068718dcb1eba63fa108845af3de581ef5508ec727d00de7fea7c3da22503a49

Sharing

Copy URL Twitter E-mail

General

Target

068718dcb1eba63fa108845af3de581ef5508ec727d00de7fea7c3da22503a49
Size

277KB
MD5

318923780200fb7c301b5a3f1c621950
SHA1

db2802c091902694c977d0f760ddbd4ba7d98641
SHA256

068718dcb1eba63fa108845af3de581ef5508ec727d00de7fea7c3da22503a49
SHA512

ac2d4d4a042f8cdf275823bca56224231c4ce3ebc6260aea8d2302a4f79cab1aca23c2eaaa81e1734f62b266e8b7baf5a9582a2ac084d448e0434199a1fd942e
SSDEEP

6144:O3cNGZtDl/0iz89apJjDqng0BvEPjNxnS/E:OsNGDJXzPpJjDqngkEPjTn+E

Score

N/A

Malware Config

Signatures

Files

068718dcb1eba63fa108845af3de581ef5508ec727d00de7fea7c3da22503a49
.dll regsvr32 windows x86

821c85f5fbe0711e9abbaa0c5165f633

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetLocaleInfoA
LoadLibraryA
MultiByteToWideChar
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
IsValidCodePage
GetOEMCP
GetACP
ReadFile
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
VirtualAlloc
VirtualFree
HeapDestroy
HeapCreate
ExitProcess
HeapSize
Sleep
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleFileNameA
WriteFile
DeleteCriticalSection
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
LeaveCriticalSection
EnterCriticalSection
RtlUnwind
RaiseException
GetCommandLineA
GetCurrentThreadId
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetFileSizeEx
CreateFileW
OutputDebugStringW
GetTickCount
GetModuleHandleW
GetCurrentProcessId
OutputDebugStringA
GetProcessHeap
GetPrivateProfileIntW
lstrcpyW
GetPrivateProfileStringW
HeapFree
HeapAlloc
LoadLibraryW
GetProcAddress
GetLastError
SetLastError
GetModuleFileNameW
lstrlenW
DisableThreadLibraryCalls
GetModuleHandleExW
InterlockedDecrement
GetCPInfo
InterlockedIncrement
GetModuleHandleA

user32

LoadImageW
MessageBoxW
EndDialog
CharToOemW
GetPropW
SetPropW
RemovePropW
DefWindowProcW
GetMessageW
TranslateMessage
DispatchMessageW
IsWindow
DestroyWindow
CreateWindowExW
GetWindowLongW
SetWindowLongW
UnregisterClassW
GetClientRect
GetWindowRect
ScrollWindow
RegisterClassExW
SendMessageW
SetWindowPos
BeginPaint
MapWindowPoints
EndPaint
MessageBeep
PostMessageW
InvalidateRect
GetDC
ReleaseDC
ShowWindow
CreateDialogParamW
UpdateWindow
BringWindowToTop
AllowSetForegroundWindow
SetForegroundWindow
GetSystemMetrics
ValidateRect
GetCursorPos
SystemParametersInfoW
GetAsyncKeyState
SetCapture
ReleaseCapture
GetParent
TrackMouseEvent
SetFocus
DrawTextW
SetCursor
GetDesktopWindow
UnhookWindowsHookEx
IsWindowVisible
IsIconic
SetWindowRgn
InternalGetWindowText
CreateWindowExA
IsWindowEnabled
PtInRect
SetTimer
UpdateLayeredWindow
GetWindowDC
KillTimer

gdi32

CreateRoundRectRgn
SetBkMode
CreateSolidBrush
GetStockObject
SelectObject
DeleteObject
CreateDIBSection
BitBlt
CreateCompatibleDC
DeleteDC
GetObjectType
CreateFontW

advapi32

RegCreateKeyExW
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegCreateKeyW

ole32

CoTaskMemAlloc
CoTaskMemFree
StringFromGUID2

shlwapi

PathAppendW
StrCpyNW
StrStrIW
SHGetValueW

gdiplus

GdipCreateImageAttributes
GdipAlloc
GdipFree
GdipSetSolidFillColor
GdipSetStringFormatLineAlign
GdiplusShutdown
GdiplusStartup
GdipDrawImagePoints
GdipDrawImageRect
GdipMeasureString
GdipSetStringFormatHotkeyPrefix
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipLoadImageFromFile
GdipDeleteFont
GdipCreateFont
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipCreateFontFamilyFromName
GdipDrawImageRectRectI
GdipDrawImageRectRect
GdipDrawImagePointsI
GdipDrawString
GdipGraphicsClear
GdipSetInterpolationMode
GdipSetTextRenderingHint
GdipReleaseDC
GdipDeleteGraphics
GdipCreateFromHDC
GdipDisposeImage
GdipCreateSolidFill
GdipCloneBrush
GdipDeleteBrush
GdipSetImageAttributesWrapMode
GdipDisposeImageAttributes

winmm

timeGetTime

comctl32

CreatePropertySheetPageW
InitCommonControlsEx

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllMain
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rmnet
Size: 56KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

821c85f5fbe0711e9abbaa0c5165f633

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

shlwapi

gdiplus

winmm

comctl32

Exports

Exports

Sections

.text Size: 169KB - Virtual size: 168KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 7KB - Virtual size: 14KB

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 13KB - Virtual size: 13KB

.rmnet Size: 56KB - Virtual size: 60KB

.text
Size: 169KB - Virtual size: 168KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 7KB - Virtual size: 14KB

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 13KB - Virtual size: 13KB

.rmnet
Size: 56KB - Virtual size: 60KB