b3fd8fc9bfba5593e387f35453425dfc0ea2b292543858afb4fc81a8e978b2ba

Sharing

Copy URL Twitter E-mail

General

Target

b3fd8fc9bfba5593e387f35453425dfc0ea2b292543858afb4fc81a8e978b2ba
Size

124KB
MD5

89d0932e1cdddaf0160e4de52b4646a4
SHA1

962cbc70b10c3cf2656d161c36e18500051ea2c6
SHA256

b3fd8fc9bfba5593e387f35453425dfc0ea2b292543858afb4fc81a8e978b2ba
SHA512

84c35500766c6c832261df03db715daa520163f03603fa0ed99e44a28fcd365fad1d88bc457335b9e946c0be41632423d96d8f08b4d55804eac2edb34bf3a376
SSDEEP

3072:5UQTw9OMua4c6OrL70UjlqXl9oM87N2AEUV:5UmDarZ7BjlUl2N

Score

N/A

Malware Config

Signatures

Files

b3fd8fc9bfba5593e387f35453425dfc0ea2b292543858afb4fc81a8e978b2ba
.dll regsvr32 windows x86

1c7b072d5a2ccb7b3d4536ce630e5bd2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCPInfo
GetOEMCP
HeapAlloc
HeapReAlloc
RtlUnwind
ExitProcess
TerminateProcess
RaiseException
HeapSize
GetACP
HeapCreate
VirtualFree
HeapFree
VirtualAlloc
GetCommandLineA
SetHandleCount
GetStdHandle
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
LoadResource
SizeofResource
FreeLibrary
WideCharToMultiByte
GetModuleFileNameA
GetShortPathNameA
lstrlenA
MultiByteToWideChar
lstrlenW
EnterCriticalSection
InterlockedIncrement
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
WriteFile
GetProcessVersion
GetCurrentProcess
GlobalAddAtomA
GlobalGetAtomNameA
GlobalFindAtomA
GetModuleHandleA
WritePrivateProfileStringA
SetLastError
GlobalFlags
TlsGetValue
GetVersion
SetErrorMode
GlobalReAlloc
LocalReAlloc
TlsSetValue
GlobalUnlock
TlsFree
GlobalHandle
GetFileType
LocalFree
GlobalFree
InterlockedDecrement
TlsAlloc
LocalAlloc
GlobalLock
CloseHandle
lstrcmpA
GlobalAlloc
GlobalDeleteAtom
lstrcatA
GetCurrentThread
GetCurrentThreadId
GetProcAddress
lstrcpyA
LoadLibraryA
lstrcpynA
HeapDestroy
IsDBCSLeadByte
GetLastError
lstrcmpiA
LoadLibraryExA
GetStartupInfoA
FindResourceA
FreeEnvironmentStringsA
IsBadWritePtr

user32

GetMenuItemID
GetSubMenu
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
MapWindowPoints
LoadIconA
LoadCursorA
GetSysColorBrush
DestroyMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetSystemMetrics
SetFocus
ShowWindow
SetWindowPos
SetWindowLongA
GetSysColor
GrayStringA
DestroyWindow
CreateWindowExA
DefWindowProcA
DrawTextA
TabbedTextOutA
ReleaseDC
GetDC
GetMenuItemCount
wsprintfA
GetWindowTextA
GetWindow
GetDlgCtrlID
GetWindowRect
PtInRect
GetClassNameA
UnregisterClassA
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
IsWindowEnabled
GetWindowLongA
EnableWindow
SetCursor
SendMessageA
PostMessageA
PostQuitMessage
LoadStringA
CharNextA
GetDlgItem
SetForegroundWindow
FindWindowA
MessageBoxA
GetMessagePos
GetForegroundWindow
RegisterWindowMessageA
ClientToScreen
SetWindowTextA

gdi32

SelectObject
GetStockObject
RestoreDC
SetBkColor
SetMapMode
SetViewportOrgEx
SetTextColor
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
GetClipBox
ScaleWindowExtEx
DeleteDC
DeleteObject
GetDeviceCaps
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
GetObjectA
CreateBitmap
SaveDC

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegEnumKeyExA
RegQueryInfoKeyA
RegEnumValueA

comctl32

ord17

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance
CoTaskMemFree

oleaut32

SysAllocString
VarUI4FromStr
SysFreeString
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
VariantClear
SysStringLen

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1c7b072d5a2ccb7b3d4536ce630e5bd2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 59KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 8KB - Virtual size: 14KB

.rsrc Size: 20KB - Virtual size: 16KB

.reloc Size: 12KB - Virtual size: 10KB

.text
Size: 60KB - Virtual size: 59KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 8KB - Virtual size: 14KB

.rsrc
Size: 20KB - Virtual size: 16KB

.reloc
Size: 12KB - Virtual size: 10KB