850ce1b2516f68593307535ed87d22e86c52095a73c2fc15a3636fc0fa986728

Sharing

Copy URL

Twitter E-mail

General

Target

850ce1b2516f68593307535ed87d22e86c52095a73c2fc15a3636fc0fa986728
Size

188KB
MD5

ab3b43796071e04695baaa7f9ab362af
SHA1

6ee21d21a0f85609bb687b53da5983ca0d55246d
SHA256

850ce1b2516f68593307535ed87d22e86c52095a73c2fc15a3636fc0fa986728
SHA512

8f318d9e4ca107c760d8d7eaa622dd949c1b4e5ad9edcfb0ef6ab0055a5a30de4beb9004e9423ae705d57f326f955b90e06bc57abdac152ca6c40ad2bb3f7167
SSDEEP

3072:rz93GsSxgbY/SqTz6B7ntRf7vUUTkoEYcNfO:HJGpO/++N/fxTkoE9fO

Score

N/A

Malware Config

Signatures

Files

850ce1b2516f68593307535ed87d22e86c52095a73c2fc15a3636fc0fa986728
.dll regsvr32 windows x86

b258d88141eef1de350d525be6a9730f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

SHDeleteValueA

ws2_32

WSAStartup
gethostbyname
inet_ntoa
gethostname

wininet

FtpOpenFileA
InternetCloseHandle
InternetReadFile
InternetOpenUrlA
InternetOpenA
HttpOpenRequestA
HttpSendRequestA
FtpPutFileA
FtpDeleteFileA
InternetConnectA
FtpCreateDirectoryA
InternetWriteFile

kernel32

VirtualQuery
GetSystemInfo
VirtualProtect
GetStringTypeW
InterlockedExchange
GetACP
GetLocaleInfoA
GetThreadLocale
GetVersionExA
MultiByteToWideChar
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceA
FindResourceExA
GetVersion
CompareStringA
CompareStringW
lstrlenA
GetModuleFileNameA
Sleep
GetModuleHandleA
GetLastError
GetModuleHandleW
GetProcAddress
InterlockedIncrement
InterlockedDecrement
lstrcatA
FlushFileBuffers
WriteFile
SetFilePointer
CreateFileA
lstrcpynA
LoadLibraryW
SetLastError
GetModuleFileNameW
OutputDebugStringA
LoadLibraryA
lstrcmpA
FreeLibrary
DeleteFileA
GetFileSize
GetSystemDirectoryA
ReadFile
GetLocalTime
GetComputerNameA
FileTimeToLocalFileTime
GetFileTime
CreateThread
GetWindowsDirectoryA
WaitForMultipleObjects
CreateMutexA
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetTimeZoneInformation
GetCurrentProcess
lstrcpyA
SetStdHandle
SetEndOfFile
HeapCreate
SetEnvironmentVariableA
VirtualFree
VirtualAlloc
CloseHandle
TerminateProcess
LCMapStringW
LCMapStringA
TlsAlloc
TlsGetValue
SetUnhandledExceptionFilter
ExitProcess
GetCommandLineA
TlsSetValue
GetCurrentThreadId
GetSystemTimeAsFileTime
RtlUnwind
RaiseException
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
TlsFree
GetCPInfo
GetOEMCP
LocalFree
IsBadWritePtr

user32

MessageBoxA
ShowWindow
GetDlgItemTextA
EndDialog
SetDlgItemTextA
GetDlgItem
SendMessageA
wsprintfA
DialogBoxParamA
CharToOemA
IsCharAlphaNumericA

gdi32

CreateSolidBrush
CreateFontA
SetBkColor

advapi32

RegOpenKeyExA
RegQueryValueExA
RegEnumKeyExA
RegCreateKeyExA
RegCloseKey
RegSetValueA
RegSetValueExA

shell32

ShellExecuteA

ole32

OleInitialize
CoInitialize
CoCreateInstance

oleaut32

SysStringByteLen
SysAllocStringByteLen
VariantChangeType
VariantCopy
SysAllocString
VariantClear
VariantInit
SysFreeString
SysAllocStringLen
GetErrorInfo

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer

Sections

.text
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

b258d88141eef1de350d525be6a9730f

Headers

File Characteristics

Imports

shlwapi

ws2_32

wininet

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 172KB - Virtual size: 172KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 8KB - Virtual size: 8KB

.text
Size: 172KB - Virtual size: 172KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 8KB - Virtual size: 8KB