General

Malware Config

Signatures

Files

• 7495196127.zip

  .zip

  Password: infected

• 327006b939627d1300906e10ec00cae6092d97929b104af552c2bd18882f7df3

  .dll windows x64

  a9f49dd5be15c07c64346603d752265a

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  gdi32

  DeleteObject

  DrawEscape

  GetBkMode

  GetRgnBox

  GetTextCharacterExtra

  GdiFlush

  CreateCompatibleBitmap

  uxtheme

  GetThemeInt

  IsThemeDialogTextureEnabled

  GetCurrentThemeName

  GetBufferedPaintTargetDC

  BufferedPaintSetAlpha

  DrawThemeText

  Exports

  Exports

  HI5sofAFIT

  LSE2f7X8YDQ

  Pt3wzZVd

  UaCY5lKwjIv

  XK4TN8C6J

  Y9soTrlK

  c9ksJ6i8v

  epX1VnmxA

  gAADYu8ZG

  gXTsEojB9

  jhbfgyujghfgd

  pROhhH0R

  Sections

  .text

  Size: 31KB - Virtual size: 31KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 827KB - Virtual size: 827KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 111KB - Virtual size: 110KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 512B - Virtual size: 480B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ