3001c933176865299b4eb10b1750797457043c8d588fc818de05ed39d51e9f73

General

Target

3001c933176865299b4eb10b1750797457043c8d588fc818de05ed39d51e9f73
Size

353KB
MD5

a03e5ac538c9eacabf4af90b4c57e646
SHA1

9dad2d2d291b0bd471e46ca5568aa9bc90a5c023
SHA256

3001c933176865299b4eb10b1750797457043c8d588fc818de05ed39d51e9f73
SHA512

0d18b4c40ec6270cbba2bc3c7ea934794d6dc079097bac599f44c8e4c8c7ce0b48dec4d7e91df7063e717cf7c727319b63a50c31373ce97b627d09dfd7e5431f
SSDEEP

1536:OQQt/EAkDaLqNWWmk7SjRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRRB:LQt/EpDamNWWj

Score

N/A

Malware Config

Signatures

Files

3001c933176865299b4eb10b1750797457043c8d588fc818de05ed39d51e9f73
.dll regsvr32 windows x86

e18096ae0529698c86df9a0d6c0018ad

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrCmpW
StrStrW
StrCatW
StrCmpIW

kernel32

ExitThread
LoadLibraryExA
CreateThread
CreateMutexA
ResetEvent
CreateFileMappingW
GetProcessHeap
lstrcatA
lstrcpyA
InitializeCriticalSection
GetBinaryTypeW
CloseHandle
GetLastError
lstrcpynA
GetProcAddress
FreeLibrary
LoadLibraryA
WideCharToMultiByte
GetModuleFileNameA
MultiByteToWideChar
GetTimeFormatA
GetDateFormatA
lstrcmpA
lstrcmpiA
GetModuleHandleW
PulseEvent
CreateEventA
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
WaitForSingleObject
Sleep
GetTickCount

user32

SetTimer
GetWindowRect
MoveWindow
CreateWindowExW
RegisterClassExW
DispatchMessageW
GetClassNameA
GetMessageW
SetWindowsHookExW
DefWindowProcW
DestroyWindow
GetSystemMetrics
wsprintfA
GetWindow
SendMessageW
CallNextHookEx
GetClientRect
TranslateMessage
ShowWindow

oleaut32

SafeArrayLock
SysAllocStringByteLen
VariantClear
VariantCopy
SafeArrayUnlock
SysAllocString
VariantInit
SysAllocStringLen
SysFreeString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e18096ae0529698c86df9a0d6c0018ad

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

kernel32

user32

oleaut32

Exports

Exports

Sections

.text Size: 29KB - Virtual size: 29KB

.data Size: 2KB - Virtual size: 50KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 29KB - Virtual size: 29KB

.data
Size: 2KB - Virtual size: 50KB

.reloc
Size: 2KB - Virtual size: 2KB