General

Malware Config

Signatures

Files

• d7a81a9de2c737673301d1d695bf31dfc2bc9bc5db2df18f85b4d4fa2e590a91

  .dll regsvr32 windows x86

  8e793d5ee63851225d4d05cc91524988

  
  

  Code Sign

  Signer

  Actual PE Digest

  Digest Algorithm

  PE Digest Matches

  false

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DEBUG_STRIPPED

  Imports

  kernel32

  lstrcmpA

  CompareStringW

  CompareStringA

  FindResourceA

  LoadResource

  LockResource

  GetLastError

  lstrcmpiA

  HeapReAlloc

  InterlockedDecrement

  InterlockedIncrement

  GetLocaleInfoA

  GetWindowsDirectoryA

  lstrcpyA

  MultiByteToWideChar

  GetModuleFileNameA

  lstrcatA

  lstrlenA

  lstrcpynA

  GetFileAttributesA

  LoadLibraryA

  FreeLibrary

  LeaveCriticalSection

  DeleteCriticalSection

  HeapFree

  WideCharToMultiByte

  lstrlenW

  HeapAlloc

  InitializeCriticalSection

  EnterCriticalSection

  GetProcessHeap

  GetCurrentProcessId

  GetProcAddress

  GetVersion

  DisableThreadLibraryCalls

  user32

  GetKeyState

  IsDlgButtonChecked

  CheckRadioButton

  SendDlgItemMessageA

  PtInRect

  CreateDialogIndirectParamA

  GetNextDlgTabItem

  IsChild

  SetParent

  CreateWindowExA

  GetDlgItem

  SetWindowPos

  SetWindowLongA

  CharNextA

  wsprintfA

  UnregisterClassA

  DestroyWindow

  IsDialogMessageA

  WinHelpA

  InvalidateRect

  GetClientRect

  BeginPaint

  SetFocus

  IntersectRect

  EqualRect

  SetDlgItemTextA

  GetDlgItemTextA

  GetWindowRect

  GetActiveWindow

  MoveWindow

  SendMessageA

  EndPaint

  DefWindowProcA

  IsWindowEnabled

  EnableWindow

  GetWindowTextLengthA

  OffsetRect

  DrawTextA

  GetSystemMetrics

  GetSysColor

  LoadBitmapA

  GetDesktopWindow

  GetWindow

  GetWindowLongA

  GetWindowThreadProcessId

  IsWindowVisible

  MessageBoxA

  EndDialog

  DialogBoxParamA

  GetDC

  ReleaseDC

  LoadCursorA

  RegisterClassA

  LoadStringA

  ShowWindow

  ClientToScreen

  GetParent

  SetWindowRgn

  ole32

  CreateOleAdviseHolder

  CoTaskMemAlloc

  CoTaskMemFree

  CoGetClassObject

  CoCreateInstance

  advapi32

  RegEnumKeyExA

  RegQueryValueA

  RegOpenKeyA

  RegQueryValueExA

  RegDeleteValueA

  RegDeleteKeyA

  RegOpenKeyExA

  RegCreateKeyExA

  RegSetValueExA

  RegCloseKey

  oleaut32

  LoadRegTypeLi

  LoadTypeLibEx

  UnRegisterTypeLi

  LoadTypeLi

  RegisterTypeLi

  SafeArrayCreate

  SafeArrayAccessData

  SafeArrayUnaccessData

  VariantChangeType

  VariantCopy

  CreateErrorInfo

  SetErrorInfo

  SysAllocStringLen

  GetErrorInfo

  VariantClear

  OleTranslateColor

  SysReAllocString

  SysStringLen

  SysReAllocStringLen

  VariantInit

  SysFreeString

  SysAllocString

  OleCreatePropertyFrame

  gdi32

  LPtoDP

  GetViewportExtEx

  CreateRectRgnIndirect

  GetWindowExtEx

  SetMapMode

  CreateDCA

  SetWindowOrgEx

  SetViewportOrgEx

  SetWindowExtEx

  SetViewportExtEx

  GetTextMetricsA

  CreatePen

  SetBkMode

  SetTextColor

  GetCurrentObject

  DeleteObject

  LineTo

  MoveToEx

  Rectangle

  SelectObject

  Polygon

  GetDeviceCaps

  GetStockObject

  DeleteDC

  CreateSolidBrush

  Exports

  Exports

  DLLGetDocumentation

  DllCanUnloadNow

  DllGetClassObject

  DllRegisterServer

  DllUnregisterServer

  Sections

  .text

  Size: 69KB - Virtual size: 68KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 31KB - Virtual size: 30KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .reloc

  Size: 6KB - Virtual size: 5KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ