9ecdfe676f92a64b84957f3b5b0762dcd80487852226f9ef5c5c702958942288

Sharing

Copy URL Twitter E-mail

General

Target

9ecdfe676f92a64b84957f3b5b0762dcd80487852226f9ef5c5c702958942288
Size

120KB
MD5

4fe5b20deaf5f6509d66fab252e0d1c0
SHA1

b185f2e0cf57336ef1a47d22751074074f0db26c
SHA256

9ecdfe676f92a64b84957f3b5b0762dcd80487852226f9ef5c5c702958942288
SHA512

bc53fb2b1c02e5a8ba4f520bc15671e5812f9225938f507efbdac6307b09765d0659c2f626d3cd2f486b728b003d14ab2860394fa047dc1c8e412ba506ddb1bd
SSDEEP

3072:ShXR29s/uHPKFKzkcYt1gsGw+nHgpebq:G2a27yTygwb

Score

N/A

Malware Config

Signatures

Files

9ecdfe676f92a64b84957f3b5b0762dcd80487852226f9ef5c5c702958942288
.dll regsvr32 windows x86

fec1bb6d197b4fe7cef9e1f3bcf38c07

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

DeleteCriticalSection
GetModuleHandleA
GetProcAddress
VirtualProtect

user32

GetKeyboardType

advapi32

RegQueryValueExA

oleaut32

SysFreeString

gdi32

GetPixel

wsock32

WSACleanup

wininet

InternetReadFile

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
JSOff
JSOn

Sections

*
Size: - Virtual size: 125KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

!
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

9
Size: - Virtual size: 5KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

"
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

;
Size: - Virtual size: 193B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

8
Size: - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

=
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

3
Size: 118KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

+
Size: 512B - Virtual size: 116B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fec1bb6d197b4fe7cef9e1f3bcf38c07

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

gdi32

wsock32

wininet

Exports

Exports

Sections

* Size: - Virtual size: 125KB

! Size: - Virtual size: 2KB

9 Size: - Virtual size: 5KB

" Size: - Virtual size: 3KB

; Size: - Virtual size: 193B

8 Size: - Virtual size: 8KB

= Size: 512B - Virtual size: 4KB

Size: - Virtual size: 20KB

3 Size: 118KB - Virtual size: 118KB

+ Size: 512B - Virtual size: 116B

*
Size: - Virtual size: 125KB

!
Size: - Virtual size: 2KB

9
Size: - Virtual size: 5KB

"
Size: - Virtual size: 3KB

;
Size: - Virtual size: 193B

8
Size: - Virtual size: 8KB

=
Size: 512B - Virtual size: 4KB

3
Size: 118KB - Virtual size: 118KB

+
Size: 512B - Virtual size: 116B