a52441501a0b8a02344bce6b40b499fc379bde250336498261a0bc6f26fbc2e9

Sharing

Copy URL Twitter E-mail

General

Target

a52441501a0b8a02344bce6b40b499fc379bde250336498261a0bc6f26fbc2e9
Size

177KB
MD5

75a22e6399511a15be1c6425c2a2495f
SHA1

3d9769edf937e578c8cfd65eabbf441b6bd9f77f
SHA256

a52441501a0b8a02344bce6b40b499fc379bde250336498261a0bc6f26fbc2e9
SHA512

cd71907b4ce44f583c2d7a20abb99f58cebc5a5afb15a7523197150a6ddb63639e979ec7066b7a6fd3bfc11ab32503e506b64874ab2de66d571c85090783016b
SSDEEP

3072:HUdKqFpIlNio0TWNMFYFZbxQZkjDYgpg7+kozPp5CHoIAV8t5PFu9syDAr0c:zqFycoaWNMFMjVkz7eDpjIAunyDA

Score

N/A

Malware Config

Signatures

Files

a52441501a0b8a02344bce6b40b499fc379bde250336498261a0bc6f26fbc2e9
.dll regsvr32 windows x86

73498f884f7d191972e103cac9d649aa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

sprintf
sscanf
free
malloc
??2@YAPAXI@Z
??3@YAXPAX@Z

kernel32

TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetVersionExW
DisableThreadLibraryCalls
lstrlenW
MultiByteToWideChar
lstrlenA
GetModuleFileNameA
lstrcpynW
InterlockedIncrement
InterlockedDecrement
VirtualAlloc
lstrcmpW
FreeLibrary
VirtualProtect
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
GetLastError
GetModuleHandleA
InitializeCriticalSection
MulDiv
IsBadReadPtr
IsBadWritePtr
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection

gdi32

CreateCompatibleDC
DeleteDC
CreateFontIndirectA
SetBkMode
DeleteObject
CreateDIBSection
SelectObject
ExtTextOutA
SetBkColor
GetTextMetricsA
GetSystemPaletteEntries
GetDeviceCaps
GetTextColor
SetTextColor

user32

KillTimer
IsRectEmpty
ReleaseDC
GetDC
UnregisterClassA
SendMessageTimeoutA
DefWindowProcA
ShowWindow
CreateWindowExA
RegisterClassA
CheckDlgButton
SetWindowTextA
SendMessageA
GetDlgItem
IsDlgButtonChecked
MessageBeep
GetWindowTextA
wsprintfW
GetWindowLongW
SetWindowLongW
CreateDialogParamW
MoveWindow
InvalidateRect
DestroyWindow
DefWindowProcW
LoadStringW
GetWindowRect
GetDesktopWindow
SetTimer
SetRect

advapi32

RegDeleteKeyW
RegCloseKey
RegOpenKeyExW
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegEnumKeyExW

ole32

CoCreateInstance
CoUninitialize
StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
CoFreeUnusedLibraries
CoInitialize

Exports

Exports

ServiceMain
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

73498f884f7d191972e103cac9d649aa

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

gdi32

user32

advapi32

ole32

Exports

Exports

Sections

.text Size: 43KB - Virtual size: 42KB

.data Size: 512B - Virtual size: 500B

.rsrc Size: 130KB - Virtual size: 129KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 43KB - Virtual size: 42KB

.data
Size: 512B - Virtual size: 500B

.rsrc
Size: 130KB - Virtual size: 129KB

.reloc
Size: 3KB - Virtual size: 2KB