38fb1271164341b13679a861232f443fe43ec0ea6316ed32c6bd2f4284446046

Sharing

Copy URL Twitter E-mail

General

Target

38fb1271164341b13679a861232f443fe43ec0ea6316ed32c6bd2f4284446046
Size

148KB
MD5

7e804b62280bed4f239059b577c03718
SHA1

e3fbd969c3bf446e32a7015eb41bcd0fa5dfd720
SHA256

38fb1271164341b13679a861232f443fe43ec0ea6316ed32c6bd2f4284446046
SHA512

317cd86f22119360731debc9734d1e079f43500d8c4d7cf3efe6a113a92a070d7248d02417705a56f9eaf46b2319aa52485cc5a39f0b6cdf16f930e409d0ff03
SSDEEP

3072:YD/UEzhLpXkdQcJOAhXbxz/zncspnvuiyWd2VNc:zc0nXbZrZvuiy9V

Score

N/A

Malware Config

Signatures

Files

38fb1271164341b13679a861232f443fe43ec0ea6316ed32c6bd2f4284446046
.dll regsvr32 windows x86

3d47f1bea3590fc3f51b771a592f2081

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetLastError
FindResourceA
GetLocaleInfoA
LoadResource
LockResource
GetModuleFileNameA
InterlockedDecrement
InterlockedIncrement
GetProcAddress
lstrcatA
GetFileAttributesA
DisableThreadLibraryCalls
GetVersion
InitializeCriticalSection
lstrcpynA
DeleteCriticalSection
FreeLibrary
GlobalAlloc
CreateFileA
GetFileSize
GlobalUnlock
GlobalLock
ReadFile
IsDBCSLeadByte
GlobalFree
CloseHandle
GetWindowsDirectoryA
LoadLibraryA
lstrcmpiA
MulDiv
GetProcessHeap
HeapFree
lstrlenA
WideCharToMultiByte
lstrlenW
HeapReAlloc
LeaveCriticalSection
EnterCriticalSection
lstrcpyA
HeapAlloc
MultiByteToWideChar

user32

OffsetRect
ClientToScreen
IntersectRect
SetWindowRgn
GetActiveWindow
EqualRect
PtInRect
CallWindowProcA
ReleaseCapture
SetCapture
GetCapture
ScrollWindowEx
BeginPaint
MoveWindow
UpdateWindow
IsWindowEnabled
InflateRect
GetWindowTextA
SetWindowTextA
UnregisterClassA
DestroyWindow
CharNextA
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
IsWindow
MessageBeep
MessageBoxA
SetFocus
IsWindowVisible
GetClientRect
EndPaint
SetWindowLongA
DefWindowProcA
RegisterClassA
GetWindowLongA
ShowWindow
SetParent
LoadStringA
GetKeyState
wsprintfA
WinHelpA
GetWindow
IsDialogMessageA
SetWindowPos
InvalidateRect
GetFocus
CheckDlgButton
SetRect
DrawFocusRect
LoadBitmapA
MapDialogRect
IsDlgButtonChecked
EnableWindow
GetDC
GetSysColor
FillRect
DrawEdge
DrawTextA
ReleaseDC
ValidateRect
GetDlgItem
GetWindowRect
ScreenToClient
SendMessageA
GetParent
CreateDialogIndirectParamA
GetNextDlgTabItem
IsChild
CreateWindowExA

ole32

CreateOleAdviseHolder
CoCreateInstance
CoTaskMemAlloc
CreateStreamOnHGlobal
CoTaskMemFree

advapi32

RegDeleteKeyA
RegQueryValueExA
RegEnumKeyExA
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

oleaut32

LoadRegTypeLi
OleCreatePropertyFrame
SetErrorInfo
LoadTypeLibEx
UnRegisterTypeLi
SysAllocStringLen
RegisterTypeLi
GetErrorInfo
LoadTypeLi
SysAllocString
OleCreatePictureIndirect
VariantChangeType
OleLoadPicture
OleTranslateColor
SysStringLen
VariantInit
VariantClear
OleCreateFontIndirect
CreateErrorInfo
SysFreeString

comdlg32

GetOpenFileNameA
ChooseColorA

gdi32

CreateRectRgnIndirect
GetPixel
CreateCompatibleDC
GetViewportExtEx
CreateBitmap
SetWindowOrgEx
SetViewportOrgEx
CreateDCA
SetViewportExtEx
SetMapMode
SetWindowExtEx
GetWindowExtEx
DeleteObject
LPtoDP
GetDeviceCaps
CreateICA
DeleteDC
SetBkColor
SetTextColor
SelectObject
GetObjectA
ExtTextOutA
CreateSolidBrush
CreateFontIndirectA
EnumFontFamiliesA
GetTextExtentPoint32A
BitBlt

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d47f1bea3590fc3f51b771a592f2081

Headers

File Characteristics

Imports

kernel32

user32

ole32

advapi32

oleaut32

comdlg32

gdi32

Exports

Exports

Sections

.text Size: 52KB - Virtual size: 48KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 1KB

.idata Size: 64KB - Virtual size: 60KB

.rsrc Size: 8KB - Virtual size: 6KB

.reloc Size: 8KB - Virtual size: 4KB

.text
Size: 52KB - Virtual size: 48KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 1KB

.idata
Size: 64KB - Virtual size: 60KB

.rsrc
Size: 8KB - Virtual size: 6KB

.reloc
Size: 8KB - Virtual size: 4KB