e6707cc06e4c0958c908bf4542d10da161c30e2e59ee234cb5fc1f5c24444b84

Sharing

Copy URL Twitter E-mail

General

Target

e6707cc06e4c0958c908bf4542d10da161c30e2e59ee234cb5fc1f5c24444b84
Size

308KB
MD5

e641bb7730dc04df912f4a61ed97759b
SHA1

62637825c7d96c48d73e0e64bb72bba3f4440e1b
SHA256

e6707cc06e4c0958c908bf4542d10da161c30e2e59ee234cb5fc1f5c24444b84
SHA512

42d402f4f2cb1f70cb098f0db7c189251f0d2470d0f0ee637a32664052214db7d510e9a075145d540f65a4610a9f76862dcf197dbb60754f5ce0e0f538746a5c
SSDEEP

3072:gn3VB63rlvVYZD33dDYAc/W5uHGCJcUxXUEqn5udww0bA6ZTriFTRvAF2r:w47A33eA0fg5udw7A6ZqFN

Score

1^/10

Malware Config

Signatures

Files

e6707cc06e4c0958c908bf4542d10da161c30e2e59ee234cb5fc1f5c24444b84
.dll regsvr32 windows x86

1145855480caa4749f904f2b9eb30bbb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
SetFilePointer
DeleteFileA
CloseHandle
GetFileSize
CreateFileA
CreateDirectoryA
GetFileAttributesA
GetWindowsDirectoryA
GetModuleFileNameA
WaitForSingleObject
InterlockedExchange
GetLastError
SetLastError
lstrlenA
GlobalUnlock
GlobalLock
GlobalAlloc
FlushInstructionCache
GetCurrentProcess
MulDiv
GetCurrentThreadId
GlobalFree
GlobalHandle
Sleep
CompareStringA
GetModuleHandleA
GetSystemDirectoryA
LoadLibraryA
GetLocalTime
WriteFile
FormatMessageA
LocalFree
LoadResource
LockResource
GetConsoleOutputCP
WriteConsoleA
FlushFileBuffers
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetStringTypeA
GetConsoleMode
GetConsoleCP
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
LCMapStringA
HeapCreate
GetOEMCP
SizeofResource
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
FreeLibrary
GetStdHandle
ExitProcess
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetCommandLineA
CreateThread
ResumeThread
ExitThread
ReadFile
GetTickCount
GetUserDefaultLangID
WaitForSingleObjectEx
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
GetThreadLocale
GetLocaleInfoA
GetACP
GetProcessHeap
HeapSize
HeapReAlloc
GetVersionExA
HeapDestroy
HeapAlloc
HeapFree
RtlUnwind

advapi32

RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges

user32

EndPaint
IsWindowEnabled
MapDialogRect
ExitWindowsEx
UnregisterClassA
DestroyWindow
SetWindowPos
GetWindow
SetWindowContextHelpId
GetSysColor
MoveWindow
GetClientRect
ClientToScreen
ScreenToClient
GetDC
GetClassNameA
ShowWindow
IsWindow
SetFocus
GetFocus
DestroyAcceleratorTable
GetDesktopWindow
BeginPaint
ReleaseDC
FillRect
ReleaseCapture
GetParent
IsChild
SetCapture
RedrawWindow
InvalidateRgn
InvalidateRect
GetDlgItem

gdi32

CreateCompatibleDC
SelectObject
DeleteObject
BitBlt
GetDeviceCaps
CreateSolidBrush
DeleteDC
CreateCompatibleBitmap
GetStockObject

ole32

CoCreateInstance
CreateStreamOnHGlobal
OleInitialize
OleUninitialize
StringFromGUID2
OleLockRunning
CLSIDFromProgID
CLSIDFromString
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoGetClassObject

oleaut32

SysFreeString
VarUI4FromStr
LoadTypeLi
LoadRegTypeLi
OleCreateFontIndirect
VariantClear
VariantInit
SysStringByteLen
SysAllocString
SysAllocStringLen
SysStringLen

shlwapi

PathFindExtensionW
PathFindFileNameW

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 216KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1145855480caa4749f904f2b9eb30bbb

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

ole32

oleaut32

shlwapi

Exports

Exports

Sections

.text Size: 216KB - Virtual size: 214KB

.rdata Size: 48KB - Virtual size: 44KB

.data Size: 12KB - Virtual size: 19KB

.rsrc Size: 4KB - Virtual size: 1KB

.reloc Size: 24KB - Virtual size: 20KB

.text
Size: 216KB - Virtual size: 214KB

.rdata
Size: 48KB - Virtual size: 44KB

.data
Size: 12KB - Virtual size: 19KB

.rsrc
Size: 4KB - Virtual size: 1KB

.reloc
Size: 24KB - Virtual size: 20KB