1a032633bfa88eea880add2f1b401d0217abf1f26574977a3f0b50c20122f2dc

General

Target

1a032633bfa88eea880add2f1b401d0217abf1f26574977a3f0b50c20122f2dc
Size

132KB
MD5

f35758db9d83a72f17c8ffca600ccb26
SHA1

1af73b8d0c354ab7f44268701d66a06ae8d85aa0
SHA256

1a032633bfa88eea880add2f1b401d0217abf1f26574977a3f0b50c20122f2dc
SHA512

cae4b1511215373d803676d2b7127a93dc6400a95ea3ed1e7b255248b70de2fe5f9b44a481044edeb98ee320f68ed270dc0c94d5fab08971623b5d580209c7bd
SSDEEP

3072:BzsSy6u4NjSOlWJ7ADTMSoqyyuGMa5XEf969ezDiebY7zz:BYPqjSSWRADTM7qTMqXEf8IlY

Score

N/A

Malware Config

Signatures

Files

1a032633bfa88eea880add2f1b401d0217abf1f26574977a3f0b50c20122f2dc
.dll regsvr32 windows x86

bc0e0056a95a6a58c8b5e1e274d0d3e7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_adjust_fdiv
_onexit
??2@YAPAXI@Z
__dllonexit
malloc
_initterm
_beginthreadex
free
__CxxFrameHandler
_endthreadex
wcsncpy
wcsstr
wcstoul
_ultow
_except_handler3
wcstombs
_EH_prolog
_stricmp
tolower
_CIpow
_ftol
wcslen
wcscpy
wcscat
_wcsicmp
wcscmp
_purecall
??3@YAXPAX@Z

kernel32

IsBadCodePtr
EnterCriticalSection
IsBadReadPtr
IsBadWritePtr
SetEvent
WaitForSingleObject
CreateEventA
MultiByteToWideChar
WideCharToMultiByte
CloseHandle
LoadLibraryA
GetProcAddress
GetModuleFileNameA
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
DisableThreadLibraryCalls
GetTickCount
InterlockedIncrement
InterlockedDecrement
GetCurrentThreadId

advapi32

RegEnumKeyA
RegDeleteKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

ole32

CLSIDFromProgID
CoTaskMemFree
StringFromCLSID
CoUninitialize
CoInitialize
CoCreateInstance

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc0e0056a95a6a58c8b5e1e274d0d3e7

Headers

File Characteristics

Imports

msvcrt

kernel32

advapi32

ole32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 68KB

.data Size: 58KB - Virtual size: 58KB

.rsrc Size: 1024B - Virtual size: 984B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 68KB - Virtual size: 68KB

.data
Size: 58KB - Virtual size: 58KB

.rsrc
Size: 1024B - Virtual size: 984B

.reloc
Size: 4KB - Virtual size: 3KB