82d479d3b442e6d5c038ffd4414696aa568c8d6d6f1ee98ab708f5dc4065d355

Sharing

Copy URL Twitter E-mail

General

Target

82d479d3b442e6d5c038ffd4414696aa568c8d6d6f1ee98ab708f5dc4065d355
Size

496KB
MD5

41490deecb28a69c9a436a372ae96a90
SHA1

cd2956544b135408ce55e08b08e17b413c417772
SHA256

82d479d3b442e6d5c038ffd4414696aa568c8d6d6f1ee98ab708f5dc4065d355
SHA512

e3e1734fa0da378bee4261372a6e78c68f65ad7a5a42b9009d601b0bf99a4f790886956ea5c9ba5e5aae5a17d51af98fbbb6e2c9eb2df56ec1b47d1ee2396dd4
SSDEEP

6144:SOfx+TBiXvCFmmq43s8ODjLMK1CyycRBhAJ0d4vZF4cuJ8D7aUG:h5+tiX3v4c8GMKcyxBhAJSJ8D7a

Score

N/A

Malware Config

Signatures

Files

82d479d3b442e6d5c038ffd4414696aa568c8d6d6f1ee98ab708f5dc4065d355
.dll regsvr32 windows x86

122fe232f813a2e20f62ba323316f5e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToLocalFileTime
GetCurrentDirectoryA
RtlUnwind
RaiseException
HeapFree
HeapAlloc
HeapReAlloc
GetCommandLineA
ExitProcess
FileTimeToSystemTime
ExitThread
GetACP
SetStdHandle
GetCPInfo
GetOEMCP
GetTimeZoneInformation
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
TerminateProcess
CreateThread
HeapSize
IsBadWritePtr
GetStringTypeA
GetStringTypeW
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetFileType
SetErrorMode
MapViewOfFile
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
lstrcatA
lstrcpyA
LoadLibraryA
GetProcAddress
HeapDestroy
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
GetLastError
FindResourceA
LoadResource
SizeofResource
FreeLibrary
GetModuleFileNameA
GetModuleHandleA
GetShortPathNameA
lstrlenW
InterlockedDecrement
EnterCriticalSection
InterlockedIncrement
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
MulDiv
WideCharToMultiByte
lstrlenA
GetProcessVersion
GlobalFlags
TlsSetValue
TlsGetValue
LocalReAlloc
TlsAlloc
TlsFree
GlobalHandle
LocalAlloc
GetFileTime
DeleteFileA
GetVolumeInformationA
UnlockFile
SetEndOfFile
SetFilePointer
LockFile
FlushFileBuffers
CreateEventA
ReadFile
DuplicateHandle
ResumeThread
SuspendThread
SetThreadPriority
LocalFree
SetEvent
GetCurrentThread
GlobalGetAtomNameA
SetLastError
GetVersion
GlobalDeleteAtom
GlobalAddAtomA
GlobalFindAtomA
GlobalSize
lstrcmpA
GlobalFree
MoveFileExA
GlobalReAlloc
GetVersionExA
GetWindowsDirectoryA
WritePrivateProfileStringA
GetTempPathA
GetFullPathNameA
FindFirstFileA
Sleep
WaitForSingleObject
LockResource
FindClose
CreateFileMappingA
UnmapViewOfFile
GetFileSize
GetEnvironmentStringsW
GetTempFileNameA
MultiByteToWideChar
GetFileAttributesA
CreateFileA
WriteFile
CloseHandle
CreateDirectoryA
GlobalAlloc
GlobalLock
GlobalUnlock
GetCurrentProcess
FlushInstructionCache
GetCurrentThreadId
GetDriveTypeA
UnhandledExceptionFilter
HeapCreate
VirtualFree
VirtualAlloc

user32

LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
DispatchMessageA
SetActiveWindow
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
SetScrollInfo
GetTopWindow
MessageBoxA
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SystemParametersInfoA
IsIconic
LoadStringA
EnumChildWindows
EnableMenuItem
WindowFromPoint
GetCursorPos
KillTimer
SetTimer
InflateRect
PeekMessageA
GetAsyncKeyState
GetScrollRange
SetScrollPos
SetScrollRange
GetScrollPos
IsRectEmpty
ShowScrollBar
SetRectEmpty
GetSysColor
CopyRect
UnregisterClassA
GetClientRect
EndPaint
InvalidateRect
IntersectRect
EqualRect
OffsetRect
SetWindowRgn
DestroyWindow
SetFocus
GetFocus
IsChild
GetClassInfoExA
RegisterClassExA
CharUpperA
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
CharNextA
CreateWindowExA
CallWindowProcA
GetWindowLongA
SetWindowLongA
ShowWindow
UnionRect
PtInRect
GetKeyState
DefWindowProcA
GetClassNameA
ScreenToClient
GetDC
GetSysColorBrush
PostMessageA
GetWindowPlacement
ReleaseDC
wsprintfA
LoadBitmapA
GetWindowRect
SetWindowPos
LoadCursorA
SetCursor
GetWindowTextA
IsWindow
SendMessageA
RegisterWindowMessageA
EnableWindow
GetParent
GetNextDlgTabItem
DestroyMenu
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
GetMessageA
TranslateMessage
ValidateRect
ShowOwnedPopups
PostQuitMessage
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
GrayStringA
DrawTextA
TabbedTextOutA
ClientToScreen
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
BeginPaint
IsDialogMessageA
IsWindowEnabled
SetWindowTextA
MoveWindow
GetSystemMetrics
GetDlgCtrlID

gdi32

TextOutA
Rectangle
CreateRectRgnIndirect
DeleteMetaFile
CloseMetaFile
RestoreDC
SetWindowExtEx
SetWindowOrgEx
SaveDC
CreateMetaFileA
DeleteDC
SetViewportOrgEx
SetMapMode
CreateDCA
CreateSolidBrush
LPtoDP
SelectObject
GetStockObject
CreatePen
GetTextMetricsA
GetObjectA
Polygon
GetClipBox
SetTextColor
CreateBitmap
SetBkColor
SetBkMode
CreateFontIndirectA
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
ScaleWindowExtEx
LineTo
MoveToEx
DeleteObject
RectVisible
ExtTextOutA
PtVisible
Escape
GetDeviceCaps
SetTextAlign
GetTextExtentPoint32A

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumValueA
RegQueryValueExA

shell32

DragQueryFileA
DragFinish
FindExecutableA
ShellExecuteA

comctl32

ImageList_AddMasked
ImageList_Draw
ImageList_GetImageInfo
ImageList_GetImageCount
ord17
ImageList_Destroy
ImageList_LoadImageA

ole32

CoCreateGuid
CoGetMalloc
CreateOleAdviseHolder
OleSaveToStream
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoDisconnectObject
CoCreateInstance
WriteClassStm
OleLoadFromStream

olepro32

ord250

oleaut32

VarUI4FromStr
LoadTypeLi
SysStringLen
SysAllocString
GetErrorInfo
VariantClear
RegisterTypeLi
VariantChangeType
SysAllocStringByteLen
SysStringByteLen
LoadRegTypeLi
SysAllocStringLen
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 276KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

122fe232f813a2e20f62ba323316f5e0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

olepro32

oleaut32

Exports

Exports

Sections

.text Size: 276KB - Virtual size: 275KB

.rdata Size: 56KB - Virtual size: 55KB

.data Size: 24KB - Virtual size: 38KB

.rsrc Size: 40KB - Virtual size: 39KB

.reloc Size: 36KB - Virtual size: 34KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 276KB - Virtual size: 275KB

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 24KB - Virtual size: 38KB

.rsrc
Size: 40KB - Virtual size: 39KB

.reloc
Size: 36KB - Virtual size: 34KB

.rmnet
Size: 60KB - Virtual size: 60KB