13c06ae57dae4be42a7edb7d70c4822c4d600ee00e4d9e9356362e976cb0f2f8

Sharing

Copy URL Twitter E-mail

General

Target

13c06ae57dae4be42a7edb7d70c4822c4d600ee00e4d9e9356362e976cb0f2f8
Size

348KB
MD5

00ac1179bdb047683cbc082d782204a3
SHA1

fceda77598aa8360aecee838ff7ff4987d7e26b4
SHA256

13c06ae57dae4be42a7edb7d70c4822c4d600ee00e4d9e9356362e976cb0f2f8
SHA512

94f6f76c5f8ebca48f292efd59558fd91d819275df7f6769ce637ee901d65c3dbb08d35498053a6584f4d27ab82deaecbdbe6042b2fb88e0e7d600b03325b66d
SSDEEP

6144:AITR2osEcLUatms4h0V1OP9FiU1X+ynoKJxl8be90cFFS:A0R2F4UmA1OP9cU1X+yo6OQ

Score

N/A

Malware Config

Signatures

Files

13c06ae57dae4be42a7edb7d70c4822c4d600ee00e4d9e9356362e976cb0f2f8
.dll regsvr32 windows x86

73eb9e9f1903734c00eab1ebca9b1a79

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
lstrcpyA
GetFullPathNameA
LocalAlloc
GlobalReAlloc
GlobalHandle
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
lstrcatA
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GlobalFlags
GetCPInfo
GetOEMCP
ReadFile
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
VirtualProtect
VirtualQuery
GetCommandLineA
HeapReAlloc
SetStdHandle
GetFileType
HeapSize
TerminateProcess
QueryPerformanceCounter
GetSystemTimeAsFileTime
HeapDestroy
HeapCreate
IsBadWritePtr
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
GetTimeZoneInformation
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
GetFileTime
GetFileSize
GetFileAttributesA
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcmpA
SetLastError
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
lstrcpynA
LocalFree
DeleteFileA
Sleep
CreateFileA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcessId
GetTickCount
SetThreadPriority
GetModuleHandleA
CreateThread
VirtualFree
VirtualAlloc
GetSystemInfo
ReleaseSemaphore
CreateSemaphoreA
WaitForSingleObject
SetEvent
GetCurrentThreadId
GetCurrentProcess
DuplicateHandle
ResetEvent
CreateEventA
CloseHandle
InterlockedDecrement
InterlockedIncrement
DisableThreadLibraryCalls
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
GetLastError
GetModuleFileNameA
LoadLibraryA
GetProcAddress
FreeLibrary
WideCharToMultiByte
LeaveCriticalSection
EnterCriticalSection
MultiByteToWideChar
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange

user32

SetWindowTextA
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
WinHelpA
GetCapture
CreateWindowExA
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetFocus
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
LoadIconA
MapWindowPoints
PostQuitMessage
SetForegroundWindow
GetClientRect
GetMenu
AdjustWindowRectEx
GetClassInfoA
RegisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
PtInRect
GetWindow
SetWindowsHookExA
CallNextHookEx
GetKeyState
ValidateRect
GetWindowTextA
LoadCursorA
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
PostMessageA
GetSystemMetrics
SendMessageA
MessageBoxA
GetParent
GetWindowLongA
GetLastActivePopup
DestroyMenu
IsWindowEnabled
EnableWindow
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
UnhookWindowsHookEx
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
SetRect
DispatchMessageA
RegisterWindowMessageA
PeekMessageA
wsprintfA
CharUpperA
UnregisterClassA
CopyRect
GetClassInfoExA

gdi32

ScaleWindowExtEx
DeleteDC
CreateBitmap
GetStockObject
SetWindowExtEx
TextOutA
RectVisible
PtVisible
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
DeleteObject
SetMapMode
RestoreDC
SaveDC
ExtTextOutA

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegQueryValueExA
RegDeleteKeyA
RegEnumKeyExA
RegSetValueExA
RegSetValueA
RegCreateKeyA
RegCreateKeyExA
RegOpenKeyExA

comctl32

ord17

shlwapi

PathIsUNCA
PathFindFileNameA
PathRemoveFileSpecA
PathAddBackslashA
PathStripToRootA

ole32

StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoCreateInstance
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromString

oleaut32

SysAllocStringLen
VariantChangeType
VariantClear
SysAllocString
SysFreeString
VariantInit

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 220KB - Virtual size: 216KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

_TEXT64
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73eb9e9f1903734c00eab1ebca9b1a79

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

ole32

oleaut32

Exports

Exports

Sections

.text Size: 220KB - Virtual size: 216KB

_TEXT64 Size: 4KB - Virtual size: 1KB

.rdata Size: 48KB - Virtual size: 47KB

.data Size: 32KB - Virtual size: 45KB

.rsrc Size: 4KB - Virtual size: 16B

.reloc Size: 36KB - Virtual size: 32KB

.text
Size: 220KB - Virtual size: 216KB

_TEXT64
Size: 4KB - Virtual size: 1KB

.rdata
Size: 48KB - Virtual size: 47KB

.data
Size: 32KB - Virtual size: 45KB

.rsrc
Size: 4KB - Virtual size: 16B

.reloc
Size: 36KB - Virtual size: 32KB