regsvr32[.]exe

General

Target

regsvr32.exe
Size

6KB
MD5

1cb53ea3a13256dc5e1bb6c92df2d062
SHA1

9534e242f435b236ac38cea1d93e64537a7533c5
SHA256

76d0a6cfd604db962ed0c3dadaf6db1791239c22e1f15a76e9ff4b9e0048240c
SHA512

6f00e0d4fc080516211e03262fb1ab427f559a6b4c12b595e84c0f59d3a7224e9628cb5dd6679f2aa21a71e2b453e276869133d1c2eb1c1ff560527d2ddae0b2
SSDEEP

192:NSewouGztZDPjuKf2uT3FBi4fSAAnGezOpK8kP:N/RDXfPT6DRGeCpK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Device/HarddiskVolume5/Mohan/New folder2/LASSER CUTTING MACHINE/English(USB)/Install/_Support_/regsvr32.exe

Files

regsvr32.exe
.zip

Password: S@ndb0x!2023@@
Device/HarddiskVolume5/Mohan/New folder2/LASSER CUTTING MACHINE/English(USB)/Install/_Support_/regsvr32.exe
.exe windows x86

Password: S@ndb0x!2023@@

7dc87ef66f0ed84345e4cf471a3c3455

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__wgetmainargs
exit
_cexit
_XcptFilter
_exit
_c_exit
_except_handler3
__argc
__wargv
_wsplitpath
_wcmdln
wcslen

advapi32

RegQueryValueW
RegCloseKey
RegOpenKeyExW

kernel32

SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
GetModuleHandleA
LocalAlloc
FormatMessageW
SetErrorMode
lstrcatA
WideCharToMultiByte
LoadLibraryExW
GetLastError
GetProcAddress
lstrcmpW
GetStartupInfoW
QueryPerformanceCounter
lstrlenW
lstrcpyW
lstrcatW
lstrcpynW
FreeLibrary

user32

LoadStringW
MessageBoxW
wsprintfW

ole32

OleInitialize
OleUninitialize

Sections

.text
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
manifest.json

Sharing

General

Malware Config

Signatures

Files

Password: S@ndb0x!2023@@

Password: S@ndb0x!2023@@

7dc87ef66f0ed84345e4cf471a3c3455

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

user32

ole32

Sections

.text Size: 7KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 24KB - Virtual size: 24KB

.text
Size: 7KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 24KB - Virtual size: 24KB