5d98f779eb20bd6bdcf24979b2f2c9fe7ad8f0812e7fe98169df5c4ba77fbda9

Sharing

Copy URL Twitter E-mail

General

Target

5d98f779eb20bd6bdcf24979b2f2c9fe7ad8f0812e7fe98169df5c4ba77fbda9
Size

313KB
MD5

8603a6689cd26efb810418c32feca9c0
SHA1

f65952c811805f81a5d77baae05f6f0d897bf7e9
SHA256

5d98f779eb20bd6bdcf24979b2f2c9fe7ad8f0812e7fe98169df5c4ba77fbda9
SHA512

f411742efc633c18aad7da55d067183a9845ac473374be5e79bbb250ed43a6301fa00686874c81e1670ed70b9e896d1b0d2986c7bc690669bfa9434b4ab5f13c
SSDEEP

6144:O+29WrR1A5tE8op+ZOi2wNs2nEUvKa/sXf:B2EXAGpYjs2idXf

Score

N/A

Malware Config

Signatures

Files

5d98f779eb20bd6bdcf24979b2f2c9fe7ad8f0812e7fe98169df5c4ba77fbda9
.dll regsvr32 windows x86

ae73540d463c1f6a7101a0c69bb5de5e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteKeyW
RegCloseKey
RegQueryInfoKeyW
RegEnumKeyExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
RegQueryValueExW

kernel32

InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
DisableThreadLibraryCalls
LockResource
FindResourceExW
InterlockedExchange
FindFirstFileW
FindNextFileW
FindClose
HeapAlloc
GetProcessHeap
HeapFree
CreateDirectoryW
CopyFileW
RemoveDirectoryW
InterlockedDecrement
GetCurrentThreadId
GetCurrentProcess
FlushInstructionCache
SetLastError
HeapReAlloc
GetTempPathW
GetTempFileNameW
CloseHandle
SetFileAttributesW
GetSystemTimeAsFileTime
SetFileTime
Sleep
LeaveCriticalSection
EnterCriticalSection
DeleteFileW
GetModuleFileNameW
LocalAlloc
TlsFree
TlsAlloc
LoadLibraryExW
GetVersionExA
FileTimeToLocalFileTime
FileTimeToSystemTime
CompareStringW
FormatMessageW
LocalFree
InterlockedPopEntrySList
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedPushEntrySList
HeapSize
HeapDestroy
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
DecodePointer
EncodePointer
GetEnvironmentVariableW
InterlockedCompareExchange
CreateFileW
GetFileType
FindResourceW
LoadResource
SizeofResource
MultiByteToWideChar
GetLastError
RaiseException
lstrcmpiW
GetModuleHandleW
GetProcAddress
lstrlenW
FreeLibrary
GetFileAttributesW
LoadLibraryA

gdi32

SelectObject
GetStockObject
GetTextExtentPointW

oleaut32

SysStringLen
VarUI4FromStr
SysAllocString
SysFreeString
RegisterTypeLi
LoadTypeLi
UnRegisterTypeLi
SysAllocStringLen
VariantInit
VariantClear
SetErrorInfo
CreateErrorInfo
VarBstrFromDate

ole32

CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CoCreateInstance

user32

LoadStringW
UnregisterClassA
GetActiveWindow
IsWindowEnabled
ReleaseCapture
CreateDialogIndirectParamW
CreateDialogParamW
SetCapture
LoadCursorW
GetForegroundWindow
SendMessageA
KillTimer
SetTimer
DestroyWindow
PeekMessageW
IsDialogMessageW
TranslateMessage
DispatchMessageW
GetWindowTextW
MessageBoxIndirectW
MessageBoxW
DialogBoxParamW
EndDialog
DialogBoxIndirectParamW
ScreenToClient
ReleaseDC
DrawTextExW
GetDC
IsDlgButtonChecked
ShowWindow
SendDlgItemMessageW
SendMessageW
SetWindowLongW
SetDlgItemTextW
GetWindow
GetWindowLongW
MonitorFromWindow
GetMonitorInfoW
GetWindowRect
GetParent
GetClientRect
MapWindowPoints
SetWindowPos
SetWindowTextW
SetCursor
GetDlgItem
EnableWindow
CharNextW
SetFocus

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
VSDllRegisterServer
VSDllUnregisterServer

Sections

.text
Size: 237KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae73540d463c1f6a7101a0c69bb5de5e

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

gdi32

oleaut32

ole32

user32

Exports

Exports

Sections

.text Size: 237KB - Virtual size: 238KB

.data Size: 1024B - Virtual size: 1KB

.rsrc Size: 68KB - Virtual size: 68KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 237KB - Virtual size: 238KB

.data
Size: 1024B - Virtual size: 1KB

.rsrc
Size: 68KB - Virtual size: 68KB

.reloc
Size: 5KB - Virtual size: 4KB