General

Malware Config

Signatures

Files

• f26214e5e5892e3d9c74aa7d9aa009d7292650748ae9f70f11d74419f7d5407d

  .dll windows x86

  541e580aed0d62684853ffe1d6ce4062

  
  

  Code Sign

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  InitializeCriticalSectionAndSpinCount

  CloseHandle

  SetFilePointer

  ReadFile

  GetUserDefaultLCID

  LoadLibraryA

  GetLocaleInfoW

  SetStdHandle

  WriteConsoleA

  GetConsoleOutputCP

  CreateFileA

  EnumSystemLocalesA

  IsValidLocale

  GetLocaleInfoA

  IsValidCodePage

  LocalFree

  GetCurrentThreadId

  VirtualProtect

  LocalAlloc

  OpenMutexA

  SetFileAttributesA

  RemoveDirectoryA

  CreateProcessA

  CreateEventA

  Sleep

  WideCharToMultiByte

  InterlockedIncrement

  InterlockedDecrement

  MultiByteToWideChar

  InterlockedExchange

  InitializeCriticalSection

  DeleteCriticalSection

  EnterCriticalSection

  LeaveCriticalSection

  TerminateProcess

  GetCurrentProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  GetModuleFileNameW

  GetCommandLineA

  GetCPInfo

  HeapValidate

  IsBadReadPtr

  RaiseException

  RtlUnwind

  LCMapStringA

  GetLastError

  LCMapStringW

  GetProcAddress

  TlsGetValue

  GetModuleHandleW

  TlsAlloc

  TlsSetValue

  TlsFree

  SetLastError

  DebugBreak

  GetStdHandle

  WriteFile

  OutputDebugStringA

  WriteConsoleW

  GetFileType

  OutputDebugStringW

  ExitProcess

  LoadLibraryW

  SetHandleCount

  GetStartupInfoA

  GetModuleFileNameA

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  HeapDestroy

  HeapCreate

  HeapFree

  VirtualFree

  QueryPerformanceCounter

  GetTickCount

  GetCurrentProcessId

  GetSystemTimeAsFileTime

  GetStringTypeA

  GetStringTypeW

  FlushFileBuffers

  GetConsoleCP

  GetConsoleMode

  HeapAlloc

  HeapSize

  HeapReAlloc

  VirtualAlloc

  GetACP

  GetOEMCP

  GetModuleHandleA

  user32

  EndDeferWindowPos

  ReleaseCapture

  DefWindowProcA

  EndDialog

  ReleaseDC

  GetMessageA

  CloseClipboard

  GetClassInfoExA

  DrawTextA

  LoadIconA

  CallNextHookEx

  WindowFromPoint

  ExitWindowsEx

  EnumWindows

  InflateRect

  OffsetRect

  IntersectRect

  GetWindowLongA

  gdi32

  GetDeviceCaps

  SetAbortProc

  SetRectRgn

  CombineRgn

  GetBkColor

  CreatePatternBrush

  EndDoc

  AbortDoc

  CreateSolidBrush

  winspool.drv

  ClosePrinter

  OpenPrinterA

  GetPrinterDataA

  AddPrinterConnectionA

  DocumentPropertiesA

  comdlg32

  CommDlgExtendedError

  GetOpenFileNameA

  ChooseColorA

  GetSaveFileNameA

  GetFileTitleA

  ChooseFontA

  comctl32

  ImageList_GetBkColor

  ImageList_GetImageCount

  ImageList_GetIcon

  ImageList_Create

  ImageList_EndDrag

  ImageList_GetDragImage

  Sections

  .text

  Size: 233KB - Virtual size: 232KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 61KB - Virtual size: 61KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 6KB - Virtual size: 79KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 5KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 19KB - Virtual size: 18KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ