69697a8f97c99af0f77a94de08c41ff332bafb5efd55f857c933452bbd7e12ec

Sharing

Copy URL Twitter E-mail

General

Target

69697a8f97c99af0f77a94de08c41ff332bafb5efd55f857c933452bbd7e12ec
Size

148KB
MD5

a39fcc248a97e293cd376f5a88d37fb0
SHA1

28eb1e39943c7a817cd62718cc7711cb59217a8c
SHA256

69697a8f97c99af0f77a94de08c41ff332bafb5efd55f857c933452bbd7e12ec
SHA512

68cae91daedc91f489c75ab3b99de1d91949acceb202e83be3c70274dd92c76339e2dbc8c13056582e9d3fb697644b720c5c3e1b6710b74be0e4deecaf6174ef
SSDEEP

1536:5/fnq9ob9r4bTWRe9ViS1IFdnqwMg4DQ0aCwJLICS4AVwxnJZv+uwLa+tIJSKAcr:BkQ4bKRIViS1ulYswHwJJZv+8+FK90

Score

N/A

Malware Config

Signatures

Files

69697a8f97c99af0f77a94de08c41ff332bafb5efd55f857c933452bbd7e12ec
.dll regsvr32 windows x86

4ed9d866833bb574865426b6ca9f4d3e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

shlwapi

StrStrIA
SHGetValueA
SHSetValueA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA

oleaut32

SysAllocString
GetErrorInfo
VariantClear
SysFreeString

wininet

InternetOpenUrlA
InternetCloseHandle
HttpQueryInfoA
InternetReadFile
InternetSetOptionA
InternetOpenA

user32

TranslateMessage
DispatchMessageA
KillTimer
SetTimer
DefWindowProcA
SetWindowPos
GetClassNameA
GetWindowThreadProcessId
EnumChildWindows
EnumWindows
OpenClipboard
CloseClipboard
ShowWindow
CreateWindowExA
wsprintfA
SystemParametersInfoA
RegisterClassExA
GetMessageA

msvcrt

srand
isgraph
toupper
strtok
isalpha
isupper
islower
ispunct
fclose
fwrite
fopen
tmpnam
atoi
__dllonexit
_onexit
??1type_info@@UAE@XZ
_initterm
_adjust_fdiv
_stricmp
free
strstr
isspace
isalnum
isxdigit
strncpy
strerror
printf
tolower
wcscmp
??1exception@@UAE@XZ
??0exception@@QAE@XZ
?what@exception@@UBEPBDXZ
_CxxThrowException
__CxxFrameHandler
__mb_cur_max
malloc
wctomb
wcslen
??2@YAPAXI@Z
??3@YAXPAX@Z
??0exception@@QAE@ABV0@@Z
strchr

psapi

EnumProcessModules
GetModuleBaseNameA
EnumProcesses

ole32

CoTaskMemAlloc
CoInitialize
CoCreateInstance
CoTaskMemFree
CoCreateGuid

netapi32

Netbios

advapi32

RegCloseKey
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
RegQueryValueExW
RegOpenKeyExW
SetSecurityInfo
SetEntriesInAclA
GetSecurityInfo
RegOpenKeyExA

rpcrt4

UuidToStringA

kernel32

GetCurrentProcessId
GetWindowsDirectoryA
InterlockedExchange
GetSystemInfo
GetEnvironmentVariableA
CreateFileA
lstrcmpA
lstrcmpiA
GetSystemDirectoryA
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentThread
GetThreadTimes
GetLocalTime
MoveFileExA
WriteProcessMemory
CreateRemoteThread
OpenProcess
CloseHandle
GetCurrentDirectoryA
MultiByteToWideChar
lstrcpyA
GetVersionExA
SleepEx
GetFullPathNameA
SetLastError
HeapAlloc
HeapSize
GetTickCount
Sleep
WaitForSingleObject
CreateProcessA
DeleteFileA
GetProcessTimes
GetCurrentProcess
lstrcpynA
VirtualAllocEx
QueryPerformanceCounter
GetModuleHandleA
GetVersion
HeapFree
GetLastError
QueryPerformanceFrequency
GetProcessHeap
GetModuleFileNameA
FreeLibrary
GetProcAddress
LoadLibraryA
lstrlenA
LocalFree
FormatMessageA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ed9d866833bb574865426b6ca9f4d3e

Headers

File Characteristics

Imports

winmm

shlwapi

version

oleaut32

wininet

user32

msvcrt

psapi

ole32

netapi32

advapi32

rpcrt4

kernel32

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 84KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 20KB - Virtual size: 20KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 88KB - Virtual size: 84KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 20KB - Virtual size: 20KB

.reloc
Size: 8KB - Virtual size: 6KB