7117c6fe4452e14387dd55db7e1a0f267280f142515265b2c6703e2e69623ce0

Sharing

Copy URL Twitter E-mail

General

Target

7117c6fe4452e14387dd55db7e1a0f267280f142515265b2c6703e2e69623ce0
Size

160KB
MD5

7c39ec23f5824c1e21f1b3d60853c8e6
SHA1

680cc080aa9a1286b0cbe458eca53af1d546b21e
SHA256

7117c6fe4452e14387dd55db7e1a0f267280f142515265b2c6703e2e69623ce0
SHA512

16a5cf7902fe6d0f900804836757682b3e1476b29072ae495b84017c9701c7b081d9a54b54750f81c7f61eb8114ac55dda2b6215d7dfa1c9fa51a0ce50c4cb98
SSDEEP

1536:pjYm8FZDWjm8lYHKCMnoJj4Kmoy6nN7Zewq0tG+wMR17nt2REi:Z4FFmT6qCMnbt87Znq0Y+wui

Score

N/A

Malware Config

Signatures

Files

7117c6fe4452e14387dd55db7e1a0f267280f142515265b2c6703e2e69623ce0
.dll regsvr32 windows x86

399630167e792864c491c5d59252c3cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
GetModuleFileNameA
FreeLibrary
SizeofResource
LoadResource
FindResourceA
GetLastError
LoadLibraryExA
lstrcmpiA
lstrcpynA
IsDBCSLeadByte
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
GetShortPathNameA
GetModuleHandleA
GetProcAddress
LoadLibraryA
lstrcpyA
lstrcatA
InterlockedIncrement
InterlockedDecrement
GlobalFree
DebugBreak
HeapReAlloc
HeapFree
WideCharToMultiByte
GlobalAlloc
GlobalLock
GetVersionExA
GetSystemInfo
HeapAlloc
DisableThreadLibraryCalls
lstrlenA
MultiByteToWideChar
lstrlenW
DeleteCriticalSection
HeapDestroy
GlobalReAlloc

user32

CharNextA

advapi32

RegQueryInfoKeyA
RegSetValueExA
RegEnumKeyExA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA
RegDeleteKeyA
RegEnumValueA

ole32

CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance

oleaut32

SafeArrayPutElement
SysAllocStringLen
SafeArrayGetElement
SafeArrayGetUBound
SafeArrayGetLBound
VariantInit
SysAllocString
SafeArrayCreate
SysFreeString
SysStringLen
LoadRegTypeLi
VarUI4FromStr
LoadTypeLi
RegisterTypeLi

w60_tin

ord144
ord49
ord137
ord48
ord103
ord141
ord140
ord171
ord104
ord179
ord106
ord107
ord170
ord142
ord143
ord189
ord105
ord126
ord178
ord125
ord128
ord133
ord130
ord183
ord98
ord138
ord177
ord139
ord99
ord43
ord41
ord77
ord89
ord151
ord152
ord154
ord129
ord173
ord172
ord117
ord127
ord153
ord168
ord131
ord88
ord83
ord9
ord70
ord71
ord76
ord72
ord73
ord75
ord74
ord113
ord4
ord5
ord12
ord13
ord11
ord10
ord59
ord56
ord17
ord14
ord6
ord15
ord18
ord16
ord19
ord53
ord54
ord55
ord57
ord192
ord37
ord176
ord30
ord155
ord156
ord157
ord158
ord159
ord160
ord163
ord165
ord161
ord162
ord164
ord44
ord42
ord47
ord52
ord58
ord61
ord120
ord121
ord27
ord26
ord28
ord135
ord136
ord91
ord175
ord92
ord180
ord108
ord110
ord109
ord134
ord100
ord97
ord185
ord186
ord187
ord150
ord169
ord191
ord190
ord188
ord45
ord46
ord20
ord21
ord22
ord7
ord23
ord24
ord25
ord31
ord32
ord33
ord34
ord35
ord36
ord38
ord39
ord40
ord63
ord62
ord80
ord81
ord182
ord101
ord102
ord114
ord115
ord3
ord66
ord67
ord68
ord69
ord8
ord96
ord174
ord111
ord90
ord29
ord118
ord119
ord132

w60btin

ord27
ord24
ord23
ord25
ord26
ord102

mapgisbascom1

ord32
ord29
ord44
ord33

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

399630167e792864c491c5d59252c3cd

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

w60_tin

w60btin

mapgisbascom1

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 50KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 2KB

.rsrc Size: 76KB - Virtual size: 72KB

.reloc Size: 8KB - Virtual size: 5KB

.text
Size: 52KB - Virtual size: 50KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 76KB - Virtual size: 72KB

.reloc
Size: 8KB - Virtual size: 5KB