9b604bd20b2c9dcc839e5909987648d531dee0223ad5de367b5553af692f98f9

General

Target

9b604bd20b2c9dcc839e5909987648d531dee0223ad5de367b5553af692f98f9
Size

68KB
MD5

b7c7c0b8c86d2ec1a83bb0703fd97318
SHA1

2929ac699386f8bdba80c2b7917802614176b916
SHA256

9b604bd20b2c9dcc839e5909987648d531dee0223ad5de367b5553af692f98f9
SHA512

f04d27e7ff98dfe120e410ed9f14f90626055cbfb855480e411f58cced3b1a9f8bd6a38df5b0c44df056948b6693ac563385fbe37f79ec9f6cfd6b836656f484
SSDEEP

1536:CzXlJXrAKN38T0D8wfXhf2XIc/EO2uYO0RH:WJXrAnTq8wfhEIc/iuwR

Score

N/A

Malware Config

Signatures

Files

9b604bd20b2c9dcc839e5909987648d531dee0223ad5de367b5553af692f98f9
.exe regsvr32 windows x86

d44b5cbe3aedc411226ee7e741006b89

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetThreadExecutionState
VerifyVersionInfoW
GetCurrentConsoleFont
RegisterConsoleOS2
VirtualLock
EnumSystemLanguageGroupsW
GetTapeStatus
SetEvent
GetLargestConsoleWindowSize
GetCommandLineA
ExitProcess
GetStartupInfoA

user32

CharUpperBuffA
DdeInitializeW
EnumDisplaySettingsExW
OpenInputDesktop
EnumDisplaySettingsExW
OemToCharA
DdeEnableCallback
MonitorFromPoint
UnregisterDeviceNotification
GetAncestor
GetMessageW
TranslateAcceleratorW
SetCursorPos
DdePostAdvise
PostThreadMessageA
InSendMessage
CharNextExA
GetInputDesktop
AppendMenuW
DdeConnect
MenuWindowProcW
SetMenuContextHelpId
GetMessagePos
GetKeyboardLayout

shell32

RealShellExecuteExW
SHFileOperation
SHCreateDirectoryExW
SHPathPrepareForWriteW
ExtractIconA

gdi32

SaveDC
GdiEntry15
GetFontLanguageInfo
GetEnhMetaFileDescriptionA
GetDCBrushColor
DeleteColorSpace
GdiEntry8
GdiGetSpoolMessage
GdiConvertMetaFilePict
PlayEnhMetaFile
GdiTransparentBlt
CreateFontIndirectExW
RemoveFontResourceExA
GetCharWidth32W

Exports

Exports

DllRegisterServer

Sections

.text
Size: 4KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 3KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d44b5cbe3aedc411226ee7e741006b89

Headers

File Characteristics

Imports

kernel32

user32

shell32

gdi32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 87KB

.data Size: 59KB - Virtual size: 61KB

.rsrc Size: 1024B - Virtual size: 4KB

.edata Size: 3KB - Virtual size: 6KB

.reloc Size: - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 87KB

.data
Size: 59KB - Virtual size: 61KB

.rsrc
Size: 1024B - Virtual size: 4KB

.edata
Size: 3KB - Virtual size: 6KB

.reloc
Size: - Virtual size: 4KB