f2a44f76b1f1b058c36ccc997363b0aaf5c4460140054dc6851e571085e368f9

Sharing

Copy URL Twitter E-mail

General

Target

f2a44f76b1f1b058c36ccc997363b0aaf5c4460140054dc6851e571085e368f9
Size

110KB
MD5

2805f416fa621cfa007d68d89191b1e0
SHA1

46fe2d832c910b915c27d4bb8d0e2027022d78a4
SHA256

f2a44f76b1f1b058c36ccc997363b0aaf5c4460140054dc6851e571085e368f9
SHA512

30a4d472a79638d7d1ef9519f428648e838d28a77a0d417d9e8aaaf3c50d552333c4c12a2d7d7a6e83b31d5614bdb36bf86a2647588057def92451980217948a
SSDEEP

3072:17DLWSbl4/NNO16QiMBTatxBHwwp8tzEXu:17v0NNO16cTYx1Roz

Score

N/A

Malware Config

Signatures

Files

f2a44f76b1f1b058c36ccc997363b0aaf5c4460140054dc6851e571085e368f9
.dll regsvr32 windows x86

85a66a40c17e73bce2dd14241215fde8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

eaicomcreate

EAIGetReferenceGUID
EAIUnregisterClass
EAIRegisterClass
??0CTypeLibWrapper@@QAE@XZ
??1CTypeLibWrapper@@QAE@XZ

mfc90

ord1087
ord1137
ord793
ord4434
ord4409
ord6783
ord4159
ord6781
ord4733
ord2251
ord2206
ord6018
ord4165
ord1046
ord5533
ord6721
ord5813
ord4199
ord2087
ord3209
ord5657
ord5659
ord4333
ord4981
ord5663
ord5646
ord6001
ord2766
ord2978
ord3107
ord4714
ord2961
ord3110
ord4197
ord1174
ord2447
ord2769
ord2888
ord2759
ord3276
ord800
ord1114
ord1093
ord321
ord2084
ord798
ord266
ord265
ord4066
ord4067
ord4057
ord2886
ord4334
ord4890
ord4667
ord3659
ord589
ord1258
ord1254
ord1252
ord605
ord1278
ord1243
ord1241
ord1268
ord1180
ord1233
ord391
ord1152
ord1277
ord1275
ord1145
ord1075
ord322
ord801

msvcr90

__clean_type_info_names_internal
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
__CppXcptFilter
_adjust_fdiv
_amsg_exit
strrchr
memcpy_s
wcsncpy_s
malloc
free
fclose
fgets
fopen
sprintf
strncpy
getenv
memset
_resetstkoflw
__CxxFrameHandler3
_purecall
_putenv
sscanf
_except_handler4_common
?terminate@@YAXXZ
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_decode_pointer
_malloc_crt
_encoded_null
_initterm
_initterm_e

kernel32

MultiByteToWideChar
GetSystemTimeAsFileTime
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
InterlockedCompareExchange
Sleep
LocalAlloc
LocalFree
GetCurrentProcessId
VirtualAlloc
GetSystemInfo
VirtualFree
HeapFree
GetProcessHeap
HeapAlloc
LoadLibraryA
FreeLibrary
GetModuleHandleW
GetProcAddress
InterlockedDecrement
InterlockedIncrement
GetModuleFileNameA
lstrlenA
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
lstrlenW
InterlockedExchange

user32

CharNextW

advapi32

RegOverridePredefKey
RegOpenKeyExA
RegCloseKey

ole32

CoCreateInstance

oleaut32

LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
UnRegisterTypeLi
SysFreeString
SysStringLen

atl90

ord64
ord58
ord32
ord23
ord30
ord31
ord15
ord49
ord56
ord68
ord61

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

85a66a40c17e73bce2dd14241215fde8

Headers

File Characteristics

Imports

eaicomcreate

mfc90

msvcr90

kernel32

user32

advapi32

ole32

oleaut32

atl90

Exports

Exports

Sections

.text Size: 31KB - Virtual size: 30KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 2KB - Virtual size: 4KB

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 3KB - Virtual size: 3KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 31KB - Virtual size: 30KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 3KB - Virtual size: 3KB

.rmnet
Size: 56KB - Virtual size: 60KB