Repositorisloader[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

Repositorisloader.dll
Size

140KB
MD5

6d1197441095eee553e49dd4ada2c06a
SHA1

bf2262de94be377223c208dd57189cec142b16b0
SHA256

c6e746bc6b23a270ffced8ae9e4b6621ab03cca29e46cd2fd8c50af43fe3f7b5
SHA512

469df0af4ecaace21a8347c64cb71dfdc8b2aec1cbb550705f768377ecbf2fc8783c62116bc1758d1d440149a541b86ebce1465273fed33fbbe247f0b7cd73ad
SSDEEP

3072:NBDbiH9kXyAm8x7yCzXhgfI/vn67gJQJacE7RehxpUfleL9V:NBDbimd7yCzXufI/K0QA37R2xpUflw

Score

N/A

Malware Config

Signatures

Files

Repositorisloader.dll
.dll regsvr32 windows x86

8ea5a994b547490ca40f0efabca7b7d1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadResource
FindResourceW
FindResourceExW
GetTempFileNameW
GetLongPathNameW
GetTempPathW
SetFileAttributesW
GetFileAttributesW
CopyFileW
DeleteFileW
GetLastError
GetModuleFileNameW
lstrlenW
lstrcpyW
EnterCriticalSection
LeaveCriticalSection
lstrcmpiW
lstrcpynW
lstrcatW
InterlockedIncrement
InterlockedDecrement
DisableThreadLibraryCalls
Sleep
FreeLibrary
MultiByteToWideChar
LoadLibraryExW
GetModuleHandleW
lstrlenA
LockResource
GetCurrentThreadId
GetTickCount
RemoveDirectoryW
FindClose
FindNextFileW
FindFirstFileW
CreateDirectoryW
GetDiskFreeSpaceExW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
ExitProcess
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
HeapDestroy
GetVersionExA
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
RaiseException
InterlockedExchange
GetVersionExW
GetThreadLocale
GetLocaleInfoA
GetACP

user32

LoadStringW
LoadIconW
CharNextW
MessageBoxW

advapi32

RegCloseKey
RegDeleteValueW
RegSetValueExW
RegQueryValueExW
RegDeleteKeyW
RegCreateKeyExW
RegQueryInfoKeyW
RegEnumKeyExW
RegOpenKeyExW

ole32

CoCreateInstance
CLSIDFromProgID
StgOpenStorage
WriteClassStg
CoTaskMemFree
StringFromCLSID
CoTaskMemRealloc
StringFromGUID2
CoGetClassObject
CoTaskMemAlloc

oleaut32

SysAllocString
SysFreeString
SysStringLen
SysAllocStringByteLen
SysStringByteLen
VarBstrCmp
SysReAllocStringLen
SysAllocStringLen
VariantInit
DispCallFunc
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayPutElement
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayGetUBound
SafeArrayGetLBound
VariantClear
LoadRegTypeLi

shlwapi

PathIsRootW
PathIsUNCW
PathStripToRootW
PathRelativePathToW
PathCanonicalizeW
PathFindExtensionW
PathIsRelativeW

msvcp71

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
?_Nomemory@std@@YAXXZ

msvcr71

_wcsnicmp
wcscmp
_CxxThrowException
_except_handler3
??1exception@@UAE@XZ
??0exception@@QAE@XZ
__CxxFrameHandler
??3@YAXPAX@Z
free
??0exception@@QAE@ABV0@@Z
realloc
??_V@YAXPAX@Z
wcsrchr
wcslen
memmove
_waccess
wcscpy
swprintf
malloc
wcsncpy
_purecall
wcscat
wcschr
iswspace
vswprintf
iswdigit
_wtoi
wcsstr
__CppXcptFilter
_adjust_fdiv
_initterm
_onexit
__dllonexit
?terminate@@YAXXZ
??1type_info@@UAE@XZ
__security_error_handler
_callnewh
memcpy
iswalpha
_wremove
fclose
fwprintf
_wfopen
memset
wcspbrk
_vscwprintf

miclogfile

?MicLogWriteToFile@@YA_NW4ELogLevel@@JPBGJPBD1ZZ

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ea5a994b547490ca40f0efabca7b7d1

Headers

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

shlwapi

msvcp71

msvcr71

miclogfile

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 87KB

.rdata Size: 20KB - Virtual size: 19KB

.data Size: 4KB - Virtual size: 1KB

.rsrc Size: 12KB - Virtual size: 10KB

.reloc Size: 12KB - Virtual size: 8KB

.text
Size: 88KB - Virtual size: 87KB

.rdata
Size: 20KB - Virtual size: 19KB

.data
Size: 4KB - Virtual size: 1KB

.rsrc
Size: 12KB - Virtual size: 10KB

.reloc
Size: 12KB - Virtual size: 8KB