77135a9435fc76515bfc25accf6962e997abd60038f6ef09909dc35bf786ddac

Sharing

Copy URL Twitter E-mail

General

Target

77135a9435fc76515bfc25accf6962e997abd60038f6ef09909dc35bf786ddac
Size

136KB
MD5

088709858eb57c9ce86cf3ef2da60400
SHA1

b5eb1082254b0c8903675daf4ffc031f310e0ece
SHA256

77135a9435fc76515bfc25accf6962e997abd60038f6ef09909dc35bf786ddac
SHA512

80c110e85b6b9709b5868460266bc9e7e16c6f0500df602c7d64b9237bc7504054f7f9263cf8c5ecb7e5c00185767f4f33855e303e17400142a11aa8dfb3e7bd
SSDEEP

3072:BxC7d6EP0GbC5FsJwLGoysfre3QO58QNGMabrW:BYVFm5omysfreAQ8dr

Score

N/A

Malware Config

Signatures

Files

77135a9435fc76515bfc25accf6962e997abd60038f6ef09909dc35bf786ddac
.dll regsvr32 windows x86

0c9a03136b4d5a19f1eaba1503fd581b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetCurrentProcess
FlushInstructionCache
GetTickCount
GetCurrentThreadId
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
lstrcatA
lstrcpyA
LoadLibraryA
DeleteCriticalSection
FreeLibrary
GetModuleFileNameA
GetModuleHandleA
GetShortPathNameA
lstrlenA
MultiByteToWideChar
lstrlenW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
GlobalUnlock
GlobalFree
LocalFree
HeapDestroy
GetLastError

user32

GetCapture
InvalidateRect
IsWindow
ReleaseCapture
RegisterClassA
LoadCursorA
SetCapture
EndPaint
GetSysColor
GetWindowRect
GetCursorPos
BeginPaint
DefWindowProcA
GetClientRect
DrawFocusRect
DrawFrameControl
GetFocus
GetWindowLongA
PtInRect
ReleaseDC
SetWindowLongA
GetParent
GetDlgItem
CreateDialogParamA
SendMessageA
LoadStringA
CharNextA
GetDC
SetFocus
CreateWindowExA
DestroyWindow

gdi32

GetDIBColorTable
DeleteDC
GetObjectA
DeleteObject
CreateSolidBrush
Rectangle
CreatePen
MoveToEx
LineTo
SetPixel
CreateCompatibleDC
SetPixelV
GetStockObject
CreateDIBSection
SelectObject

ole32

CoCreateInstance

oleaut32

VariantClear
SysFreeString
LoadTypeLi
RegisterTypeLi
SysAllocString
LoadRegTypeLi
SysStringLen
SysStringByteLen
SysAllocStringByteLen

filterdlgui

?DIBView_OnSelectPoint@CFilterDlgBase@@EAEXPBUtagPOINT@@@Z
??0CAdjustCtrlBlock@@QAE@PAUHINSTANCE__@@@Z
?OpenHelp@@YAHPAUHINSTANCE__@@@Z
??0CProgressWrapper@@QAE@XZ
?StartProgressWindow@CProgressWrapper@@QAEHPAUHINSTANCE__@@PAUHWND__@@HKPBD2@Z
?GetProgressWindowAddress@CProgressWrapper@@QAEPAXXZ
?GetProgressCallback@CProgressWrapper@@QAEP6GHPAXHH@ZXZ
?EndProgressWindow@CProgressWrapper@@QAEHXZ
??1CProgressWrapper@@QAE@XZ
?SetSelectPoint@CFilterDlgBase@@IAEHPBUtagPOINT@@@Z
?SetDialogTitle@CFilterDlgBase@@IAEXPAD@Z
?SetImage@CFilterDlgBase@@IAEHPAUHBITMAP__@@0HHH@Z
?Create_ReplacePlaceholder@CAdjustCtrlBlock@@QAEHPAUHWND__@@I0@Z
?SetRange@CAdjustCtrlBlock@@QAEXHH@Z
?SetTicFreq@CAdjustCtrlBlock@@QAEXH@Z
?SetZoom@CFilterDlgBase@@IAEXHH@Z
?GetPos@CAdjustCtrlBlock@@QAEHH@Z
?SetConfigChangeTimerTimeout@CFilterDlgBase@@IAEHH@Z
?Validate@CAdjustCtrlBlock@@QAEHHH@Z
?GetData@PresetInfo@@QBEPBXPAK@Z
?SetPos@CAdjustCtrlBlock@@QAEXH@Z
?NotifyConfigChange@CFilterDlgBase@@IAEHXZ
??0PresetInfo@@QAE@XZ
?SetData@PresetInfo@@QAEXKPBX@Z
??1PresetInfo@@QAE@XZ
??1CAdjustCtrlBlock@@UAE@XZ
?ConfigList_Add@CFilterDlgBase@@EAEXPBDKPAX@Z
??1CFilterDlgBase@@UAE@XZ
??0CFilterDlgBase@@QAE@KKPAUHINSTANCE__@@@Z
?FilterDialogMessage@CAdjustCtrlBlock@@QAEHIIJ@Z
?DIBView_OnScrollImage@CFilterDlgBase@@EAEXXZ
?UID_Set@CFilterDlgBase@@EAEXPAD@Z
?ShowModalDialog@CFilterDlgBase@@QAEHPAUHWND__@@@Z

msvcp60

?_Eos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_Xlen@std@@YAXXZ
?_Copy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEXI@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?_Grow@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAE_NI_N@Z
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z

msvcrt

?terminate@@YAXXZ
_strdup
free
_CIpow
malloc
wcslen
_CxxThrowException
_except_handler3
_mbscmp
_initterm
_adjust_fdiv
__dllonexit
_onexit
??1type_info@@UAE@XZ
atoi
sprintf
_ftol
__CxxFrameHandler
??2@YAPAXI@Z
_purecall

comdlg32

ChooseColorA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 36KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0c9a03136b4d5a19f1eaba1503fd581b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

ole32

oleaut32

filterdlgui

msvcp60

msvcrt

comdlg32

Exports

Exports

Sections

.text Size: 36KB - Virtual size: 33KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 12KB - Virtual size: 10KB

.reloc Size: 8KB - Virtual size: 7KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 36KB - Virtual size: 33KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 12KB - Virtual size: 10KB

.reloc
Size: 8KB - Virtual size: 7KB

.rmnet
Size: 60KB - Virtual size: 60KB