d8427bbfb3fa4d866cc0b412a0c4a0e2a3d0fe7f7624a9f673f8857fc56f4bab

Sharing

Copy URL Twitter E-mail

General

Target

d8427bbfb3fa4d866cc0b412a0c4a0e2a3d0fe7f7624a9f673f8857fc56f4bab
Size

448KB
MD5

09002a3167d0425d53c6fc6b0252c7a4
SHA1

013d467a74e7d01e04677908ae09d8ec5c4999b3
SHA256

d8427bbfb3fa4d866cc0b412a0c4a0e2a3d0fe7f7624a9f673f8857fc56f4bab
SHA512

5e63d44074afec36fbe83c4378926725de27835a7a7d1434fa552fb49b00f13a0812684185e9c86d0940e27abccacca098e68505b8bd8bb396ed1f1e3b8ef096
SSDEEP

6144:4uqvQToA9NgpVQ7k+z5+WfX4udu5Zc6RH4Hh1zZnYLnmrW1XLqFHKq55LMez02Pv:V9mvfGYReYu+C6eI24C

Score

N/A

Malware Config

Signatures

Files

d8427bbfb3fa4d866cc0b412a0c4a0e2a3d0fe7f7624a9f673f8857fc56f4bab
.dll regsvr32 windows x86

618e02bc66a1e7efe70e43246b850d9f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msacm32

acmMetrics
acmFormatChooseA

shlwapi

StrToIntA

mfc42

ord826
ord600
ord1578
ord6467
ord1271
ord6385
ord354
ord5186
ord5442
ord1979
ord665
ord4204
ord4277
ord922
ord2763
ord2818
ord539
ord1200
ord941
ord4278
ord924
ord823
ord540
ord860
ord537
ord2764
ord4129
ord858
ord535
ord4202
ord800
ord825
ord1243
ord1176
ord269

msvcrt

__dllonexit
_onexit
??1type_info@@UAE@XZ
_purecall
__CxxFrameHandler
_mbscmp
_mbsicmp
_CxxThrowException
_beginthreadex
atoi
sprintf
_ftol
wcslen
_splitpath
_mbsstr
_mbslwr
mbstowcs
vsprintf
wcscpy
wcscmp
_assert
fclose
fputs
fopen
strncmp
_EH_prolog
_except_handler3
?terminate@@YAXXZ

kernel32

VirtualAlloc
DisableThreadLibraryCalls
WaitForSingleObjectEx
IsBadWritePtr
lstrcpyA
GetModuleHandleA
CreateEventA
GetLastError
DeviceIoControl
GetOverlappedResult
GlobalAlloc
GlobalLock
GlobalHandle
GlobalUnlock
GlobalFree
WinExec
OutputDebugStringA
WaitForSingleObject
GetModuleFileNameA
DeleteCriticalSection
InitializeCriticalSection
GetLocaleInfoA
FindFirstFileA
lstrlenA
lstrcpynA
InterlockedDecrement
LocalAlloc
LocalFree
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
Sleep
FreeLibrary
GetProcAddress
LoadLibraryA
GetTickCount
GetPrivateProfileStringA
WritePrivateProfileStringA
CloseHandle
WriteFile
CreateFileA
FindClose
FindNextFileA

user32

IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
MessageBoxA
SystemParametersInfoA
FindWindowA
DestroyWindow
PostMessageA
KillTimer
SetTimer
RegisterDeviceNotificationA
CreateDialogParamA
UnregisterDeviceNotification
EnumDisplaySettingsA
SendMessageA
wsprintfA
FindWindowExA

gdi32

DeleteDC
CreateDCA
ExtEscape

advapi32

RegCloseKey
RegCreateKeyA
RegSetValueA
RegDeleteKeyA
RegEnumKeyExA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegFlushKey
RegQueryInfoKeyA
RegCreateKeyExA

shell32

ShellExecuteA

ole32

CoFreeUnusedLibraries
StringFromGUID2
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
CoInitialize
CoUninitialize
CoCreateInstance

oleaut32

VariantInit
VariantClear
SysFreeString
OleCreatePropertyFrame

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 4KB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

618e02bc66a1e7efe70e43246b850d9f

Headers

File Characteristics

Imports

msacm32

shlwapi

mfc42

msvcrt

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 256KB - Virtual size: 252KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 32KB - Virtual size: 33KB

.CRT Size: 4KB - Virtual size: 8B

.rsrc Size: 104KB - Virtual size: 102KB

.reloc Size: 24KB - Virtual size: 20KB

.text
Size: 256KB - Virtual size: 252KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 32KB - Virtual size: 33KB

.CRT
Size: 4KB - Virtual size: 8B

.rsrc
Size: 104KB - Virtual size: 102KB

.reloc
Size: 24KB - Virtual size: 20KB