147e7bb357653fe8113ef78f16bb6e5afa437b7e01c8925b4f9a26b690fcc597

Sharing

Copy URL Twitter E-mail

General

Target

147e7bb357653fe8113ef78f16bb6e5afa437b7e01c8925b4f9a26b690fcc597
Size

249KB
MD5

d06707a4fd74087612e478d78260a2a3
SHA1

d20c96d9e039eb4fd6a7335533b016ccdd6f8c8a
SHA256

961c1f28411d6347e132ce40fafc9bb4f35045a155099267ad79e7ee47170978
SHA512

a320884d8e697504f5fefa3055f8aa445d96be760f6ce9d399366719604fb6512b88abbf4f8111a275b85370e70f1ffec21cb0c009c7b2787b9905d84f37f73b
SSDEEP

6144:7ElL+v1JK2C3J+Ig9E66Qq2elk+93zTno3pMPpUegkFNe:2mJK2ksIFOUhz0MpVFNe

Score

N/A

Malware Config

Signatures

Files

147e7bb357653fe8113ef78f16bb6e5afa437b7e01c8925b4f9a26b690fcc597
.zip
147e7bb357653fe8113ef78f16bb6e5afa437b7e01c8925b4f9a26b690fcc597
.dll regsvr32 windows x86

721c6725c90961f9b5d3c798cfab56d0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
CreateFileA
GetFileInformationByHandle
CloseHandle
PeekNamedPipe
HeapCreate
HeapAlloc
HeapFree
GetProcessHeap
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
TryEnterCriticalSection
DeleteCriticalSection
ExitProcess
VirtualAlloc
GetProcAddress
SwitchToFiber
DeleteFiber
CreateFiber
CreateFileMappingA
OpenFileMappingA
LoadLibraryA
CreateNamedPipeA
CreateActCtxA
ReleaseActCtx
ActivateActCtx
DeactivateActCtx
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
IsProcessorFeaturePresent
GetModuleHandleW
GetCurrentProcess
TerminateProcess
InterlockedFlushSList
RtlUnwind
GetLastError
SetLastError
InitializeCriticalSectionAndSpinCount
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
FreeLibrary
LoadLibraryExW
GetModuleHandleExW
GetModuleFileNameA
MultiByteToWideChar
WideCharToMultiByte
LCMapStringW
GetFileType
GetACP
GetStringTypeW
FindClose
FindFirstFileExA
FindNextFileA
IsValidCodePage
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
FlushFileBuffers
WriteFile
GetConsoleCP
GetConsoleMode
SetStdHandle
HeapSize
HeapReAlloc
SetFilePointerEx
WriteConsoleW
ReadFile
ReadConsoleW
CreateFileW
DecodePointer
RaiseException

Exports

Exports

DllRegisterServer
GawOOW
LhS7tIB
VZr071qt

Sections

.text
Size: 135KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

721c6725c90961f9b5d3c798cfab56d0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

Exports

Exports

Sections

.text Size: 135KB - Virtual size: 134KB

.rdata Size: 174KB - Virtual size: 173KB

.data Size: 100KB - Virtual size: 102KB

.gfids Size: 512B - Virtual size: 164B

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 135KB - Virtual size: 134KB

.rdata
Size: 174KB - Virtual size: 173KB

.data
Size: 100KB - Virtual size: 102KB

.gfids
Size: 512B - Virtual size: 164B

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 8KB - Virtual size: 7KB