General

Malware Config

Signatures

Files

• 52da51085e5c6d650abf866b1268ccd81d6c0b2c424e12807dc0ac176ac8c929

  .exe windows x86

  ba56e34e8a22ac91a660555598e60e39

  
  

  Code Sign

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  ConvertDefaultLocale

  lstrcmpA

  GetCurrentThread

  RaiseException

  InitializeCriticalSection

  DeleteCriticalSection

  SetThreadPriority

  ResumeThread

  WaitForSingleObject

  SuspendThread

  GlobalFlags

  LocalAlloc

  LeaveCriticalSection

  GlobalReAlloc

  GlobalHandle

  EnterCriticalSection

  TlsGetValue

  TlsAlloc

  TlsSetValue

  LocalReAlloc

  TlsFree

  InterlockedIncrement

  GetCPInfo

  GetOEMCP

  FileTimeToSystemTime

  SystemTimeToFileTime

  GetPrivateProfileIntA

  WritePrivateProfileStringA

  EnumResourceLanguagesA

  GetCurrentDirectoryA

  LocalUnlock

  LocalLock

  MoveFileA

  DeleteFileA

  ReadFile

  WriteFile

  SetFilePointer

  FlushFileBuffers

  LockFile

  UnlockFile

  SetEndOfFile

  GetFileSize

  DuplicateHandle

  GetCurrentProcess

  FindClose

  FindFirstFileA

  GetVolumeInformationA

  GetFullPathNameA

  GetShortPathNameA

  FileTimeToLocalFileTime

  LocalFileTimeToFileTime

  SetFileTime

  SetFileAttributesA

  GetFileAttributesA

  GetFileTime

  GetTempFileNameA

  GetDiskFreeSpaceA

  HeapFree

  HeapAlloc

  VirtualProtect

  GetSystemInfo

  VirtualQuery

  RtlUnwind

  ExitThread

  ExitProcess

  HeapReAlloc

  TerminateProcess

  HeapSize

  HeapDestroy

  HeapCreate

  VirtualFree

  FatalAppExitA

  IsBadWritePtr

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  SetHandleCount

  GetFileType

  GetStartupInfoA

  QueryPerformanceCounter

  GetTickCount

  GetSystemTimeAsFileTime

  LCMapStringA

  LCMapStringW

  GetStringTypeA

  GetStringTypeW

  GetTimeZoneInformation

  IsBadReadPtr

  IsBadCodePtr

  GetTimeFormatA

  GetDateFormatA

  GetUserDefaultLCID

  EnumSystemLocalesA

  IsValidLocale

  IsValidCodePage

  SetStdHandle

  GetLocaleInfoW

  SetEnvironmentVariableA

  SetErrorMode

  GetModuleFileNameA

  InterlockedDecrement

  SetLastError

  CopyFileA

  SizeofResource

  MulDiv

  GlobalSize

  GlobalAlloc

  GlobalGetAtomNameA

  GlobalAddAtomA

  GlobalFindAtomA

  GlobalDeleteAtom

  LoadLibraryA

  FreeLibrary

  lstrcatA

  lstrcmpW

  lstrcpynA

  GlobalLock

  GlobalUnlock

  GlobalFree

  FindResourceA

  LoadResource

  LockResource

  FreeResource

  lstrcpyA

  Sleep

  CreateEventA

  WaitForSingleObjectEx

  GetCurrentProcessId

  CreateFileA

  DeviceIoControl

  SetEvent

  GetExitCodeThread

  GetCommandLineA

  GetModuleHandleA

  SetConsoleTitleA

  SetConsoleCtrlHandler

  FreeConsole

  DeleteFileW

  GetModuleHandleExA

  GetProcAddress

  GetModuleHandleW

  GetStdHandle

  CreateToolhelp32Snapshot

  Process32First

  Process32Next

  GetCurrentThreadId

  OpenThread

  GetThreadPriority

  SetConsoleTextAttribute

  GetConsoleScreenBufferInfo

  FillConsoleOutputCharacterA

  FillConsoleOutputAttribute

  SetConsoleCursorPosition

  CreateThread

  CloseHandle

  FormatMessageA

  LocalFree

  VirtualAlloc

  GetStringTypeExW

  GetStringTypeExA

  GetEnvironmentVariableW

  GetEnvironmentVariableA

  CompareStringW

  CompareStringA

  lstrlenA

  lstrcmpiW

  lstrcmpiA

  GetVersion

  lstrlenW

  GetLastError

  WideCharToMultiByte

  MultiByteToWideChar

  GetVersionExA

  GetThreadLocale

  GetLocaleInfoA

  GetACP

  GetPrivateProfileStringA

  InterlockedExchange

  user32

  MessageBeep

  SetRect

  GetTabbedTextExtentA

  DestroyIcon

  TranslateAcceleratorA

  SetMenu

  BringWindowToTop

  SetRectEmpty

  CreatePopupMenu

  InsertMenuItemA

  LoadAcceleratorsA

  ReleaseCapture

  ReuseDDElParam

  UnpackDDElParam

  LoadMenuA

  IsRectEmpty

  UnionRect

  SetTimer

  KillTimer

  WindowFromPoint

  GetDCEx

  LockWindowUpdate

  SetCapture

  SetParent

  TranslateMessage

  GetCursorPos

  ValidateRect

  EndPaint

  BeginPaint

  GetWindowDC

  ClientToScreen

  GrayStringA

  DrawTextExA

  DrawTextA

  TabbedTextOutA

  FillRect

  PostQuitMessage

  wsprintfA

  MapVirtualKeyA

  GetKeyNameTextA

  ReleaseDC

  GetDC

  GetMenuStringA

  AppendMenuA

  InsertMenuA

  RemoveMenu

  SetMenuItemBitmaps

  GetMenuState

  EnableMenuItem

  CheckMenuItem

  GetMenuCheckMarkDimensions

  LoadBitmapA

  ScrollWindowEx

  ShowWindow

  MoveWindow

  SetWindowTextA

  IsDialogMessageA

  IsDlgButtonChecked

  SetDlgItemTextA

  SetDlgItemInt

  GetDlgItemTextA

  GetDlgItemInt

  CheckRadioButton

  CheckDlgButton

  RegisterWindowMessageA

  WinHelpA

  GetCapture

  CreateWindowExA

  SetWindowsHookExA

  CallNextHookEx

  GetClassLongA

  GetClassInfoExA

  GetClassNameA

  IsClipboardFormatAvailable

  GetPropA

  RemovePropA

  SendDlgItemMessageA

  GetFocus

  SetFocus

  IsChild

  GetWindowTextLengthA

  GetWindowTextA

  GetForegroundWindow

  GetLastActivePopup

  DispatchMessageA

  BeginDeferWindowPos

  EndDeferWindowPos

  GetTopWindow

  GetMessagePos

  PeekMessageA

  MapWindowPoints

  ScrollWindow

  TrackPopupMenuEx

  TrackPopupMenu

  GetKeyState

  SetScrollRange

  GetScrollRange

  SetScrollPos

  GetScrollPos

  ShowScrollBar

  IsWindowVisible

  UpdateWindow

  GetMenu

  GetSubMenu

  GetMenuItemID

  GetMenuItemCount

  GetSysColor

  AdjustWindowRectEx

  ScreenToClient

  EqualRect

  DeferWindowPos

  GetScrollInfo

  SetScrollInfo

  GetClassInfoA

  RegisterClassA

  CharLowerA

  CharLowerW

  CharUpperA

  CharUpperW

  EnableWindow

  MessageBoxA

  SetForegroundWindow

  SetWindowPos

  GetClientRect

  InvalidateRect

  SendMessageA

  GetMessageTime

  LoadIconA

  ModifyMenuA

  UnregisterClassA

  SetWindowPlacement

  GetDlgCtrlID

  DefWindowProcA

  CallWindowProcA

  SetWindowLongA

  OffsetRect

  IntersectRect

  SystemParametersInfoA

  IsIconic

  GetWindowPlacement

  GetWindowRect

  CopyRect

  PtInRect

  DeleteMenu

  ShowOwnedPopups

  SetCursor

  DestroyMenu

  GetMenuItemInfoA

  GetSystemMenu

  FindWindowA

  PostMessageA

  InflateRect

  LoadCursorA

  GetSysColorBrush

  GetDialogBaseUnits

  SetPropA

  GetMessageA

  EndDialog

  GetNextDlgTabItem

  GetParent

  IsWindowEnabled

  GetDlgItem

  GetWindowLongA

  IsWindow

  DestroyWindow

  GetWindow

  GetDesktopWindow

  GetActiveWindow

  SetActiveWindow

  GetSystemMetrics

  CreateDialogIndirectParamA

  UnhookWindowsHookEx

  advapi32

  GetFileSecurityA

  RegCreateKeyA

  RegQueryValueA

  RegEnumKeyA

  RegDeleteKeyA

  RegDeleteValueA

  RegSetValueExA

  RegCreateKeyExA

  RegOpenKeyExA

  RegQueryValueExA

  CryptCreateHash

  CryptHashData

  CryptDeriveKey

  CryptEncrypt

  CryptAcquireContextA

  RegOpenKeyA

  RegSetValueA

  RegCloseKey

  SetFileSecurityA

  comctl32

  ImageList_GetImageInfo

  ImageList_Draw

  ImageList_Merge

  ImageList_LoadImageA

  ImageList_Create

  ImageList_Destroy

  ord14

  ImageList_Write

  ImageList_Read

  ord13

  ord17

  ImageList_SetBkColor

  ImageList_ReplaceIcon

  shlwapi

  PathFindExtensionA

  PathRemoveExtensionA

  PathStripToRootA

  PathFindFileNameA

  PathIsUNCA

  gdi32

  GetTextExtentPoint32A

  GetTextMetricsA

  CreateFontIndirectA

  SetRectRgn

  CombineRgn

  GetMapMode

  DPtoLP

  GetCharWidthA

  StartPage

  EndPage

  SetAbortProc

  AbortDoc

  EndDoc

  CreateCompatibleBitmap

  StretchDIBits

  CreateFontA

  GetBkColor

  ExtSelectClipRgn

  PolyBezierTo

  PolylineTo

  GetClipBox

  CreateHatchBrush

  SetBkColor

  GetObjectA

  CreateBitmap

  GetDeviceCaps

  CopyMetaFileA

  CreateDCA

  CreateRectRgnIndirect

  PatBlt

  SaveDC

  RestoreDC

  SetBkMode

  SetPolyFillMode

  SetROP2

  SetStretchBltMode

  SetMapMode

  ExcludeClipRect

  PolyDraw

  ArcTo

  GetCurrentPositionEx

  ScaleWindowExtEx

  SetWindowExtEx

  OffsetWindowOrgEx

  CreateSolidBrush

  ExtCreatePen

  CreatePen

  PlayMetaFile

  EnumMetaFile

  GetObjectType

  PlayMetaFileRecord

  SelectPalette

  PtVisible

  GetStockObject

  CreateCompatibleDC

  CreatePatternBrush

  CreateDIBPatternBrushPt

  SetTextColor

  IntersectClipRect

  OffsetClipRgn

  LineTo

  MoveToEx

  SetTextAlign

  SetTextJustification

  SetWindowOrgEx

  ScaleViewportExtEx

  SetViewportExtEx

  OffsetViewportOrgEx

  SetViewportOrgEx

  SelectObject

  Escape

  ExtTextOutA

  TextOutA

  DeleteDC

  GetDCOrgEx

  StartDocA

  GetPixel

  BitBlt

  GetWindowExtEx

  GetViewportExtEx

  SelectClipPath

  CreateRectRgn

  GetClipRgn

  SelectClipRgn

  DeleteObject

  SetColorAdjustment

  SetArcDirection

  SetMapperFlags

  SetTextCharacterExtra

  RectVisible

  winspool.drv

  DocumentPropertiesA

  OpenPrinterA

  GetJobA

  ClosePrinter

  comdlg32

  CommDlgExtendedError

  ReplaceTextA

  FindTextA

  GetSaveFileNameA

  GetOpenFileNameA

  PageSetupDlgA

  PrintDlgA

  GetFileTitleA

  shell32

  ExtractIconA

  DragFinish

  DragQueryFileA

  SHGetFileInfoA

  ole32

  WriteFmtUserTypeStg

  WriteClassStg

  CoTaskMemFree

  OleRegGetUserType

  ReleaseStgMedium

  ReadFmtUserTypeStg

  ReadClassStg

  StringFromCLSID

  CoTreatAsClass

  CreateBindCtx

  CoTaskMemAlloc

  OleDuplicateData

  CoDisconnectObject

  CoCreateInstance

  StringFromGUID2

  CLSIDFromString

  SetConvertStg

  oleaut32

  VariantClear

  VariantChangeType

  VariantInit

  SysAllocStringLen

  SysFreeString

  SysStringLen

  SysAllocStringByteLen

  SysStringByteLen

  SafeArrayUnaccessData

  SafeArrayAccessData

  SafeArrayGetUBound

  SafeArrayGetLBound

  SafeArrayGetElemsize

  SafeArrayGetDim

  SafeArrayCreate

  SafeArrayRedim

  VariantCopy

  SafeArrayAllocData

  SafeArrayAllocDescriptor

  SafeArrayCopy

  SafeArrayGetElement

  SafeArrayPtrOfIndex

  SafeArrayPutElement

  SafeArrayLock

  SafeArrayUnlock

  SafeArrayDestroy

  SafeArrayDestroyData

  SafeArrayDestroyDescriptor

  VariantTimeToSystemTime

  SystemTimeToVariantTime

  SysAllocString

  SysReAllocStringLen

  VarDateFromStr

  VarBstrFromDec

  VarDecFromStr

  VarCyFromStr

  VarBstrFromCy

  VarBstrFromDate

  Sections

  .text

  Size: 312KB - Virtual size: 308KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 88KB - Virtual size: 86KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 12KB - Virtual size: 24KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 244KB - Virtual size: 243KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ