a1f037d528a9d246086084be6e720b429ca3de45bf8ae437651217f981a3b48c

General

Target

a1f037d528a9d246086084be6e720b429ca3de45bf8ae437651217f981a3b48c
Size

189KB
MD5

5c8c259bc0258faf614fa90628bc0433
SHA1

9a9304fc110816068d3d6fd0c3f5a7e4d8481f04
SHA256

a1f037d528a9d246086084be6e720b429ca3de45bf8ae437651217f981a3b48c
SHA512

2ba7df502ab2c8bd7130dd9777e276464f5a916ac5ef221a1e02559da60f371c492c90d03d23d341de8a0f1152f46995e972cfdd4558873c77809f2c1877bf4e
SSDEEP

3072:samJi+Vr+G04PII+Y+Xjs7ryJjhjcxyvBkQL7N4As/dy+U9rR0nXjf:sLJ904x+X8OJ9I47Ndgy5A

Score

N/A

Malware Config

Signatures

Files

a1f037d528a9d246086084be6e720b429ca3de45bf8ae437651217f981a3b48c
.dll regsvr32 windows x86

8c978d4583962bf829e17352e429b77a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

??2@YAPAXI@Z
_except_handler3
free
_initterm
??3@YAXPAX@Z
_adjust_fdiv
malloc

kernel32

LeaveCriticalSection
TerminateProcess
EnterCriticalSection
SetLastError
lstrlenW
GetModuleFileNameW
InterlockedIncrement
InterlockedDecrement
GetLastError
GetProcAddress
GetModuleHandleW
lstrcmpiW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
DeleteCriticalSection
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
InitializeCriticalSectionAndSpinCount

ole32

CoCreateInstance
CoTaskMemAlloc
StringFromCLSID
CoTaskMemFree

advapi32

RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegOpenKeyExW

winspool.drv

OpenPrinterW
ClosePrinter

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 172KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 688B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c978d4583962bf829e17352e429b77a

Headers

File Characteristics

Imports

msvcrt

kernel32

ole32

advapi32

winspool.drv

Exports

Exports

Sections

.text Size: 13KB - Virtual size: 13KB

.data Size: 172KB - Virtual size: 172KB

.rsrc Size: 1024B - Virtual size: 992B

.reloc Size: 1024B - Virtual size: 688B

.text
Size: 13KB - Virtual size: 13KB

.data
Size: 172KB - Virtual size: 172KB

.rsrc
Size: 1024B - Virtual size: 992B

.reloc
Size: 1024B - Virtual size: 688B