3eefa153efc33b92efce9cc8b213da97fe1c484074e015f815d5597de7b1d8c1

Sharing

Copy URL Twitter E-mail

General

Target

3eefa153efc33b92efce9cc8b213da97fe1c484074e015f815d5597de7b1d8c1
Size

212KB
MD5

002bee54a352924523ba954c3a7a8be0
SHA1

3fabcb90531960b45b14b3766462cd9d72c2f001
SHA256

3eefa153efc33b92efce9cc8b213da97fe1c484074e015f815d5597de7b1d8c1
SHA512

d3e45f6576055da64aa049d9c57e8e247b8ff805542d027b9222c6344b868cee00bd13bf93155a2985ca53b62bc2b8a7526383d6e2d603d816d84fe2fd8d19a8
SSDEEP

3072:hWvjRmcX4pbiDvvQqBs4zQcyCnZF9F9JO/nfpy50RFFHotiyHKuqBt2Xr/i+:hWLRp4t8QZCZF9OfQ50atVrq727/i+

Score

N/A

Malware Config

Signatures

Files

3eefa153efc33b92efce9cc8b213da97fe1c484074e015f815d5597de7b1d8c1
.dll regsvr32 windows x86

838f0e7b2974a64fb5a2873984d8d6d5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_stricmp
isdigit
wcsncpy
_ltow
wcsncat
wcschr
_wcsnicmp
_strnicmp
strncpy
_snwprintf
_CxxThrowException
swprintf
tolower
_wcsicmp
wcscpy
_local_unwind2
realloc
_except_handler3
malloc
_purecall
wcslen
wcscat
wcscmp
__CxxFrameHandler
free
atoi
?terminate@@YAXXZ
_onexit
__dllonexit
??1type_info@@UAE@XZ
_adjust_fdiv
_initterm
strncmp
memmove
_itoa
_ltoa
time
srand
rand
atol

kernel32

CloseHandle
FreeLibrary
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetLastError
RaiseException
FlushInstructionCache
GetCurrentProcess
HeapFree
GetProcessHeap
HeapAlloc
MultiByteToWideChar
GetCurrentThreadId
WaitForSingleObject
HeapDestroy
GlobalUnlock
GlobalLock
GetProcAddress
GlobalSize
InterlockedExchange
GetExitCodeThread
SetEvent
CreateThread
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
LeaveCriticalSection
OpenFile
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter

user32

SetWindowPos
SetWindowRgn
OffsetRect
EqualRect
ReleaseDC
GetDC
TranslateMessage
GetParent
wsprintfW
DestroyWindow
SetFocus
IsWindow
InvalidateRect
GetActiveWindow
ShowCursor
IntersectRect
GetDesktopWindow
SetCursor
ShowWindow

gdi32

SetMapMode
SetViewportOrgEx
DeleteDC
SaveDC
SetWindowOrgEx
RestoreDC
GetDeviceCaps
CreateRectRgnIndirect
LPtoDP

advapi32

RegCloseKey

rpcrt4

UuidCreate

ole32

OleRegEnumVerbs
OleRegGetUserType
OleRegGetMiscStatus
OleLoadFromStream
CoReleaseMarshalData
CoInitialize
CoUninitialize
CoGetInterfaceAndReleaseStream
CoMarshalInterThreadInterfaceInStream
CLSIDFromProgID
GetHGlobalFromStream
StringFromGUID2
CreateOleAdviseHolder
CoCreateInstance
CoTaskMemFree
OleSaveToStream
WriteClassStm
CoGetMalloc
CreateStreamOnHGlobal

oleaut32

SysAllocString
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
LoadRegTypeLi
SetErrorInfo
CreateErrorInfo
OleCreatePropertyFrame
GetErrorInfo
SafeArrayAllocData
SafeArrayAllocDescriptor
SafeArrayUnlock
SafeArrayLock
SafeArrayPtrOfIndex
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetDim
SysAllocStringLen
SysStringLen
SysFreeString
VariantInit
VariantClear
LoadTypeLi
RegisterTypeLi
UnRegisterTypeLi

msdart

RegEnumValueI
UMSEnterCSWraper
MPDeleteCriticalSection
MPInitializeCriticalSection
RegOpenKeyExI
GetSystemDirectoryI
GetModuleFileNameI
_LoadVersionedResourceEx@16
GetVersionExI
RegDeleteKeyI
CreateEventI
MessageBoxI
LoadLibraryI
GetModuleHandleI
CallWindowProcI
RegCreateKeyExI
RegSetValueExI
PeekMessageI
DispatchMessageI
CreateDCI
RegisterClassExI
LoadCursorI
GetClassInfoExI
CreateWindowExI
SetWindowLongPtrI
DefWindowProcI
RegEnumKeyExI
LoadStringI

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

838f0e7b2974a64fb5a2873984d8d6d5

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

rpcrt4

ole32

oleaut32

msdart

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 106KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 12KB - Virtual size: 8KB

.reloc Size: 12KB - Virtual size: 9KB

.text Size: 72KB - Virtual size: 72KB

.text
Size: 108KB - Virtual size: 106KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 12KB - Virtual size: 8KB

.reloc
Size: 12KB - Virtual size: 9KB

.text
Size: 72KB - Virtual size: 72KB