7f3893ca8a8823f52d0d9885afa5efed6ff5f689202e00d75ca98f283661caf8

Sharing

Copy URL

Twitter E-mail

General

Target

7f3893ca8a8823f52d0d9885afa5efed6ff5f689202e00d75ca98f283661caf8
Size

640KB
MD5

0ded733cc0a7040e28c4be0178a12910
SHA1

9d11daa466a2b6d3c84fbc4c8af2d1407ae93df9
SHA256

7f3893ca8a8823f52d0d9885afa5efed6ff5f689202e00d75ca98f283661caf8
SHA512

b94ba50f9670182fc431f49e3121ab33dd6d169d1604ee15d349537a63ab53696122e47bcfa7d277ce6f62a63eebcddd292a5ee2750c0fb18261e072ccf3b615
SSDEEP

12288:lkTNnabKPWWH2bfCQrSO5AjzcCWdhTQ7ob3JMrhcrHzNjHThb:STR2KPl2zCQrSDjzcCWIA3JwcTRV

Score

N/A

Malware Config

Signatures

Files

7f3893ca8a8823f52d0d9885afa5efed6ff5f689202e00d75ca98f283661caf8
.dll regsvr32 windows x86

9ada1f3dbb820335773d1750a17ae7dc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

d3d8

Direct3DCreate8

comctl32

PropertySheetA

kernel32

InterlockedDecrement
InterlockedIncrement
FindClose
FindFirstFileA
FindNextFileA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetFileSize
MapViewOfFile
CreateFileMappingA
CreateFileW
GetVersionExA
UnmapViewOfFile
FindResourceW
HeapFree
GetProcessHeap
GetProcAddress
WriteFile
IsProcessorFeaturePresent
ReadFile
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
CompareStringA
FlushFileBuffers
GetLocaleInfoW
GetStringTypeW
GetStringTypeA
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
DeleteCriticalSection
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
LCMapStringW
LCMapStringA
RaiseException
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
SetEndOfFile
GetStartupInfoA
GetStdHandle
SetHandleCount
SetStdHandle
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
TerminateProcess
ExitProcess
Sleep
GetVersion
GetCommandLineA
GetFileType
SetFilePointer
HeapReAlloc
GetLocalTime
GetSystemTime
GetTimeZoneInformation
HeapDestroy
IsDBCSLeadByte
RtlUnwind
HeapAlloc
lstrcmpiA
LoadLibraryExA
GetLastError
GetModuleHandleA
GetShortPathNameA
WideCharToMultiByte
lstrlenW
lstrlenA
GetModuleFileNameA
lstrcpynA
MultiByteToWideChar
FreeLibrary
GetCurrentProcess
FlushInstructionCache
LoadLibraryA
MulDiv
FindResourceA
SizeofResource
LoadResource
LockResource
QueryPerformanceFrequency
QueryPerformanceCounter
GetFullPathNameA
CreateFileA
CloseHandle
lstrcpyA
lstrcatA
CompareStringW
SetUnhandledExceptionFilter
SetEnvironmentVariableA

shell32

SHGetPathFromIDListA
SHGetMalloc
SHBrowseForFolderA

gdiplus

GdipSetPathGradientCenterPointI
GdipCreateLineBrushFromRectI
GdipSetPathGradientSurroundColorsWithCount
GdipSetPathGradientCenterColor
GdipGetPathGradientPointCount
GdiplusShutdown
GdipAddPathBezierI
GdipSetSmoothingMode
GdipCreatePath
GdipAddPathLineI
GdipClosePathFigure
GdipCreatePathGradientFromPath
GdipSetPathGradientFocusScales
GdipFillPath
GdipDeletePath
GdipDrawRectangleI
GdipLoadImageFromFileICM
GdipLoadImageFromFile
GdipFillRectangle
GdipGetPenWidth
GdipCreateFromHDC
GdipCreateBitmapFromFileICM
GdipGetImageWidth
GdipGetImageHeight
GdipSetInterpolationMode
GdipCreateBitmapFromFile
GdipDrawImageRectRectI
GdipDrawImageI
GdipCreatePen1
GdipDrawLineI
GdipFillEllipseI
GdipCreateMatrix
GdipTranslateMatrix
GdipRotateMatrix
GdipSetWorldTransform
GdipDeletePen
GdipDeleteMatrix
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipDisposeImage
GdipCloneImage
GdipFree
GdipCloneBrush
GdiplusStartup
GdipAlloc
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipCreatePathGradient
GdipCreateSolidFill
GdipFillRectangleI
GdipDeleteBrush

ddraw

DirectDrawCreate

winmm

timeGetTime

user32

DestroyWindow
PostMessageA
SetCursor
GetSysColorBrush
LoadCursorA
RegisterClassA
GetSystemMetrics
CreateWindowExA
GetDC
ReleaseDC
IsWindowUnicode
SetWindowsHookExA
ShowWindow
UpdateWindow
UnhookWindowsHookEx
GetAsyncKeyState
CallNextHookEx
GetFocus
SetWindowLongA
IsDlgButtonChecked
GetDlgItem
SendMessageA
wsprintfA
EndDialog
DialogBoxParamA
SetWindowPos
GetWindowLongA
GetWindowRect
GetClientRect
SetScrollInfo
RegisterWindowMessageA
CharNextA
wsprintfW
LoadStringA
DefWindowProcA
CallWindowProcA

gdi32

StretchDIBits
TextOutA
SetTextColor
SetBkMode
CreateDIBSection
SetBkColor
SetTextAlign
GetTextExtentPoint32A
ExtTextOutA
CreateDIBitmap
CreateCompatibleDC
SelectObject
SetMapMode
GetDeviceCaps
DeleteDC
CreateFontA
BitBlt
SetWindowOrgEx
DeleteObject

advapi32

RegEnumValueA
RegQueryInfoKeyA
RegEnumKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegOpenKeyA

ole32

CoInitializeEx
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoUninitialize

oleaut32

SysFreeString
SysStringLen
VarUI4FromStr
LoadRegTypeLi
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 440KB - Virtual size: 439KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9ada1f3dbb820335773d1750a17ae7dc

Headers

File Characteristics

Imports

d3d8

comctl32

kernel32

shell32

gdiplus

ddraw

winmm

user32

gdi32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 440KB - Virtual size: 439KB

.rdata Size: 40KB - Virtual size: 39KB

.data Size: 44KB - Virtual size: 64KB

.data1 Size: 4KB - Virtual size: 2KB

.rsrc Size: 24KB - Virtual size: 22KB

.reloc Size: 24KB - Virtual size: 21KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 440KB - Virtual size: 439KB

.rdata
Size: 40KB - Virtual size: 39KB

.data
Size: 44KB - Virtual size: 64KB

.data1
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 24KB - Virtual size: 22KB

.reloc
Size: 24KB - Virtual size: 21KB

.rmnet
Size: 60KB - Virtual size: 60KB