4077e7256a7baf7818d48ca2404257ea02fff260321338bb71ce09d99622cd83

Sharing

Copy URL

Twitter E-mail

General

Target

4077e7256a7baf7818d48ca2404257ea02fff260321338bb71ce09d99622cd83
Size

912KB
MD5

1a9b4a1120686d77b55e678d3fa409be
SHA1

00a05dbef0595d783507a0ca1877d1b434da9099
SHA256

4077e7256a7baf7818d48ca2404257ea02fff260321338bb71ce09d99622cd83
SHA512

723024817f0c53f95d9ab1dc7d1fd7f4fa4e6b1a029a57782a9cfb3270ec39f802a481fb9561db5d5d92ed3971c50dcc898e7d7c25a13c3e8a02f84a6e9cf33d
SSDEEP

12288:4liXI5mPJo2G0JK9hI1fThp163nA5NRCUEeRbCiY78j19bYE:4CI5QJo2G0JK9hYTM0FEMCilXYE

Score

N/A

Malware Config

Signatures

Files

4077e7256a7baf7818d48ca2404257ea02fff260321338bb71ce09d99622cd83
.dll regsvr32 windows x86

1345d71a9f7750c773ba590a8347470b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetEnvironmentVariableA
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
GetStringTypeW
GetStringTypeA
VirtualFree
VirtualAlloc
SetUnhandledExceptionFilter
GetVersionExA
HeapCreate
HeapDestroy
GetEnvironmentStrings
GetEnvironmentVariableA
GetEnvironmentStringsW
GetStartupInfoA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
LCMapStringW
GetStdHandle
SetHandleCount
LCMapStringA
GetACP
GetTimeZoneInformation
HeapReAlloc
HeapSize
ExitProcess
TerminateProcess
HeapAlloc
GetFileType
SetStdHandle
GetCommandLineA
HeapFree
RaiseException
RtlUnwind
GetCurrentDirectoryA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetFileSize
GetFileTime
GetFileAttributesA
GetVolumeInformationA
GetFullPathNameA
DeleteFileA
FindFirstFileA
FindClose
UnlockFile
SetEndOfFile
SetFilePointer
LockFile
FlushFileBuffers
CreateFileA
WriteFile
ReadFile
GetOEMCP
GetCurrentProcess
DuplicateHandle
GetCPInfo
GetProcessVersion
TlsGetValue
GlobalFlags
SetErrorMode
GlobalReAlloc
LocalReAlloc
TlsSetValue
DeleteCriticalSection
TlsFree
GlobalHandle
GetPrivateProfileIntA
TlsAlloc
LocalAlloc
CompareStringA
CompareStringW
GlobalAlloc
lstrcatA
lstrcpyA
WritePrivateProfileStringA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetProcAddress
GetModuleFileNameA
VerLanguageNameA
LoadResource
FindResourceA
FindResourceExA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
GetModuleHandleA
GetPrivateProfileStringA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
GetVersion
FreeLibrary
LoadLibraryA
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MultiByteToWideChar
SetLastError
MulDiv
LocalFree
lstrcmpA
GetLastError
lstrcpynA
CloseHandle
GetCurrentThread

user32

GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
SetWindowPlacement
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
CharUpperA
InflateRect
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetMenuItemID
TrackPopupMenu
IsWindow
CreateDialogIndirectParamA
LoadAcceleratorsA
SetRectEmpty
GetDlgItem
IsWindowEnabled
SetTimer
RedrawWindow
DrawFocusRect
GetSysColor
InsertMenuA
GetCapture
IsChild
MessageBoxA
GetTopWindow
GetScrollPos
GetSubMenu
GetClassInfoA
LoadCursorA
GetDesktopWindow
PtInRect
GetClassNameA
UnregisterClassA
DestroyMenu
LoadStringA
KillTimer
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
GetMenuItemCount
GetMenu
RegisterClassA
SetActiveWindow
GetActiveWindow
wsprintfA
SendDlgItemMessageA
SetCursor
ShowOwnedPopups
PostQuitMessage
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
wvsprintfA
IsWindowVisible
EndDeferWindowPos
BeginDeferWindowPos
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
GetMenuStringA
SetFocus
GetFocus
DispatchMessageA
PeekMessageA
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
ReleaseCapture
TranslateAcceleratorA
WinHelpA
GetSysColorBrush
MapWindowPoints
DestroyIcon
GetWindowLongA
DestroyWindow
DeleteMenu
CreateMenu
GetClipboardData
PostMessageA
DefFrameProcA
TranslateMDISysAccel
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetCapture
SetRect
DestroyCursor
GetIconInfo
GetCursor
SetMenuItemInfoA
GetMenuItemInfoA
DrawStateA
IsMenu
RemoveMenu
InsertMenuItemA
TrackPopupMenuEx
IsRectEmpty
SetWindowRgn
SetParent
DrawIconEx
WindowFromPoint
MessageBeep
DrawFrameControl
CreatePopupMenu
DragDetect
CopyIcon
CopyAcceleratorTableA
DestroyAcceleratorTable
CreateAcceleratorTableA
LockWindowUpdate
DrawMenuBar
CloseClipboard
OpenClipboard
IsClipboardFormatAvailable
ChildWindowFromPoint
UpdateWindow
DefMDIChildProcA
InvertRect
GetAsyncKeyState
MapDialogRect
GetDCEx
PostThreadMessageA
RegisterClipboardFormatA
LoadBitmapA
CopyRect
GetDC
FillRect
DrawEdge
ReleaseDC
LoadImageA
AppendMenuA
GetWindowRect
InvalidateRect
ClientToScreen
GetParent
LoadMenuA
EnableMenuItem
CheckMenuItem
GetSystemMenu
EnableWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
LoadIconA

gdi32

SetViewportExtEx
CreateFontA
CreateSolidBrush
GetTextMetricsA
GetClipBox
SetTextColor
GetObjectA
CreateBitmap
SetBkColor
SaveDC
DeleteDC
SelectObject
GetStockObject
RestoreDC
SetBkMode
SetMapMode
OffsetViewportOrgEx
ScaleViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SelectClipRgn
ExcludeClipRect
ScaleWindowExtEx
MoveToEx
IntersectClipRect
SetTextAlign
LineTo
DeleteObject
CreateRectRgn
GetDeviceCaps
CreatePen
CreatePatternBrush
RectVisible
TextOutA
PtVisible
Escape
PatBlt
ExtTextOutA
GetTextExtentPoint32A
CreateFontIndirectA
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
EnumFontFamiliesExA
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
SetPixel
GetPixel
GetTextAlign
GetTextColor
StretchDIBits
GetBkColor
GetGraphicsMode
SetPixelV
SetGraphicsMode

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA

shell32

ShellExecuteA
SHGetPathFromIDListA
SHBrowseForFolderA
DragQueryFileA
DragFinish
SHGetFileInfoA
SHGetMalloc

comctl32

ImageList_GetImageInfo
ImageList_Create
ImageList_LoadImageA
ImageList_GetIcon
ImageList_AddMasked
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_Draw
ImageList_GetImageCount
InitCommonControlsEx
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ord17

ole32

OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
OleLockRunning

wsock32

WSAStartup
WSACleanup

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

Exports

Exports

AgsiEntry
DllCanUnloadNow
DllGetClassObject
DllRegisterServer

Sections

.text
Size: 628KB - Virtual size: 625KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 116KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1345d71a9f7750c773ba590a8347470b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

wsock32

version

Exports

Exports

Sections

.text Size: 628KB - Virtual size: 625KB

.rdata Size: 116KB - Virtual size: 114KB

.data Size: 24KB - Virtual size: 40KB

.rsrc Size: 68KB - Virtual size: 66KB

.reloc Size: 72KB - Virtual size: 70KB

.text
Size: 628KB - Virtual size: 625KB

.rdata
Size: 116KB - Virtual size: 114KB

.data
Size: 24KB - Virtual size: 40KB

.rsrc
Size: 68KB - Virtual size: 66KB

.reloc
Size: 72KB - Virtual size: 70KB