General

Malware Config

Signatures

Files

• 21633bb2e378d40e3e13b88bf3a7fd397ad1229eab9730cf93fc2cc260fbdd4f

  .exe windows x64

  d0dc29e181b87a55a4e206f78568776d

  
  

  Code Sign

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  kernel32

  GetProcAddress

  SetErrorMode

  LoadLibraryA

  GetModuleHandleA

  user32

  GetMenuItemCount

  GetAsyncKeyState

  GetClipboardViewer

  CharLowerA

  ReleaseCapture

  IsWindowEnabled

  GetQueueStatus

  IsGUIThread

  CountClipboardFormats

  CloseClipboard

  EndMenu

  GetWindowContextHelpId

  GetDoubleClickTime

  GetMessagePos

  GetShellWindow

  CharNextA

  CreateMenu

  LoadIconA

  ShowCaret

  gdi32

  UpdateColors

  FlattenPath

  CreateMetaFileW

  GetColorSpace

  EndPage

  StrokePath

  AddFontResourceW

  GetBkColor

  GdiFlush

  GetTextAlign

  advapi32

  RegQueryValueExW

  RegOpenKeyW

  Sections

  .text

  Size: 781KB - Virtual size: 780KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 512B - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 512B - Virtual size: 144B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data2

  Size: 11KB - Virtual size: 10KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 37KB - Virtual size: 37KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ