bc9c233e57f6f0defcb9d77c697bb98494e79b9bbf7c9c0424a2d4b9b0673c8a

Sharing

Copy URL

Twitter E-mail

General

Target

bc9c233e57f6f0defcb9d77c697bb98494e79b9bbf7c9c0424a2d4b9b0673c8a
Size

179KB
MD5

d569865ba6a31c5d0d45218e6536849b
SHA1

17592708f5c2dfba66a0941bca9eb303bf7167ce
SHA256

bc9c233e57f6f0defcb9d77c697bb98494e79b9bbf7c9c0424a2d4b9b0673c8a
SHA512

a717046265b31ebbf58d6311381f149c12cd0c0341fc2a6344af08e33035f17b0689b399f252c81d21e9e6a9608902a09f061505cd0f3f71ced541a6dd692dea
SSDEEP

3072:9iGZHsWhTJIObJVEIcwfvCPWwjSsMjGIKj1oU5Pqtr/:thtIcPr3grSsMD2u

Score

N/A

Malware Config

Signatures

Files

bc9c233e57f6f0defcb9d77c697bb98494e79b9bbf7c9c0424a2d4b9b0673c8a
.dll regsvr32 windows x86

9235bf8f5deb583c4887358303cafbb5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

HttpQueryInfoA
InternetReadFile
InternetOpenA
InternetOpenUrlA
InternetCloseHandle
InternetSetCookieA

kernel32

GetLastError
InterlockedIncrement
InterlockedDecrement
GetProcAddress
GetModuleHandleA
lstrlenA
lstrcmpiA
IsDBCSLeadByte
FreeLibrary
LoadLibraryExA
GetModuleFileNameA
EnterCriticalSection
LeaveCriticalSection
GetSystemDirectoryA
CloseHandle
ReleaseMutex
WaitForSingleObject
CreateMutexA
FindResourceExA
SetThreadLocale
GetThreadLocale
CreateThread
CreateProcessA
GetTempFileNameA
GetTempPathA
ReadFile
CreateFileA
WriteFile
SetFileTime
GetFileTime
lstrcmpA
LoadLibraryA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
lstrlenW
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetModuleHandleW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
LCMapStringW
LCMapStringA
GetStdHandle
ExitProcess
Sleep
InitializeCriticalSectionAndSpinCount
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
RtlUnwind
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCommandLineA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualFree
HeapCreate

user32

CharNextW
CharNextA

advapi32

CryptCreateHash
CryptHashData
CryptDeriveKey
CryptDestroyHash
CryptDecrypt
CryptReleaseContext
RegOpenKeyA
RegQueryValueExA
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
CryptAcquireContextA

ole32

CoCreateInstance
CoTaskMemAlloc
CoInitialize
CLSIDFromProgID
StringFromGUID2
CoTaskMemFree
CoTaskMemRealloc

oleaut32

RegisterTypeLi
UnRegisterTypeLi
SysAllocString
SysAllocStringLen
VarBstrCmp
LoadTypeLi
LoadRegTypeLi
SysStringLen
VarUI4FromStr
SysFreeString
GetErrorInfo

urlmon

ObtainUserAgentString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9235bf8f5deb583c4887358303cafbb5

Headers

File Characteristics

Imports

wininet

kernel32

user32

advapi32

ole32

oleaut32

urlmon

Exports

Exports

Sections

.text Size: 118KB - Virtual size: 118KB

.rdata Size: 29KB - Virtual size: 29KB

.data Size: 14KB - Virtual size: 16KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 12KB - Virtual size: 11KB

.text
Size: 118KB - Virtual size: 118KB

.rdata
Size: 29KB - Virtual size: 29KB

.data
Size: 14KB - Virtual size: 16KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 12KB - Virtual size: 11KB