3583888ec11c161c414bab4eba77d4583ea3cab2de3c5528fb3bfdf15d41b5df

Sharing

Copy URL

Twitter E-mail

General

Target

3583888ec11c161c414bab4eba77d4583ea3cab2de3c5528fb3bfdf15d41b5df
Size

168KB
MD5

4a11890f7a790be719d6d08fb11113e5
SHA1

e29ee3b887de33271655152c22129939372951bc
SHA256

3583888ec11c161c414bab4eba77d4583ea3cab2de3c5528fb3bfdf15d41b5df
SHA512

b89bf65d2088f5162d181a51f49a205ba86c8ad8227c5961bda148ae0af0e4941c0fdc9149568118830a839f497a2cfa542e7eb2577bc1c94362cce715c3c2f7
SSDEEP

3072:VoUdxiMtj/mAccTzUmVBXcLW8y0QZBJkbW8N8xiEMA35L1o2vFszZ:VzDvVB2y0QZBJkb38xXf35LLK

Score

N/A

Malware Config

Signatures

Files

3583888ec11c161c414bab4eba77d4583ea3cab2de3c5528fb3bfdf15d41b5df
.dll regsvr32 windows x86

ae70d01b0b0985ba365a633f49a647e9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WriteFile
lstrcmpA
GetLocalTime
lstrcatA
HeapDestroy
GetCurrentProcess
GetModuleFileNameA
GetCurrentThreadId
DebugBreak
LoadLibraryExA
CreateThread
lstrcpyA
LoadLibraryA
GetProcAddress
ExitProcess
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
TlsGetValue
SetLastError
TlsSetValue
RtlUnwind
lstrlenA
GetStringTypeA
GetStringTypeW
TerminateProcess
GetStdHandle
GetCPInfo
GetACP
GetOEMCP
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
InterlockedIncrement
EnterCriticalSection
InterlockedDecrement
TerminateThread
MultiByteToWideChar
lstrcpynA
DisableThreadLibraryCalls
MulDiv
lstrlenW
LockResource
LoadResource
FindResourceA
GlobalFree
GlobalAlloc
GlobalSize
GlobalUnlock
GlobalLock
CloseHandle
ReadFile
GetFileSize
CreateFileA
LocalFree
LocalAlloc
WideCharToMultiByte
lstrcmpiA
GetLastError
LCMapStringW
LCMapStringA
SizeofResource
FreeLibrary
HeapCreate
HeapAlloc
HeapReAlloc
HeapFree

user32

MoveWindow
SetDlgItemInt
SetTimer
CreateDialogParamA
IsWindow
LoadStringA
MessageBoxA
SetWindowRgn
WinHelpA
IsDialogMessageA
SendDlgItemMessageA
GetDlgItemInt
GetWindowRgn
SetClassLongA
GetDialogBaseUnits
SetFocus
LoadCursorA
GetCursorPos
DialogBoxParamA
SetWindowTextA
EndDialog
CreateWindowExA
CallWindowProcA
GetClassInfoExA
wsprintfA
RegisterClassExA
GetWindowTextLengthA
GetWindowTextA
SetWindowLongA
InvalidateRect
CharNextA
SetDlgItemTextA
GetDlgItem
GetWindowRect
UnionRect
PtInRect
ShowWindow
DestroyWindow
KillTimer
GetKeyState
ReleaseDC
FillRect
GetDC
SendMessageA
DefWindowProcA
SetCursor
BeginPaint
GetClientRect
EndPaint
IntersectRect
EqualRect
OffsetRect
SetWindowPos
GetParent

gdi32

GetRgnBox
SetWindowExtEx
RestoreDC
DeleteObject
DeleteDC
BitBlt
CreateSolidBrush
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
ExtCreateRegion
GetTextExtentPointA
GetTextMetricsA
CreateFontIndirectA
GetDeviceCaps
LineTo
MoveToEx
CreateDCA
LPtoDP
SetMapMode
SetViewportOrgEx
CreateMetaFileA
SaveDC
SetWindowOrgEx
CreatePen
CreateDIBitmap
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
CreateBitmap
SetStretchBltMode
StretchBlt
GetRegionData
CreateRectRgn

comdlg32

GetOpenFileNameA

advapi32

RegSetValueExA
RegEnumKeyExA
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueExA
RegQueryInfoKeyA

ole32

CreateOleAdviseHolder
OleLoadFromStream
WriteClassStm
CoTaskMemRealloc
CreateStreamOnHGlobal
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CoTaskMemAlloc
CoTaskMemFree
OleSaveToStream

oleaut32

RegisterTypeLi
LoadTypeLi
LoadRegTypeLi
OleCreatePropertyFrame
SetErrorInfo
VariantChangeType
SysStringByteLen
SysAllocStringByteLen
SysAllocString
VarI4FromStr
OleLoadPicture
OleCreatePictureIndirect
VariantClear
SysStringLen
SysAllocStringLen
VariantInit
SysFreeString
OleTranslateColor

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ae70d01b0b0985ba365a633f49a647e9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 108KB - Virtual size: 104KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 8KB - Virtual size: 9KB

.rsrc Size: 20KB - Virtual size: 18KB

.reloc Size: 12KB - Virtual size: 10KB

.text
Size: 108KB - Virtual size: 104KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 8KB - Virtual size: 9KB

.rsrc
Size: 20KB - Virtual size: 18KB

.reloc
Size: 12KB - Virtual size: 10KB