b7dd2cc66e4749d13619647a1eade190+25770c1fbafd031f00c2627b1c0f79eb575f92e0+47bb3e789789448105a29637ebf832e2567171fca57fc0c6d1ef8af3fba34e4b

Sharing

Copy URL

Twitter E-mail

General

Target

b7dd2cc66e4749d13619647a1eade190+25770c1fbafd031f00c2627b1c0f79eb575f92e0+47bb3e789789448105a29637ebf832e2567171fca57fc0c6d1ef8af3fba34e4b
Size

640KB
MD5

b7dd2cc66e4749d13619647a1eade190
SHA1

25770c1fbafd031f00c2627b1c0f79eb575f92e0
SHA256

47bb3e789789448105a29637ebf832e2567171fca57fc0c6d1ef8af3fba34e4b
SHA512

db6b45488ed4e11b4a06e607c7229891cca7fd01dc8864a1f8ccfb3c7217ce1418dd58da5fdcd2aa856fa0c068523fb2090170b2af860879dd31b396a62fa484
SSDEEP

12288:5kddqo8J6CknOJ97ntg9tPka6oOfw+PN0w+sJFwCiVG1d/wI0Tn1/j3YSlLF1Rz:oqo8/+OJ97ePxFOfbN3tFFEG1d/wI0Tn

Score

1^/10

Malware Config

Signatures

Files

b7dd2cc66e4749d13619647a1eade190+25770c1fbafd031f00c2627b1c0f79eb575f92e0+47bb3e789789448105a29637ebf832e2567171fca57fc0c6d1ef8af3fba34e4b
.dll regsvr32 windows x64

0fa8c100a2cf872adbad38f45d2433bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

FindActCtxSectionStringW
InitializeCriticalSectionEx
DeactivateActCtx
HeapSize
QueryActCtxW
MultiByteToWideChar
GetLastError
GetFileAttributesExW
FileTimeToSystemTime
LockResource
HeapReAlloc
RaiseException
LoadLibraryW
FindResourceExW
LoadResource
FindResourceW
HeapAlloc
FileTimeToLocalFileTime
DecodePointer
HeapDestroy
GetTimeFormatW
DeleteCriticalSection
GetProcessHeap
GetDateFormatW
GetTempPathW
Sleep
DeleteFileA
GetProcAddress
GetModuleHandleW
FreeLibrary
WideCharToMultiByte
GetTempFileNameW
lstrcmpiW
LoadLibraryExW
QueryPerformanceCounter
GlobalAlloc
GlobalFree
SetThreadLocale
GetCurrentProcess
GetStringTypeExW
GetThreadLocale
EncodePointer
LocalAlloc
GetFileAttributesW
GetCurrentThreadId
GetVersionExW
DisableThreadLibraryCalls
CloseHandle
GetWindowsDirectoryW
LocalFree
GetTickCount
ReadFile
FindFirstFileW
GetFullPathNameW
FindNextFileW
WriteFile
GetUserDefaultLangID
SetFilePointer
EnumResourceNamesW
FindClose
GetLocaleInfoW
CreateFileW
lstrcmpA
GetSystemDefaultLangID
GetStringTypeExA
LeaveCriticalSection
GetFileSize
FlushFileBuffers
VirtualProtect
VirtualFree
VirtualAlloc
LoadLibraryA
GetNativeSystemInfo
IsBadReadPtr
GlobalLock
GlobalUnlock
GetConsoleMode
GetConsoleCP
SetStdHandle
GetStringTypeW
SetFilePointerEx
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
WriteConsoleW
IsValidCodePage
FindFirstFileExW
LCMapStringW
GetFileType
GetStdHandle
ExitProcess
InterlockedFlushSList
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
RtlPcToFileHeader
RtlUnwindEx
GetSystemTimeAsFileTime
GetCurrentProcessId
GetStartupInfoW
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
FlushInstructionCache
InterlockedPushEntrySList
GetModuleFileNameW
OutputDebugStringA
GetModuleHandleExW
EnterCriticalSection
SetLastError
HeapFree
ActivateActCtx
CreateActCtxW
DeleteFileW
SizeofResource
GetSystemInfo
VirtualQuery
LoadLibraryExA
IsDebuggerPresent
OutputDebugStringW
InitializeSListHead
InterlockedPopEntrySList

user32

CharNextA
GetWindow
SetWindowTextW
PrivateExtractIconsW
GetDlgCtrlID
UpdateWindow
InvalidateRect
DialogBoxParamW
GetWindowTextLengthW
SetWindowLongPtrW
SendMessageW
EndDialog
GetSystemMetrics
MessageBeep
SetDlgItemTextW
SendDlgItemMessageW
IsDlgButtonChecked
FlashWindow
SetFocus
LoadCursorW
SetCursor
CloseClipboard
GetClientRect
GetDlgItem
CheckDlgButton
SetDlgItemInt
GetWindowTextW
InsertMenuItemW
MessageBoxW
OpenClipboard
EmptyClipboard
GetSysColor
CharNextW
InsertMenuW
SetClipboardData
GetSysColorBrush
SystemParametersInfoW
CreateMenu
LoadImageW
GetDC
FillRect
UnregisterClassW
CreateIconIndirect
GetDesktopWindow
CharLowerBuffW
ReleaseDC
GetDlgItemInt

gdi32

BitBlt
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
GetStockObject
DeleteDC
GetObjectW
DeleteObject
CreateSolidBrush

Exports

Exports

CPlApplet
DllCanUnloadNow
DllGetClassObject
DllInstall
DllRegisterServer
DllUnregisterServer
Options

Sections

.text
Size: 275KB - Virtual size: 275KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 160KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fa8c100a2cf872adbad38f45d2433bc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 275KB - Virtual size: 275KB

.rdata Size: 101KB - Virtual size: 101KB

.data Size: 160KB - Virtual size: 171KB

.pdata Size: 13KB - Virtual size: 13KB

.rsrc Size: 85KB - Virtual size: 84KB

.reloc Size: 3KB - Virtual size: 2KB

.text
Size: 275KB - Virtual size: 275KB

.rdata
Size: 101KB - Virtual size: 101KB

.data
Size: 160KB - Virtual size: 171KB

.pdata
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 85KB - Virtual size: 84KB

.reloc
Size: 3KB - Virtual size: 2KB