dca36026aa11d9e8ec2e126c69347f31aa67e5acbd2c06677877891eb3a20e72

Sharing

Copy URL Twitter E-mail

General

Target

dca36026aa11d9e8ec2e126c69347f31aa67e5acbd2c06677877891eb3a20e72
Size

232KB
MD5

238e41f16f5de4e7bce8e25e94467840
SHA1

56b5587dc1c8913edbe6c667209acce9af76d2fb
SHA256

dca36026aa11d9e8ec2e126c69347f31aa67e5acbd2c06677877891eb3a20e72
SHA512

e28cee04d5367eca7ed37f4db954b7500e2e9b347bd15b1f1c9369ce084a5c365443005eb6ba11086234d3faf6227176b5a59be9f360fff85d8cb70fc87aabe6
SSDEEP

6144:livtXKebTOfGZGNhELn7dX9K1Worz2F8XFuI0Gguxpl+6N+V:livtXjbTOfGm4vo2F8Q0+6N+V

Score

N/A

Malware Config

Signatures

Files

dca36026aa11d9e8ec2e126c69347f31aa67e5acbd2c06677877891eb3a20e72
.dll regsvr32 windows x86

6df230e4eb1d704df0a17dff2a8316e4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
LoadLibraryA
GetVersionExA
RaiseException
GetFileSize
ReadFile
CloseHandle
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls
GetProcAddress
DeleteCriticalSection
InitializeCriticalSection
GetLastError
FreeLibrary
InterlockedExchange
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
GetCurrentProcess
FlushInstructionCache
lstrlenA
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
MultiByteToWideChar
GetSystemDefaultLCID

gdi32

GetTextColor
GetBkMode
SetTextColor
SetBkMode
MoveToEx
LineTo
TextOutW
CreatePen
GetStockObject
GetDeviceCaps
SelectObject
CreateSolidBrush
Rectangle
CreatePalette
SelectPalette
RealizePalette
DeleteObject

user32

GetClientRect
IsRectEmpty
SetRectEmpty
UnregisterClassA
ShowWindow
GetParent
IsWindowEnabled
GetActiveWindow
SendMessageA
IsChild
IsWindowVisible
DestroyWindow
MapWindowPoints
SetWindowPos
OffsetRect
BringWindowToTop
EndDialog
IsWindowUnicode
EnableWindow
GetWindowRect
ScreenToClient
MoveWindow
FillRect
IsWindow
SetScrollPos
GetDlgItem
EnumChildWindows
GetSysColorBrush
SetFocus
BeginPaint
GetSysColor
InflateRect
GetFocus
DrawFocusRect
EndPaint
GetDC
InvalidateRect
ReleaseDC

comctl32

ImageList_Destroy

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey

ole32

OleRun
CoCreateInstance
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree

oleaut32

VarBstrCat
VariantCopy
RegisterTypeLi
LoadTypeLi
VarUI4FromStr
SysFreeString
SysAllocStringLen
SysAllocString
SysStringLen
VariantInit
VariantClear
VariantChangeType
LoadRegTypeLi

msvcr70

wcscat
towlower
wcsncmp
_wcsnicmp
vswprintf
_vscwprintf
wcschr
wcsstr
wcscmp
memmove
_purecall
realloc
free
wcsrchr
_except_handler3
wcslen
memset
wcsncpy
wcstoul
_wcsicmp
wcscpy
swprintf
??2@YAPAXI@Z
??_U@YAPAXI@Z
??_V@YAXPAX@Z
??3@YAXPAX@Z
_initterm
_adjust_fdiv
__dllonexit
_onexit
malloc

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
VSDllRegisterServer
VSDllUnregisterServer

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6df230e4eb1d704df0a17dff2a8316e4

Headers

File Characteristics

Imports

kernel32

gdi32

user32

comctl32

advapi32

ole32

oleaut32

msvcr70

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 85KB

.data Size: 12KB - Virtual size: 10KB

.rsrc Size: 12KB - Virtual size: 10KB

.reloc Size: 8KB - Virtual size: 6KB

.text Size: 108KB - Virtual size: 108KB

.text
Size: 88KB - Virtual size: 85KB

.data
Size: 12KB - Virtual size: 10KB

.rsrc
Size: 12KB - Virtual size: 10KB

.reloc
Size: 8KB - Virtual size: 6KB

.text
Size: 108KB - Virtual size: 108KB