de690bf1c1c0a6e8fcf8c5a7cd0bb5ec4b0736283552b5df72aab803c6fe87e4

Sharing

Copy URL Twitter E-mail

General

Target

de690bf1c1c0a6e8fcf8c5a7cd0bb5ec4b0736283552b5df72aab803c6fe87e4
Size

247KB
MD5

57549e3f03a4a9c1ad9a291ec2876b13
SHA1

4410f3b4a35fc0e6d30649312c57673c9cb667a7
SHA256

de690bf1c1c0a6e8fcf8c5a7cd0bb5ec4b0736283552b5df72aab803c6fe87e4
SHA512

fcccc8a030012b261b579e5a63f3f5d00d9e32332fe9c620e3f13e7ac4e21331083ab92fec6aeb859e8ac82a0ee2e74cfe5d72066cf5bf96c8d1462abfbd3536
SSDEEP

6144:lpTdemdyDRUz+WBRRpEu4AdjyB8rx4MqbmKTdiTd:DdeOyD2dzELaxx4M6bdYd

Score

N/A

Malware Config

Signatures

Files

de690bf1c1c0a6e8fcf8c5a7cd0bb5ec4b0736283552b5df72aab803c6fe87e4
.dll regsvr32 windows x86

d475e95c6b10d3192e7427260f9f2a02

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetLastError
LoadLibraryA
FreeLibrary
InterlockedIncrement
InterlockedDecrement
lstrcmpiA
GetStartupInfoA
InterlockedCompareExchange
Sleep
InterlockedExchange
GetModuleHandleA
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
lstrlenA
SetUnhandledExceptionFilter

ole32

HWND_UserSize
HWND_UserMarshal
HWND_UserUnmarshal
HWND_UserFree
CoRegisterPSClsid
CoInitialize
CoRegisterClassObject
CoRevokeClassObject
CoUninitialize

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 222KB - Virtual size: 524KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.abss
Size: - Virtual size: 556KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdat
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 161B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1024B - Virtual size: 966B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 252B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d475e95c6b10d3192e7427260f9f2a02

Headers

File Characteristics

Imports

kernel32

ole32

Exports

Exports

Sections

.text Size: 222KB - Virtual size: 524KB

.abss Size: - Virtual size: 556KB

.data Size: 8KB - Virtual size: 8KB

.rdat Size: 8KB - Virtual size: 8KB

.edata Size: 512B - Virtual size: 161B

.idata Size: 1024B - Virtual size: 966B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 4KB - Virtual size: 252B

.text
Size: 222KB - Virtual size: 524KB

.abss
Size: - Virtual size: 556KB

.data
Size: 8KB - Virtual size: 8KB

.rdat
Size: 8KB - Virtual size: 8KB

.edata
Size: 512B - Virtual size: 161B

.idata
Size: 1024B - Virtual size: 966B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 4KB - Virtual size: 252B