyVersionInfoW
GetFileType
GetLogicalDriveStringsA
lstrcpyW
CreateDirectoryA
GetStringTypeW
DeleteFileW
SetCurrentDirectoryW
GetLocaleInfoA
CopyFileA
MapViewOfFileEx
GetThreadContext
FreeLibraryAndExitThread
SetupComm
LoadLibraryA
IsValidLanguageGroup
FindNextVolumeW
CreateProcessW
ReleaseActCtx
FlushViewOfFile
SystemTimeToFileTime
GetProcAddress
EnumResourceNamesW

ole32

StgOpenStorage
CoRevertToSelf
CoLockObjectExternal

user32

GetDCEx
SetWindowPos
AdjustWindowRectEx
TrackMouseEvent
GetClassNameW
EnumDisplaySettingsW
ShowScrollBar
MessageBoxIndirectA
SetRect
RemovePropA
WinHelpW
CreateMenu
TrackPopupMenuEx
CreateIconIndirect
GetLastActivePopup
GetForegroundWindow
EnableWindow
PeekMessageA
GetDialogBaseUnits

oleaut32

SysStringByteLen
SysReAllocStringLen

shlwapi

PathIsDirectoryW
PathAddBackslashA
SHGetValueA
SHSetValueW
PathGetDriveNumberW

advapi32

RegSaveKeyExW
RevertToSelf
RegSetValueExW
CredUnmarshalCredentialW
NotifyBootConfigStatus
GetNumberOfEventLogRecords

gdi32

CreateDCW
SetPixel
SetBitmapDimensionEx
SetTextCharacterExtra
StretchDIBits
PolylineTo
GetStockObject
CreateBrushIndirect
PlayEnhMetaFileRecord
ScaleViewportExtEx
CreateBitmap
GetViewportOrgEx
RemoveFontResourceA
Polygon
AbortDoc

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 604KB - Virtual size: 601KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b312730ea0aa5c95b8235b012ea26a2b

Headers

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

shlwapi

advapi32

gdi32

Exports

Exports

Sections

.text Size: 604KB - Virtual size: 601KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 1.7MB - Virtual size: 1.7MB

.reloc Size: 64KB - Virtual size: 60KB

.text
Size: 604KB - Virtual size: 601KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 1.7MB - Virtual size: 1.7MB

.reloc
Size: 64KB - Virtual size: 60KB