General

Malware Config

Signatures

Files

• f93ad98ea87cbe069ac9bb41b6ec5ab72c5c14aed42c028e9cf9875ff0871014

  .dll windows x86

  713765052f55c09b5deb20175f6d4a81

  
  

  Code Sign

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetModuleHandleA

  GetLastError

  VirtualAllocEx

  user32

  CharNextA

  CharNextW

  GetMenuContextHelpId

  GetLastActivePopup

  GetWindowTextLengthA

  IsClipboardFormatAvailable

  GetListBoxInfo

  GetInputState

  IsCharLowerW

  IsMenu

  IsCharUpperA

  GetCapture

  VkKeyScanW

  CountClipboardFormats

  GetOpenClipboardWindow

  OpenIcon

  CharUpperW

  GetClipboardData

  LoadCursorFromFileW

  GetKeyboardLayout

  GetWindowTextLengthW

  CloseWindowStation

  GetClipboardSequenceNumber

  GetMenuCheckMarkDimensions

  IsCharAlphaNumericA

  GetMessageTime

  PaintDesktop

  GetParent

  GetSystemMetrics

  LoadIconA

  gdi32

  GetStockObject

  RealizePalette

  GetEnhMetaFileW

  GetEnhMetaFileBits

  StrokePath

  DeleteEnhMetaFile

  CloseMetaFile

  GetTextCharset

  DeleteObject

  GetStretchBltMode

  CreateSolidBrush

  GetObjectType

  CancelDC

  CreatePatternBrush

  GetColorSpace

  CloseEnhMetaFile

  CreateHalftonePalette

  FlattenPath

  advapi32

  RegOpenKeyA

  Sections

  .text

  Size: 9KB - Virtual size: 9KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text10

  Size: 512B - Virtual size: 300B

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text8

  Size: 512B - Virtual size: 300B

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text7

  Size: 512B - Virtual size: 300B

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text6

  Size: 512B - Virtual size: 300B

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text5

  Size: 512B - Virtual size: 300B

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text4

  Size: 512B - Virtual size: 300B

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text3

  Size: 512B - Virtual size: 300B

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text2

  Size: 512B - Virtual size: 300B

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 2.0MB - Virtual size: 2.0MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 4KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 2KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ