506cc09db440cd52f4a5f90bf9495966024742417d9bd58f007ac81fda69493e

Sharing

Copy URL Twitter E-mail

General

Target

506cc09db440cd52f4a5f90bf9495966024742417d9bd58f007ac81fda69493e
Size

263KB
MD5

10c17c397ebdf9b399dcc5c5d04e1fd0
SHA1

c4afd068fe01c0328635e56eb0c0ead5412dfe36
SHA256

506cc09db440cd52f4a5f90bf9495966024742417d9bd58f007ac81fda69493e
SHA512

89100d9d568c8d9b8dbc65490d1d61b502f3f91e9c3e4392445bbbd54996a4c288d442d56156225b4643f4a7f41e219192d2b3fb218a8cb1188b05ba954a92a0
SSDEEP

6144:KYpYuGh/lKMZD8Js1NorR2BFXZp7ul1Pq6rV2pt8j:Je7jPZD8JAN2e57Sw

Score

N/A

Malware Config

Signatures

Files

506cc09db440cd52f4a5f90bf9495966024742417d9bd58f007ac81fda69493e
.dll regsvr32 windows x86

bbb14fadad3756876b912cbbdfae91de

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memcpy
_purecall
memset
wcschr
??2@YAPAXI@Z
??3@YAXPAX@Z
??_V@YAXPAX@Z
??_U@YAPAXI@Z
_wtoi
_CIsqrt
_ftol
_CIpow
_vsnwprintf
_onexit
_lock
__dllonexit
_unlock
_adjust_fdiv
_amsg_exit
_initterm
free
malloc
_XcptFilter

kernel32

GlobalMemoryStatus
GetLocalTime
GetVersion
GetEnvironmentStringsW
GetDiskFreeSpaceA
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
DisableThreadLibraryCalls
lstrlenW
GetModuleFileNameW
FindAtomW
GetVersionExW
InterlockedDecrement
MultiByteToWideChar
lstrlenA
GetLastError
GetModuleFileNameA
InterlockedIncrement
FreeLibrary
LoadLibraryW
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CloseHandle
CreateEventW
SetEvent
ResetEvent
WaitForSingleObject
ReleaseSemaphore
GetSystemInfo
VirtualFree
lstrcmpW
GetCurrentProcess
GetCurrentThreadId
CreateSemaphoreW
VirtualAlloc
InterlockedExchange
GetProcAddress
GetModuleHandleW
SetThreadPriority
GetTickCount
CreateThread
Sleep
InterlockedCompareExchange
RtlUnwind
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LoadLibraryA
GetModuleHandleA
HeapAlloc
GetProcessHeap
HeapFree
GetVersionExA
DeviceIoControl

gdi32

GetTextExtentPointW

user32

LoadStringW
SendMessageW
ReleaseDC
GetDC
SetDlgItemInt
GetDlgItem
GetDlgItemInt
IsRectEmpty
SetWindowLongW
InvalidateRect
DestroyWindow
CreateDialogParamW
MoveWindow
GetDesktopWindow
DefWindowProcW
GetWindowRect
GetWindowLongW
ShowWindow
EqualRect

advapi32

RegDeleteKeyW
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueW
RegQueryValueExW
RegCreateKeyW
RegSetValueExW
RegEnumKeyExW
RegCreateKeyExW
RegOpenKeyExW
RegQueryInfoKeyW
RegCloseKey

ole32

StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoCreateInstance
CoInitialize
CoTaskMemAlloc
CoTaskMemFree

oleaut32

SysAllocStringLen
VariantInit

msdmo

MoFreeMediaType

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bbb14fadad3756876b912cbbdfae91de

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

gdi32

user32

advapi32

ole32

oleaut32

msdmo

Exports

Exports

Sections

.text Size: 178KB - Virtual size: 178KB

.data Size: 12KB - Virtual size: 14KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 12KB - Virtual size: 12KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 178KB - Virtual size: 178KB

.data
Size: 12KB - Virtual size: 14KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 12KB

.rmnet
Size: 56KB - Virtual size: 60KB