93481cf06b649ad0ca5692844a2c40fcdb0d178dce07f4bc5c50b04b39c60d4f

Sharing

Copy URL Twitter E-mail

General

Target

93481cf06b649ad0ca5692844a2c40fcdb0d178dce07f4bc5c50b04b39c60d4f
Size

203KB
MD5

13076a9890f0eafafb007605f4401970
SHA1

4dfeafa23846d9f4dd2f97c134b02a072412622b
SHA256

93481cf06b649ad0ca5692844a2c40fcdb0d178dce07f4bc5c50b04b39c60d4f
SHA512

7dceb1dad8d5ac145c168ec74e4f387fb8220ea5e6b41d447e74f48be6192517a0f42b541e7b6a00551a5fd8045ca68ea1a2b18fb81ea726a091db242ea16ca0
SSDEEP

3072:rD3fnvZAP0CU9rQVU4uB0UvRh5kBthwdS2G4MJjcpei6F2h5qHJqPIr:rDfnvuP0DQVU4uBl1kr26JjRrdAPI

Score

N/A

Malware Config

Signatures

Files

93481cf06b649ad0ca5692844a2c40fcdb0d178dce07f4bc5c50b04b39c60d4f
.dll regsvr32 windows x86

a0b6731458f56bcbda975534577fe82c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
CreateFileW
GetFileType
CloseHandle
GetLocaleInfoW
GetCurrentThreadId
RaiseException
HeapAlloc
GetProcessHeap
HeapFree
GetCurrentProcess
FlushInstructionCache
GetModuleHandleW
LoadLibraryExW
FindResourceW
Sleep
WideCharToMultiByte
GetFileAttributesW
GetVersionExA
WriteFile
LocalFree
LoadLibraryA
FormatMessageW
FormatMessageA
LocalAlloc
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetVersionExW
GetLocaleInfoA
LoadResource
SizeofResource
lstrlenA
DisableThreadLibraryCalls
LoadLibraryW
GetProcAddress
FreeLibrary
GetModuleFileNameW
lstrcpynW
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
lstrcmpiW
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
GetLastError
lstrcpyW
lstrlenW
MultiByteToWideChar
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect

msvcrt

??3@YAXPAX@Z
wcscat
memmove
_vsnwprintf
_ltow
swscanf
_snwprintf
wcsncpy
malloc
free
realloc
??2@YAPAXI@Z
_purecall
wcscmp
wcsrchr
_except_handler3
_adjust_fdiv
_initterm
wcscpy
_wcsicmp
wcslen

user32

SendMessageA
LoadImageW
GetCursor
LoadCursorW
SetCursor
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
InvalidateRect
ScreenToClient
MoveWindow
FillRect
GetWindowRect
SystemParametersInfoW
GetClientRect
SetWindowPos
GetWindowTextW
wsprintfW
GetParent
EnableMenuItem
LoadMenuW
GetDlgItem
GetWindow
EnableWindow
IsWindowEnabled
KillTimer
SetTimer
IsWindowVisible
ShowWindow
SetMenu
SetWindowTextW
EndDialog
MessageBoxW
LoadStringW
GetMessagePos
MapWindowPoints
PostMessageW
IsWindow
SendMessageW
GetWindowLongW
GetActiveWindow
DialogBoxParamW
SetWindowLongW
DestroyMenu
CharNextW
RegisterWindowMessageW

advapi32

RegQueryValueExA
RegOpenKeyExA
RegDeleteValueW
RegQueryValueExW
RegEnumKeyExW
RegEnumValueW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW

ole32

CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance

oleaut32

SysAllocString
GetErrorInfo
VariantInit
SysAllocStringLen
DispCallFunc
VariantClear
LoadRegTypeLi
VarUI4FromStr
SysStringLen
RegisterTypeLi
SysFreeString
LoadTypeLi

gdi32

SetTextColor
CreateSolidBrush
SetBkColor
DeleteObject

comctl32

InitCommonControlsEx
CreateStatusWindowW

comdlg32

GetSaveFileNameW
GetOpenFileNameW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 74KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a0b6731458f56bcbda975534577fe82c

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

ole32

oleaut32

gdi32

comctl32

comdlg32

Exports

Exports

Sections

.text Size: 61KB - Virtual size: 61KB

.data Size: 2KB - Virtual size: 5KB

.rsrc Size: 74KB - Virtual size: 73KB

.reloc Size: 8KB - Virtual size: 8KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 61KB - Virtual size: 61KB

.data
Size: 2KB - Virtual size: 5KB

.rsrc
Size: 74KB - Virtual size: 73KB

.reloc
Size: 8KB - Virtual size: 8KB

.rmnet
Size: 56KB - Virtual size: 60KB