14c7387e4fb72539cca628a364ec9059cb236ff239f7e968236053f4661c224a

General

Target

14c7387e4fb72539cca628a364ec9059cb236ff239f7e968236053f4661c224a
Size

112KB
MD5

76f3a4e01f3f45038185baab9e099af8
SHA1

b1b5641129370b5e5e3e4c908153753c09817ce4
SHA256

14c7387e4fb72539cca628a364ec9059cb236ff239f7e968236053f4661c224a
SHA512

66a19287b0cb4051646dbb23368b813da80183f866160906f67c0fe3319ff6bbb7e0751f74afe05913962ed2ac065315cc7164f91c2a6251b0cdaba5a2d6d997
SSDEEP

1536:BbrR2VviCYQzTWS2SdAWWbct2aN6ILrApt5ne99Yy6Y6coiSVvQe2vk8+PgZ7klw:BoVviCkYdycDNREpPnEmY6QqvCvtssK

Score

N/A

Malware Config

Signatures

Files

14c7387e4fb72539cca628a364ec9059cb236ff239f7e968236053f4661c224a
.dll regsvr32 windows x86

f2501634f738362e9c55d0bf9d98e627

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
SizeofResource
FileTimeToSystemTime
LoadLibraryW
SetThreadPriority
VirtualFree
lstrlenW
DeleteFileW
CreateEventW
FindNextChangeNotification
GetCurrentProcessId
LoadResource
GlobalUnlock
CreateProcessW
WaitForMultipleObjects
GetCurrentThreadId
GetProcAddress
LockResource
FindClose
GetFileAttributesW
GetLogicalDrives
ReadProcessMemory
GetPrivateProfileStringW
LoadLibraryA
SetLastError
GlobalDeleteAtom
CreateThread
GetDriveTypeW

user32

GetSystemMetrics
PostMessageW
GetDlgItem
AppendMenuW
LoadStringW
DefWindowProcW
RedrawWindow
SetWindowPos
PostQuitMessage
SendDlgItemMessageW
LoadBitmapW
GetCursorPos
GetMessageW
IsWindow
SetForegroundWindow
SystemParametersInfoW
CreateWindowExW
SetCursor
DialogBoxParamW
GetKeyState
GetWindowTextW

gdi32

GetClipBox
SetDIBits
SetMapMode
GetMapMode
GetObjectW
CreateDCW
CreateCompatibleBitmap
CreateBitmap
CreateICW
DeleteObject
SetBkColor
MoveToEx
CreateSolidBrush

advapi32

RegNotifyChangeKeyValue
RegQueryValueExW
LookupAccountSidW
RegDeleteValueW
StartServiceW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.vxfdf
Size: 92KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.uqwc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.awsf
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2501634f738362e9c55d0bf9d98e627

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.vxfdf Size: 92KB - Virtual size: 89KB

.uqwc Size: 4KB - Virtual size: 2KB

.awsf Size: 4KB - Virtual size: 7KB

.reloc Size: 8KB - Virtual size: 6KB

.vxfdf
Size: 92KB - Virtual size: 89KB

.uqwc
Size: 4KB - Virtual size: 2KB

.awsf
Size: 4KB - Virtual size: 7KB

.reloc
Size: 8KB - Virtual size: 6KB