e04dfe4d6a3d50050a332fa34447da1c016c401f7c915d1a759165ef760dc798

General

Target

e04dfe4d6a3d50050a332fa34447da1c016c401f7c915d1a759165ef760dc798
Size

104KB
MD5

804e8fb4119f5c5abb8f694f55270394
SHA1

1e29b231b775aa24c7474937576ebdcebe7459e6
SHA256

e04dfe4d6a3d50050a332fa34447da1c016c401f7c915d1a759165ef760dc798
SHA512

0c800437cad35783893b971493d1ce02395717659615e0cfaa1ccba2148836bfe02b9457ad021b7cf628656d9e97bd2a91407244ad42b5abb5a2d5f9e26b1b92
SSDEEP

1536:RvRNN3Ye1j2fB4xR0fGILJLCNBMNwqZkHnJg3975O1wfXqqkvE:RvRNNQ54xR0ekMB8kHu3975pf6vE

Score

N/A

Malware Config

Signatures

Files

e04dfe4d6a3d50050a332fa34447da1c016c401f7c915d1a759165ef760dc798
.dll regsvr32 windows x86

2cca0752c6876c72687ab9e048a53775

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WritePrivateProfileStringW
FindNextChangeNotification
GetLastError
CreateProcessW
GetProcAddress
GetDriveTypeW
ResumeThread
GetFileAttributesW
CreateFileW
CreateThread
Sleep
WriteFile
DuplicateHandle
GetFileAttributesExW
ReadFile
GetTickCount
FindNextFileW
SetFilePointer
SetCurrentDirectoryW
GlobalDeleteAtom
FindResourceW
GetPrivateProfileStringW
LoadLibraryA
GetModuleHandleW
lstrlenW
WideCharToMultiByte
FreeResource
GetVersion
lstrcpyW

user32

SetLayeredWindowAttributes
RegisterHotKey
LoadImageW
GetMessageW
GetSysColor
IsWindow
RegisterWindowMessageW
DefWindowProcW
DispatchMessageW
GetKeyState
SetDlgItemTextW
ReleaseDC
GetCursorPos
PostThreadMessageW
WindowFromPoint
PostMessageW
SystemParametersInfoW
SetCursor
GetParent
EnableWindow

gdi32

SetMapMode
DPtoLP
BitBlt
SetBkMode
CreateCompatibleBitmap
MoveToEx
Rectangle

advapi32

SetSecurityDescriptorDacl
RegQueryValueExW
RegDeleteValueW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.ahlri
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.vznzwq
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.osphw
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cca0752c6876c72687ab9e048a53775

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Exports

Exports

Sections

.ahlri Size: 84KB - Virtual size: 80KB

.vznzwq Size: 4KB - Virtual size: 1KB

.osphw Size: 4KB - Virtual size: 7KB

.reloc Size: 8KB - Virtual size: 6KB

.ahlri
Size: 84KB - Virtual size: 80KB

.vznzwq
Size: 4KB - Virtual size: 1KB

.osphw
Size: 4KB - Virtual size: 7KB

.reloc
Size: 8KB - Virtual size: 6KB