General

Malware Config

Signatures

Files

• 6ca903e9ee2d13ba81ce292115b320f3e9eeb459e1f8f137fcc741ad311c029d

  .dll windows x86

  c5e49e00ad92968f69057cfd6abdabcb

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  RegisterClassExA

  SetTimer

  PostQuitMessage

  TranslateAcceleratorA

  TranslateMessage

  LoadIconA

  LoadAcceleratorsA

  BeginPaint

  LoadCursorA

  SetWindowPos

  KillTimer

  GetMessageA

  EndPaint

  DispatchMessageA

  DefWindowProcA

  CreateWindowExA

  kernel32

  lstrcpynA

  TerminateProcess

  RtlZeroMemory

  LoadLibraryA

  GetVersionExA

  GetTempPathA

  GetTempFileNameA

  GetProcAddress

  GetModuleFileNameA

  CloseHandle

  CreateThread

  DeleteFileA

  GetLongPathNameA

  WaitForSingleObject

  msvcrt

  strlen

  strcpy

  strcat

  fwrite

  fseek

  fread

  fopen

  fclose

  atoi

  _strlwr

  shlwapi

  PathFileExistsA

  StrStrA

  shell32

  Shell_NotifyIconA

  advapi32

  RegQueryValueExA

  RegOpenKeyExA

  RegOpenKeyA

  RegDeleteKeyA

  RegCreateKeyA

  RegCloseKey

  wininet

  InternetOpenA

  InternetOpenUrlA

  InternetCloseHandle

  Exports

  Exports

  aab

  all

  allert

  allert2

  load

  windows

  Sections

  .text

  Size: 4KB - Virtual size: 3KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 1024B - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 4KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 380B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ