4f916ff0ac649b7b4b93a15a3afb7c270b6d79aac0c7e66b0ea857ffafdddd7a

Sharing

Copy URL Twitter E-mail

General

Target

4f916ff0ac649b7b4b93a15a3afb7c270b6d79aac0c7e66b0ea857ffafdddd7a
Size

329KB
MD5

0cebeaa57d357ab0df020d459e0f7ad6
SHA1

25a3bbb603822d05f8897f0888e0df4b1bfec40b
SHA256

4f916ff0ac649b7b4b93a15a3afb7c270b6d79aac0c7e66b0ea857ffafdddd7a
SHA512

92faa4b7059f6249c40c7e0a77d9a916b191d439507ce461422c7b70b0499ec978255e3ee4c3f27a725d903d1f11126064613770ee8b8ac37dc6c9cd95b5ac6e
SSDEEP

6144:815Ypu+p8z9hfGnUbM6fVTyxuTBJq4BK7G5:8SA/bBFyxuTPq4IQ

Score

N/A

Malware Config

Signatures

Files

4f916ff0ac649b7b4b93a15a3afb7c270b6d79aac0c7e66b0ea857ffafdddd7a
.dll regsvr32 windows x86

ca760e14ecaa0259821ace05adaf4411

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCrackUrlA
InternetCloseHandle
InternetReadFile
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetOpenA
InternetGetConnectedState

rpcrt4

UuidToStringA
UuidCreate

kernel32

GetVersionExA
HeapReAlloc
GetModuleHandleW
GetProcAddress
SetLastError
LockResource
LocalFree
FormatMessageA
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
InterlockedExchange
CompareStringA
LoadLibraryA
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
GlobalDeleteAtom
GetModuleFileNameW
GlobalAddAtomA
GetThreadLocale
GlobalReAlloc
GlobalHandle
LocalReAlloc
TlsFree
SetErrorMode
WritePrivateProfileStringA
GlobalFlags
lstrcmpW
GlobalFindAtomA
GlobalGetAtomNameA
WriteFile
SetFilePointer
FlushFileBuffers
GetCurrentProcess
CreateFileA
GetCPInfo
GetOEMCP
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
GetSystemTimeAsFileTime
GetCommandLineA
ExitProcess
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
IsValidCodePage
GetStdHandle
VirtualFree
HeapCreate
HeapDestroy
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetThreadLocale
TlsAlloc
GetCurrentProcessId
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
Sleep
CreateMutexA
WaitForSingleObject
lstrcpyA
ReleaseMutex
CloseHandle
TlsGetValue
TlsSetValue
lstrcmpA
GetTickCount
lstrcpynA
CreateThread
GetProcessHeap
HeapAlloc
GetCurrentThreadId
HeapFree
IsDBCSLeadByte
lstrcmpiA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
FreeLibrary
WideCharToMultiByte
GetLastError
lstrlenW
MultiByteToWideChar
GetModuleFileNameA
lstrlenA
GetModuleHandleA
LocalAlloc

user32

SetPropA
GetClassLongA
GetCapture
WinHelpA
LoadIconA
RegisterWindowMessageA
ShowWindow
DestroyMenu
SetForegroundWindow
GetClientRect
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
CopyRect
DefWindowProcA
CallWindowProcA
GetMenu
GetPropA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
GetWindowTextA
SetWindowTextA
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
LoadCursorA
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
UnregisterClassA
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
SetCursor
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetFocus
GetParent
ModifyMenuA
EnableMenuItem
CheckMenuItem
UnhookWindowsHookEx
PostMessageA
PostQuitMessage
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
RemovePropA
IsWindow
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetMenu
SetWindowLongA
CharNextW
FindWindowA
SendMessageA
SetTimer
KillTimer
CharNextA
GetActiveWindow

advapi32

RegQueryInfoKeyA
RegEnumKeyA
RegOpenKeyA
RegQueryValueA
RegCreateKeyA
RegQueryValueExA
RegDeleteKeyA
RegSetValueExA
RegEnumKeyExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA

ole32

CoCreateInstance
StringFromGUID2
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree

oleaut32

UnRegisterTypeLi
SysAllocString
RegisterTypeLi
SysStringLen
LoadTypeLi
LoadRegTypeLi
VarUI4FromStr
SysFreeString
VariantInit
VariantChangeType
VariantClear

shlwapi

StrStrA
StrCmpNIA
wnsprintfA
StrNCatA
wvnsprintfA
StrToIntA
StrCmpNA
PathFindExtensionA
PathFindFileNameA
StrStrIA

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

DeleteDC
GetStockObject
SetViewportExtEx
ScaleWindowExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
SetMapMode
GetClipBox
SetWindowExtEx
SetTextColor
SetBkColor
RestoreDC
DeleteObject
SaveDC
CreateBitmap
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca760e14ecaa0259821ace05adaf4411

Headers

File Characteristics

Imports

wininet

rpcrt4

kernel32

user32

advapi32

ole32

oleaut32

shlwapi

oleacc

gdi32

winspool.drv

Exports

Exports

Sections

.text Size: 228KB - Virtual size: 228KB

.rdata Size: 53KB - Virtual size: 53KB

.data Size: 11KB - Virtual size: 26KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 31KB - Virtual size: 30KB

.text
Size: 228KB - Virtual size: 228KB

.rdata
Size: 53KB - Virtual size: 53KB

.data
Size: 11KB - Virtual size: 26KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 31KB - Virtual size: 30KB