366c642727332127b51be929bc0b01ac8bf23d0cff52059780cdf78a8e6d4af8

Sharing

Copy URL

Twitter E-mail

General

Target

366c642727332127b51be929bc0b01ac8bf23d0cff52059780cdf78a8e6d4af8
Size

116KB
MD5

537b2172afd483845b4a9ffccfa78450
SHA1

e8ceea4194584a79023c3f078cc3a02659b0c1b1
SHA256

366c642727332127b51be929bc0b01ac8bf23d0cff52059780cdf78a8e6d4af8
SHA512

7fa141c032494c0acff56139a48dd0f3c60b40a72ce5e4e8097bc4d7226774bd8f3813bc117df2baea9f1be723414287a722999efcd3bdc7927831ac72593427
SSDEEP

1536:wEEa/9i/MCs6aAwS0ow2awelTxtHumjusVNux7NoiB2apj:w5a/k/MCV1QLNVOEusVNu1NoiB2a

Score

N/A

Malware Config

Signatures

Files

366c642727332127b51be929bc0b01ac8bf23d0cff52059780cdf78a8e6d4af8
.dll regsvr32 windows x86

0a677843243081eba8cb6adec17e3eeb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dvrpc

?AttachCallback@dvrpClient@@QAEHPAXP6AH0IK@Z@Z
?SetDisplayMode@dvrpClient@@QAEHHH@Z
?SetUrl@dvrpClient@@QAEHPADH@Z
?Login@dvrpClient@@QAEHPAD0@Z
?IsConnected@dvrpClient@@QAEHXZ
?Logout@dvrpClient@@QAEHXZ
??0dvrpClient@@QAE@XZ
??1dvrpClient@@QAE@XZ

msvfw32

DrawDibOpen
DrawDibClose
DrawDibDraw

kernel32

IsDBCSLeadByte
InterlockedIncrement
EnterCriticalSection
InterlockedDecrement
HeapDestroy
GetProcAddress
LoadLibraryA
lstrcpyA
lstrcatA
GetCurrentThreadId
FlushInstructionCache
GetCurrentProcess
GlobalUnlock
lstrcpynA
LeaveCriticalSection
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GlobalLock
GlobalAlloc
GetLastError
GetACP
GetCPInfo
CreateFileA
SetFilePointer
HeapFree
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
TerminateProcess
WriteFile
FlushFileBuffers
CloseHandle
RtlUnwind
ExitProcess
VirtualAlloc
VirtualFree
lstrcmpiA
LoadLibraryExA
SizeofResource
FindResourceA
LoadResource
GetModuleFileNameA
FreeLibrary
WideCharToMultiByte
ReadFile
MultiByteToWideChar
HeapCreate
GetModuleHandleA
GetShortPathNameA
lstrlenA
lstrlenW
DisableThreadLibraryCalls
InitializeCriticalSection
Sleep
DeleteCriticalSection
SetEndOfFile
GetOEMCP
SetStdHandle
GetCommandLineA
GetVersion
GetVersionExA
GetEnvironmentVariableA
GetTimeZoneInformation
HeapAlloc
HeapReAlloc
GetLocalTime
GetSystemTime

user32

GetDC
GetParent
SetFocus
GetClientRect
CopyRect
SetRect
OffsetRect
FillRect
InvalidateRect
CharNextA
SetTimer
LoadMenuA
DefWindowProcA
TrackPopupMenu
GetSubMenu
ClientToScreen
KillTimer
GetKeyState
PtInRect
UnionRect
PostMessageA
CheckMenuItem
BeginPaint
EndPaint
DestroyMenu
ReleaseDC
IntersectRect
EqualRect
SetWindowRgn
SetWindowPos
IsWindow
ShowWindow
wsprintfA
GetFocus
IsChild
DestroyWindow
GetClassInfoExA
LoadCursorA
RegisterClassExA
CreateWindowExA
CallWindowProcA
GetWindowLongA
SetWindowLongA

gdi32

CloseMetaFile
GetDeviceCaps
LPtoDP
SetMapMode
CreateDCA
DeleteDC
SetViewportOrgEx
SaveDC
SetWindowOrgEx
CreateMetaFileA
DeleteMetaFile
CreateRectRgnIndirect
RestoreDC
CreateFontA
SelectObject
GetStockObject
SetTextColor
SetTextAlign
SetBkMode
TextOutA
DeleteObject
SetWindowExtEx

advapi32

RegEnumKeyExA
RegEnumValueA
RegQueryInfoKeyA
RegSetValueExA
RegDeleteKeyA
RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegCreateKeyExA

ole32

CoTaskMemRealloc
OleRegEnumVerbs
CoTaskMemFree
CoTaskMemAlloc
CreateDataAdviseHolder
OleRegGetUserType
OleRegGetMiscStatus
WriteClassStm
CoCreateInstance
OleLoadFromStream
OleSaveToStream
CreateOleAdviseHolder

oleaut32

SysAllocStringByteLen
OleCreatePropertyFrame
SysStringLen
LoadRegTypeLi
SysStringByteLen
VariantClear
VariantChangeType
RegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString
VarUI4FromStr

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a677843243081eba8cb6adec17e3eeb

Headers

File Characteristics

Imports

dvrpc

msvfw32

kernel32

user32

gdi32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 59KB

.rdata Size: 12KB - Virtual size: 9KB

.data Size: 24KB - Virtual size: 27KB

.rsrc Size: 8KB - Virtual size: 6KB

.reloc Size: 8KB - Virtual size: 6KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 12KB - Virtual size: 9KB

.data
Size: 24KB - Virtual size: 27KB

.rsrc
Size: 8KB - Virtual size: 6KB

.reloc
Size: 8KB - Virtual size: 6KB