acc996f986b322f4398a229af87b3270a58f1179c329eb87448ac1ef05a276c4

Sharing

Copy URL Twitter E-mail

General

Target

acc996f986b322f4398a229af87b3270a58f1179c329eb87448ac1ef05a276c4
Size

520KB
MD5

71a3aa26ff7f634eda7004887a4289db
SHA1

1a9a55335c885b4d2d62b4f341aa81b81072255c
SHA256

acc996f986b322f4398a229af87b3270a58f1179c329eb87448ac1ef05a276c4
SHA512

831a2dbe1c6dd3beb2228dff3d0cb07e3e9527450ef040e15e22e3b236c881b9f2c97ea654ada268f2a545017a91ebe6bebca5b4f7967893d869249873c018bd
SSDEEP

12288:SqBeXpM00D+gq/rn0IOUlosL03/Ec8B+XLEqIeX6gAy/e:3e5M00D+gq/YUl3oPVXMeBAGe

Score

N/A

Malware Config

Signatures

Files

acc996f986b322f4398a229af87b3270a58f1179c329eb87448ac1ef05a276c4
.dll regsvr32 windows x86

45ed7cea831e02936688ab3eedef829a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeSetEvent
timeGetTime

videotrans

ord597
ord571
ord585
ord587

videoformat

ord24
ord17
ord37
ord45

kernel32

SetEndOfFile
VirtualProtect
SetConsoleCtrlHandler
WaitForSingleObject
ResetEvent
SetEvent
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExW
RaiseException
GetLastError
SizeofResource
LockResource
LoadResource
FindResourceW
FindResourceExW
MultiByteToWideChar
ReleaseMutex
WideCharToMultiByte
lstrlenW
lstrlenA
Sleep
GetTempFileNameW
GetTempPathW
OutputDebugStringW
CreateThread
CreateMutexW
CreateEventW
CloseHandle
DeleteFileW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
WaitForMultipleObjects
SetFilePointer
CreateFileW
FlushFileBuffers
OutputDebugStringA
WriteFile
GetDateFormatA
GetSystemTime
FindClose
FindFirstFileW
GetTimeZoneInformation
ReleaseSemaphore
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
InterlockedIncrement
FreeLibrary
InterlockedDecrement
LoadLibraryW
GetProcAddress
GetModuleHandleW
lstrcpyW
lstrcpynW
lstrcmpW
lstrcmpiW
GetCurrentThreadId
SetThreadPriority
GetThreadPriority
GetCurrentThread
GetTickCount
GetSystemInfo
VirtualFree
DuplicateHandle
GetCurrentProcess
VirtualAlloc
GetModuleFileNameA
DisableThreadLibraryCalls
FindNextFileA
FindFirstFileA
GetStringTypeA
GetCPInfo
GetOEMCP
IsBadCodePtr
IsBadReadPtr
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
UnhandledExceptionFilter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetLocaleInfoW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
CreateDirectoryA
GetFullPathNameA
GetCurrentDirectoryA
CreateSemaphoreW
SetCurrentDirectoryA
LCMapStringW
LCMapStringA
SetEnvironmentVariableA
CompareStringW
CompareStringA
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetTimeFormatA
VirtualQuery
TerminateProcess
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
SetUnhandledExceptionFilter
GetModuleHandleA
TlsGetValue
TlsSetValue
SetStdHandle
LoadLibraryA
GetVersion
CreateFileA
ReadFile
CreateEventA
DeviceIoControl
RtlUnwind
GetCommandLineA
ExitProcess
HeapCreate
FatalAppExitA
IsBadWritePtr
TlsAlloc
SetLastError
TlsFree
GetStringTypeW

user32

GetQueueStatus
PostThreadMessageW
wsprintfW
wvsprintfW
MsgWaitForMultipleObjects
UnregisterClassA
PeekMessageW
DispatchMessageW
PostQuitMessage
UnregisterClassW
CharUpperBuffW
RegisterWindowMessageW

advapi32

RegSetValueW
RegOpenKeyExW
RegEnumKeyExW
RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegCreateKeyW

ole32

CoFreeUnusedLibraries
CoCreateInstance
CoInitialize
CoUninitialize
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree
CoGetMalloc
StringFromGUID2

oleaut32

SysFreeString
SysAllocStringLen
SysStringByteLen
SysStringLen
SafeArrayCreate
SafeArrayPutElement
SysAllocString

shlwapi

StrNCatW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 232KB - Virtual size: 231KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 4.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 196KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

45ed7cea831e02936688ab3eedef829a

Headers

File Characteristics

Imports

winmm

videotrans

videoformat

kernel32

user32

advapi32

ole32

oleaut32

shlwapi

Exports

Exports

Sections

.text Size: 232KB - Virtual size: 231KB

.rdata Size: 52KB - Virtual size: 48KB

.data Size: 12KB - Virtual size: 4.0MB

.reloc Size: 24KB - Virtual size: 23KB

.text Size: 196KB - Virtual size: 196KB

.text
Size: 232KB - Virtual size: 231KB

.rdata
Size: 52KB - Virtual size: 48KB

.data
Size: 12KB - Virtual size: 4.0MB

.reloc
Size: 24KB - Virtual size: 23KB

.text
Size: 196KB - Virtual size: 196KB