General

Malware Config

Signatures

Files

• a104e1e3befda44a812d3c98177b05bdcb15ca48a60002b5d13256994741915b

  .dll windows x86

  98fd6f48712a41ba310024403f57a44e

  
  

  Code Sign

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  WriteConsoleA

  SetStdHandle

  GetLocaleInfoA

  GetStringTypeW

  GetStringTypeA

  LCMapStringW

  LCMapStringA

  GetConsoleOutputCP

  LoadLibraryA

  LoadLibraryW

  OutputDebugStringW

  WriteConsoleW

  OutputDebugStringA

  DebugBreak

  GetConsoleMode

  GetConsoleCP

  FlushFileBuffers

  WriteFile

  SetFilePointer

  CloseHandle

  CompareStringA

  CompareStringW

  SetEnvironmentVariableA

  GetSystemTime

  VirtualProtect

  GetVersionExA

  FindFirstChangeNotificationA

  GetModuleHandleA

  GetModuleFileNameA

  SetSystemPowerState

  Sleep

  GetCommandLineA

  OpenProcess

  GetDateFormatA

  GetWindowsDirectoryA

  GetSystemTimeAsFileTime

  QueryPerformanceCounter

  GetCPInfo

  MultiByteToWideChar

  CreateFileA

  InterlockedIncrement

  InterlockedDecrement

  InitializeCriticalSection

  DeleteCriticalSection

  EnterCriticalSection

  LeaveCriticalSection

  HeapValidate

  IsBadReadPtr

  GetTimeFormatA

  GetCurrentThreadId

  HeapFree

  HeapAlloc

  GetProcessHeap

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  GetModuleFileNameW

  RaiseException

  RtlUnwind

  TerminateProcess

  GetCurrentProcess

  IsDebuggerPresent

  FatalAppExitA

  GetLastError

  HeapReAlloc

  HeapDestroy

  HeapCreate

  VirtualFree

  VirtualAlloc

  GetProcAddress

  ExitProcess

  GetACP

  GetOEMCP

  TlsGetValue

  TlsAlloc

  TlsSetValue

  TlsFree

  SetLastError

  WideCharToMultiByte

  GetTimeZoneInformation

  SetHandleCount

  GetStdHandle

  GetFileType

  GetStartupInfoA

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetTickCount

  GetCurrentProcessId

  user32

  ClientToScreen

  GetClassNameA

  RegisterClassExA

  TrackPopupMenu

  IsIconic

  FillRect

  GetMenuItemID

  GetParent

  IsWindowEnabled

  DrawIcon

  GetWindowTextLengthA

  IsDialogMessageA

  SetPropA

  CheckMenuRadioItem

  SetWindowLongA

  GetDlgItem

  ScrollWindow

  SetWindowsHookExA

  FrameRect

  GetActiveWindow

  AppendMenuA

  PostMessageA

  DispatchMessageA

  SystemParametersInfoA

  SetWindowTextA

  LoadImageA

  FindWindowA

  DrawFrameControl

  RegisterHotKey

  GetWindow

  gdi32

  SetAbortProc

  SetRectRgn

  CombineRgn

  ScaleViewportExtEx

  SetViewportExtEx

  GetTextMetricsA

  EndDoc

  OffsetViewportOrgEx

  AbortDoc

  SetWindowExtEx

  comdlg32

  GetOpenFileNameA

  ChooseColorA

  GetSaveFileNameA

  GetFileTitleA

  ChooseFontA

  CommDlgExtendedError

  comctl32

  ImageList_GetImageCount

  ImageList_GetIcon

  ImageList_Create

  ImageList_EndDrag

  ImageList_DragEnter

  ImageList_GetBkColor

  Sections

  .text

  Size: 416KB - Virtual size: 413KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 64KB - Virtual size: 63KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 8KB - Virtual size: 79KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 8KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 20KB - Virtual size: 17KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ