9c5b16f112ecd744a020cea3043e21033f3008b4228dce0c0d507a08066a959d

Sharing

Copy URL Twitter E-mail

General

Target

9c5b16f112ecd744a020cea3043e21033f3008b4228dce0c0d507a08066a959d
Size

352KB
MD5

3109b21beba1da3dca035070a9e48c90
SHA1

071c1e7f7a65beab9978f74176d8d24c8d970242
SHA256

9c5b16f112ecd744a020cea3043e21033f3008b4228dce0c0d507a08066a959d
SHA512

d2ba84e21589bbebc550a509e9d51eb89e1b40429be1655c463550b48a3e12e52a294322d4d87fa5fecc76b0157dccdae3f693bc0333c1305fc5b196636b7f0e
SSDEEP

6144:77Q3gomenroiBtufVCsbSd7SUdpRmm+3VMRFZJzgnO03JtjlimyX:77Q3gomitYtCsbSdq3VSErjlJy

Score

N/A

Malware Config

Signatures

Files

9c5b16f112ecd744a020cea3043e21033f3008b4228dce0c0d507a08066a959d
.dll regsvr32 windows x86

db7b9176f7bcf65f962c0347f4c74e53

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

CompareStringW
GetModuleHandleA
LoadResource
CompareStringA
FindResourceA
GetProcAddress
LockResource
lstrcmpiA
lstrcpynA
LoadLibraryA
GetWindowsDirectoryA
DisableThreadLibraryCalls
GetFileAttributesA
GetVersion
GetTimeFormatA
GetACP
GetDateFormatA
CreateThread
GetTickCount
MulDiv
WaitForSingleObject
ResumeThread
ReadFile
InterlockedIncrement
DeleteFileA
InterlockedDecrement
GlobalReAlloc
GetLocalTime
SetFilePointer
GlobalAlloc
GetTempPathA
GetTempFileNameA
GlobalHandle
GlobalLock
GlobalUnlock
GetUserDefaultLCID
GlobalFree
lstrcmpA
lstrcpyA
GetLocaleInfoA
GetModuleFileNameA
FreeLibrary
lstrcatA
EnterCriticalSection
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
HeapReAlloc
HeapAlloc
HeapFree
MultiByteToWideChar
lstrlenW
WideCharToMultiByte
CloseHandle
WriteFile
GetProcessHeap
lstrlenA
CreateFileA
GetLastError
CreateFileW
SetLastError
InterlockedExchange

user32

OffsetRect
MessageBeep
GetActiveWindow
ClientToScreen
IsWindowVisible
GetWindow
PtInRect
GetFocus
ReleaseCapture
SetCapture
GetCapture
GetDlgItemTextA
ReleaseDC
GetParent
GetDC
SetScrollInfo
ScrollWindow
EndPaint
BeginPaint
UnregisterClassA
IsChild
WinHelpA
CreateDialogIndirectParamA
IsDialogMessageA
IsWindowEnabled
GetNextDlgTabItem
ScrollWindowEx
GetWindowRect
LoadImageA
GetKeyState
SendDlgItemMessageA
SetWindowPos
GetClientRect
MoveWindow
CreateWindowExA
DefWindowProcA
SetCursor
PeekMessageA
TranslateMessage
DispatchMessageA
SetWindowTextA
CreateDialogParamA
ShowWindow
IsWindow
FillRect
IsCharAlphaNumericA
SetMenuItemInfoA
EnableMenuItem
CheckMenuItem
CharNextA
IntersectRect
DestroyWindow
MessageBoxW
InvalidateRect
PostMessageA
SetFocus
LoadCursorA
RegisterClassA
LoadStringA
GetSystemMetrics
GetSysColor
GetWindowLongA
GetWindowTextA
SendMessageA
SetWindowLongA
wsprintfA
SetDlgItemTextA
GetDlgItem
EnableWindow
EqualRect
SetWindowRgn
CallWindowProcA
InflateRect
SetParent

ole32

CoTaskMemAlloc
CreateOleAdviseHolder
CoCreateInstance
OleLoadFromStream
OleInitialize
OleUninitialize
CoTaskMemFree

advapi32

RegEnumKeyExA
RegQueryValueA
RegOpenKeyA
RegQueryValueExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

oleaut32

CreateErrorInfo
SafeArrayAccessData
SysFreeString
SysAllocStringLen
SysStringByteLen
SafeArrayGetDim
SafeArrayCreateVector
SysAllocString
SafeArrayGetLBound
SafeArrayUnaccessData
OleCreatePropertyFrame
LoadTypeLibEx
UnRegisterTypeLi
RegisterTypeLi
VariantChangeTypeEx
VariantCopy
SetErrorInfo
GetErrorInfo
VariantCopyInd
OleCreateFontIndirect
VariantChangeType
OleTranslateColor
LoadRegTypeLi
LoadTypeLi
SysStringLen
SafeArrayGetUBound
VariantInit
VariantClear

comdlg32

PrintDlgA
CommDlgExtendedError
GetSaveFileNameW
GetSaveFileNameA

gdi32

BitBlt
SelectPalette
RealizePalette
SetMapMode
RestoreDC
SetWindowExtEx
CreateDCA
CreateCompatibleBitmap
SetViewportOrgEx
GetWindowExtEx
SetWindowOrgEx
CreateRectRgnIndirect
Rectangle
GetViewportExtEx
RoundRect
SaveDC
Ellipse
LPtoDP
GetTextMetricsA
IntersectClipRect
GetTextExtentPointA
DeleteDC
GetTextExtentPointW
CreateICA
CreateFontIndirectA
GetDeviceCaps
SelectObject
SetTextAlign
DeleteObject
SetTextColor
SetBkColor
SetBkMode
GetBkMode
GetTextColor
GetTextAlign
GetCurrentObject
TextOutW
GetBkColor
SetTextCharacterExtra
CreateSolidBrush
TextOutA
MoveToEx
CreatePen
LineTo
CreateCompatibleDC
AbortDoc
DPtoLP
EndPage
StartPage
SetAbortProc
GetStockObject
SetViewportExtEx
EndDoc
StartDocA

Exports

Exports

DLLGetDocumentation
DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 164KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

db7b9176f7bcf65f962c0347f4c74e53

Headers

File Characteristics

Imports

kernel32

user32

ole32

advapi32

oleaut32

comdlg32

gdi32

Exports

Exports

Sections

.text Size: 164KB - Virtual size: 162KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 6KB

.idata Size: 8KB - Virtual size: 5KB

.rsrc Size: 76KB - Virtual size: 72KB

.reloc Size: 16KB - Virtual size: 12KB

.rmnet Size: 60KB - Virtual size: 60KB

.text
Size: 164KB - Virtual size: 162KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 6KB

.idata
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 76KB - Virtual size: 72KB

.reloc
Size: 16KB - Virtual size: 12KB

.rmnet
Size: 60KB - Virtual size: 60KB