db7c24747ecc9e5ce652c6c364872611c21c4938a30a683dcf4ac4358561bb39

Sharing

Copy URL

Twitter E-mail

General

Target

db7c24747ecc9e5ce652c6c364872611c21c4938a30a683dcf4ac4358561bb39
Size

268KB
MD5

48286e6697e09ef9289a58dcf6fb72e0
SHA1

5b8051294b94c23af01d8e58af46df17ce64341e
SHA256

db7c24747ecc9e5ce652c6c364872611c21c4938a30a683dcf4ac4358561bb39
SHA512

34e84c1328202beccc465b20036894484c7da7472ad52c4c66e861fc4011b687fe07e1f95d012f7ebc199387aeddb5b15f80e2175feaa8468efed380ec15329a
SSDEEP

6144:EgsZ+yrnxrx6franYM+aVpudTPmG37NiL:EgQn7xrx6anZ+aVpupLw

Score

N/A

Malware Config

Signatures

Files

db7c24747ecc9e5ce652c6c364872611c21c4938a30a683dcf4ac4358561bb39
.dll regsvr32 windows x86

b0834bc4ada84860cc303067abee10d2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

dxgi

CreateDXGIFactory

kernel32

GetModuleHandleA
MultiByteToWideChar
GlobalFree
GlobalUnlock
SetLastError
GlobalLock
GlobalAlloc
InterlockedDecrement
CloseHandle
SetEvent
OpenEventA
LocalFree
FormatMessageA
CreateMutexA
ReleaseMutex
WideCharToMultiByte
lstrlenW
RaiseException
lstrlenA
DisableThreadLibraryCalls
GetLastError
GetExitCodeProcess
IsDBCSLeadByte
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
FlushFileBuffers
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
ReadFile
InitializeCriticalSectionAndSpinCount
GetSystemPowerStatus
CreateProcessA
GetModuleFileNameA
WaitForSingleObject
TerminateProcess
LoadLibraryA
GetProcAddress
GetCurrentProcess
FreeLibrary
GetVersionExA
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
GetProcessHeap
LeaveCriticalSection
EnterCriticalSection
Sleep
GetLocaleInfoA
lstrcmpiA
GetModuleHandleW
SetFilePointer
GetConsoleMode
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
RtlUnwind
HeapFree
HeapAlloc
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCurrentThreadId
GetCommandLineA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapCreate
HeapDestroy
VirtualFree
HeapReAlloc
ExitProcess
WriteFile
GetStdHandle
HeapSize
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetConsoleCP

user32

CharNextW
CharNextA
FindWindowA
BroadcastSystemMessageA
GetDC
ReleaseDC
EnumDisplayDevicesA
GetSystemMetrics
RegisterWindowMessageA
PostMessageA
ChangeDisplaySettingsA
PostThreadMessageA

gdi32

CreateDCA
DeleteDC
GetDeviceCaps

advapi32

SetEntriesInAclA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegDeleteKeyA
GetSecurityInfo
AllocateAndInitializeSid
SetSecurityInfo
RegCreateKeyExA
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey

ole32

StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CoCreateInstance

oleaut32

VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysStringLen
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysFreeString
VariantClear

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
InstallTVWizard
UnInstallTVWizard
WinlogonUnlockEvent

Sections

.text
Size: 165KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b0834bc4ada84860cc303067abee10d2

Headers

File Characteristics

Imports

dxgi

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 165KB - Virtual size: 165KB

.rdata Size: 23KB - Virtual size: 22KB

.data Size: 7KB - Virtual size: 16KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 10KB - Virtual size: 10KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 165KB - Virtual size: 165KB

.rdata
Size: 23KB - Virtual size: 22KB

.data
Size: 7KB - Virtual size: 16KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 10KB - Virtual size: 10KB

.rmnet
Size: 56KB - Virtual size: 60KB