4ad376f48de562707ba39bab3b834780d96242286f4483fab8085695ebce923d

Sharing

Copy URL

Twitter E-mail

General

Target

4ad376f48de562707ba39bab3b834780d96242286f4483fab8085695ebce923d
Size

652KB
MD5

5f41d40a0d64eb77e2c1929b582f8ca4
SHA1

c3535b901bb0c66b940397e68e0aaa7139566b84
SHA256

4ad376f48de562707ba39bab3b834780d96242286f4483fab8085695ebce923d
SHA512

d707dc6116c48dca72a636bbed61cc3309918d4dfe56fd0aee6d69a6ee84aa5d2cb1ca2535957edf90da4aa1baa4aa5b6bec20688d6f90f5a43081830fecfe54
SSDEEP

12288:4XkfBomXAik4ZphLJ/htcaxWn+3sm0eJbRIBAU/xLY7hDiSCdD/:akfB64Zp1J/htcaM+ffoBAUZLY1e/

Score

N/A

Malware Config

Signatures

Files

4ad376f48de562707ba39bab3b834780d96242286f4483fab8085695ebce923d
.dll regsvr32 windows x86

3ceffb824cdb7f783448cd228f9a8922

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MapViewOfFile
CloseHandle
CreateFileMappingA
GetSystemInfo
UnmapViewOfFile
GetACP
GetVersionExA
WriteFile
GetCurrentThreadId
CreateFileA
GetCurrentProcessId
TlsAlloc
GetExitCodeProcess
TlsFree
CreateMutexA
WaitForSingleObject
ReleaseMutex
CreateEventA
SetEvent
SetStdHandle
Sleep
LocalFree
GetFileType
GetFileInformationByHandle
LockFile
LockFileEx
UnlockFile
UnlockFileEx
SetFilePointer
CreateFileW
GetOverlappedResult
ReadFile
PeekNamedPipe
FlushFileBuffers
TerminateProcess
GlobalMemoryStatus
GetTickCount
InterlockedIncrement
InterlockedDecrement
LoadLibraryA
lstrcatA
lstrcpyA
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
GetProcAddress
DeleteCriticalSection
HeapDestroy
lstrcmpiA
IsDBCSLeadByte
LoadLibraryExA
GetLastError
FindResourceA
LoadResource
QueryPerformanceCounter
SizeofResource
lstrcpynA
FreeLibrary
GetModuleFileNameA
GetShortPathNameA
DeleteFileA
lstrlenW
WideCharToMultiByte
lstrlenA
GetStdHandle
MultiByteToWideChar

user32

CharNextA

advapi32

RegDeleteKeyA
RegEnumKeyExA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegEnumValueA
FreeSid
AllocateAndInitializeSid
RegDeleteValueA

ole32

CoTaskMemFree
CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc

oleaut32

RegisterTypeLi
LoadRegTypeLi
SysStringLen
LoadTypeLi
VarUI4FromStr
SysAllocString
SysFreeString

ws2_32

WSARecv
WSAGetLastError
WSAStartup
WSACleanup
ntohl
ioctlsocket
setsockopt

wininet

InternetOpenA
InternetConnectA
InternetCloseHandle
InternetSetOptionA
HttpOpenRequestA
HttpAddRequestHeadersA
HttpSendRequestA
HttpQueryInfoA
InternetReadFile

usbkeyapi

USBKey_ListKey
USBKey_DestroyList
USBKey_Connect
USBKey_SignData
USBKey_PriKeyProc
USBKey_ChangePin
USBKey_VerifyPin
USBKey_Disconnect

msvcrt

_fileno
_fstat
_strnicmp
_adjust_fdiv
_initterm
_onexit
__dllonexit
fgets
_setmode
fflush
_except_handler3
strcmp
abort
wcsncmp
wcscpy
fprintf
_errno
_ftol
modf
qsort
_iob
_isctype
__mb_cur_max
_pctype
??3@YAXPAX@Z
atoi
strstr
??2@YAPAXI@Z
sprintf
free
calloc
malloc
sscanf
strncpy
time
mktime
rename
_itoa
realloc
_purecall
fread
fclose
fseek
fopen
fwrite
srand
rand
ftell
memmove
strchr
strncmp
memchr

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 296KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ceffb824cdb7f783448cd228f9a8922

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

ws2_32

wininet

usbkeyapi

msvcrt

Exports

Exports

Sections

.text Size: 296KB - Virtual size: 292KB

.rdata Size: 244KB - Virtual size: 243KB

.data Size: 60KB - Virtual size: 201KB

.rsrc Size: 8KB - Virtual size: 4KB

.reloc Size: 36KB - Virtual size: 33KB

.text
Size: 296KB - Virtual size: 292KB

.rdata
Size: 244KB - Virtual size: 243KB

.data
Size: 60KB - Virtual size: 201KB

.rsrc
Size: 8KB - Virtual size: 4KB

.reloc
Size: 36KB - Virtual size: 33KB