b0c1b60f3f02caf5e5281eaf3ab628aec999badaf495e8c8793fa34bb10d23bc

Sharing

Copy URL Twitter E-mail

General

Target

b0c1b60f3f02caf5e5281eaf3ab628aec999badaf495e8c8793fa34bb10d23bc
Size

364KB
MD5

930178caf773df606b26f1b8d9dec23c
SHA1

d63d46197ab38bebfe6bc6224d4a23b79e840737
SHA256

b0c1b60f3f02caf5e5281eaf3ab628aec999badaf495e8c8793fa34bb10d23bc
SHA512

12d981687d61c926d5bc84bdbc26bd85ba270c73cfb98111826caee2cd7eb2c9b18c1c1bc27813bc04c05b35f9571cc24d23ba39e139a320a247ba6f57203e40
SSDEEP

6144:QbBZqYfQSpJNeZSZeHF8TU3C6+2mCeOmlqDaLsN4Y4Sh:uBwYISpXeIZelwfYN4vS

Score

N/A

Malware Config

Signatures

Files

b0c1b60f3f02caf5e5281eaf3ab628aec999badaf495e8c8793fa34bb10d23bc
.dll regsvr32 windows x86

780883c39ff7b22e0619868be0ab8c02

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceInstanceIdA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList

winmm

mixerOpen
mixerGetLineInfoA
mixerGetLineControlsA
mixerClose
mixerSetControlDetails
mixerGetID
mixerGetNumDevs
mixerGetControlDetailsA
mixerGetDevCapsA

dsound

ord2
ord1

kernel32

GetModuleHandleA
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetProcessVersion
GetCurrentProcess
WriteFile
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
RtlUnwind
HeapFree
HeapAlloc
HeapReAlloc
GetCommandLineA
ExitProcess
TerminateProcess
RaiseException
HeapSize
GetACP
LCMapStringA
LCMapStringW
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GlobalFlags
SetLastError
GetVersion
SetErrorMode
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
GlobalUnlock
GlobalFree
TlsAlloc
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetCurrentThreadId
lstrcatA
lstrcpyA
LoadLibraryA
GetProcAddress
HeapDestroy
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
FreeLibrary
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
GetModuleFileNameA
GetShortPathNameA
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
WinExec
lstrlenA
WaitForMultipleObjects
CreateFileA
DeviceIoControl
SetEvent
WaitForSingleObject
CloseHandle
CreateEventA
CreateThread
GetLastError
LocalAlloc
LocalFree

user32

RegisterWindowMessageA
SetForegroundWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
RemovePropA
CallWindowProcA
GetPropA
SetPropA
GetClassLongA
CreateWindowExA
DestroyWindow
DefWindowProcA
GetMenuItemID
GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
GetSysColor
MapWindowPoints
LoadIconA
LoadCursorA
GetSysColorBrush
LoadStringA
DestroyMenu
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
SetWindowLongA
SystemParametersInfoA
GetDlgItem
GrayStringA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
GetMenuItemCount
wsprintfA
GetWindowTextA
SetWindowTextA
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameA
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
IsIconic
GetWindowPlacement
CharUpperA
PostMessageA
FindWindowA
GetWindowLongA
MessageBoxA
EnableWindow
SetCursor
SendMessageA
PostQuitMessage
CharNextA
UnregisterClassA

gdi32

SetTextColor
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SetMapMode
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
DeleteObject
CreateBitmap
SetViewportOrgEx

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegEnumValueA
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegQueryInfoKeyA

comctl32

ord17

ole32

CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoTaskMemRealloc

oleaut32

SysFreeString
VarUI4FromStr
LoadTypeLi
SysAllocString
RegisterTypeLi
LoadRegTypeLi
SysStringLen

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 160KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 16KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

780883c39ff7b22e0619868be0ab8c02

Headers

File Characteristics

Imports

setupapi

winmm

dsound

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 160KB - Virtual size: 156KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 16KB - Virtual size: 26KB

.rsrc Size: 140KB - Virtual size: 138KB

.reloc Size: 20KB - Virtual size: 18KB

.text
Size: 160KB - Virtual size: 156KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 16KB - Virtual size: 26KB

.rsrc
Size: 140KB - Virtual size: 138KB

.reloc
Size: 20KB - Virtual size: 18KB