d04e6cb0aeaa5c43649d9b819cc821273c6689b3d6199a5a11afa0a24739bd35

Sharing

Copy URL Twitter E-mail

General

Target

d04e6cb0aeaa5c43649d9b819cc821273c6689b3d6199a5a11afa0a24739bd35
Size

141KB
MD5

2401f0c7ebf78b80977a1dda3dac7900
SHA1

eba59134e360da102b8780c55732a5b8f1899ad0
SHA256

d04e6cb0aeaa5c43649d9b819cc821273c6689b3d6199a5a11afa0a24739bd35
SHA512

24f7ec914dbf2021c462df3f0270c822b85603e46272c281eda3d615150f46acaf0bc404421ea48d05bea3de8ea21f1fe7f9bb8b7cf89b0491be0851167c6459
SSDEEP

3072:hqiFFxbLe1FJT/uWgkcVq9STV08Xo93089tY5kk8:sixEJT5gPVq9STV08a3E5kk8

Score

N/A

Malware Config

Signatures

Files

d04e6cb0aeaa5c43649d9b819cc821273c6689b3d6199a5a11afa0a24739bd35
.dll regsvr32 windows x86

19e26094fc79e9a52e6e1df59623be88

Code Sign

1e:66:44:82:57:2d:9f:42:8f:57:1e:30:73:ad:fa:1f
Certificate

Issuer

CN=Asert,OU=Asert,O=Asert,L=Origert,C=ER,1.2.840.113549.1.9.1=#0c0e61646d696e4041736572742e6572

Not Before

02/04/2012, 00:00

Not After

01/04/2013, 23:59

Subject

CN=Asert,OU=Asert,O=Asert,L=Origert,C=ER,1.2.840.113549.1.9.1=#0c0e61646d696e4041736572742e6572

Extended Key Usages

ExtKeyUsageCodeSigning
ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

Signer

Actual PE Digest

Digest Algorithm

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

xpcom

NS_GetServiceManager
NS_StringGetMutableData
NS_GetComponentManager
NS_StringContainerInit2
NS_CStringGetData
NS_CStringContainerFinish
NS_CStringContainerInit
NS_CStringSetData
NS_StringSetDataRange
NS_CStringSetDataRange
NS_StringContainerInit
NS_StringSetData
NS_StringGetData
NS_StringCopy
NS_StringContainerFinish

kernel32

GetLocaleInfoA
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
lstrcmpA
lstrlenA
FindResourceExW
FindResourceW
LoadResource
GlobalAlloc
WideCharToMultiByte
LoadLibraryW
SizeofResource
lstrcmpW
lstrlenW
GetProcAddress
GlobalFree
LockResource
GetModuleFileNameA
SetFilePointer
SetEndOfFile
GlobalLock
WriteFile
GetFileAttributesW
ReadFile
GetModuleFileNameW
CreateFileW
MultiByteToWideChar
GlobalUnlock
GetLastError
InterlockedExchangeAdd
lstrcmpiW
lstrcatW
FindNextFileW
GetFileTime
GetCurrentThreadId
CloseHandle
GetCurrentProcessId
lstrcpyW
lstrcpyA
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
LoadLibraryA
GetStringTypeW
GetStringTypeA
VirtualAlloc
SetStdHandle
InterlockedExchange
GetACP
ExitProcess
GetThreadLocale
GetVersionExA
RaiseException
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
RtlUnwind
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetOEMCP
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
LCMapStringA
LCMapStringW
GetStdHandle
Sleep
GetSystemTimeAsFileTime

user32

CloseClipboard
SetTimer
GetTopWindow
KillTimer
GetParent
wsprintfA
wsprintfW
GetKeyboardLayout
GetClassNameW
GetWindow
UnregisterClassA

Exports

Exports

DllRegisterServer
DllUnregisterServer
NSModule

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

19e26094fc79e9a52e6e1df59623be88

Code Sign

1e:66:44:82:57:2d:9f:42:8f:57:1e:30:73:ad:fa:1fCertificate

Extended Key Usages

Key Usages

Signer

Headers

File Characteristics

Imports

xpcom

kernel32

user32

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 28KB - Virtual size: 25KB

.data Size: 8KB - Virtual size: 20KB

.reloc Size: 12KB - Virtual size: 9KB

1e:66:44:82:57:2d:9f:42:8f:57:1e:30:73:ad:fa:1f
Certificate

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 28KB - Virtual size: 25KB

.data
Size: 8KB - Virtual size: 20KB

.reloc
Size: 12KB - Virtual size: 9KB