b41f9d9b46613d65bd7a4ec47e522f49b01e9c6fd1bac3ef4d3d3c5a9f2473bc

Sharing

Copy URL Twitter E-mail

General

Target

b41f9d9b46613d65bd7a4ec47e522f49b01e9c6fd1bac3ef4d3d3c5a9f2473bc
Size

100KB
MD5

8a22e32619d18b311278e986df81a376
SHA1

cd6506a018228d5380b3398f8f60b6bbf5f84592
SHA256

b41f9d9b46613d65bd7a4ec47e522f49b01e9c6fd1bac3ef4d3d3c5a9f2473bc
SHA512

050d317b06ff901122f27a3af924272650304e69e71886382cdbd2e8b8bde9166263734b35aef1f5f19f10b19707853117d3f88735e70134f1997490160c16f3
SSDEEP

3072:vIKhgs2Z0csrxHnPiJdzYQRjM8pybvUGUq:wy22B9HqgKjM8pyT

Score

N/A

Malware Config

Signatures

Files

b41f9d9b46613d65bd7a4ec47e522f49b01e9c6fd1bac3ef4d3d3c5a9f2473bc
.dll regsvr32 windows x86

4b2d7a0b03297cec836fb140b391c213

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetLastError
LoadLibraryA
CloseHandle
GetProcessHeap
ReleaseMutex
CreateMutexA
CopyFileA
InterlockedExchange
CreateFileMappingA
LeaveCriticalSection
CreateThread
ExpandEnvironmentStringsA
WriteFile
GetModuleHandleA
LocalFree
GetProcAddress
Sleep
InterlockedDecrement
CreateDirectoryA
HeapFree
HeapAlloc
ReadFile
MapViewOfFile
InterlockedIncrement
EnterCriticalSection
GetModuleFileNameA
GetCurrentProcessId
CreateFileA
GetSystemTimeAsFileTime
DeleteFileA
FindFirstVolumeW
GetTempPathA
GetWindowsDirectoryA
FreeLibraryAndExitThread
IsBadStringPtrW
FreeConsole
GetShortPathNameW
SetConsoleWindowInfo
SetErrorMode
OpenJobObjectW
GetComputerNameW
GetEnvironmentStrings
PeekNamedPipe
GetAtomNameW
GetCurrentDirectoryW
GetVolumePathNameW
WaitForMultipleObjectsEx
lstrcpyA
SetConsoleActiveScreenBuffer
FreeResource
GetDefaultCommConfigW
ClearCommError
IsBadReadPtr
OpenEventA
GetBinaryTypeW
lstrcmpW
GetFileAttributesW
RegisterWaitForSingleObject
GetFileSize
EnumResourceNamesW
FormatMessageW
OpenFileMappingA
SetFilePointer
GetSystemDefaultUILanguage
SetFileTime
SearchPathA
SleepEx
OpenSemaphoreA
GetFileTime
ConvertDefaultLocale
DeviceIoControl
lstrcmpiA
GetFileType
GetCommandLineW
FindResourceExW
OpenMutexW
GlobalGetAtomNameA
CreateWaitableTimerA
HeapWalk
IsValidLanguageGroup
GlobalGetAtomNameW
GetExitCodeThread
GetVersionExA
IsValidLocale
SetEnvironmentVariableW
SetHandleInformation
GetVersion
SetConsoleTextAttribute
GetVolumeInformationA
FindFirstFileA
CreateEventA
GetCurrentThreadId
SetCurrentDirectoryA
WaitForMultipleObjects
CreateDirectoryW
SuspendThread
FindNextChangeNotification
WriteConsoleInputA
WriteFileEx
FileTimeToLocalFileTime
IsBadWritePtr
GlobalFindAtomA
FindNextVolumeW
CallNamedPipeA
PostQueuedCompletionStatus
GlobalFindAtomW
ConnectNamedPipe
LCMapStringA
OpenSemaphoreW
GetModuleHandleW
LocalAlloc
SetConsoleScreenBufferSize
UnlockFile
WaitNamedPipeA
AreFileApisANSI
AddAtomA
GetConsoleCP
CompareStringA
GetThreadTimes
GetSystemWow64DirectoryW
FindNextFileA
SetSystemTime
GetThreadLocale
GetLocaleInfoW
DeleteCriticalSection
OpenFileMappingW
OpenMutexA
TerminateThread
GetVolumePathNamesForVolumeNameW
GetDriveTypeA
GetEnvironmentVariableW
GetStringTypeW
GetHandleInformation
CopyFileExW

shell32

SHGetFolderPathA
DragAcceptFiles
SHGetPathFromIDListA
ShellExecuteExA
ExtractIconExW
SHParseDisplayName
CommandLineToArgvW
SHGetFileInfoW
ShellExecuteA
ShellExecuteW
SHGetFolderPathW
SHGetSpecialFolderLocation
SHBrowseForFolderW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b2d7a0b03297cec836fb140b391c213

Headers

File Characteristics

Imports

kernel32

shell32

Exports

Exports

Sections

.text Size: 76KB - Virtual size: 73KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 76KB - Virtual size: 73KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 3KB