33b30b23f1f52442b5e794d13e204b424ad0e47717017fca0531abff0f5c1bcd

Sharing

Copy URL Twitter E-mail

General

Target

33b30b23f1f52442b5e794d13e204b424ad0e47717017fca0531abff0f5c1bcd
Size

376KB
MD5

9564951a9b72a2177d1b7559fa39cd3a
SHA1

eb9dfcf926da2ed937686538b3adf121b4cef9f2
SHA256

33b30b23f1f52442b5e794d13e204b424ad0e47717017fca0531abff0f5c1bcd
SHA512

f2a5f78b20ae283a71e4092d0618395115f6af732d8fce66176f3ea87d30073fd28845865de45720b4d40d436b9d31a24b2a214a32f1dddce08430f8297c328a
SSDEEP

6144:pW5agln490gq6nH5VC9hOAjEFbLg2+nPLUaG5QKOOH2i/EjHE9srF9:uln8HKzOAj0b9GxlKJ2HmsrF

Score

N/A

Malware Config

Signatures

Files

33b30b23f1f52442b5e794d13e204b424ad0e47717017fca0531abff0f5c1bcd
.dll regsvr32 windows x86

e4f9baceb0e350e1b9b06cefedd712af

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_stricmp
isdigit
wcsncpy
_ltow
wcsncat
wcschr
_wcsnicmp
_strnicmp
strncpy
_snwprintf
_CxxThrowException
swprintf
tolower
_wcsicmp
wcscpy
_local_unwind2
realloc
_except_handler3
malloc
_purecall
wcslen
wcscat
wcscmp
__CxxFrameHandler
free
atoi
?terminate@@YAXXZ
_onexit
__dllonexit
??1type_info@@UAE@XZ
_adjust_fdiv
_initterm
strncmp
memmove
_itoa
_ltoa
time
srand
rand
atol

kernel32

CloseHandle
FreeLibrary
LoadLibraryA
VirtualAlloc
GetSystemInfo
VirtualQuery
GetLastError
RaiseException
FlushInstructionCache
GetCurrentProcess
HeapFree
GetProcessHeap
HeapAlloc
MultiByteToWideChar
GetCurrentThreadId
WaitForSingleObject
HeapDestroy
GlobalUnlock
GlobalLock
GetProcAddress
GlobalSize
InterlockedExchange
GetExitCodeThread
SetEvent
CreateThread
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
LeaveCriticalSection
OpenFile
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter

user32

SetWindowPos
SetWindowRgn
OffsetRect
EqualRect
ReleaseDC
GetDC
TranslateMessage
GetParent
wsprintfW
DestroyWindow
SetFocus
IsWindow
InvalidateRect
GetActiveWindow
ShowCursor
IntersectRect
GetDesktopWindow
SetCursor
ShowWindow

gdi32

SetMapMode
SetViewportOrgEx
DeleteDC
SaveDC
SetWindowOrgEx
RestoreDC
GetDeviceCaps
CreateRectRgnIndirect
LPtoDP

advapi32

RegCloseKey

rpcrt4

UuidCreate

ole32

OleRegEnumVerbs
OleRegGetUserType
OleRegGetMiscStatus
OleLoadFromStream
CoReleaseMarshalData
CoInitialize
CoUninitialize
CoGetInterfaceAndReleaseStream
CoMarshalInterThreadInterfaceInStream
CLSIDFromProgID
GetHGlobalFromStream
StringFromGUID2
CreateOleAdviseHolder
CoCreateInstance
CoTaskMemFree
OleSaveToStream
WriteClassStm
CoGetMalloc
CreateStreamOnHGlobal

oleaut32

SysAllocString
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
LoadRegTypeLi
SetErrorInfo
CreateErrorInfo
OleCreatePropertyFrame
GetErrorInfo
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayUnlock
SafeArrayLock
SafeArrayPtrOfIndex
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetDim
SysAllocStringLen
SysStringLen
SysFreeString
VariantInit
VariantClear
LoadTypeLi
RegisterTypeLi
UnRegisterTypeLi

msdart

RegEnumValueI
UMSEnterCSWraper
MPDeleteCriticalSection
MPInitializeCriticalSection
RegOpenKeyExI
GetSystemDirectoryI
GetModuleFileNameI
_LoadVersionedResourceEx@16
GetVersionExI
RegDeleteKeyI
CreateEventI
MessageBoxI
LoadLibraryI
GetModuleHandleI
CallWindowProcI
RegCreateKeyExI
RegSetValueExI
PeekMessageI
DispatchMessageI
CreateDCI
RegisterClassExI
LoadCursorI
GetClassInfoExI
CreateWindowExI
SetWindowLongPtrI
DefWindowProcI
RegEnumKeyExI
LoadStringI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e4f9baceb0e350e1b9b06cefedd712af

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

rpcrt4

ole32

oleaut32

msdart

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 106KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 248KB - Virtual size: 245KB

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 108KB - Virtual size: 106KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 248KB - Virtual size: 245KB

.reloc
Size: 12KB - Virtual size: 9KB