54b63cb73dc0d0b77ca6fdb0d2e4616a5f85b668623143b2f6dd820f8b5f922c

General

Target

54b63cb73dc0d0b77ca6fdb0d2e4616a5f85b668623143b2f6dd820f8b5f922c
Size

296KB
MD5

5a459cdf5478429e15c266e53a954ec7
SHA1

97e7fe1ea0464366580810cd28bf43392a5a186b
SHA256

54b63cb73dc0d0b77ca6fdb0d2e4616a5f85b668623143b2f6dd820f8b5f922c
SHA512

7436b8ee729553c98b3ab7b121b9e727de358e35893a2c1fd11ec60402f401c438c1528766433ed5f885c7103949cd9db0a18859c8b080bde71113deec5172e5
SSDEEP

3072:Sf5AsrfhqP3dJwV7tts2ltThBJf5ywd8rTmmL+35O4As2C4aA:SC2fw/d63ts2NxyE8fmuy5yu4a

Score

N/A

Malware Config

Signatures

Files

54b63cb73dc0d0b77ca6fdb0d2e4616a5f85b668623143b2f6dd820f8b5f922c
.dll regsvr32 windows x86

adcb3b79ce4ca190372bbf50f938b1c0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetShortPathNameA
GetModuleFileNameA
lstrcpyA
lstrlenA
GetCurrentProcessId
GetCurrentThreadId
GetEnvironmentVariableA
lstrcatA
SetEnvironmentVariableA
LoadLibraryA
GetProcAddress
FreeLibrary
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
InterlockedExchange
GetSystemTimeAsFileTime

user32

MessageBoxA

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegCloseKey
RegQueryValueExA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 289KB - Virtual size: 291KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 912B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 558B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

adcb3b79ce4ca190372bbf50f938b1c0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

Exports

Exports

Sections

.text Size: 289KB - Virtual size: 291KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 912B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 1024B - Virtual size: 558B

.text
Size: 289KB - Virtual size: 291KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 912B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 1024B - Virtual size: 558B