DV_9323[.]img | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

DV_9323.img
Size

480KB
MD5

d1ecccd3af33fab7988862fe8c52b801
SHA1

e627a06675ca67570fd2f49581250215bce46e86
SHA256

2462dfb39f340d8dcc18b659f9b4ffafbf5dc4a0e4347d56a19f873497a0e494
SHA512

ce06a53abcfa3a85ffcfbf22bb0b8c1559ddba612a2a9a81103503c05527ffad86c191ac02359b88175d71b31014c6323d17dbfe78c8fcaf7e89519d7074fc2e
SSDEEP

6144:zkbHJhzU/Gr+acU2gqnEIzGOEBPepzn6WX1LB5QpK1K0we5itwWUTIAO7V:qheLacnx5dFBOpawe5iFP1V

Score

N/A

Malware Config

Signatures

Files

DV_9323.img
.iso
DV.lnk
.lnk
selectable/dissatisfying.dat
.dll regsvr32 windows x86

349aa9703287f50b7f5c5557524d68d5

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
CreateFileW
FileTimeToLocalFileTime
FindFirstFileW
FindNextChangeNotification
GetDriveTypeW
GetFileAttributesA
GetFileAttributesW
GetFileInformationByHandle
GetFullPathNameA
LocalFileTimeToFileTime
SetFileAttributesW
SetUnhandledExceptionFilter
SetErrorMode
ConnectNamedPipe
SetNamedPipeHandleState
WaitNamedPipeW
QueryPerformanceCounter
QueryPerformanceFrequency
DeviceIoControl
LeaveCriticalSection
ReleaseMutex
OpenMutexW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
TlsAlloc
TlsGetValue
TlsFree
SetPriorityClass
GetSystemInfo
GetLocalTime
GetVersion
GetTickCount
GetSystemDirectoryA
GetSystemDirectoryW
GetWindowsDirectoryW
VirtualProtect
CreateFileMappingW
FindResourceExW
GetModuleFileNameA
GetModuleHandleA
GetModuleHandleW
LoadResource
FindResourceW
LoadLibraryA
LoadLibraryW
GlobalAlloc
LocalUnlock
SetHandleCount
MulDiv
lstrcmpA
lstrlenA
lstrlenW
FindResourceA
WritePrivateProfileStringW
MoveFileW
IsBadWritePtr
IsBadCodePtr
IsBadStringPtrW
GetComputerNameA
GetComputerNameW
CreateDirectoryW
ReadConsoleW
WriteConsoleW
SetConsoleCtrlHandler
SetEndOfFile
HeapSize
GetProcessHeap
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
HeapReAlloc
SetFilePointerEx
GetFileSizeEx
ReadFile
GetConsoleMode
GetConsoleOutputCP
WriteFile
FlushFileBuffers
CloseHandle
GetFileType
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
HeapAlloc
HeapFree
GetModuleFileNameW
GetModuleHandleExW
LoadLibraryExW
GetProcAddress
FreeLibrary
TlsSetValue
InitializeCriticalSectionAndSpinCount
SetLastError
GetLastError
InterlockedFlushSList
RtlUnwind
RaiseException
TerminateProcess
InitializeSListHead
GetSystemTimeAsFileTime
GetStartupInfoW
UnhandledExceptionFilter
IsDebuggerPresent
IsProcessorFeaturePresent
GetCPInfo
GetStringTypeW
LCMapStringEx
WideCharToMultiByte
MultiByteToWideChar
CompareFileTime
SetCurrentDirectoryW
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
SetEnvironmentVariableW
SetStdHandle
GetStdHandle
VirtualAllocEx
VirtualAlloc
GetTickCount64
CreateThread
WaitForSingleObject
LocalFree
GetWindowsDirectoryA
LocalAlloc
ExitProcess
FindFirstFileA
FindNextFileA
SystemTimeToFileTime
GetCommandLineA
DecodePointer
EncodePointer
DeleteCriticalSection
InitializeCriticalSectionEx
EnterCriticalSection

user32

SystemParametersInfoW
SystemParametersInfoA
LoadIconW
SetWindowsHookExW
GetWindow
GetWindowThreadProcessId
GetTopWindow
FindWindowW
SetParent
GetDesktopWindow
IntersectRect
SetRect
GetSysColor
MapWindowPoints
ScreenToClient
GetCursorPos
MessageBeep
MessageBoxW
MessageBoxA
GetWindowTextLengthW
GetPropW
SetPropW
GetScrollPos
RedrawWindow
TrackPopupMenu
GetMenuItemID
CheckMenuItem
CreatePopupMenu
LoadMenuW
GetSystemMetrics
SetCapture
GetKeyboardState
GetKeyState
GetFocus
GetActiveWindow
CharUpperW
GetPriorityClipboardFormat
IsClipboardFormatAvailable
GetClipboardData
SetClipboardData
OpenClipboard
GetDialogBaseUnits
GetDlgCtrlID
GetNextDlgTabItem
BringWindowToTop
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
UnregisterClassW
UnregisterClassA
AttachThreadInput
SendMessageTimeoutW
RegisterWindowMessageW
GetDC
SetForegroundWindow

gdi32

Polygon
CreatePolygonRgn
OffsetRgn
GetStockObject
GetObjectType
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePalette
CreateFontIndirectW
CreateBrushIndirect
CreateBitmap
GetEnhMetaFileW

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegCloseKey

ole32

CoInitializeEx

shlwapi

PathFindSuffixArrayA
PathFileExistsA
ord155
StrToIntA
PathAppendA
PathFindExtensionA

Exports

Exports

DllRegisterServer
DllUnregisterServer
nondemocratic

Sections

.text
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 221KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
selectable/fijian.cmd
.cmd .vbs

Sharing

General

Malware Config

Signatures

Files

349aa9703287f50b7f5c5557524d68d5

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

shlwapi

Exports

Exports

Sections

.text Size: 178KB - Virtual size: 178KB

.data Size: 221KB - Virtual size: 221KB

.idata Size: 6KB - Virtual size: 6KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 178KB - Virtual size: 178KB

.data
Size: 221KB - Virtual size: 221KB

.idata
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 9KB - Virtual size: 9KB