General

Malware Config

Signatures

Files

• 416556c9f085ae56e13f32d7c8c99f03efc6974b2897070f46ef5f9736443e8e

  .exe windows x86

  a2c71df5b568cd0c435be69516af42cc

  
  

  Code Sign

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  FindFirstFileW

  FindClose

  FileTimeToSystemTime

  VirtualAlloc

  LoadLibraryA

  GetProcAddress

  SetErrorMode

  user32

  GetMenuContextHelpId

  GetActiveWindow

  GetSysColorBrush

  CharLowerW

  IsCharAlphaNumericW

  GetDesktopWindow

  GetProcessWindowStation

  GetClipboardData

  ReleaseCapture

  GetParent

  GetDlgCtrlID

  IsCharLowerA

  EndMenu

  EnumClipboardFormats

  IsGUIThread

  CloseClipboard

  CharNextA

  GetMessageTime

  DestroyWindow

  GetInputState

  GetCapture

  GetQueueStatus

  CountClipboardFormats

  CreateMenu

  GetCursor

  GetDialogBaseUnits

  LoadIconA

  gdi32

  CloseMetaFile

  AbortDoc

  GdiFlush

  UnrealizeObject

  GetROP2

  CreateHalftonePalette

  BeginPath

  GetEnhMetaFileA

  SwapBuffers

  GetColorSpace

  DeleteDC

  AddFontResourceW

  GetPixelFormat

  UpdateColors

  advapi32

  RegOpenKeyA

  RegQueryValueExA

  Sections

  .text

  Size: 214KB - Virtual size: 213KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 512B - Virtual size: 291B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 21KB - Virtual size: 21KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 40KB - Virtual size: 39KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ