b4edf5687e00772fdabade28361657ea4b82c98bf6b3eaa8945c814db377e646

Sharing

Copy URL

Twitter E-mail

General

Target

b4edf5687e00772fdabade28361657ea4b82c98bf6b3eaa8945c814db377e646
Size

328KB
MD5

9262c1ccd3a7b44c902c48676af815e5
SHA1

5a18b09353c0fbee30e2aedfd0d71a95170bb0ee
SHA256

b4edf5687e00772fdabade28361657ea4b82c98bf6b3eaa8945c814db377e646
SHA512

77c61a8637ad7d4d821250fa03b046fcfaa51a01517a020b70540fcce3e536de15e98447609681e5a0e154159ceb4d893185a125c97c991845a3c4fb939dd98d
SSDEEP

6144:DR1vdLcjwS8dks4uPo7xnA1BWv6sv15JVL+kHNFwsogsI32LiA2Lr:1/49a1zq9NF5qO2+j

Score

N/A

Malware Config

Signatures

Files

b4edf5687e00772fdabade28361657ea4b82c98bf6b3eaa8945c814db377e646
.dll regsvr32 windows x86

ac2fdfe3b4ce8bb880d047efa3616c6f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalHandle
ReadFile
SetEndOfFile
CreateFileA
CreateFileW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetFilePointer
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStringsW
GlobalFree
LoadResource
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
GetConsoleMode
GetConsoleCP
CloseHandle
IsValidCodePage
GetOEMCP
GetCPInfo
Sleep
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
GetModuleHandleA
HeapCreate
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCommandLineA
CreateDirectoryW
RtlUnwind
VirtualAlloc
GetTickCount
FreeResource
GlobalLock
GlobalUnlock
lstrcmpW
GetCurrentThreadId
SetLastError
lstrlenA
GlobalAlloc
GetCurrentProcess
FlushInstructionCache
LoadLibraryW
WideCharToMultiByte
GetACP
MulDiv
GetTempPathW
GetThreadLocale
SetThreadLocale
GetModuleHandleW
LoadLibraryExW
MultiByteToWideChar
FreeLibrary
InterlockedDecrement
InterlockedIncrement
GetModuleFileNameW
lstrcmpiW
GetLastError
FindResourceExW
FreeEnvironmentStringsW
FindResourceW
LockResource
lstrlenW
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
GetEnvironmentStrings
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
GetProcAddress
InterlockedCompareExchange
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
GetLocaleInfoA
InterlockedExchange

user32

GetDialogBaseUnits
ReleaseDC
GetDC
SendMessageW
GetWindowLongW
SetWindowLongW
DefWindowProcW
DestroyWindow
SetWindowPos
ShowWindow
SendDlgItemMessageW
GetWindow
IsChild
GetDlgItem
SetWindowContextHelpId
DrawTextW
GetSysColor
MapDialogRect
CreateWindowExW
CharNextW
EqualRect
CopyAcceleratorTableW
IsDialogMessageW
UnionRect
PtInRect
IntersectRect
UnregisterClassA
OffsetRect
SetWindowRgn
GetNextDlgTabItem
EnumChildWindows
CreateDialogIndirectParamW
RegisterWindowMessageW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
CreateAcceleratorTableW
RegisterClassExW
LoadCursorW
GetClassInfoExW
DestroyAcceleratorTable
GetDesktopWindow
BeginPaint
EndPaint
CallWindowProcW
FillRect
ReleaseCapture
GetClassNameW
SetCapture
RedrawWindow
InvalidateRgn
InvalidateRect
ScreenToClient
ClientToScreen
GetClientRect
MoveWindow
GetKeyState
IsWindow
SetFocus
GetFocus
GetParent
SystemParametersInfoW

gdi32

SetWindowExtEx
CloseMetaFile
DeleteMetaFile
CreateRectRgnIndirect
CreateSolidBrush
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetObjectW
SetBkColor
LPtoDP
SaveDC
SetMapMode
SetWindowOrgEx
SetViewportOrgEx
DeleteDC
RestoreDC
CreateDCW
GetStockObject
Rectangle
SetTextColor
SetBkMode
GetDeviceCaps
CreateFontIndirectW
SelectObject
GetTextMetricsW
GetTextExtentPointW
DeleteObject
CreateMetaFileW

advapi32

RegDeleteValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW

shell32

SHFileOperationW

ole32

CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
StringFromGUID2
CoCreateInstance
OleLockRunning
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
OleSaveToStream
WriteClassStm
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegGetUserType
OleRegEnumVerbs
CreateOleAdviseHolder
OleLoadFromStream

oleaut32

OleCreatePropertyFrame
SysAllocStringByteLen
SysAllocStringLen
VariantChangeType
OleTranslateColor
LoadRegTypeLi
OleCreateFontIndirect
VariantInit
SysFreeString
SysStringLen
SysAllocString
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
VarUI4FromStr
VariantClear
SysStringByteLen

shlwapi

UrlCanonicalizeW
UrlUnescapeW
UrlCanonicalizeA
UrlUnescapeA
PathCreateFromUrlW
UrlIsW
PathFileExistsW
UrlCombineW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 140KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac2fdfe3b4ce8bb880d047efa3616c6f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

Exports

Exports

Sections

.text Size: 140KB - Virtual size: 137KB

.rdata Size: 40KB - Virtual size: 37KB

.data Size: 12KB - Virtual size: 17KB

.rsrc Size: 116KB - Virtual size: 112KB

.reloc Size: 16KB - Virtual size: 15KB

.text
Size: 140KB - Virtual size: 137KB

.rdata
Size: 40KB - Virtual size: 37KB

.data
Size: 12KB - Virtual size: 17KB

.rsrc
Size: 116KB - Virtual size: 112KB

.reloc
Size: 16KB - Virtual size: 15KB