7899efe27fdc8c9f57edd01a84c91a1f71263286d891b50b7a73da1223c4f52e

Sharing

Copy URL Twitter E-mail

General

Target

7899efe27fdc8c9f57edd01a84c91a1f71263286d891b50b7a73da1223c4f52e
Size

329KB
MD5

3852cdf47d06ef137ad48a81c1afce17
SHA1

8a0be876ed7cc878d6c3bf4817f4ed49e9abdcd2
SHA256

7899efe27fdc8c9f57edd01a84c91a1f71263286d891b50b7a73da1223c4f52e
SHA512

c4a541a2bd48644f443b2becd2c1711c05e973e71e92668778f5e84b170fda945f833f68c7f6697265b94beb1e968a253b2d56ea98c35ff5edec9fa71f60f460
SSDEEP

6144:815Ypu+p8z9hfGnUbM6fVTyxLTBJq4BK7G5:8SA/bBFyxLTPq4IQ

Score

N/A

Malware Config

Signatures

Files

7899efe27fdc8c9f57edd01a84c91a1f71263286d891b50b7a73da1223c4f52e
.dll regsvr32 windows x86

ca760e14ecaa0259821ace05adaf4411

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetCrackUrlA
InternetCloseHandle
InternetReadFile
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetOpenA
InternetGetConnectedState

rpcrt4

UuidToStringA
UuidCreate

kernel32

GetVersionExA
HeapReAlloc
GetModuleHandleW
GetProcAddress
SetLastError
LockResource
LocalFree
FormatMessageA
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
InterlockedExchange
CompareStringA
LoadLibraryA
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
GlobalDeleteAtom
GetModuleFileNameW
GlobalAddAtomA
GetThreadLocale
GlobalReAlloc
GlobalHandle
LocalReAlloc
TlsFree
SetErrorMode
WritePrivateProfileStringA
GlobalFlags
lstrcmpW
GlobalFindAtomA
GlobalGetAtomNameA
WriteFile
SetFilePointer
FlushFileBuffers
GetCurrentProcess
CreateFileA
GetCPInfo
GetOEMCP
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
GetSystemTimeAsFileTime
GetCommandLineA
ExitProcess
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
IsValidCodePage
GetStdHandle
VirtualFree
HeapCreate
HeapDestroy
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetThreadLocale
TlsAlloc
GetCurrentProcessId
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
RaiseException
Sleep
CreateMutexA
WaitForSingleObject
lstrcpyA
ReleaseMutex
CloseHandle
TlsGetValue
TlsSetValue
lstrcmpA
GetTickCount
lstrcpynA
CreateThread
GetProcessHeap
HeapAlloc
GetCurrentThreadId
HeapFree
IsDBCSLeadByte
lstrcmpiA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
FreeLibrary
WideCharToMultiByte
GetLastError
lstrlenW
MultiByteToWideChar
GetModuleFileNameA
lstrlenA
GetModuleHandleA
LocalAlloc

user32

SetPropA
GetClassLongA
GetCapture
WinHelpA
LoadIconA
RegisterWindowMessageA
ShowWindow
DestroyMenu
SetForegroundWindow
GetClientRect
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
CopyRect
DefWindowProcA
CallWindowProcA
GetMenu
GetPropA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
GetWindowTextA
SetWindowTextA
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
LoadCursorA
GetSystemMetrics
GetDC
ReleaseDC
GetSysColor
GetSysColorBrush
UnregisterClassA
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
MessageBoxA
SetCursor
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DispatchMessageA
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetFocus
GetParent
ModifyMenuA
EnableMenuItem
CheckMenuItem
UnhookWindowsHookEx
PostMessageA
PostQuitMessage
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
RemovePropA
IsWindow
GetForegroundWindow
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetMenu
SetWindowLongA
CharNextW
FindWindowA
SendMessageA
SetTimer
KillTimer
CharNextA
GetActiveWindow

advapi32

RegQueryInfoKeyA
RegEnumKeyA
RegOpenKeyA
RegQueryValueA
RegCreateKeyA
RegQueryValueExA
RegDeleteKeyA
RegSetValueExA
RegEnumKeyExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA

ole32

CoCreateInstance
StringFromGUID2
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree

oleaut32

UnRegisterTypeLi
SysAllocString
RegisterTypeLi
SysStringLen
LoadTypeLi
LoadRegTypeLi
VarUI4FromStr
SysFreeString
VariantInit
VariantChangeType
VariantClear

shlwapi

StrStrA
StrCmpNIA
wnsprintfA
StrNCatA
wvnsprintfA
StrToIntA
StrCmpNA
PathFindExtensionA
PathFindFileNameA
StrStrIA

oleacc

LresultFromObject
CreateStdAccessibleObject

gdi32

DeleteDC
GetStockObject
SetViewportExtEx
ScaleWindowExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
SetMapMode
GetClipBox
SetWindowExtEx
SetTextColor
SetBkColor
RestoreDC
DeleteObject
SaveDC
CreateBitmap
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ca760e14ecaa0259821ace05adaf4411

Headers

File Characteristics

Imports

wininet

rpcrt4

kernel32

user32

advapi32

ole32

oleaut32

shlwapi

oleacc

gdi32

winspool.drv

Exports

Exports

Sections

.text Size: 228KB - Virtual size: 228KB

.rdata Size: 53KB - Virtual size: 53KB

.data Size: 11KB - Virtual size: 26KB

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 31KB - Virtual size: 30KB

.text
Size: 228KB - Virtual size: 228KB

.rdata
Size: 53KB - Virtual size: 53KB

.data
Size: 11KB - Virtual size: 26KB

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 31KB - Virtual size: 30KB