9e26e50d2b88e05c13560fbc93509d2f06de4788ce30d054e1e74b5872edbf0e

Sharing

Copy URL Twitter E-mail

General

Target

9e26e50d2b88e05c13560fbc93509d2f06de4788ce30d054e1e74b5872edbf0e
Size

246KB
MD5

902a6533ff81d1d1f1a535b4b73d991e
SHA1

25d3d2e029d7f595c434db3ad02a1d47d616f184
SHA256

9e26e50d2b88e05c13560fbc93509d2f06de4788ce30d054e1e74b5872edbf0e
SHA512

e52072f7e14857c6c9f380243e0ea961af6c1d0a0a1a9718fb3d40322a564f77ed0af845d108ba94f69905885dff360ef39c271d0b90f9732ffefd3316045854
SSDEEP

3072:Be+RPQp43bUqV24dlCORiQRJB1MbGiaalH9tPR2OSbAf3gkDcyLm/gyj/5G/YTD2:BPRPN9V2wIUJ0yizZD7LSg+RfC

Score

1^/10

Malware Config

Signatures

Files

9e26e50d2b88e05c13560fbc93509d2f06de4788ce30d054e1e74b5872edbf0e
.dll regsvr32 windows x64

dbe83905718bac918ad60303cb52d209

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

LoadLibraryExW
GetModuleFileNameW
FindResourceW
MultiByteToWideChar
GetThreadLocale
SetThreadLocale
LockResource
GlobalLock
GlobalUnlock
HeapDestroy
HeapReAlloc
HeapSize
WriteFile
CloseHandle
lstrcpynA
lstrcpynW
FindResourceExW
GetTempPathW
CreateFileW
lstrcmpiW
GetVersionExW
WideCharToMultiByte
OutputDebugStringW
WriteConsoleW
FlushFileBuffers
SetFilePointerEx
GetConsoleMode
GetConsoleCP
SetStdHandle
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SizeofResource
LoadResource
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetLastError
RaiseException
EncodePointer
DecodePointer
GetSystemDirectoryW
GetModuleHandleW
LoadLibraryW
GetProcessHeap
HeapFree
HeapAlloc
GetProcAddress
GetFileAttributesW
FreeLibrary
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
FindClose
LCMapStringW
GetFileType
GetStdHandle
GetACP
IsDebuggerPresent
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
RtlPcToFileHeader
RtlUnwindEx
InterlockedFlushSList
SetLastError
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetFileAttributesExW
ExitProcess
GetModuleHandleExW
GetModuleFileNameA

user32

CreateMenu
GetDC
ReleaseDC
SetRect
GetDesktopWindow
DestroyIcon
LoadImageW
DrawIconEx
InsertMenuItemW
InsertMenuW
GetIconInfo
CharNextW
GetSystemMetrics

gdi32

CreateDIBSection
SetBkColor
SelectObject
GetDIBits
DeleteObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
ExtTextOutW

advapi32

RegQueryInfoKeyW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
RegSetValueExW

shell32

DragQueryFileW
ShellExecuteW

ole32

ReleaseStgMedium
CoCreateGuid
CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
StringFromCLSID
StringFromGUID2

oleaut32

LoadRegTypeLi
UnRegisterTypeLi
RegisterTypeLi
LoadTypeLi
VarUI4FromStr
SysStringLen
SysFreeString
SysAllocString

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dbe83905718bac918ad60303cb52d209

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

Exports

Exports

Sections

.text Size: 114KB - Virtual size: 114KB

.rdata Size: 56KB - Virtual size: 56KB

.data Size: 3KB - Virtual size: 7KB

.pdata Size: 7KB - Virtual size: 7KB

.gfids Size: 512B - Virtual size: 208B

.rsrc Size: 39KB - Virtual size: 39KB

.reloc Size: 12KB - Virtual size: 9KB

.text
Size: 114KB - Virtual size: 114KB

.rdata
Size: 56KB - Virtual size: 56KB

.data
Size: 3KB - Virtual size: 7KB

.pdata
Size: 7KB - Virtual size: 7KB

.gfids
Size: 512B - Virtual size: 208B

.rsrc
Size: 39KB - Virtual size: 39KB

.reloc
Size: 12KB - Virtual size: 9KB