14c854144c6b33291114042c69f60a67047a6c34c67fde1680fe2d1e5d6f6552

Sharing

Copy URL Twitter E-mail

General

Target

14c854144c6b33291114042c69f60a67047a6c34c67fde1680fe2d1e5d6f6552
Size

277KB
MD5

130ec85b6aaf60791b906beabae20ec0
SHA1

c1af22b4d0417b5a71bea64ef265a2c6d22df599
SHA256

14c854144c6b33291114042c69f60a67047a6c34c67fde1680fe2d1e5d6f6552
SHA512

d7cdfedb8caa106f01645cd5904126029a3d51725ceb50f9fa0d82575d4995e81a1600a378824e61c2bb15f421c4d958410de6ea525c6e332ca9613fb5c182a2
SSDEEP

6144:X3cNGZtDl/0iz89apJjDqng0BvW6guhcBPy:XsNGDJXzPpJjDqngkW66B

Score

N/A

Malware Config

Signatures

Files

14c854144c6b33291114042c69f60a67047a6c34c67fde1680fe2d1e5d6f6552
.dll regsvr32 windows x86

821c85f5fbe0711e9abbaa0c5165f633

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
LoadLibraryA
MultiByteToWideChar
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
IsValidCodePage
GetOEMCP
GetACP
ReadFile
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
VirtualAlloc
VirtualFree
HeapDestroy
HeapCreate
ExitProcess
HeapSize
Sleep
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleFileNameA
WriteFile
DeleteCriticalSection
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LeaveCriticalSection
EnterCriticalSection
RtlUnwind
RaiseException
GetCommandLineA
GetCurrentThreadId
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetFileSizeEx
CreateFileW
OutputDebugStringW
GetTickCount
GetModuleHandleW
GetCurrentProcessId
OutputDebugStringA
GetProcessHeap
GetPrivateProfileIntW
lstrcpyW
GetPrivateProfileStringW
HeapFree
HeapAlloc
LoadLibraryW
GetProcAddress
GetLastError
SetLastError
GetModuleFileNameW
lstrlenW
DisableThreadLibraryCalls
GetModuleHandleExW
InterlockedDecrement
GetCPInfo
InterlockedIncrement
GetModuleHandleA

user32

LoadImageW
MessageBoxW
EndDialog
CharToOemW
GetPropW
SetPropW
RemovePropW
DefWindowProcW
GetMessageW
TranslateMessage
DispatchMessageW
IsWindow
DestroyWindow
CreateWindowExW
GetWindowLongW
SetWindowLongW
UnregisterClassW
GetClientRect
GetWindowRect
ScrollWindow
RegisterClassExW
SendMessageW
SetWindowPos
BeginPaint
MapWindowPoints
EndPaint
MessageBeep
PostMessageW
InvalidateRect
GetDC
ReleaseDC
ShowWindow
CreateDialogParamW
UpdateWindow
BringWindowToTop
AllowSetForegroundWindow
SetForegroundWindow
GetSystemMetrics
ValidateRect
GetCursorPos
SystemParametersInfoW
GetAsyncKeyState
SetCapture
ReleaseCapture
GetParent
TrackMouseEvent
SetFocus
DrawTextW
SetCursor
GetDesktopWindow
UnhookWindowsHookEx
IsWindowVisible
IsIconic
SetWindowRgn
InternalGetWindowText
CreateWindowExA
IsWindowEnabled
PtInRect
SetTimer
UpdateLayeredWindow
GetWindowDC
KillTimer

gdi32

CreateRoundRectRgn
SetBkMode
CreateSolidBrush
GetStockObject
SelectObject
DeleteObject
CreateDIBSection
BitBlt
CreateCompatibleDC
DeleteDC
GetObjectType
CreateFontW

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegCreateKeyW

ole32

CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2

shlwapi

PathAppendW
StrCpyNW
StrStrIW
SHGetValueW

gdiplus

GdipCreateImageAttributes
GdipAlloc
GdipFree
GdipSetSolidFillColor
GdipSetStringFormatLineAlign
GdiplusShutdown
GdiplusStartup
GdipDrawImagePoints
GdipDrawImageRect
GdipMeasureString
GdipSetStringFormatHotkeyPrefix
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipLoadImageFromFile
GdipDeleteFont
GdipCreateFont
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipCreateFontFamilyFromName
GdipDrawImageRectRectI
GdipDrawImageRectRect
GdipDrawImagePointsI
GdipDrawString
GdipGraphicsClear
GdipSetInterpolationMode
GdipSetTextRenderingHint
GdipReleaseDC
GdipDeleteGraphics
GdipCreateFromHDC
GdipDisposeImage
GdipCreateSolidFill
GdipCloneBrush
GdipDeleteBrush
GdipSetImageAttributesWrapMode
GdipDisposeImageAttributes

winmm

timeGetTime

comctl32

CreatePropertySheetPageW
InitCommonControlsEx

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

821c85f5fbe0711e9abbaa0c5165f633

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

shlwapi

gdiplus

winmm

comctl32

Exports

Exports

Sections

.text Size: 169KB - Virtual size: 168KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 7KB - Virtual size: 14KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 13KB - Virtual size: 13KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 169KB - Virtual size: 168KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 7KB - Virtual size: 14KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 13KB - Virtual size: 13KB

.rmnet
Size: 56KB - Virtual size: 60KB