d8bef4b292fe64af61af474672a53374c3dfedc02342e85a913a0535d6cfedac

Sharing

Copy URL Twitter E-mail

General

Target

d8bef4b292fe64af61af474672a53374c3dfedc02342e85a913a0535d6cfedac
Size

100KB
MD5

06dde81f01f9e8657ab384cc298948dc
SHA1

c6927fbe273e11fb6f99731be50fe9c3e5f07e9c
SHA256

d8bef4b292fe64af61af474672a53374c3dfedc02342e85a913a0535d6cfedac
SHA512

c4ddd00602462d61498eff89754c8fa5ef93690df3dfc017b7a51d1ab7c07456709f4670554470fbdd3890062b014aa793734f265ef80a3e9af50b088f96d5d7
SSDEEP

3072:KH2wlrSntguKik6zQ630qy+LyJpNkpNpdsvnw6:FgSguJk6zQ6RE7k7

Score

N/A

Malware Config

Signatures

Files

d8bef4b292fe64af61af474672a53374c3dfedc02342e85a913a0535d6cfedac
.dll regsvr32 windows x86

4b0584c243f84b309f2095e8034bfef4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualUnlock
SetWaitableTimer
SearchPathA
GetCompressedFileSizeW
CopyFileW
AllocConsole
SystemTimeToFileTime
lstrcmpiW
HeapCompact
GetSystemTime
SetErrorMode
CancelIo
CreateNamedPipeA
CompareStringW
GetUserDefaultUILanguage
OpenFile
SetHandleCount
GetSystemDefaultUILanguage
GetCPInfo
GetCurrentProcess
HeapDestroy
FindNextFileW
FreeEnvironmentStringsW
DeleteTimerQueueTimer
WideCharToMultiByte
GetSystemWindowsDirectoryA
ConvertDefaultLocale
SetFileAttributesA
GetFullPathNameW
ReadConsoleW
GetDiskFreeSpaceExW
GetVolumePathNameW
VerifyVersionInfoW
GlobalFree
lstrcatW
GetEnvironmentStrings
GetDiskFreeSpaceW
ReadConsoleInputW
GetStringTypeExA
CreateMailslotW
FindNextVolumeMountPointW
PeekConsoleInputW
GetThreadContext
RtlUnwind
HeapSetInformation
GetLogicalDrives
GetThreadPriority
FindCloseChangeNotification
GetFileAttributesExW
LocalSize
GetModuleHandleW
FindVolumeMountPointClose
GetStartupInfoA
RaiseException
GetDateFormatA
GlobalFindAtomA
FindAtomA
LocalReAlloc
TransactNamedPipe
LocalFileTimeToFileTime
LoadResource
GetVolumeInformationA
VerSetConditionMask
UnregisterWait
GetLocalTime
FillConsoleOutputCharacterW
lstrcpynA
CompareStringA
SetEvent
CreateWaitableTimerA
IsBadStringPtrW
UpdateResourceA
RemoveDirectoryA
EnumResourceNamesA
GetFullPathNameA
DeleteCriticalSection
CreateConsoleScreenBuffer
IsValidLanguageGroup
QueueUserWorkItem
GetDiskFreeSpaceA
CreateDirectoryW
CreateFileW
GetModuleHandleExW
SetConsoleTextAttribute
VirtualQueryEx
GetStdHandle
CancelWaitableTimer
ChangeTimerQueueTimer
EscapeCommFunction
CopyFileExW
GetVolumeInformationW
GlobalFindAtomW
OpenThread
lstrcmpiA
InterlockedCompareExchange
FreeConsole
GetFileAttributesA
EnumUILanguagesW
IsBadWritePtr
Beep
CallNamedPipeA
FindResourceExA
GetCurrentDirectoryW
WaitForSingleObject
LocalFree
GlobalAlloc
GetModuleFileNameA
GetCurrentProcessId
WriteFile
GetModuleHandleA
MapViewOfFile
GetSystemTimeAsFileTime
ReadFile
UnmapViewOfFile
GetComputerNameA
CopyFileA
MoveFileA
GetProcAddress
GetProcessHeap
LeaveCriticalSection
CreateProcessA
CreateDirectoryA
LoadLibraryA
GetBinaryTypeA
GetTickCount

ole32

OleCreate
OleTranslateAccelerator
CoAllowSetForegroundWindow
OleCreateStaticFromData
OleLoadFromStream
OleSetContainedObject
IIDFromString
StgOpenStorageOnILockBytes
RegisterDragDrop
PropVariantCopy
CoEnableCallCancellation
CreateGenericComposite
OleLoad
ReadFmtUserTypeStg
CoGetMalloc
CoReleaseMarshalData
CoRegisterMessageFilter
OleQueryLinkFromData
OleDestroyMenuDescriptor
CoFileTimeNow
CoSetProxyBlanket
CoMarshalInterface
StgOpenStorageEx
OleSetMenuDescriptor
CoUnmarshalInterface
OleGetAutoConvert
CoTaskMemFree
CoInitialize
CoTaskMemAlloc
CoUninitialize
CoCreateInstance

user32

ScreenToClient
AppendMenuW
GetQueueStatus
MapWindowPoints
CharLowerA
IsCharAlphaNumericA
SetWindowPlacement
CopyAcceleratorTableW
DialogBoxParamW
CreateAcceleratorTableW
SendNotifyMessageW
GetActiveWindow
DefMDIChildProcA
GetClassLongA
IsCharAlphaNumericW
CharLowerW
AdjustWindowRectEx
SetMenuItemInfoW
GetSysColor
SendNotifyMessageA
EndDialog
MonitorFromWindow
MessageBoxExA
ChangeDisplaySettingsA
WindowFromPoint
SetScrollRange
CreatePopupMenu
ModifyMenuA
RedrawWindow
SendMessageW
CharToOemA
MoveWindow
CharPrevW
HideCaret
CharToOemW
WaitForInputIdle
OffsetRect
GetDlgItemInt
OpenDesktopA
MsgWaitForMultipleObjects
KillTimer
ShowWindow
CreateCursor
GetMonitorInfoW
CreateDialogParamA
SetWindowRgn
SendDlgItemMessageW
CreateIconFromResourceEx
DrawAnimatedRects
SetCaretPos
GetScrollRange
NotifyWinEvent
DefDlgProcA
EnableScrollBar
DrawFrameControl
GetAncestor
GetMenuItemRect
MessageBoxIndirectA
PtInRect
UnhookWindowsHook
GetMenuStringW
BringWindowToTop
GetWindowRect
DrawMenuBar
FlashWindow
SetClassLongW
DestroyIcon
LoadStringA
PostQuitMessage
InvertRect
GetShellWindow
GetScrollInfo
OpenWindowStationA
SetScrollPos
IsRectEmpty
EnumDisplaySettingsW
GetMessagePos
CopyAcceleratorTableA
IsChild
CreateMenu
TrackPopupMenuEx
DefDlgProcW
SetMenuItemInfoA
LoadCursorA
GetWindowTextA
ShowWindowAsync
EnumWindows
PeekMessageW
SetPropW
OemToCharA
ScrollWindowEx
GetWindowTextLengthW
ReleaseDC
IsDlgButtonChecked
LoadIconW
GetSubMenu
SetFocus
GetWindowLongW
TabbedTextOutW
InSendMessage
GetCapture
GetSysColorBrush
InSendMessageEx
CopyIcon
DrawTextW
LookupIconIdFromDirectory
FindWindowExA
IsDialogMessageW
VkKeyScanA
SendMessageTimeoutA
GetNextDlgTabItem
GetClassInfoExW
SetMessageQueue
GetMenuItemCount
GetWindowTextW
ShowOwnedPopups
EndTask
GetDCEx
LoadStringW
GetDesktopWindow
GetClassNameA
PeekMessageA
SendMessageA
DispatchMessageA
FindWindowA
AllowSetForegroundWindow

shlwapi

PathAddBackslashW
PathCanonicalizeW
PathCompactPathW
StrStrA
wnsprintfA
SHRegGetValueW
UrlEscapeW
PathAddExtensionW
SHCreateShellPalette
StrCmpNW
SHStrDupW
AssocQueryStringW
StrFormatByteSizeW
UrlGetPartW
PathFindNextComponentW
PathMatchSpecW
SHRegSetPathW
PathFileExistsA
PathAddBackslashA
PathParseIconLocationW
PathSetDlgItemPathW
PathFindFileNameW
PathCombineW
UrlCanonicalizeW
StrCatBuffA
StrChrIW
UrlCombineW
StrChrW
PathIsUNCServerW
StrDupA
PathIsURLW
PathIsRootW
StrCmpW
SHSetValueA
PathRemoveArgsW
PathBuildRootW
SHRegGetUSValueW
PathFindExtensionW
PathRemoveBlanksW
PathStripPathW

gdi32

StretchDIBits
PolyBezierTo
Polyline
StartPage
Chord
CreateMetaFileW
GetTextAlign
SetBkMode
CreateRectRgnIndirect
EnumEnhMetaFile
InvertRgn
DeleteDC
RemoveFontResourceA
GetWinMetaFileBits
GetPaletteEntries
FillPath
GetBkColor
AbortDoc
SetMapperFlags
GetTextFaceA
GetCharABCWidthsW
StartDocW
GetFontResourceInfoW
PlayEnhMetaFileRecord
CreateHalftonePalette
GetEnhMetaFileA
CreateDIBSection
SetBitmapBits
GetTextCharacterExtra
GetTextExtentExPointW
GetMetaFileBitsEx
PlayMetaFile
EnumFontFamiliesA
SetStretchBltMode
SetROP2
SetPolyFillMode
CreateHatchBrush
EnumFontFamiliesExA
GetPixelFormat
SetBrushOrgEx
CreateBrushIndirect
SetTextCharacterExtra
GetSystemPaletteEntries
SelectPalette
DeleteObject
GetCharacterPlacementA
ExtTextOutW
PolyBezier
SetColorAdjustment
GetDCOrgEx
CloseFigure
CreateRectRgn
PathToRegion
EndDoc
GetTextFaceW
GetStockObject
GetMetaFileA
PaintRgn
MoveToEx
SetTextJustification

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b0584c243f84b309f2095e8034bfef4

Headers

File Characteristics

Imports

kernel32

ole32

user32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 72KB - Virtual size: 70KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 7KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 72KB - Virtual size: 70KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 7KB

.reloc
Size: 4KB - Virtual size: 2KB