c8c77c3ab9a60683c5b6f5f86a4d61eb3cb5ac2bf9f5687490c6d936320c5692

Sharing

Copy URL Twitter E-mail

General

Target

c8c77c3ab9a60683c5b6f5f86a4d61eb3cb5ac2bf9f5687490c6d936320c5692
Size

116KB
MD5

92c6eacd36aae9e7c1374823a3077e00
SHA1

b15b942d377472b7171b1fed63c41521d63cd088
SHA256

c8c77c3ab9a60683c5b6f5f86a4d61eb3cb5ac2bf9f5687490c6d936320c5692
SHA512

c39cfb44ab3e2ee4bc353638766c2b4f4532d8e937b28eff9deeba86bb54bb9560c537fae6a48d697cb0cfceb2be7c6c7d89f53b6f5caef43544aaf6dfce2b8a
SSDEEP

3072:7XyCq7/foAJTVgbqPsl1SLZTs/WZT4OckCuvuhuB36yqi+:7XU7/foAJZ2yME5s/rr2uwq

Score

N/A

Malware Config

Signatures

Files

c8c77c3ab9a60683c5b6f5f86a4d61eb3cb5ac2bf9f5687490c6d936320c5692
.dll regsvr32 windows x86

92d17e716ab826066a9346bb2228a07c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LeaveCriticalSection
GetProcAddress
GetModuleHandleW
lstrcmpiW
GetModuleFileNameW
FreeLibrary
MultiByteToWideChar
SizeofResource
LoadResource
EnterCriticalSection
LoadLibraryExW
SetThreadLocale
GetThreadLocale
WideCharToMultiByte
lstrlenA
lstrcpynA
lstrlenW
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetLastError
FindResourceW
RaiseException
GetStringTypeW
LCMapStringW
LoadLibraryW
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStartupInfoW
GetFileType
SetHandleCount
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
EncodePointer
DecodePointer
HeapAlloc
HeapFree
RtlUnwind
GetCurrentThreadId
GetCommandLineA
Sleep
HeapSize
ExitProcess
WriteFile
GetStdHandle
HeapCreate
HeapDestroy
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
GetCurrentProcess
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
SetLastError
HeapReAlloc
IsProcessorFeaturePresent
GetModuleFileNameW
GetModuleHandleA
LoadLibraryA
LocalAlloc
LocalFree
GetModuleFileNameA
ExitProcess

user32

CharNextW

advapi32

RegQueryInfoKeyW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
RegEnumKeyExW

ole32

CoTaskMemAlloc
CoCreateInstance
CoTaskMemRealloc
CoTaskMemFree
StringFromGUID2

oleaut32

LoadRegTypeLi
DispCallFunc
VariantInit
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayUnaccessData
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysStringLen
SysFreeString
VariantClear

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllInstall
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.date0
Size: - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.date1
Size: 110KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

92d17e716ab826066a9346bb2228a07c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: - Virtual size: 53KB

.rdata Size: - Virtual size: 18KB

.data Size: - Virtual size: 8KB

.date0 Size: - Virtual size: 55KB

.date1 Size: 110KB - Virtual size: 110KB

.reloc Size: 512B - Virtual size: 220B

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: - Virtual size: 53KB

.rdata
Size: - Virtual size: 18KB

.data
Size: - Virtual size: 8KB

.date0
Size: - Virtual size: 55KB

.date1
Size: 110KB - Virtual size: 110KB

.reloc
Size: 512B - Virtual size: 220B

.rsrc
Size: 4KB - Virtual size: 3KB