General

Malware Config

Signatures

Files

• 93d2edbc498f6f8689223bcb079143a97627efe9c1f7b23687a94a1eaf223d78

  .exe windows x86

  2fdec0bed54f149ca81f85bc622896e0

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  LCMapStringW

  CompareStringW

  GetStdHandle

  QueryPerformanceFrequency

  GetCommandLineW

  GetCommandLineA

  HeapQueryInformation

  SetStdHandle

  FreeLibraryAndExitThread

  ExitThread

  EnumSystemLocalesW

  ReadConsoleW

  CreateFileW

  GetModuleHandleExW

  VirtualQuery

  VirtualAlloc

  RtlUnwind

  GetStringTypeW

  LCMapStringEx

  InitializeCriticalSectionEx

  OutputDebugStringW

  IsValidLocale

  SetFilePointerEx

  GetConsoleOutputCP

  GetFileType

  GetFileAttributesExW

  GetExitCodeProcess

  CreateProcessW

  GetTimeZoneInformation

  FindFirstFileExW

  FindNextFileW

  IsValidCodePage

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  SetEnvironmentVariableW

  WriteConsoleW

  InitializeSListHead

  GetSystemTimeAsFileTime

  QueryPerformanceCounter

  GetStartupInfoW

  IsDebuggerPresent

  IsProcessorFeaturePresent

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  CreateEventW

  GetUserDefaultLCID

  GetTempFileNameA

  SearchPathA

  GetProfileIntA

  GetTempPathA

  VerifyVersionInfoA

  VerSetConditionMask

  GetWindowsDirectoryA

  FindResourceExW

  GetCurrentDirectoryA

  GetConsoleMode

  GetACP

  GetCPInfo

  GetOEMCP

  VirtualProtect

  GetUserDefaultUILanguage

  GetLocaleInfoW

  GlobalFlags

  GlobalFindAtomA

  GlobalAddAtomA

  FindResourceA

  lstrcmpW

  GlobalDeleteAtom

  GetSystemDirectoryW

  EncodePointer

  GetFileTime

  GetFileSizeEx

  GetFileAttributesExA

  FileTimeToLocalFileTime

  GlobalGetAtomNameA

  lstrcmpA

  GetCurrentProcessId

  LocalReAlloc

  GlobalHandle

  GlobalReAlloc

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  InitializeCriticalSection

  CompareStringA

  ResumeThread

  SetThreadPriority

  GetCurrentThreadId

  GetModuleFileNameA

  DuplicateHandle

  GetVolumeInformationA

  WriteFile

  UnlockFile

  SetFilePointer

  SetEndOfFile

  ReadFile

  LockFile

  GetFileSize

  FlushFileBuffers

  FindFirstFileA

  FindClose

  FileTimeToSystemTime

  SystemTimeToTzSpecificLocalTime

  LoadLibraryW

  LoadLibraryExW

  GetModuleHandleW

  GetModuleFileNameW

  FreeLibrary

  LeaveCriticalSection

  EnterCriticalSection

  OutputDebugStringA

  CopyFileA

  FormatMessageA

  MulDiv

  GlobalFree

  GlobalLock

  GlobalUnlock

  GlobalSize

  GlobalAlloc

  GetFileAttributesA

  GetFullPathNameA

  OpenThread

  GetConsoleWindow

  LocalFree

  CreateThread

  LoadLibraryA

  TerminateThread

  GetCurrentThread

  LocalAlloc

  CreateMutexA

  Thread32First

  Thread32Next

  HeapFree

  GetCurrentProcess

  SetLastError

  lstrcmpiA

  lstrcpyA

  GetProcAddress

  GetSystemInfo

  Process32Next

  GetVersionExA

  CreateToolhelp32Snapshot

  OpenProcess

  GetModuleHandleA

  TerminateProcess

  Process32First

  GetTickCount

  GetPrivateProfileStringA

  ExitProcess

  WritePrivateProfileStringA

  CreateFileA

  DeviceIoControl

  Sleep

  CreateProcessA

  FindResourceW

  LoadResource

  CloseHandle

  DeleteFileA

  LockResource

  WaitForSingleObject

  SizeofResource

  WideCharToMultiByte

  GetProcessHeap

  DeleteCriticalSection

  DecodePointer

  HeapAlloc

  RaiseException

  HeapReAlloc

  GetLastError

  MultiByteToWideChar

  HeapSize

  InitializeCriticalSectionAndSpinCount

  user32

  SetTimer

  DeleteMenu

  SetCursor

  ShowOwnedPopups

  LoadImageW

  InvalidateRect

  TrackMouseEvent

  IntersectRect

  MapDialogRect

  GetAsyncKeyState

  GetNextDlgTabItem

  EndDialog

  CreateDialogIndirectParamA

  PostQuitMessage

  OffsetRect

  SetRectEmpty

  CopyImage

  SystemParametersInfoA

  InflateRect

  GetMenuItemInfoA

  DestroyMenu

  FillRect

  GetWindowDC

  TabbedTextOutA

  GrayStringA

  DrawTextExA

  DrawTextA

  RealChildWindowFromPoint

  ClientToScreen

  DestroyIcon

  IsDialogMessageA

  SetWindowTextA

  SendDlgItemMessageA

  CheckDlgButton

  MoveWindow

  ShowWindow

  GetMonitorInfoA

  MonitorFromWindow

  WinHelpA

  GetScrollInfo

  SetScrollInfo

  LoadIconW

  LoadIconA

  GetWindow

  GetTopWindow

  GetClassLongA

  SetWindowLongA

  PtInRect

  EqualRect

  KillTimer

  MapWindowPoints

  ScreenToClient

  AdjustWindowRectEx

  GetClientRect

  RemovePropA

  GetPropA

  SetPropA

  ShowScrollBar

  GetScrollRange

  SetCursorPos

  CopyIcon

  FrameRect

  DrawIcon

  UnionRect

  WaitForInputIdle

  GetSystemMetrics

  SetScrollRange

  GetScrollPos

  SetScrollPos

  ScrollWindow

  UpdateLayeredWindow

  EndPaint

  BeginPaint

  SetForegroundWindow

  GetForegroundWindow

  SetClipboardData

  UpdateWindow

  TrackPopupMenu

  SetMenu

  GetMenu

  GetCapture

  SetFocus

  GetDlgCtrlID

  GetDlgItem

  IsIconic

  EndDeferWindowPos

  DeferWindowPos

  BeginDeferWindowPos

  SetWindowPlacement

  GetWindowPlacement

  SetWindowPos

  DestroyWindow

  IsChild

  IsMenu

  IsWindow

  CreateWindowExA

  GetClassInfoExA

  GetClassInfoA

  RegisterClassA

  CallWindowProcA

  DefWindowProcA

  PostMessageA

  GetMessageTime

  GetMessagePos

  GetNextDlgGroupItem

  SetCapture

  ReleaseCapture

  DrawFocusRect

  IsRectEmpty

  LoadImageA

  DrawIconEx

  GetIconInfo

  MessageBeep

  EnableScrollBar

  HideCaret

  InvertRect

  LoadCursorW

  NotifyWinEvent

  CreatePopupMenu

  GetMenuDefaultItem

  MapVirtualKeyA

  GetKeyNameTextA

  SetLayeredWindowAttributes

  EnumDisplayMonitors

  OpenClipboard

  CopyRect

  GetCursorPos

  FindWindowA

  EnableMenuItem

  WindowFromPoint

  GetClassNameA

  GetWindowRect

  GetSystemMenu

  MessageBoxA

  GetMenuStringA

  GetMenuState

  GetSubMenu

  GetMenuItemID

  GetMenuItemCount

  InsertMenuA

  AppendMenuA

  RemoveMenu

  GetDesktopWindow

  CharUpperA

  GetMessageA

  TranslateMessage

  DispatchMessageA

  PeekMessageA

  SendMessageA

  IsWindowVisible

  GetActiveWindow

  GetKeyState

  ValidateRect

  SetWindowsHookExA

  CallNextHookEx

  UnhookWindowsHookEx

  GetDC

  ReleaseDC

  GetSysColor

  GetSysColorBrush

  LoadCursorA

  EnableWindow

  IsWindowEnabled

  GetWindowLongA

  GetParent

  GetWindowThreadProcessId

  GetLastActivePopup

  GetWindowTextA

  GetWindowTextLengthA

  GetFocus

  CheckMenuItem

  SetMenuItemBitmaps

  GetMenuCheckMarkDimensions

  SetMenuItemInfoA

  LoadBitmapW

  RegisterWindowMessageA

  MonitorFromPoint

  LoadAcceleratorsA

  TranslateAcceleratorA

  LoadMenuA

  EmptyClipboard

  DrawStateA

  SetClassLongA

  CloseClipboard

  SetWindowRgn

  SetParent

  DrawEdge

  DrawFrameControl

  IsZoomed

  LoadMenuW

  SetActiveWindow

  BringWindowToTop

  InsertMenuItemA

  UnpackDDElParam

  ReuseDDElParam

  GetComboBoxInfo

  PostThreadMessageA

  WaitMessage

  GetKeyboardLayout

  IsCharLowerA

  MapVirtualKeyExA

  GetKeyboardState

  ToAsciiEx

  LoadAcceleratorsW

  CreateAcceleratorTableA

  DestroyAcceleratorTable

  CopyAcceleratorTableA

  SetRect

  LockWindowUpdate

  SetMenuDefaultItem

  GetDoubleClickTime

  ModifyMenuA

  RegisterClipboardFormatA

  CharUpperBuffA

  IsClipboardFormatAvailable

  GetUpdateRect

  DrawMenuBar

  DefFrameProcA

  DefMDIChildProcA

  TranslateMDISysAccel

  SubtractRect

  DestroyCursor

  GetWindowRgn

  CreateMenu

  RedrawWindow

  gdi32

  SetBkMode

  SetMapMode

  SetLayout

  GetLayout

  SetPolyFillMode

  SetTextAlign

  MoveToEx

  TextOutA

  ExtTextOutA

  SetViewportExtEx

  SetViewportOrgEx

  SetWindowExtEx

  SetWindowOrgEx

  OffsetViewportOrgEx

  OffsetWindowOrgEx

  ScaleViewportExtEx

  ScaleWindowExtEx

  CreateFontIndirectA

  GetTextExtentPoint32A

  CombineRgn

  CreateRectRgnIndirect

  PatBlt

  SetRectRgn

  DPtoLP

  GetTextMetricsA

  EnumFontFamiliesExA

  CreatePalette

  GetNearestPaletteIndex

  GetPaletteEntries

  GetSystemPaletteEntries

  RealizePalette

  SelectPalette

  CreateCompatibleBitmap

  CreateDIBitmap

  EnumFontFamiliesA

  GetTextCharsetInfo

  SetPixel

  StretchBlt

  CreateDIBSection

  SetDIBColorTable

  CreateEllipticRgn

  Ellipse

  GetTextColor

  CreatePolygonRgn

  Polygon

  Polyline

  CreateRoundRectRgn

  LPtoDP

  Rectangle

  GetRgnBox

  OffsetRgn

  RoundRect

  FillRgn

  FrameRgn

  GetBoundsRect

  PtInRegion

  ExtFloodFill

  SetPaletteEntries

  SetPixelV

  GetWindowOrgEx

  GetViewportOrgEx

  GetTextFaceA

  SelectObject

  ExtSelectClipRgn

  SelectClipRgn

  SaveDC

  RestoreDC

  RectVisible

  PtVisible

  LineTo

  IntersectClipRect

  GetWindowExtEx

  GetViewportExtEx

  GetStockObject

  GetPixel

  GetObjectType

  GetClipBox

  ExcludeClipRect

  Escape

  CreateSolidBrush

  CreateRectRgn

  CreatePatternBrush

  CreatePen

  CreateHatchBrush

  CreateCompatibleDC

  BitBlt

  DeleteObject

  GetObjectA

  SetTextColor

  SetBkColor

  CreateBitmap

  DeleteDC

  GetDeviceCaps

  CreateDCA

  GetBkColor

  SetROP2

  CopyMetaFileA

  msimg32

  AlphaBlend

  TransparentBlt

  winspool.drv

  DocumentPropertiesA

  ClosePrinter

  OpenPrinterA

  advapi32

  RegEnumKeyExA

  RegDeleteValueA

  RegDeleteKeyA

  RegQueryValueExA

  RegOpenKeyExA

  RegCloseKey

  RegCreateKeyExA

  RegFlushKey

  RegSetValueExA

  SetSecurityDescriptorDacl

  RevertToSelf

  AccessCheck

  SetSecurityDescriptorOwner

  AllocateAndInitializeSid

  ImpersonateSelf

  IsValidSecurityDescriptor

  OpenProcessToken

  FreeSid

  InitializeSecurityDescriptor

  InitializeAcl

  GetLengthSid

  AddAccessAllowedAce

  OpenThreadToken

  SetSecurityDescriptorGroup

  CreateServiceA

  CloseServiceHandle

  OpenSCManagerA

  DeleteService

  ControlService

  StartServiceA

  OpenServiceA

  shell32

  SHGetFileInfoA

  SHGetPathFromIDListA

  SHGetSpecialFolderLocation

  SHGetDesktopFolder

  DragQueryFileA

  DragFinish

  SHAppBarMessage

  SHBrowseForFolderA

  ShellExecuteA

  shlwapi

  PathStripToRootA

  PathFindExtensionA

  UrlUnescapeA

  PathRemoveFileSpecW

  StrFormatKBSizeA

  PathFindFileNameA

  PathIsUNCA

  uxtheme

  DrawThemeText

  DrawThemeParentBackground

  OpenThemeData

  CloseThemeData

  DrawThemeBackground

  GetThemeColor

  GetCurrentThemeName

  GetWindowTheme

  IsAppThemed

  IsThemeBackgroundPartiallyTransparent

  GetThemeSysColor

  GetThemePartSize

  ole32

  OleDestroyMenuDescriptor

  OleCreateMenuDescriptor

  OleLockRunning

  RevokeDragDrop

  RegisterDragDrop

  CoLockObjectExternal

  OleGetClipboard

  DoDragDrop

  CreateStreamOnHGlobal

  CoDisconnectObject

  ReleaseStgMedium

  OleDuplicateData

  CoTaskMemAlloc

  CoTaskMemFree

  StringFromCLSID

  CoInitialize

  CoInitializeEx

  CoInitializeSecurity

  CoCreateInstance

  CoUninitialize

  OleTranslateAccelerator

  IsAccelerator

  oleaut32

  LoadTypeLi

  VariantInit

  SysFreeString

  SysStringByteLen

  SysAllocStringByteLen

  SysAllocString

  VariantClear

  VariantTimeToSystemTime

  VariantCopy

  VariantChangeType

  VarBstrFromDate

  SysStringLen

  SysAllocStringLen

  SystemTimeToVariantTime

  ws2_32

  getprotobyname

  WSAStartup

  gethostbyname

  closesocket

  connect

  WSACleanup

  recv

  htons

  setsockopt

  WSAGetLastError

  socket

  send

  setupapi

  SetupDiGetDeviceInstanceIdA

  SetupDiEnumDeviceInfo

  SetupDiGetClassDevsA

  SetupDiChangeState

  SetupDiSetClassInstallParamsA

  SetupDiClassNameFromGuidA

  SetupDiDestroyDeviceInfoList

  psapi

  GetMappedFileNameA

  gdiplus

  GdipCreateFromHDC

  GdipSetInterpolationMode

  GdipDrawImageRectI

  GdipDeleteGraphics

  GdiplusShutdown

  GdipAlloc

  GdipCreateBitmapFromHBITMAP

  GdiplusStartup

  GdipCloneImage

  GdipBitmapUnlockBits

  GdipBitmapLockBits

  GdipCreateBitmapFromScan0

  GdipFree

  GdipCreateBitmapFromStream

  GdipGetImagePaletteSize

  GdipGetImagePalette

  GdipGetImagePixelFormat

  GdipGetImageHeight

  GdipGetImageWidth

  GdipGetImageGraphicsContext

  GdipDrawImageI

  GdipDisposeImage

  wininet

  InternetCanonicalizeUrlA

  InternetCrackUrlA

  oleacc

  AccessibleObjectFromWindow

  LresultFromObject

  CreateStdAccessibleObject

  imm32

  ImmReleaseContext

  ImmGetOpenStatus

  ImmGetContext

  winmm

  PlaySoundA

  Sections

  .text

  Size: 1.5MB - Virtual size: 1.5MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 323KB - Virtual size: 323KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 116KB - Virtual size: 134KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 1024B - Virtual size: 656B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 133KB - Virtual size: 132KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ