92d019b8d739b12d0a48f22040262c1075d5c4a6c5edeab41326028a7d09cb4e

Sharing

Copy URL Twitter E-mail

General

Target

92d019b8d739b12d0a48f22040262c1075d5c4a6c5edeab41326028a7d09cb4e
Size

2.2MB
MD5

1b6676a1bb84d2868082a3fb75a49fe7
SHA1

68f09b98431170925deb7e59280394696b7f5316
SHA256

92d019b8d739b12d0a48f22040262c1075d5c4a6c5edeab41326028a7d09cb4e
SHA512

efbc0143ac5c3ef8942bf5b26800a9ab177cf4f2835cfade7e0b9f7f043791bd355090a0b12a0dd6962a6cfdd1e5f6e6437c9598c5d2fffa343fef1fa1e00613
SSDEEP

49152:f+Iz4zWLgX0nPdwHsJ1P7y+edQVvCw4RFS5L+YopdizWYHj:fM0nPdEsJ1jy+1VvCw4+8yWs

Score

N/A

Malware Config

Signatures

Files

92d019b8d739b12d0a48f22040262c1075d5c4a6c5edeab41326028a7d09cb4e
.dll regsvr32 windows x86

f0c3e014b8b872935aa2714216f6a498

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcr80

_except_handler4_common
fputs
fwrite
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
??3@YAXPAX@Z
?terminate@@YAXXZ
memset
_purecall
memcpy
__CxxFrameHandler3
_vsnwprintf
memmove
_CIexp
_CIsin
floor
sscanf
strstr
_CIatan
_CIcos
_CIlog10
_CIlog
ceil
__iob_func
fflush
_CIpow
_CIsqrt
??_V@YAXPAX@Z
??_U@YAPAXI@Z
vsprintf_s
exit
printf
_beginthreadex
malloc
free
calloc
fopen
fprintf
fclose
atoi
sprintf
??2@YAPAXI@Z
realloc
strrchr
strncpy

d3d9

Direct3DCreate9

winmm

timeBeginPeriod
timeEndPeriod

kernel32

SetFilePointer
SuspendThread
ResumeThread
GetProcessAffinityMask
GetVersionExW
DisableThreadLibraryCalls
lstrlenW
MultiByteToWideChar
lstrlenA
GetLastError
GetModuleFileNameA
InterlockedIncrement
FreeLibrary
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
lstrcmpW
CloseHandle
CreateEventW
SetEvent
ResetEvent
WaitForMultipleObjects
WaitForSingleObject
ReleaseSemaphore
GetSystemInfo
VirtualFree
GetCurrentProcess
GetCurrentThreadId
CreateSemaphoreW
VirtualAlloc
GetProcAddress
GetModuleHandleW
SetThreadPriority
GetThreadPriority
GetCurrentThread
GetTickCount
CreateThread
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
lstrcpyW
WideCharToMultiByte
ReleaseMutex
UnmapViewOfFile
MapViewOfFile
LoadLibraryA
OpenMutexA
CreateMutexA
CreateSemaphoreA
CreateFileA
SetEndOfFile
CreateFileMappingA
WriteFile
ReadFile
lstrcpynA
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
Sleep
GetVersionExA
SetThreadAffinityMask
CreateEventA
OutputDebugStringA
GetModuleHandleA
QueryPerformanceFrequency
TerminateThread
ExitThread
SetThreadPriorityBoost
SetThreadIdealProcessor

advapi32

RegOpenKeyExW
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegEnumKeyExW
RegDeleteKeyW

user32

DefWindowProcW
MoveWindow
CreateDialogParamW
GetWindowRect
GetDesktopWindow
InvalidateRect
LoadStringW
SetWindowLongW
SetRect
SetDlgItemInt
CheckDlgButton
EnableWindow
SetDlgItemTextA
GetDlgItem
SendMessageA
GetDlgItemInt
IsDlgButtonChecked
RegisterClassExA
ValidateRect
CreateWindowExA
ShowWindow
DestroyWindow
DefWindowProcA
PostQuitMessage
wvsprintfA
wsprintfA
GetWindowLongW

gdi32

GetRegionData

ole32

CoInitializeEx
CoTaskMemFree
CoTaskMemAlloc
CoInitialize
CoCreateInstance
CoFreeUnusedLibraries
StringFromGUID2
CoCreateGuid
CoUninitialize

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 352KB - Virtual size: 351KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 292KB - Virtual size: 992KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 112KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f0c3e014b8b872935aa2714216f6a498

Headers

File Characteristics

Imports

msvcr80

d3d9

winmm

kernel32

advapi32

user32

gdi32

ole32

Exports

Exports

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 352KB - Virtual size: 351KB

.data Size: 292KB - Virtual size: 992KB

.rsrc Size: 8KB - Virtual size: 5KB

.reloc Size: 52KB - Virtual size: 48KB

.text Size: 112KB - Virtual size: 112KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 352KB - Virtual size: 351KB

.data
Size: 292KB - Virtual size: 992KB

.rsrc
Size: 8KB - Virtual size: 5KB

.reloc
Size: 52KB - Virtual size: 48KB

.text
Size: 112KB - Virtual size: 112KB