57453c594f7d518d8419624ea4083213806518d460bbf3e3bd8ddfa12d11e28c

Sharing

Copy URL Twitter E-mail

General

Target

57453c594f7d518d8419624ea4083213806518d460bbf3e3bd8ddfa12d11e28c
Size

211KB
MD5

a2316be40c62f83b8c21bece65cc394a
SHA1

90fbf6116b1e05e56f62917d2f73de1cf269d309
SHA256

57453c594f7d518d8419624ea4083213806518d460bbf3e3bd8ddfa12d11e28c
SHA512

c5e1b708e9df0314f0629b0d0acd17f6f6c798c42c90c677a36703655550854a7c18e89d273092f4f9b6d2eb069354c7f1822b294aceea3edfa9a7511eb08936
SSDEEP

6144:3DAmrPljEzE6gNCmn4CUJuJyQttpFmbHk:8iljEzvECMLkECHk

Score

N/A

Malware Config

Signatures

Files

57453c594f7d518d8419624ea4083213806518d460bbf3e3bd8ddfa12d11e28c
.dll regsvr32 windows x86

fcc0a5550f3236cd828ca01dee6341d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memmove
_lock
__dllonexit
_unlock
realloc
??1type_info@@UAE@XZ
_adjust_fdiv
_amsg_exit
_initterm
_XcptFilter
_onexit
_errno
__CxxFrameHandler
calloc
memcpy
wcsstr
wcstod
??_V@YAXPAX@Z
malloc
free
_CxxThrowException
??2@YAPAXI@Z
_purecall
??_U@YAPAXI@Z
wcsrchr
wcschr
_vsnwprintf
memset
??3@YAXPAX@Z

advapi32

GetTraceLoggerHandle
GetTraceEnableFlags
GetTraceEnableLevel
RegisterTraceGuidsW
UnregisterTraceGuids
RegEnumKeyExW
TraceMessage
RegQueryInfoKeyW
RegisterEventSourceW
ReportEventW
DeregisterEventSource
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW

kernel32

lstrlenW
RaiseException
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
RtlUnwind
OutputDebugStringA
Sleep
LeaveCriticalSection
GetVersion
GetVersionExA
QueryPerformanceFrequency
HeapReAlloc
HeapAlloc
GetProcessHeap
HeapFree
InterlockedCompareExchange
QueryPerformanceCounter
InterlockedExchange
WaitForSingleObject
CloseHandle
CreateThread
GetModuleHandleW
LoadLibraryExW
FindResourceW
LoadResource
SizeofResource
MultiByteToWideChar
FreeLibrary
DisableThreadLibraryCalls
GetModuleFileNameW
lstrcmpiW
InterlockedDecrement
InterlockedIncrement
GetLastError
InitializeCriticalSection
EnterCriticalSection
DeleteCriticalSection

user32

UnregisterClassA
CharNextW

oleaut32

SysStringLen
SysAllocString
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
VarUI4FromStr
VariantClear
VariantInit
VariantCopy
SafeArrayDestroy
SafeArrayUnaccessData
SafeArrayAccessData
SysAllocStringLen
SafeArrayCreateVector
SafeArrayGetElemsize
SysFreeString

ole32

StringFromGUID2
CoCreateInstance
CoTaskMemFree
CoTaskMemRealloc
CoTaskMemAlloc
CLSIDFromString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fcc0a5550f3236cd828ca01dee6341d5

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

user32

oleaut32

ole32

Exports

Exports

Sections

.text Size: 137KB - Virtual size: 137KB

.data Size: 61KB - Virtual size: 62KB

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 10KB - Virtual size: 10KB

.text
Size: 137KB - Virtual size: 137KB

.data
Size: 61KB - Virtual size: 62KB

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 10KB - Virtual size: 10KB