86061bf7545e0eb3773eff4f170bca84e0db12a991d5873e67d282f0d73a43a3

Sharing

Copy URL Twitter E-mail

General

Target

86061bf7545e0eb3773eff4f170bca84e0db12a991d5873e67d282f0d73a43a3
Size

92KB
MD5

9deb7d51b8ebd2ce924af0d49c0a5016
SHA1

17338f9125d09b8202af51750d2d292cf495b2cf
SHA256

86061bf7545e0eb3773eff4f170bca84e0db12a991d5873e67d282f0d73a43a3
SHA512

48379e11bed85e6b7cc2a229f8cdab852a0f9709a43d69441b10bfd1552bb7d9f3c704a15003b44de0a30ce635c2b707da58b878b6df88c6d819b4b16c260549
SSDEEP

1536:XGRR0oTdBG26V3UNwf3k8r8+nTaZvwAKVxJ9Pc/Hliyl9C3EIZ:XWRD62s3UefU8r8NZvwAKfJ9cdinEI

Score

N/A

Malware Config

Signatures

Files

86061bf7545e0eb3773eff4f170bca84e0db12a991d5873e67d282f0d73a43a3
.dll regsvr32 windows x86

5b88b263e1bdf860abf802ad09734bfa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
EnumResourceNamesW
FreeLibraryAndExitThread
GetConsoleOutputCP
FileTimeToDosDateTime
lstrcatA
GetEnvironmentVariableW
FillConsoleOutputAttribute
ReadFileEx
CreateConsoleScreenBuffer
EnumSystemLocalesA
VirtualAlloc
CreateTimerQueueTimer
VirtualAllocEx
RemoveDirectoryW
FindNextVolumeW
GetDiskFreeSpaceExW
OpenProcess
WaitForSingleObjectEx
SetProcessWorkingSetSize
ReplaceFileW
CreateNamedPipeW
AssignProcessToJobObject
ReadConsoleW
GlobalFindAtomW
SetCurrentDirectoryW
WriteFileEx
WriteProfileStringW
ExitProcess
FindResourceA
GetTempPathW
TerminateJobObject
RegisterWaitForSingleObject
SetConsoleMode
LCMapStringW
SetVolumeLabelA
GetTempFileNameW
HeapSetInformation
SetEnvironmentVariableA
GetTimeZoneInformation
GetFileInformationByHandle
ConvertDefaultLocale
GetDefaultCommConfigW
OpenJobObjectW
CancelWaitableTimer
GetSystemTime
Beep
GlobalHandle
LocalFlags
GetFileAttributesExA
RtlMoveMemory
DeleteFileW
FindVolumeClose
SetConsoleWindowInfo
GetSystemWow64DirectoryW
GetBinaryTypeW
GlobalAddAtomA
SleepEx
GetThreadPriority
GetModuleFileNameW
GetEnvironmentStrings
ReadConsoleInputW
CancelIo
CreateToolhelp32Snapshot
LocalLock
ProcessIdToSessionId
SetLocalTime
FindFirstVolumeW
SetFilePointerEx
lstrcpyW
TerminateProcess
IsBadStringPtrA
DeleteCriticalSection
HeapValidate
EnumUILanguagesW
DeleteTimerQueueTimer
GetVolumePathNamesForVolumeNameW
UnlockFileEx
GetCPInfo
GetCurrentProcess
GetDateFormatW
GetProfileSectionA
GlobalGetAtomNameA
GetConsoleCP
TransactNamedPipe
FindAtomW
PeekConsoleInputA
LocalSize
IsBadWritePtr
LockFileEx
HeapWalk
WriteProcessMemory
GetEnvironmentVariableA
LocalAlloc
SetHandleCount
CompareStringA
GetThreadLocale
FindNextVolumeMountPointW
GetTempFileNameA
FileTimeToSystemTime
IsBadStringPtrW
LockFile
TryEnterCriticalSection
GetCompressedFileSizeW
HeapDestroy
VirtualQueryEx
FindClose
OpenThread
InterlockedIncrement
InterlockedExchange
ReadFile
ExpandEnvironmentStringsA
CopyFileA
HeapAlloc
CreateProcessA
EnterCriticalSection
LocalFree
GetLastError
GetModuleHandleA
CreateThread
GetCurrentProcessId
CreateDirectoryA
VirtualProtect
CreateFileA
HeapFree
LoadLibraryA
GetProcAddress
WriteFile
ReleaseMutex
WaitForSingleObject
CreateFileMappingA
MoveFileA
GlobalAlloc
LeaveCriticalSection
CreateMutexA
GetTickCount
MapViewOfFile
GetProcessHeap
InterlockedCompareExchange
GetModuleFileNameA

advapi32

ConvertStringSecurityDescriptorToSecurityDescriptorA
LookupAccountNameA
RegOpenKeyExA
SetNamedSecurityInfoA
RegQueryInfoKeyA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegEnumKeyExA
SetEntriesInAclA
RegOpenKeyExW
RegLoadKeyW
RegisterEventSourceA
ChangeServiceConfig2W
RevertToSelf
GetServiceDisplayNameW
NotifyBootConfigStatus
RegCreateKeyExW
ImpersonateNamedPipeClient
RegCreateKeyA
OpenEventLogA
StartServiceCtrlDispatcherW
QueryServiceStatusEx
ReadEventLogW
RegEnumKeyW
RegSetValueA
RegDeleteKeyA
OpenThreadToken
RegNotifyChangeKeyValue
MakeSelfRelativeSD
IsTextUnicode
UnlockServiceDatabase
RegOpenKeyA
EnumDependentServicesW
CreateServiceW
MapGenericMask
QueryServiceConfigA
GetInheritanceSourceW
ImpersonateSelf
GetTokenInformation
RegQueryValueExW
GetEffectiveRightsFromAclW
RegFlushKey
StartServiceA
QueryServiceStatus
RegSaveKeyExW
ChangeServiceConfigW
RegisterEventSourceW
RegOpenCurrentUser
RegConnectRegistryA
OpenServiceA
GetAclInformation
ConvertSidToStringSidA

gdi32

AbortDoc
GetGlyphOutlineW
SetStretchBltMode
EnumEnhMetaFile
GetObjectA
StretchDIBits
SetBrushOrgEx
CreateDIBPatternBrushPt
SetLayout
GetTextColor
GetRgnBox
ModifyWorldTransform
GetCharWidthA
OffsetRgn
DeleteEnhMetaFile
SelectObject
UpdateColors
GetTextExtentExPointA
EndPage
GetBitmapDimensionEx
GetCharWidth32W
ExtTextOutA
FillPath
ResetDCA
GetOutlineTextMetricsA
BeginPath
ExtTextOutW
PolyBezierTo
GetWindowOrgEx
RealizePalette
CreateHalftonePalette
TextOutW
EnumFontFamiliesA
GetFontData
SetROP2
EnumFontsA
TextOutA
GetViewportExtEx
ResizePalette
FlattenPath
GetTextAlign
ExtCreateRegion
GetCurrentObject
SetMagicColors
CreateBrushIndirect
SetMapperFlags
CreatePalette
SetMapMode
EnumFontFamiliesExA
CreateDCA
SetPaletteEntries
CreateEllipticRgnIndirect
RemoveFontResourceW
EndPath
PolyPolyline
WidenPath
GetNearestColor
StretchBlt
SetWindowOrgEx
GetTextExtentExPointW
BitBlt
CreateBitmapIndirect
GetStretchBltMode
PlayMetaFile
Arc
GetBkMode
ExtEscape
GetCharWidthW
GetKerningPairsA
RectVisible
GetViewportOrgEx
DeleteDC
CreatePen
GetTextFaceW
GetTextExtentPoint32A
GetCharABCWidthsW
GetCurrentPositionEx
EqualRgn
GetGlyphOutlineA
CreateScalableFontResourceA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5b88b263e1bdf860abf802ad09734bfa

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 65KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 68KB - Virtual size: 65KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB