aa79df53d767b22258de29a10a38544af1ba4f018c685a087099edd46b4b8a3b

Sharing

Copy URL Twitter E-mail

General

Target

aa79df53d767b22258de29a10a38544af1ba4f018c685a087099edd46b4b8a3b
Size

420KB
MD5

e01d38c47d08f9931a324889be2eec8b
SHA1

64d9308ae44b77ec64de56b7290ab4118ca4a422
SHA256

aa79df53d767b22258de29a10a38544af1ba4f018c685a087099edd46b4b8a3b
SHA512

bec15f2c26eafbe352c9be150b0a559ae845c0a190cab32bc2374dd82d29105bb3aabce16827cbcfe0c4ab26dda7dd8f5fb55b33575a02c94b2c51dd196834c7
SSDEEP

6144:dAqNMg42GO68qP/CvJB5C2+WGcpKpWggT2MC4mt+p0691kZHJRJKHUs4hTJ:X+gLAP/r2+WGiKpD4mt+G691kR3s0r

Score

N/A

Malware Config

Signatures

Files

aa79df53d767b22258de29a10a38544af1ba4f018c685a087099edd46b4b8a3b
.dll regsvr32 windows x86

3265161498f427ae8b515d8ef4f12090

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

oleacc

ObjectFromLresult

kernel32

RaiseException
SetEnvironmentVariableA
InterlockedIncrement
InterlockedDecrement
lstrlenA
lstrcmpiA
ReleaseMutex
WaitForSingleObject
GetCurrentProcessId
GetVersionExA
CloseHandle
DeleteCriticalSection
GetCurrentThreadId
CreateMutexA
InitializeCriticalSection
DisableThreadLibraryCalls
GetModuleFileNameA
LeaveCriticalSection
Sleep
GetProcAddress
EnterCriticalSection
MultiByteToWideChar
WideCharToMultiByte
VirtualFree
CreateFileMappingA
GetComputerNameA
UnmapViewOfFile
FlushViewOfFile
MapViewOfFile
GetVolumeInformationA
lstrlenW
SetFileTime
SystemTimeToFileTime
GetSystemTime
CreateFileA
GetTempPathA
CreateThread
ReadFile
VirtualAlloc
GetFileSize
DeleteFileA
LoadLibraryA
LocalFree
SizeofResource
LockResource
LoadResource
FindResourceA
WriteFile
SetCurrentDirectoryA
CreateDirectoryA
FindNextFileA
FindFirstFileA
ExpandEnvironmentStringsA
CompareStringW
CompareStringA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoW
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
InitializeCriticalSectionAndSpinCount
LocalAlloc
FreeLibrary
InterlockedExchange
GetLastError
GetProcessHeap
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
HeapFree
RtlUnwind
GetSystemTimeAsFileTime
VirtualProtect
GetModuleHandleW
GetSystemInfo
VirtualQuery
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetCommandLineA
HeapAlloc
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapCreate
HeapDestroy
HeapReAlloc
HeapSize
ExitProcess
GetModuleHandleA
GetFullPathNameA
GetCurrentDirectoryA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetStdHandle
GetTimeZoneInformation
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
SetFilePointer
GetConsoleCP
GetConsoleMode

user32

SendMessageTimeoutA
RegisterWindowMessageA
FindWindowExA
SendMessageA
EnumThreadWindows
GetParent
SetWindowsHookExA
GetClassNameA
SetTimer
CallNextHookEx
KillTimer

ole32

CoInitialize
CoCreateInstance
CoUninitialize

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllReportOutput
DllUnregisterServer

Sections

.text
Size: 274KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3265161498f427ae8b515d8ef4f12090

Headers

File Characteristics

Imports

oleacc

kernel32

user32

ole32

Exports

Exports

Sections

.text Size: 274KB - Virtual size: 274KB

.rdata Size: 67KB - Virtual size: 66KB

.data Size: 45KB - Virtual size: 56KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 25KB - Virtual size: 25KB

.text
Size: 274KB - Virtual size: 274KB

.rdata
Size: 67KB - Virtual size: 66KB

.data
Size: 45KB - Virtual size: 56KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 25KB - Virtual size: 25KB