cb7d68ac42262fc7a0cd90217cabac85936ffb4c39400a7e341918e962bf879a

General

Target

cb7d68ac42262fc7a0cd90217cabac85936ffb4c39400a7e341918e962bf879a
Size

73KB
MD5

a1d2fe7f44777732df1b6ac12d70a2a0
SHA1

15bda3ca7a3cacb8cb5239212bbd16455455932a
SHA256

cb7d68ac42262fc7a0cd90217cabac85936ffb4c39400a7e341918e962bf879a
SHA512

246b50b83107d95c4a9da0d95228433cb29752b359982937ef1877204d30a33b406bff9ec4eb92985a935bb351b9886817aaf9595cdc1a4fd92576e4cd6aa6f5
SSDEEP

1536:ZlcIQivr0+EsPA5Cw6i+TV7Hj7qg4vRMoyHwBFthbiG8sSqGwB:ZlvvfEsPA5N6n7Hj+ZvqHHwB/hbi7rwB

Score

N/A

Malware Config

Signatures

Files

cb7d68ac42262fc7a0cd90217cabac85936ffb4c39400a7e341918e962bf879a
.dll regsvr32 windows x86

0699455eb1742ec30f8bbb0dcadb3c85

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileType
GetWindowsDirectoryW
CloseHandle
FreeEnvironmentStringsW
IsValidLocale
GetModuleFileNameA
GetStringTypeA
CreateThread
TlsAlloc
FindResourceW
MultiByteToWideChar
GetProcessHeap
GetCurrentThreadId
GetVolumeInformationA
SetStdHandle
GetSystemInfo
DisableThreadLibraryCalls
GetCurrentDirectoryA
GetStringTypeW
GetCurrentProcess
IsWow64Process
ExitProcess
HeapAlloc
lstrcpynA
FormatMessageA
GetLastError
WaitForSingleObject
GetSystemDirectoryW
GetVersionExA
GetCurrentProcessId
WideCharToMultiByte

ole32

DoDragDrop

user32

LoadIconA
CallWindowProcW
GetCursorPos
PeekMessageW
CharPrevA
TranslateAcceleratorW
PtInRect
DestroyMenu
DefWindowProcW
DestroyCaret
SetCapture
DrawFocusRect

oleaut32

SysAllocString
VarUI4FromStr

advapi32

RegSetValueExW
RegQueryInfoKeyW

gdi32

BitBlt
GetObjectA
CreateEllipticRgn
StartPage

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 784B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0699455eb1742ec30f8bbb0dcadb3c85

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

user32

oleaut32

advapi32

gdi32

Exports

Exports

Sections

.text Size: 48KB - Virtual size: 48KB

.data Size: 21KB - Virtual size: 21KB

.rsrc Size: 1024B - Virtual size: 784B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 48KB - Virtual size: 48KB

.data
Size: 21KB - Virtual size: 21KB

.rsrc
Size: 1024B - Virtual size: 784B

.reloc
Size: 1KB - Virtual size: 1KB