d031398b8d2851f668bc210ade0c06798d17c04774edd01ab909e151c40f2abd

Sharing

Copy URL Twitter E-mail

General

Target

d031398b8d2851f668bc210ade0c06798d17c04774edd01ab909e151c40f2abd
Size

25KB
MD5

20cbea0cfbdd8e5912a05dd83c623ec0
SHA1

f197365d1eeac05fa21c7306eeed0afb3983b59b
SHA256

d031398b8d2851f668bc210ade0c06798d17c04774edd01ab909e151c40f2abd
SHA512

cbc1a47a21d81258f03e5e5a427fd3614b77d3fd111c9de31f2b0bc6a19b034517ab63f1ad26d4baa39a481469d344779f903ce86e570e9ae03e22812f4fa425
SSDEEP

768:8Zyc0/7rL5O1UAGJQLtf92dadRXWCccXrw2H9GjA:8YTP+GJQz+mWhc/p

Score

N/A

Malware Config

Signatures

Files

d031398b8d2851f668bc210ade0c06798d17c04774edd01ab909e151c40f2abd
.dll regsvr32 windows x86

5b68f88e601be9d84bf1b8d7df3c2f44

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetErrorMode
HeapAlloc
GetProcessHeap
VirtualAlloc
InterlockedExchange
Sleep
IsBadWritePtr
InterlockedCompareExchange
RemoveDirectoryW
GetModuleHandleW
IsValidLocale
TerminateProcess
GetSystemInfo
GetFileInformationByHandle
CopyFileW
WideCharToMultiByte
GetStdHandle
GetStringTypeW
ExitProcess
GetVersion
LockResource
GetProcAddress
DuplicateHandle
SetCurrentDirectoryW
GetFileType
SetHandleCount
OpenProcess
DeleteCriticalSection
GetCommandLineW

ole32

CoGetClassObject
CoCreateInstance

user32

EndDialog
FillRect
IsRectEmpty
EnumWindows
PostQuitMessage
BringWindowToTop
IntersectRect
wsprintfW
GetClassNameW
RegisterWindowMessageW
SetFocus
SetCapture
ReleaseDC
BeginPaint
GetSysColorBrush
GetDC
EqualRect
SetScrollInfo
GetDlgCtrlID
LoadImageW

advapi32

RegDeleteValueW
RegOpenKeyW
RegCloseKey
OpenThreadToken

shell32

SHGetMalloc

gdi32

Escape
DeleteObject
BitBlt
SelectObject
LineTo
GetTextColor
SetTextAlign
CreateCompatibleBitmap
IntersectClipRect
SetTextColor
RealizePalette
CreatePatternBrush
DeleteDC
CreatePen

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 124B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 634B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b68f88e601be9d84bf1b8d7df3c2f44

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ole32

user32

advapi32

shell32

gdi32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 512B - Virtual size: 124B

.reloc Size: 1024B - Virtual size: 634B

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 512B - Virtual size: 124B

.reloc
Size: 1024B - Virtual size: 634B