a696debcb2fc8ffa862677d9540f09f7200e4712d62a28f97207ba1ffd1a91be

General

Target

a696debcb2fc8ffa862677d9540f09f7200e4712d62a28f97207ba1ffd1a91be
Size

48KB
MD5

6b0c96af4f52e19f2db18d91d9120511
SHA1

363161884552f90a2e6fceca1c1f885735d049c4
SHA256

a696debcb2fc8ffa862677d9540f09f7200e4712d62a28f97207ba1ffd1a91be
SHA512

a18d8485406c8afd07e474b288492f857efeb3ae8cc73ed97c8b9aea5b327c7f7fdf157207ebee79aad690243af5c49ea5af5801031591082d751f96e200b210
SSDEEP

768:I1P9VZpkavsaeJrnfTYJX8VDKnK2WrgLa16uII:ITVwlaeJr7YJM0nXWkLaAm

Score

N/A

Malware Config

Signatures

Files

a696debcb2fc8ffa862677d9540f09f7200e4712d62a28f97207ba1ffd1a91be
.dll regsvr32 windows x86

8a2ce3eefd0fc07a1e98ef62d191da7f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLocalTime
CreateThread
LoadLibraryA
GetModuleFileNameA
GetProcAddress
GetSystemDirectoryA
CreateProcessA
VirtualAlloc
InterlockedIncrement
GetWindowsDirectoryA
WinExec
CloseHandle
CreateMutexA
GetLastError

user32

KillTimer
SetTimer
DefWindowProcA
SetWindowsHookExA
FindWindowExA
UnhookWindowsHookEx
GetMessageA
TranslateMessage
DispatchMessageA
CreateWindowExA
ShowWindow
RegisterClassExA
PostMessageA
CallNextHookEx

advapi32

RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

msvcrt

free
strrchr
_except_handler3
__CxxFrameHandler
??2@YAPAXI@Z
??3@YAXPAX@Z
_stricmp
strchr
fopen
_initterm
malloc
_adjust_fdiv
sprintf
fclose
fwrite

shlwapi

SHGetValueA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a2ce3eefd0fc07a1e98ef62d191da7f

Headers

File Characteristics

Imports

kernel32

user32

advapi32

msvcrt

shlwapi

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 21KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 8KB - Virtual size: 5KB

.rsrc Size: 4KB - Virtual size: 920B

.reloc Size: 4KB - Virtual size: 936B

.text
Size: 24KB - Virtual size: 21KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 4KB - Virtual size: 920B

.reloc
Size: 4KB - Virtual size: 936B