1ac55c734f11070741f1d55eaf7a80de862532e97d5abc1680171ae207ba002e

Sharing

Copy URL

Twitter E-mail

General

Target

1ac55c734f11070741f1d55eaf7a80de862532e97d5abc1680171ae207ba002e
Size

323KB
MD5

46292d992ad775c0ea91c6bc9e0f9740
SHA1

5f2b9bdaf665af81be0b988a087ccc1324264daf
SHA256

1ac55c734f11070741f1d55eaf7a80de862532e97d5abc1680171ae207ba002e
SHA512

2530696576feff4a3f05c14e5001b6595f5298f2f71f035a925e547b26a051df1ec4124f5419d84bece0b3ae54743e491fbb11e69c73c1222766e1fb3a993557
SSDEEP

6144:257NB4NleX2RWWLykwq3/niRkI9yYJHSy60VvMzEU4in:MNBelM2RWWLykwq3WkIcYJHdSzE

Score

N/A

Malware Config

Signatures

Files

1ac55c734f11070741f1d55eaf7a80de862532e97d5abc1680171ae207ba002e
.dll regsvr32 windows x86

a5444f9a17ed86c146c85c9c33700e7e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
_amsg_exit
_initterm
_XcptFilter
strlen
wcscmp
strncpy
fabs
cos
acos
free
malloc
??2@YAPAXI@Z
sin
memcpy
_purecall
strcmp
memcmp
_CIacos
_CIatan2
_CIcos
_CIsin
_CIsqrt
_CItan
pow
log10
??3@YAXPAX@Z
memset

user32

MessageBoxA

kernel32

WriteFile
SetEndOfFile
GetFileSize
SetFilePointer
GetTickCount
GetVersion
SetUnhandledExceptionFilter
UnhandledExceptionFilter
VirtualAlloc
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
RtlUnwind
Sleep
DisableThreadLibraryCalls
GetModuleFileNameA
GetLastError
SetEvent
WaitForSingleObject
WaitForMultipleObjects
CreateEventA
CreateThread
TryEnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedExchange
CreateFileA
CloseHandle
IsProcessorFeaturePresent
ReadFile
GetOverlappedResult
QueryPerformanceFrequency
HeapAlloc
OutputDebugStringA
GetCurrentThreadId
InterlockedCompareExchange
InterlockedIncrement
InterlockedDecrement
VirtualProtect
HeapFree
LeaveCriticalSection
EnterCriticalSection
QueryPerformanceCounter

advapi32

RegCloseKey
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyExA
RegSetValueExA

rpcrt4

RpcStringFreeA
UuidToStringA

ole32

CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance

Exports

Exports

ServiceMain
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 218KB - Virtual size: 217KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5444f9a17ed86c146c85c9c33700e7e

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

user32

kernel32

advapi32

rpcrt4

ole32

Exports

Exports

Sections

.text Size: 218KB - Virtual size: 217KB

.data Size: 1KB - Virtual size: 2KB

.rsrc Size: 96KB - Virtual size: 96KB

.reloc Size: 6KB - Virtual size: 5KB

.text
Size: 218KB - Virtual size: 217KB

.data
Size: 1KB - Virtual size: 2KB

.rsrc
Size: 96KB - Virtual size: 96KB

.reloc
Size: 6KB - Virtual size: 5KB