6bb92e84b05ead30202669529333b52e3048d86ceae27c30a1970b18b778d834

Sharing

Copy URL Twitter E-mail

General

Target

6bb92e84b05ead30202669529333b52e3048d86ceae27c30a1970b18b778d834
Size

224KB
MD5

9357717d28d2bfc593e9364605d787b7
SHA1

6e32e967ca397087ef3ebd3d2051c94cba90f614
SHA256

6bb92e84b05ead30202669529333b52e3048d86ceae27c30a1970b18b778d834
SHA512

14270b03fc92c6ca2b97a591b9701fbd9a74aba939a46eafc7d8252799f4e6acdbc9fc9a46d19429d29d767202fae96816f602e60ce832b2f9fbfa69423d2340
SSDEEP

3072:9nSbQoEA1i81k9M8UhW5iDP6HE5i3VOSzbAYLe59/7R47nEErYlL/5MO29o:xoY/VVXJe597RmDre/589o

Score

N/A

Malware Config

Signatures

Files

6bb92e84b05ead30202669529333b52e3048d86ceae27c30a1970b18b778d834
.dll regsvr32 windows x86

14a43d5c8698054ec972d1bf9f69ba38

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
ExitProcess
LocalFree
lstrlenA
GetVersionExA
GetTickCount
MultiByteToWideChar
SetLastError
FindResourceW
LoadResource
LockResource
GlobalHandle
GlobalFree
FreeResource
lstrcmpW
GlobalLock
GlobalUnlock
MulDiv
lstrcpynW
GetCurrentThreadId
GlobalAlloc
GetModuleHandleW
lstrcmpiW
HeapAlloc
GetProcessHeap
RaiseException
HeapFree
GetCurrentProcess
FlushInstructionCache
lstrcatW
GetModuleFileNameW
lstrcpyW
GetLastError
LeaveCriticalSection
EnterCriticalSection
lstrlenW
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
QueryPerformanceCounter

user32

GetWindowTextW
SetWindowTextW
GetClassInfoExW
LoadCursorW
wsprintfW
RegisterClassExW
CreateWindowExW
CreateAcceleratorTableW
ClientToScreen
ScreenToClient
GetWindowTextLengthW
GetTopWindow
GetParent
GetClassNameW
SetWindowPos
DestroyWindow
RedrawWindow
IsWindow
GetDlgItem
SendMessageW
SetFocus
GetFocus
IsChild
DestroyAcceleratorTable
BeginPaint
EndPaint
CallWindowProcW
GetDesktopWindow
InvalidateRgn
InvalidateRect
ReleaseDC
GetDC
GetClientRect
FillRect
SetCapture
RegisterWindowMessageW
DialogBoxIndirectParamW
IsWindowEnabled
GetAncestor
SetCursor
EndDialog
GetCursor
PostMessageW
SetWindowContextHelpId
MapDialogRect
GetActiveWindow
UnregisterClassW
CharNextW
SetWindowLongW
GetWindowLongW
GetWindow
DefWindowProcW
GetSysColor
ReleaseCapture
GetCapture

gdi32

SaveDC
GetViewportOrgEx
SetViewportOrgEx
RestoreDC
CreateSolidBrush
GetStockObject
GetObjectW
GetDeviceCaps
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
SelectObject
DeleteObject

advapi32

RegSetValueExW
RegCreateKeyExW
RegQueryInfoKeyW
RegOpenKeyExW
RegCloseKey
RegDeleteKeyW
RegEnumKeyExW

shell32

SHGetFileInfoW

ole32

CLSIDFromString
CLSIDFromProgID
CoGetClassObject
CreateStreamOnHGlobal
OleLockRunning
CoTaskMemAlloc
OleRun
StringFromCLSID
CoTaskMemFree
StringFromGUID2
CoCreateInstance
OleUninitialize
OleInitialize

oleaut32

GetErrorInfo
SysFreeString
VariantClear
SysAllocString
SysAllocStringByteLen
SysStringByteLen
SysStringLen
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
SysAllocStringLen
VariantInit
VariantChangeType
VarUI4FromStr
SafeArrayPutElement
SafeArrayCreate
OleCreateFontIndirect
LoadRegTypeLi
DispCallFunc
VarBstrCat

shlwapi

PathFindExtensionW

msvcp71

?_Nomemory@std@@YAXXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?c_str@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEPBDXZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z

dsprojectutilities9

?CreateMenuImage@CMenuStyleUtil@@SAJPAUIDSMenu@@V_bstr_t@@1@Z
??1CDSFileUtils@@QAE@XZ
?GetFilePath@CDSFileUtils@@QAEJW4DirectoryType@1@PAG_N112PAPAGK@Z
??0?$vector@V?$CComPtr@UIDSMenu@@@ATL@@V?$allocator@V?$CComPtr@UIDSMenu@@@ATL@@@std@@@std@@QAE@XZ
?clear@?$vector@V?$CComPtr@UIDSMenu@@@ATL@@V?$allocator@V?$CComPtr@UIDSMenu@@@ATL@@@std@@@std@@QAEXXZ
??1?$vector@V?$CComPtr@UIDSMenu@@@ATL@@V?$allocator@V?$CComPtr@UIDSMenu@@@ATL@@@std@@@std@@QAE@XZ
?begin@?$vector@V?$CComPtr@UIDSMenu@@@ATL@@V?$allocator@V?$CComPtr@UIDSMenu@@@ATL@@@std@@@std@@QAE?AViterator@12@XZ
?end@?$vector@V?$CComPtr@UIDSMenu@@@ATL@@V?$allocator@V?$CComPtr@UIDSMenu@@@ATL@@@std@@@std@@QAE?AViterator@12@XZ
?GetDisplayName@@YA?AVCComBSTR@ATL@@PAUIUnknown@@PA_N@Z
?ConstructMergedTemplate@CMenuStyleUtil@@SAJPAUIDSMenu@@00K@Z
?CopyMenuColorPalette@CMenuStyleUtil@@SAJPAUIDSMenu@@0@Z
?SaveSampleProjectAsTheme@CMenuStyleUtil@@SAJPAUIDSMenu@@0V_bstr_t@@W4AspectRatio@@1@Z
??0CDSFileUtils@@QAE@XZ
?push_back@?$vector@V?$CComPtr@UIDSMenu@@@ATL@@V?$allocator@V?$CComPtr@UIDSMenu@@@ATL@@@std@@@std@@QAEXABV?$CComPtr@UIDSMenu@@@ATL@@@Z

vcuerror9

?VCUClearErrorStack@@YAXXZ
??0VCUErrStr@@QAA@KZZ
??0VCUErrStr@@QAA@PAGZZ
??BVCUErrStr@@QAEPAGXZ
?VCUReportError@@YAXPAG@Z
??1VCUErrStr@@QAE@XZ

layoutdll9

?Enable@CleWindowLayout@LayoutEngine@@UAEXXZ
?IsEnabled@CleWindowLayout@LayoutEngine@@UAE_NXZ
?ParentContainerHidden@CleUiElement@LayoutEngine@@UAEXXZ
?ParentContainerShown@CleUiElement@LayoutEngine@@UAEXXZ
?Hide@CleWindowLayout@LayoutEngine@@UAEXXZ
?Show@CleWindowLayout@LayoutEngine@@UAEXXZ
?IsVisible@CleWindowLayout@LayoutEngine@@UAE_NXZ
?GetMinimumSize@CleWindowLayout@LayoutEngine@@UAE?AW4EnumReturnedDimensions@2@AAJ0@Z
?GetIdealSize@CleWindowLayout@LayoutEngine@@UAE?AW4EnumReturnedDimensions@2@AAJ0@Z
?LoadFromXMLFile@CleUiElement@LayoutEngine@@UAE_NV_bstr_t@@AAV3@@Z
?LoadFromXML@CleWindowBaseHandler@LayoutEngine@@UAE_NAAV?$_com_ptr_t@V?$_com_IIID@UIXMLDOMNode@MSXML2@@$1?_GUID_2933bf80_7b36_11d2_b20e_00c04f983e60@@3U__s_GUID@@B@@@@V_bstr_t@@_N@Z
?GetType@CleUiElement@LayoutEngine@@UAE?AW4EnumUiObjectTypes@2@XZ
?OnSplit@CleWindowBaseHandler@LayoutEngine@@UAEXV?$vector@PAVCleUiElement@LayoutEngine@@V?$allocator@PAVCleUiElement@LayoutEngine@@@std@@@std@@@Z
?CustomisePopupMenu@CleWindowBaseHandler@LayoutEngine@@UAEXPAUHMENU__@@@Z
?TrackPopupMenu@CleWindowBaseHandler@LayoutEngine@@UAEHPAUHMENU__@@HHPAUHWND__@@IABV_bstr_t@@@Z
?TrackPopupMenu@CleWindowBaseHandler@LayoutEngine@@UAEHABV_bstr_t@@HHPAUHWND__@@I0@Z
?TrackPopupSystemMenu@CleWindowBaseHandler@LayoutEngine@@MAEXAAUtagPOINT@@_N@Z
?LButtonDownHandler@CleWindowBaseHandler@LayoutEngine@@MAEXI@Z
?SysMenuKeyboardCmdHandler@CleWindowBaseHandler@LayoutEngine@@MAE_NI@Z
?CreateHandler@CleWindowBaseHandler@LayoutEngine@@MAE_NJ@Z
?LeWinInit@CleWindowBaseHandler@LayoutEngine@@MAE_NXZ
?UpdateWorkAreaDoLayout@CleWindowBaseHandler@LayoutEngine@@UAEXXZ
?UpdateWorkAreaDoLayout@CleWindowBaseHandler@LayoutEngine@@UAEXJJJJ@Z
?Disable@CleWindowLayout@LayoutEngine@@UAEXXZ
?ParentContainerEnabled@CleUiElement@LayoutEngine@@UAEXXZ
?ParentContainerDisabled@CleUiElement@LayoutEngine@@UAEXXZ
?CreateElement@CleWindowLayout@LayoutEngine@@UAE_NABV_bstr_t@@@Z
?CreateDelayedElement@CleUiElement@LayoutEngine@@UAE_NXZ
?DestroyElement@CleWindowLayout@LayoutEngine@@UAEXXZ
?Draw@CleWindowLayout@LayoutEngine@@UAEXV?$CDCT@$0A@@WTL@@@Z
?DoLayout@CleWindowLayout@LayoutEngine@@UAEXJJ@Z
?IsDrawable@CleUiElement@LayoutEngine@@UAE_NXZ
?IsSubjectForLayingout@CleUiElement@LayoutEngine@@UAE_NXZ
?DbgTraceElement@CleUiElement@LayoutEngine@@UAEXV_bstr_t@@@Z
?OnCreatedWorkArea@CleWindowLayout@LayoutEngine@@MAE_NXZ
?OnCreatedActiveBkgnd@CleWindowLayout@LayoutEngine@@MAE_NXZ
?OnWorkAreaLoaded@CleWindowLayout@LayoutEngine@@MAE_NXZ
?OnHitAreaLoaded@CleWindowLayout@LayoutEngine@@MAE_NXZ
?OnInactiveBkgndLoaded@CleWindowLayout@LayoutEngine@@MAE_NXZ
?OnActiveBkgndLoaded@CleWindowLayout@LayoutEngine@@MAE_NXZ
?GetHostingRectangle@CleWindowLayout@LayoutEngine@@MAEXAAUtagRECT@@@Z
?UnRegisterLayoutEvent@CleWindowLayout@LayoutEngine@@MAEXXZ
?RegisterLayoutEvent@CleWindowLayout@LayoutEngine@@MAE_NXZ
?FindElement@CleWindowLayout@LayoutEngine@@UAEPAVCleUiElement@2@V_bstr_t@@PAVCleUieLayout@2@@Z
?FindLayout@CleWindowLayout@LayoutEngine@@UAEPAVCleUiElement@2@V_bstr_t@@PAVCleUieLayout@2@@Z
?FindControl@CleWindowLayout@LayoutEngine@@UAEPAVCleUiElement@2@IPAVCleUieLayout@2@@Z
?GetWindowOrigin@CleWindowLayout@LayoutEngine@@UAE_NAAJ0@Z
?GetDimensionsFromWindowGeometry@CleWindowLayout@LayoutEngine@@UAE?AW4EnumReturnedDimensions@2@AAUCleSize@2@AAJ1_N@Z
?GetWindowSize@CleWindowLayout@LayoutEngine@@UAE?AW4EnumReturnedDimensions@2@AAJ0@Z
?GetWindowMaximumSize@CleWindowLayout@LayoutEngine@@UAE?AW4EnumReturnedDimensions@2@AAJ0@Z
?GetWindowMinimumSize@CleWindowLayout@LayoutEngine@@UAE?AW4EnumReturnedDimensions@2@AAJ0@Z
?Load@CleWindowBaseHandler@LayoutEngine@@MAE_NABV_bstr_t@@@Z
?ResourcesChanged@CleWindowLayout@LayoutEngine@@MAEXXZ
??1CleDialogBase@LayoutEngine@@UAE@XZ
?m_ResourceLoader@CleBase@LayoutEngine@@2V?$_com_ptr_t@V?$_com_IIID@UICPSResourceLoader@@$1?_GUID_6dcb6fbd_8e91_44c4_b402_356581b7f407@@3U__s_GUID@@B@@@@A
??0CleDialogBase@LayoutEngine@@QAE@AAPAUHWND__@@ABV_bstr_t@@AAV?$_com_ptr_t@V?$_com_IIID@UICPSResStringLoader@@$1?_GUID_50b3e24c_4f3d_48ad_bbcb_a281ff27cd29@@3U__s_GUID@@B@@@@_N@Z
?ProcessWindowMessage@CleDialogBase@LayoutEngine@@QAEHPAUHWND__@@IIJAAJK@Z
?OnCreatedInactiveBkgnd@CleWindowLayout@LayoutEngine@@MAE_NXZ

msvcr71

__dllonexit
??3@YAXPAX@Z
??_V@YAXPAX@Z
??1exception@@UAE@XZ
??0exception@@QAE@XZ
__CxxFrameHandler
free
_CxxThrowException
??0exception@@QAE@ABV0@@Z
_purecall
wcsncpy
malloc
realloc
_wcsicmp
wcschr
sprintf
memset
__CppXcptFilter
_adjust_fdiv
_initterm
?terminate@@YAXXZ
_onexit
_except_handler3
__security_error_handler
??1type_info@@UAE@XZ
_callnewh

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 92KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

14a43d5c8698054ec972d1bf9f69ba38

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

msvcp71

dsprojectutilities9

vcuerror9

layoutdll9

msvcr71

Exports

Exports

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 12KB - Virtual size: 11KB

.text Size: 92KB - Virtual size: 92KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 12KB - Virtual size: 11KB

.text
Size: 92KB - Virtual size: 92KB