4dd0f63c5d0125c1a7dd490950b4345d2da47b070098258d8addbc65fe63dd5a

General

Target

4dd0f63c5d0125c1a7dd490950b4345d2da47b070098258d8addbc65fe63dd5a
Size

44KB
MD5

243a972e99f60c4292c117c25c0d0ff0
SHA1

7a6731c440ebfd1c1e08e152c016dac6c43686b2
SHA256

4dd0f63c5d0125c1a7dd490950b4345d2da47b070098258d8addbc65fe63dd5a
SHA512

dce60484ee63c307f05043b077f90cda79e1487fbfd634ea54c824d3a5493114115d1b8f75e203de2fd49f18a61a4ea449e8587b37a275ae59c42f174bdcf3ce
SSDEEP

768:RnLtg6lMAwl1ygK+1YZpkav8W4yrhBaEeyLSwLgLa1wQ:RZJVePahBaETELa

Score

N/A

Malware Config

Signatures

Files

4dd0f63c5d0125c1a7dd490950b4345d2da47b070098258d8addbc65fe63dd5a
.dll regsvr32 windows x86

57f3fa09efb92ecdbbb975d0b0ca5531

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
InterlockedIncrement
GetLastError
GetSystemDirectoryA
GetWindowsDirectoryA
CreateMutexA
VirtualAlloc
GetProcAddress
CreateProcessA
GetModuleFileNameA
LoadLibraryA
CreateThread
CloseHandle
WinExec

user32

RegisterClassExA
DefWindowProcA
SetTimer
KillTimer
ShowWindow
CreateWindowExA
UnhookWindowsHookEx
SetWindowsHookExA
CallNextHookEx
FindWindowExA
PostMessageA
GetMessageA
TranslateMessage
DispatchMessageA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey

shlwapi

SHGetValueA

msvcrt

_pctype
_adjust_fdiv
malloc
_initterm
free
_except_handler3
strchr
fopen
fwrite
fclose
strrchr
_stricmp
??3@YAXPAX@Z
??2@YAPAXI@Z
sprintf
__CxxFrameHandler

wininet

HttpQueryInfoA
InternetOpenUrlA
InternetSetOptionA
InternetOpenA
InternetReadFile
InternetCloseHandle

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 882B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

57f3fa09efb92ecdbbb975d0b0ca5531

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shlwapi

msvcrt

wininet

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 22KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 5KB

.reloc Size: 4KB - Virtual size: 882B

.text
Size: 24KB - Virtual size: 22KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 5KB

.reloc
Size: 4KB - Virtual size: 882B