30c8b15a2b4dea5072ee461dde962148644d61cccb65a9f28b0bfcf2b3372cf2

Sharing

Copy URL Twitter E-mail

General

Target

30c8b15a2b4dea5072ee461dde962148644d61cccb65a9f28b0bfcf2b3372cf2
Size

936KB
MD5

64b2d58cd94dcea3133ecdcc6f43a264
SHA1

3e98916b0f9fd222719015b8938b5d933cf92948
SHA256

30c8b15a2b4dea5072ee461dde962148644d61cccb65a9f28b0bfcf2b3372cf2
SHA512

6d1cc77d7c8a02b4bbee71ecccdc873d05271ba9c9c6764e26237141e90e914b0b82a221fe0c7bcf6640b50693e2980df5d353fd8198dbf1abaca6d537db8904
SSDEEP

6144:9JmnhZ4zRTuGhlj0xTxYqVx61sgY9oOKPruzteI:9JmnhOsh9xY2x6W9vKP6zt7

Score

N/A

Malware Config

Signatures

Files

30c8b15a2b4dea5072ee461dde962148644d61cccb65a9f28b0bfcf2b3372cf2
.dll regsvr32 windows x86

ae22bacd6e8b260b48ec205f3addd76b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
RtlUnwind
VirtualAlloc
HeapAlloc
HeapFree
HeapReAlloc
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
RaiseException
GetCommandLineA
GetProcessHeap
HeapSize
VirtualFree
HeapCreate
GetStdHandle
GetACP
LCMapStringA
LCMapStringW
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
SetFilePointer
GetOEMCP
GetCPInfo
GetLocaleInfoA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetCurrentThreadId
GetThreadLocale
GlobalGetAtomNameA
GlobalFlags
lstrcmpA
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GetCurrentProcessId
GetModuleHandleA
GetProcAddress
SetLastError
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
FindResourceA
LoadResource
LockResource
SizeofResource
GlobalAlloc
GlobalFree
GetVersionExA
ReadFile
ExitProcess
lstrcmpW
CreateThread
Sleep
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
WriteFile
CreateFileA
SetNamedPipeHandleState
CloseHandle
GetModuleFileNameA
GetLastError
InterlockedDecrement
InterlockedIncrement
lstrlenA
WideCharToMultiByte
lstrlenW
CompareStringA
GetEnvironmentVariableA
MultiByteToWideChar
InterlockedExchange
GetVersion
HeapDestroy

user32

GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
RegisterWindowMessageA
WinHelpA
GetCapture
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetMenu
PostMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
CopyRect
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
EnableMenuItem
CheckMenuItem
SetWindowsHookExA
CallNextHookEx
GetKeyState
ValidateRect
UnregisterClassA
GetFocus
ClientToScreen
GetWindow
GetDlgCtrlID
GetClassNameA
PtInRect
wsprintfA
FillRect
GetWindowTextA
SetWindowTextA
GetWindowThreadProcessId
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
UnhookWindowsHookEx
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
GetMenuState
PostQuitMessage
DestroyMenu
LoadBitmapA
GetClientRect
EndDialog
SetClassLongA
GetCursorPos
GetClassLongA
CopyIcon
LoadCursorA
GetDlgItem
SetWindowPos
GetWindowRect
LoadImageA
FindWindowExA
SendMessageA
LoadIconA
ShowWindow
CreateDialogParamA
DestroyWindow
DialogBoxParamA
MessageBoxA
GetWindowLongA
SetWindowLongA
GetMenuItemID
GetMenuItemCount
GetSubMenu
IsWindow
PeekMessageA
TranslateMessage
DispatchMessageA

gdi32

ScaleWindowExtEx
DeleteDC
GetStockObject
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreatePatternBrush
SetMapMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
DeleteObject
GetDeviceCaps

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegCloseKey
RegSetValueA
GetUserNameA

shell32

SHGetFolderPathA

shlwapi

StrCpyNW
SHDeleteKeyA
StrStrIW

ole32

CoGetClassObject
OleSetContainedObject
OleInitialize

oleaut32

VariantClear
SysAllocString
VariantInit
SysFreeString
VariantChangeType

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 728KB - Virtual size: 727KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae22bacd6e8b260b48ec205f3addd76b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

Exports

Exports

Sections

.text Size: 140KB - Virtual size: 138KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 8KB - Virtual size: 22KB

.rsrc Size: 728KB - Virtual size: 727KB

.reloc Size: 24KB - Virtual size: 21KB

.text
Size: 140KB - Virtual size: 138KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 8KB - Virtual size: 22KB

.rsrc
Size: 728KB - Virtual size: 727KB

.reloc
Size: 24KB - Virtual size: 21KB