70a4c60c238cab10b9d16b5f4d3127ab9bc6ea5217650c19bc5a00c80fdb5f67

Sharing

Copy URL Twitter E-mail

General

Target

70a4c60c238cab10b9d16b5f4d3127ab9bc6ea5217650c19bc5a00c80fdb5f67
Size

491KB
MD5

49ad7d8f56b5791a750b25e65d411000
SHA1

56083e2a9a959c3673dce898648f8cd35f360c0a
SHA256

70a4c60c238cab10b9d16b5f4d3127ab9bc6ea5217650c19bc5a00c80fdb5f67
SHA512

d184e8cb9bf8f6476fb4f3e122be9952d734f07252753a65084470e0baf917d8d314042d622c75d929e775aa44575dd2ea70801d944d4ac201171f2a6e709188
SSDEEP

6144:lJ5KkNXZ7S0gRMaEl923IDjszt8T62RjNVNaSp+p2XGoiRcuCjx2PLAh1x:DEk1Q0g0Mu62Rj/cbpqsRcuEn1

Score

N/A

Malware Config

Signatures

Files

70a4c60c238cab10b9d16b5f4d3127ab9bc6ea5217650c19bc5a00c80fdb5f67
.dll regsvr32 windows x86

fbec479f2881e218f9ffd9d20f18d74b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

__dllonexit
??2@YAPAXI@Z
memmove
free
realloc
_ftol
_purecall
malloc
wcscpy
_wtoi
_except_handler3
__CxxFrameHandler
printf
fprintf
_iob
?terminate@@YAXXZ
_snwprintf
_wcsicmp
_onexit
??3@YAXPAX@Z
_adjust_fdiv
_initterm
atof
sprintf
swscanf
swprintf
vswprintf
iswdigit
wcscmp
wcsncpy
_wcslwr
wcslen
wcsstr

kernel32

LoadLibraryA
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
InterlockedDecrement
ResetEvent
SetEvent
SetThreadPriority
CreateEventW
CloseHandle
WriteFile
ReadFile
WaitForSingleObject
lstrlenW
CreateFileW
GetTempFileNameW
DeleteFileW
SetEndOfFile
SetFilePointerEx
GetLastError
GlobalMemoryStatus
MulDiv
GetCurrentThread
GetCurrentThreadId
GetFileAttributesW
SetErrorMode
VirtualAlloc
Sleep
GetTempPathW
QueryPerformanceCounter
QueryPerformanceFrequency
CreateSemaphoreW
WaitForMultipleObjects
DisableThreadLibraryCalls
SystemTimeToFileTime
WideCharToMultiByte
GetVersionExW
FreeLibrary
GetProcAddress
LoadLibraryW
HeapDestroy
IsBadWritePtr
lstrlenA
LocalFree
FormatMessageW
CompareStringW
TryEnterCriticalSection
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
lstrcpynW
ReleaseSemaphore
GetSystemInfo
VirtualFree
lstrcmpW
GetModuleHandleW
lstrcpyW
InterlockedExchange
GetThreadPriority
MultiByteToWideChar
GetModuleFileNameA
CreateEventA
IsBadReadPtr
CreateThread

oleaut32

VariantInit
SysFreeString
SysAllocString
SysAllocStringLen
SysStringLen
LoadRegTypeLi

user32

ShowWindow
CreateWindowExW
LoadCursorW
LoadIconW
IsRectEmpty
PtInRect
IsWindowVisible
GetWindow
IsIconic
GetParent
GetCursor
AttachThreadInput
GetWindowThreadProcessId
WindowFromPoint
CopyRect
EqualRect
GetSystemMetrics
IsWindow
DrawIconEx
GetIconInfo
GetDesktopWindow
GetCursorPos
SendMessageW
SetWindowPlacement
GetDlgItem
SetWindowLongW
SendDlgItemMessageW
EnableWindow
GetWindowLongW
CreateDialogParamW
MessageBoxW
RedrawWindow
SetCapture
EnumWindows
SetCursor
IsChild
ClientToScreen
GetWindowTextW
DestroyWindow
ReleaseCapture
CallWindowProcW
SetDlgItemInt
GetDlgItemInt
CharNextW
GetDlgItemTextA
SetDlgItemTextW
PeekMessageW
MsgWaitForMultipleObjects
wsprintfW
PostThreadMessageW
RegisterWindowMessageW
GetQueueStatus
MoveWindow
InvalidateRect
DispatchMessageW
GetDC
ReleaseDC
SetRectEmpty
GetWindowRect
DefWindowProcW
LoadStringW
CreateDialogParamA
GetWindowPlacement

ole32

CoUninitialize
CoTaskMemAlloc
CoCreateInstance
OleFlushClipboard
OleIsCurrentClipboard
CoFreeUnusedLibraries
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc
CLSIDFromString
CoInitialize

gdi32

CreateCompatibleBitmap
SelectPalette
SetROP2
Rectangle
CreatePen
GetDIBits
GetSystemPaletteEntries
CreatePalette
RealizePalette
SelectObject
BitBlt
CreateCompatibleDC
DeleteObject
GetPixel
DeleteDC
GetDeviceCaps

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegDeleteKeyW
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW

winmm

timeEndPeriod
timeBeginPeriod
timeKillEvent
timeSetEvent
timeGetTime

gdiplus

GdipGraphicsClear
GdipDrawImageRectRect
GdipAlloc
GdipCloneImage
GdipGetImageThumbnail
GdipSaveImageToFile
GdipGetImageWidth
GdipGetImageHeight
GdipSetSmoothingMode
GdipImageRotateFlip
GdipCreateBitmapFromFile
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromScan0
GdipCreateHBITMAPFromBitmap
GdipSetInterpolationMode
GdipGetImageGraphicsContext
GdipFree
GdipCreateBitmapFromGdiDib
GdipDeleteGraphics
GdipGetImagePixelFormat
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipDrawImageRectI
GdipDisposeImage

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 274KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 81KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fbec479f2881e218f9ffd9d20f18d74b

Headers

File Characteristics

Imports

msvcrt

kernel32

oleaut32

user32

ole32

gdi32

advapi32

winmm

gdiplus

Exports

Exports

Sections

.text Size: 274KB - Virtual size: 273KB

.data Size: 81KB - Virtual size: 258KB

.rsrc Size: 114KB - Virtual size: 113KB

.reloc Size: 21KB - Virtual size: 21KB

.text
Size: 274KB - Virtual size: 273KB

.data
Size: 81KB - Virtual size: 258KB

.rsrc
Size: 114KB - Virtual size: 113KB

.reloc
Size: 21KB - Virtual size: 21KB