b757b5ef13ee28c864da1d60ebb727ef8da1b5e9aebdb26c4aeb4fa6461bd97b

Sharing

Copy URL Twitter E-mail

General

Target

b757b5ef13ee28c864da1d60ebb727ef8da1b5e9aebdb26c4aeb4fa6461bd97b
Size

328KB
MD5

82451565bbdf6bcbaa6aa31032aff73e
SHA1

e3bbea83b9c1616b2581677729ad94c68582e7e9
SHA256

b757b5ef13ee28c864da1d60ebb727ef8da1b5e9aebdb26c4aeb4fa6461bd97b
SHA512

c5e6a0b4e4c47c50d9f3d89e0b96ff183b35ddd6584161b830345c51b4d43a9beee59ad9dd9ca1d69e9dae59b399859a2b1c79859526c90a6c179e6230354388
SSDEEP

6144:Xgvv6SHkKwy2OK3LM8EPGkIrbDaaMjmtHBheQ6zKl+O:XpQhqdEPHI5RBhX6zKlH

Score

N/A

Malware Config

Signatures

Files

b757b5ef13ee28c864da1d60ebb727ef8da1b5e9aebdb26c4aeb4fa6461bd97b
.dll regsvr32 windows x86

4c6d21b2c9b049b36744754e00c986e2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeBeginPeriod
timeSetEvent
timeGetTime
timeEndPeriod

d3d9

Direct3DCreate9

gdi32

SelectObject
GetTextMetricsA
GetGlyphOutlineA
DeleteObject
DeleteDC
CreateRectRgn
CombineRgn
CreateSolidBrush
FillRgn
SetBkColor
ExtTextOutA
CreateCompatibleDC
CreateRectRgnIndirect
CreateFontA

kernel32

CreateEventA
lstrlenW
CreateThread
CloseHandle
ResetEvent
SetThreadPriority
CreateSemaphoreA
InterlockedDecrement
InterlockedCompareExchange
SizeofResource
LockResource
LoadResource
InitializeCriticalSection
FindResourceExA
DeleteCriticalSection
InterlockedExchange
lstrcmpiA
GetSystemInfo
GetCurrentThreadId
DuplicateHandle
VirtualFree
GetCurrentProcess
VirtualAlloc
GetProcAddress
FreeLibrary
LoadLibraryA
DisableThreadLibraryCalls
GetVersionExA
GetModuleFileNameA
GetTickCount
GetModuleHandleA
WriteConsoleA
SetStdHandle
ReleaseSemaphore
GetConsoleMode
GetConsoleCP
SetFilePointer
RtlUnwind
FindResourceA
GetOEMCP
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
Sleep
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStdHandle
WriteFile
ExitProcess
HeapCreate
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCommandLineA
VirtualQuery
GetThreadLocale
GetLocaleInfoA
GetACP
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
OutputDebugStringA
RaiseException
InterlockedIncrement
GetLastError
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
lstrlenA
EnterCriticalSection
LeaveCriticalSection
WaitForMultipleObjects
WideCharToMultiByte
WaitForSingleObject
SetEvent
IsValidCodePage
GetConsoleOutputCP
WriteConsoleW
CreateFileA
FlushFileBuffers
ReadFile

mkunicode

Utf8ToUtf16

user32

LoadStringA
LoadStringW
GetDesktopWindow
UnregisterClassA
MoveWindow
CreateDialogParamA
InvalidateRect
PostQuitMessage
PostMessageA
UnhookWindowsHookEx
SetWindowsHookExA
EnumDisplayDevicesA
GetMonitorInfoA
MonitorFromWindow
GetKeyState
GetWindowRect
GetWindowLongA
SendMessageA
AttachThreadInput
SetWindowLongA
ShowWindow
GetWindowThreadProcessId
RegisterClassA
KillTimer
LoadCursorA
SetTimer
DestroyWindow
IntersectRect
SetParent
ScreenToClient
GetDlgItem
MsgWaitForMultipleObjects
ReleaseDC
GetClientRect
EnableWindow
DispatchMessageA
SetWindowTextA
PeekMessageA
GetDC
GetWindowPlacement
CreateWindowExA
IsWindowVisible
GetWindowTextA
DefWindowProcA
InflateRect
SetDlgItemTextA
ValidateRect
SendDlgItemMessageA
SetCursor
UnionRect
GetClassLongA
SendMessageTimeoutA
GetParent
SetWindowPos
SetRectEmpty
CallNextHookEx

advapi32

RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
RegCreateKeyA
RegSetValueExA
RegEnumKeyExA
RegCloseKey
RegSetValueA
RegOpenKeyExA
RegDeleteKeyA
CryptGenRandom
RegCreateKeyExA
CryptReleaseContext
CryptAcquireContextA

ole32

CoInitializeEx
CoUninitialize
CoTaskMemAlloc
CoTaskMemFree
CoFreeUnusedLibraries
CoInitialize
CoCreateInstance
StringFromGUID2

oleaut32

SafeArrayAccessData
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayUnaccessData
VariantInit
VariantClear
SysAllocString
SysFreeString
VariantChangeType
SysAllocStringLen
SafeArrayGetUBound

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4c6d21b2c9b049b36744754e00c986e2

Headers

File Characteristics

Imports

winmm

d3d9

gdi32

kernel32

mkunicode

user32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 172KB - Virtual size: 172KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 7KB - Virtual size: 14KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 14KB - Virtual size: 13KB

.text Size: 100KB - Virtual size: 100KB

.text
Size: 172KB - Virtual size: 172KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 7KB - Virtual size: 14KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 14KB - Virtual size: 13KB

.text
Size: 100KB - Virtual size: 100KB