ab116b5f63d09c33bb5f8639a8b5f34b2b769f08eeda5cd9568f87d456bafff7

Sharing

Copy URL Twitter E-mail

General

Target

ab116b5f63d09c33bb5f8639a8b5f34b2b769f08eeda5cd9568f87d456bafff7
Size

500KB
MD5

437ab6df4b9c7412ae7baa2d610b7f10
SHA1

b80c9a5948b254bf4a21b60444ef58d89e18104d
SHA256

ab116b5f63d09c33bb5f8639a8b5f34b2b769f08eeda5cd9568f87d456bafff7
SHA512

7779eb36d978a28348e1c11d41d4d32ae747645c3662bb1f2b444caa3fce0f42e4b2fd0a7b0e1c5559f9c351ffa196f0055e284ba0aad6d536199bca6712ee8d
SSDEEP

6144:K7sXEE5KBZ/RSvi/l7GlAK+gwAf6zFKK6tHCquZ1CcaAA3wwff+0B8vmCyXyvype:Kwo3Vlm+NR6tH8atYhtJ

Score

N/A

Malware Config

Signatures

Files

ab116b5f63d09c33bb5f8639a8b5f34b2b769f08eeda5cd9568f87d456bafff7
.dll regsvr32 windows x86

726df9c25b8be77fa4b54fef86a38ccb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey

kernel32

ReadFile
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcessId
MultiByteToWideChar
WideCharToMultiByte
LeaveCriticalSection
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetCurrentThreadId
GetLastError
InterlockedIncrement
InterlockedDecrement
CloseHandle
GetCurrentProcess
WaitForSingleObject
HeapDestroy
DisableThreadLibraryCalls
lstrlenA
SetEvent
Sleep
SetThreadPriority
CreateThread
ResetEvent
FreeLibrary
GetProcAddress
CompareStringA
CompareStringW
LCMapStringW
LCMapStringA
IsDBCSLeadByte
TlsSetValue
TlsAlloc
TlsFree
TlsGetValue
SetLastError
SetErrorMode
GetSystemTimeAsFileTime
WriteFile
SetFilePointer
SetEndOfFile
GlobalMemoryStatus
GetTickCount
QueryPerformanceCounter

msdart

RegDeleteKeyI
MPDeleteCriticalSection
MPInitializeCriticalSection
lstrlenI
RegSetValueExI
CharNextI
RegQueryValueExI
RegOpenKeyExI
RegCreateKeyExI
lstrcpyI
GetVersionExI
UMSEnterCSWraper
lstrcmpiI
_LoadVersionedResourceEx@16
CreateEventI
LoadLibraryI
OutputDebugStringI
GetTempFileNameI
GetTempPathI
CreateFileI
DeleteFileI
LoadStringI
MpHeapAlloc
MpGetHeapHandle
MpHeapFree
MpHeapReAlloc
MpHeapSize
lstrcatI
GetModuleFileNameI
RegEnumKeyExI
GetModuleHandleI

msvcrt

_ftol
_beginthread
__CxxFrameHandler
_except_handler3
_endthread
_wcsicmp
wcscat
_CxxThrowException
wcslen
_purecall
realloc
_mbslen
malloc
wcscmp
strchr
wcsstr
_wcsupr
_wtoi
iswalnum
wcsncmp
iswspace
_initterm
_adjust_fdiv
_mbsinc
_mbsninc
memmove
free
wcsncpy
?terminate@@YAXXZ
wcscpy
??1type_info@@UAE@XZ

ole32

CoGetStandardMarshal
CoInitialize
CoUninitialize
CoCreateFreeThreadedMarshaler
StringFromGUID2
CoTaskMemAlloc
OleInitialize
OleUninitialize
StringFromCLSID
CoCreateInstance
CoTaskMemFree
CoUnmarshalInterface
CreateStreamOnHGlobal
CoMarshalInterface
CoReleaseMarshalData
CoGetMalloc

oleaut32

RegisterTypeLi
VarDecFromUI4
VarR8FromDec
VarCyFromDec
VarDecFromR8
VarDecFromCy
GetErrorInfo
CreateErrorInfo
LoadTypeLi
VariantCopy
VariantInit
SysStringLen
SetErrorInfo
VariantClear
SysAllocString
SysFreeString
SysStringByteLen

user32

CharUpperA
CharUpperW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 300KB - Virtual size: 299KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

726df9c25b8be77fa4b54fef86a38ccb

Headers

File Characteristics

Imports

advapi32

kernel32

msdart

msvcrt

ole32

oleaut32

user32

Exports

Exports

Sections

.text Size: 300KB - Virtual size: 299KB

.data Size: 4KB - Virtual size: 3KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 12KB - Virtual size: 11KB

.text Size: 176KB - Virtual size: 176KB

.text
Size: 300KB - Virtual size: 299KB

.data
Size: 4KB - Virtual size: 3KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 12KB - Virtual size: 11KB

.text
Size: 176KB - Virtual size: 176KB