a070eb3e63a5608fa7f1bafe4b60df1a0bb2c1a788c2228a01eee269327042c0

Sharing

Copy URL Twitter E-mail

General

Target

a070eb3e63a5608fa7f1bafe4b60df1a0bb2c1a788c2228a01eee269327042c0
Size

352KB
MD5

9e79145efae1ad777b0e898460b7c38f
SHA1

62a3cd3ac49c4887e7aed56f6067d19d5e6a0d44
SHA256

a070eb3e63a5608fa7f1bafe4b60df1a0bb2c1a788c2228a01eee269327042c0
SHA512

6a32eaf3d97bb1f26bf05116c6784cb559528fe757456ed0006eca143a3ba4ad42dcf51e9001f7d1cafd553d3c436e8fcd08868d618d0ef1ad1c22c032da2226
SSDEEP

3072:7eNTC3Ng6RQXXzMU0NstMGpA5DCN8klpn/8UmDg8S/zohzn7BC6kB1DZEXLeyxi7:7FGQCN8klp/DQg8D21kZmEiofwq5B

Score

N/A

Malware Config

Signatures

Files

a070eb3e63a5608fa7f1bafe4b60df1a0bb2c1a788c2228a01eee269327042c0
.dll regsvr32 windows x86

cf4730ab9349a9b4845b50f751248df3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
GetFileTime
GetThreadLocale
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFullPathNameW
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
SetErrorMode
GlobalFlags
WritePrivateProfileStringW
HeapFree
HeapAlloc
RtlUnwind
GetCommandLineA
GetProcessHeap
HeapReAlloc
GetFileAttributesW
SetStdHandle
GetFileType
VirtualQuery
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapDestroy
HeapCreate
GetStdHandle
SetHandleCount
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
FileTimeToLocalFileTime
FileTimeToSystemTime
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
GetCurrentProcessId
GetModuleHandleA
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LoadLibraryA
GetVersionExA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
SetLastError
DeleteFileW
Sleep
GetModuleFileNameW
GetVersion
CreateFileW
GetVolumeInformationW
FindFirstFileW
FindClose
WideCharToMultiByte
RaiseException
CreateThread
GetTickCount
GetCurrentThread
SetThreadPriority
InterlockedExchange
GetModuleHandleW
GetProcAddress
LoadLibraryW
FreeLibrary
VirtualAlloc
GetCurrentThreadId
GetCurrentProcess
DuplicateHandle
lstrcmpW
VirtualFree
WaitForSingleObject
ResetEvent
SetEvent
CreateEventW
CloseHandle
InterlockedDecrement
InterlockedIncrement
lstrcpynW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
DisableThreadLibraryCalls
GetVersionExW
GetModuleFileNameA
GetLastError
lstrlenA
lstrlenW
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
SizeofResource
ExitProcess

user32

GetCursorPos
ValidateRect
PostQuitMessage
GetWindowThreadProcessId
IsWindowEnabled
ShowWindow
SetWindowTextW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
ClientToScreen
GrayStringW
DrawTextExW
UnregisterClassA
TabbedTextOutW
LoadIconW
WinHelpW
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
IsWindow
DestroyMenu
GetForegroundWindow
GetLastActivePopup
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
IsWindowVisible
GetMenu
PostMessageW
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
GetParent
CopyRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetWindowLongW
SetWindowLongW
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
GetWindow
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetSysColorBrush
UnregisterClassW
CharUpperW
SetCursor
GetMessageW
TranslateMessage
GetWindowTextW
GetActiveWindow
DispatchMessageW
RegisterWindowMessageW
PeekMessageW
wsprintfW
GetKeyState
LoadCursorW
EnableWindow
SetForegroundWindow
GetCapture
ReleaseDC
GetDC
MapWindowPoints
GetClientRect
GetWindowRect
SendMessageW
PtInRect
DrawTextW

gdi32

Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
CreateBitmap
GetStockObject
ExtTextOutW
DeleteObject
TextOutW
RectVisible
PtVisible
GetDeviceCaps
SetMapMode
RestoreDC
SaveDC
SetBkColor
SetTextColor
GetClipBox

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegQueryValueW
RegEnumKeyW
RegQueryValueExW
RegOpenKeyW
RegCreateKeyExW
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW

shlwapi

PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathStripToRootW

ole32

StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoCreateInstance
CoInitialize
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString

oleaut32

VariantClear
VariantChangeType
VariantInit
SysAllocString
SysFreeString
SysAllocStringLen

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 208KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf4730ab9349a9b4845b50f751248df3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shlwapi

ole32

oleaut32

Exports

Exports

Sections

.text Size: 208KB - Virtual size: 206KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 28KB - Virtual size: 42KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 40KB - Virtual size: 36KB

.text
Size: 208KB - Virtual size: 206KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 28KB - Virtual size: 42KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 40KB - Virtual size: 36KB