bbb966cf7a28447590083b6a32b2bdcf5aea6bd5cb7e58eca6081ff9687e2548

Sharing

Copy URL Twitter E-mail

General

Target

bbb966cf7a28447590083b6a32b2bdcf5aea6bd5cb7e58eca6081ff9687e2548
Size

76KB
MD5

e3683db22214d19861feb4a0090d6475
SHA1

423c45aa5fb1ff1d7e174429b0eef21f89027a25
SHA256

bbb966cf7a28447590083b6a32b2bdcf5aea6bd5cb7e58eca6081ff9687e2548
SHA512

6dbacc59a94b83f10c835a1e540ec784e9e92d0d22447750cf6b8d20b6fc66768827fb52470a3ac8b72313f10816334ab37db755708fd595b72a8ca177e4ddb7
SSDEEP

768:NpSqCdn7ZvSYGZc1+FdWYV/auvGhJTsFeiyABCrCWDG3CfECrXnCMwioTCTA2sBi:NIlrGZckFdEYiNsFPBzb1ioKA2KFw

Score

N/A

Malware Config

Signatures

Files

bbb966cf7a28447590083b6a32b2bdcf5aea6bd5cb7e58eca6081ff9687e2548
.dll regsvr32 windows x86

ab278a2a6044c2bb9fb8277764291e2c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetDateFormatW
ReplaceFileW
WaitForMultipleObjects
OpenSemaphoreW
GlobalFindAtomA
GetLocalTime
SetFilePointerEx
GlobalMemoryStatus
PulseEvent
GetComputerNameW
HeapWalk
SearchPathW
GlobalFlags
GetVolumeInformationW
SetupComm
IsValidCodePage
GetLocaleInfoW
FindFirstFileExW
AllocConsole
InterlockedExchangeAdd
CreateMutexW
GetEnvironmentVariableA
FileTimeToLocalFileTime
SetFileAttributesA
GetCurrencyFormatA
FindCloseChangeNotification
GetSystemDirectoryA
SetVolumeMountPointW
CreateNamedPipeA
GetConsoleCP
PostQueuedCompletionStatus
IsValidLanguageGroup
GetProfileStringA
GetThreadLocale
EndUpdateResourceA
GetUserDefaultLangID
ReadConsoleInputA
SetNamedPipeHandleState
QueryPerformanceFrequency
FlushConsoleInputBuffer
ConnectNamedPipe
GetSystemWindowsDirectoryA
VerSetConditionMask
GetWindowsDirectoryW
HeapSize
CreateThread
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleHandleA
CopyFileA
ReadFile
CreateDirectoryA
VirtualProtect
CreateProcessA
GetProcAddress
GetProcessHeap
HeapUnlock
LoadLibraryA

ole32

CoMarshalInterface
CoGetInterfaceAndReleaseStream
OleCreate
OleCreateMenuDescriptor
CoCreateFreeThreadedMarshaler
OleCreateLink
CreateDataAdviseHolder
OleDestroyMenuDescriptor
CoMarshalInterThreadInterfaceInStream
CoWaitForMultipleHandles

advapi32

LookupAccountNameA
RegSetValueExA
RegQueryValueExA
RegQueryInfoKeyA
IsTokenRestricted
CredWriteDomainCredentialsW
RegDeleteKeyA
DuplicateTokenEx
QueryServiceConfigW
RegCreateKeyA
SaferGetPolicyInformation
EnumServicesStatusExW
RegisterServiceCtrlHandlerExA
GetServiceKeyNameW
SaferCreateLevel
SetTokenInformation

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab278a2a6044c2bb9fb8277764291e2c

Headers

File Characteristics

Imports

kernel32

ole32

advapi32

Exports

Exports

Sections

.text Size: 56KB - Virtual size: 53KB

.rdata Size: 4KB - Virtual size: 2KB

.data Size: 8KB - Virtual size: 8KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 56KB - Virtual size: 53KB

.rdata
Size: 4KB - Virtual size: 2KB

.data
Size: 8KB - Virtual size: 8KB

.reloc
Size: 4KB - Virtual size: 2KB