actxprxy[.]dll

Sharing

Copy URL Twitter E-mail

General

Target

actxprxy.dll
Size

5.8MB
MD5

a81cd1cbf0f1306124470442e0a1ed9e
SHA1

00f9cf5f7f79d24d73f8db66157d6240c6b7e334
SHA256

2cb53c246a00933d318b945788eaca854099a3bbfba5bd9f9906136309f6b3c0
SHA512

7a2b87cd8061613d16c995962df49e695a9a5c2789a8f960fe76c2e4ca03164d357153d6e853fbd1b8bd887291b67e0f9a6cce6dab8691a18dbd9cf6d1f830bf
SSDEEP

49152:8JPBw43aCW83QfKR84vRejxmpssnVhNkRQ3Z+9UXWEJi+qQ9m2wdgTswrxc4KMSz:n1vhZKS2GCD7O

Score

1^/10

Malware Config

Signatures

Files

actxprxy.dll
.dll regsvr32 windows x64

386da93ed39c1e0fa796bb5e41f718aa

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

DisableThreadLibraryCalls
EnumResourceNamesW
FindResourceW
GetEnvironmentVariableW
GetModuleFileNameW
GetModuleHandleA
GetProcAddress
GetTickCount
HeapAlloc
HeapFree
HeapReAlloc
LoadLibraryW
LoadResource
MultiByteToWideChar
RtlUnwind
SizeofResource

ntdll

_vsnprintf

ole32

HACCEL_UserFree
HACCEL_UserMarshal
HACCEL_UserSize
HACCEL_UserUnmarshal
HGLOBAL_UserFree
HGLOBAL_UserMarshal
HGLOBAL_UserSize
HGLOBAL_UserUnmarshal
HICON_UserFree
HICON_UserMarshal
HICON_UserSize
HICON_UserUnmarshal
HMENU_UserFree
HMENU_UserMarshal
HMENU_UserSize
HMENU_UserUnmarshal
HWND_UserFree
HWND_UserMarshal
HWND_UserSize
HWND_UserUnmarshal
STGMEDIUM_UserFree
STGMEDIUM_UserMarshal
STGMEDIUM_UserSize
STGMEDIUM_UserUnmarshal

oleaut32

BSTR_UserFree
BSTR_UserMarshal
BSTR_UserSize
BSTR_UserUnmarshal
LPSAFEARRAY_UserFree
LPSAFEARRAY_UserMarshal
LPSAFEARRAY_UserSize
LPSAFEARRAY_UserUnmarshal
VARIANT_UserFree
VARIANT_UserMarshal
VARIANT_UserSize
VARIANT_UserUnmarshal

rpcrt4

CStdStubBuffer_AddRef
CStdStubBuffer_Connect
CStdStubBuffer_CountRefs
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_DebugServerRelease
CStdStubBuffer_Disconnect
CStdStubBuffer_Invoke
CStdStubBuffer_IsIIDSupported
CStdStubBuffer_QueryInterface
IUnknown_AddRef_Proxy
IUnknown_QueryInterface_Proxy
IUnknown_Release_Proxy
NdrAllocate
NdrCStdStubBuffer2_Release
NdrCStdStubBuffer_Release
NdrClearOutParameters
NdrComplexArrayBufferSize
NdrComplexArrayMarshall
NdrComplexArrayUnmarshall
NdrComplexStructBufferSize
NdrComplexStructMarshall
NdrComplexStructUnmarshall
NdrConformantArrayBufferSize
NdrConformantArrayFree
NdrConformantArrayMarshall
NdrConformantArrayUnmarshall
NdrConformantStringBufferSize
NdrConformantStringMarshall
NdrConformantStringUnmarshall
NdrConformantVaryingArrayBufferSize
NdrConformantVaryingArrayMarshall
NdrConformantVaryingArrayUnmarshall
NdrConvert
NdrDllCanUnloadNow
NdrDllGetClassObject
NdrInterfacePointerBufferSize
NdrInterfacePointerFree
NdrInterfacePointerMarshall
NdrInterfacePointerUnmarshall
NdrOleAllocate
NdrOleFree
NdrPointerBufferSize
NdrPointerFree
NdrPointerMarshall
NdrPointerUnmarshall
NdrProxyErrorHandler
NdrProxyFreeBuffer
NdrProxyGetBuffer
NdrProxyInitialize
NdrProxySendReceive
NdrSimpleStructMarshall
NdrSimpleStructUnmarshall
NdrSimpleTypeMarshall
NdrSimpleTypeUnmarshall
NdrStubForwardingFunction
NdrStubGetBuffer
NdrStubInitialize
NdrUserMarshalBufferSize
NdrUserMarshalFree
NdrUserMarshalMarshall
NdrUserMarshalUnmarshall
RpcRaiseException

ucrtbase

__acrt_iob_func
__stdio_common_vsprintf
_strdup
free
fwrite
getenv
memcmp
memmove
memset
strchr
strcmp
strcpy
strcspn
strlen

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer
GetProxyDllInfo

Sections

.text
Size: 880KB - Virtual size: 879KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rodata
Size: 4KB - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 400B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/4
Size: 4KB - Virtual size: 928B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/19
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/31
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/45
Size: 944KB - Virtual size: 941KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/57
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/70
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/81
Size: 972KB - Virtual size: 970KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/92
Size: 220KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

386da93ed39c1e0fa796bb5e41f718aa

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

ntdll

ole32

oleaut32

rpcrt4

ucrtbase

Exports

Exports

Sections

.text Size: 880KB - Virtual size: 879KB

.data Size: 4KB - Virtual size: 3KB

.rodata Size: 4KB - Virtual size: 28B

.rdata Size: 100KB - Virtual size: 98KB

.pdata Size: 32KB - Virtual size: 30KB

.xdata Size: 28KB - Virtual size: 27KB

.bss Size: - Virtual size: 400B

.edata Size: 108KB - Virtual size: 106KB

.idata Size: 8KB - Virtual size: 5KB

.rsrc Size: 28KB - Virtual size: 26KB

.reloc Size: 12KB - Virtual size: 9KB

/4 Size: 4KB - Virtual size: 928B

/19 Size: 2.0MB - Virtual size: 2.0MB

/31 Size: 32KB - Virtual size: 28KB

/45 Size: 944KB - Virtual size: 941KB

/57 Size: 192KB - Virtual size: 191KB

/70 Size: 36KB - Virtual size: 35KB

/81 Size: 972KB - Virtual size: 970KB

/92 Size: 220KB - Virtual size: 219KB

.text
Size: 880KB - Virtual size: 879KB

.data
Size: 4KB - Virtual size: 3KB

.rodata
Size: 4KB - Virtual size: 28B

.rdata
Size: 100KB - Virtual size: 98KB

.pdata
Size: 32KB - Virtual size: 30KB

.xdata
Size: 28KB - Virtual size: 27KB

.bss
Size: - Virtual size: 400B

.edata
Size: 108KB - Virtual size: 106KB

.idata
Size: 8KB - Virtual size: 5KB

.rsrc
Size: 28KB - Virtual size: 26KB

.reloc
Size: 12KB - Virtual size: 9KB

/4
Size: 4KB - Virtual size: 928B

/19
Size: 2.0MB - Virtual size: 2.0MB

/31
Size: 32KB - Virtual size: 28KB

/45
Size: 944KB - Virtual size: 941KB

/57
Size: 192KB - Virtual size: 191KB

/70
Size: 36KB - Virtual size: 35KB

/81
Size: 972KB - Virtual size: 970KB

/92
Size: 220KB - Virtual size: 219KB