d8c2c6369cf86be26d1b95e6f766dc039d7f15ecc1fccef2a1c194c7b7d53f7a

Sharing

Copy URL Twitter E-mail

General

Target

d8c2c6369cf86be26d1b95e6f766dc039d7f15ecc1fccef2a1c194c7b7d53f7a
Size

1.4MB
MD5

42befafb4150fe0a16a5b675ab200f70
SHA1

966b42897dfd0dadd97406a71c2be9d1e095ec45
SHA256

d8c2c6369cf86be26d1b95e6f766dc039d7f15ecc1fccef2a1c194c7b7d53f7a
SHA512

b8a73d94c5b351036603197ef3d7c41b7a78d13e18645ac9113009ead55eef5745864b95dbde5f193624cb0c235f29abf8bc8489c6749ddce622541c0bc17db8
SSDEEP

24576:2y4KEYSSEJoZcpdZjb72f8VDviIZ33bI/bnvzmiB:8KEYk7iM3oDzmiB

Score

N/A

Malware Config

Signatures

Files

d8c2c6369cf86be26d1b95e6f766dc039d7f15ecc1fccef2a1c194c7b7d53f7a
.dll regsvr32 windows x86

7f9d296247639ae21c9d5eb556ee8f13

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

wctomb
_itoa
_snprintf
_iob
isleadbyte
_onexit
_lock
__dllonexit
_unlock
_adjust_fdiv
_amsg_exit
_initterm
free
malloc
_XcptFilter
__badioinfo
__pioinfo
_fileno
_lseeki64
_write
_isatty
??3@YAXPAX@Z
_vsnwprintf
fopen
fflush
fprintf
abort
fclose
printf
??2@YAPAXI@Z
fwprintf
asctime
localtime
_CIsqrt
_wfopen
time
_beginthreadex
floor
_ftol
_errno
_purecall
memcpy
memset
puts
perror

mfplat

MFHeapAlloc
MFHeapFree

user32

IsRectEmpty

kernel32

VirtualAlloc
VirtualFree
VirtualProtect
DelayLoadFailureHook
SetThreadAffinityMask
GetProcessAffinityMask
GetSystemInfo
LocalAlloc
SetEvent
LoadLibraryW
GetCurrentThread
GetThreadPriority
SetThreadPriority
InterlockedExchangeAdd
SignalObjectAndWait
GetSystemPowerStatus
LocalFree
ResetEvent
CreateEventW
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
GetProcAddress
LoadLibraryA
DeleteCriticalSection
QueryPerformanceCounter
InitializeCriticalSection
FreeLibrary
InterlockedCompareExchange
InterlockedIncrement
GetModuleFileNameA
InterlockedExchange
Sleep
OutputDebugStringA
RtlUnwind
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapAlloc
GetProcessHeap
HeapFree
CloseHandle
GetModuleHandleW
GetVersionExA
DeviceIoControl
FreeEnvironmentStringsA
FreeEnvironmentStringsW
lstrlenA
lstrlenW
GetEnvironmentStrings
GetEnvironmentStringsW
GetDiskFreeSpaceA
GlobalMemoryStatus
GetLocalTime
GetVersion
GetComputerNameA
GetEnvironmentVariableW
QueryPerformanceFrequency
GetVersionExW
WaitForSingleObject
CreateSemaphoreW
ReleaseSemaphore
WaitForMultipleObjects
CreateThread
ExitProcess
InitializeCriticalSectionAndSpinCount
GetLastError
SetLastError

ole32

CoTaskMemAlloc
CoTaskMemFree

advapi32

GetTraceLoggerHandle
RegCreateKeyW
RegSetValueExA
RegSetValueA
RegQueryValueExW
GetTraceEnableLevel
GetTraceEnableFlags
RegisterTraceGuidsW
RegOpenKeyW
UnregisterTraceGuids
RegCreateKeyExA
RegQueryValueExA
RegCreateKeyExW
TraceEvent
RegCloseKey
RegSetValueExW
RegOpenKeyExW

msdmo

DMOUnregister
DMORegister
MoFreeMediaType
MoCopyMediaType
MoInitMediaType

ws2_32

ntohl
htonl

Exports

Exports

CreateInstance
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.no_bbt
Size: 512B - Virtual size: 376B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

RT_CODE
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

RT_DATA
Size: 512B - Virtual size: 296B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7f9d296247639ae21c9d5eb556ee8f13

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

mfplat

user32

kernel32

ole32

advapi32

msdmo

ws2_32

Exports

Exports

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.no_bbt Size: 512B - Virtual size: 376B

RT_CODE Size: 4KB - Virtual size: 4KB

.data Size: 139KB - Virtual size: 138KB

RT_DATA Size: 512B - Virtual size: 296B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 16KB - Virtual size: 15KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.no_bbt
Size: 512B - Virtual size: 376B

RT_CODE
Size: 4KB - Virtual size: 4KB

.data
Size: 139KB - Virtual size: 138KB

RT_DATA
Size: 512B - Virtual size: 296B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 16KB - Virtual size: 15KB

.rmnet
Size: 56KB - Virtual size: 60KB