General

Malware Config

Signatures

Files

• 2462d5526bf60986a139f7dba41606a4bafd574431f31c38048d573a1ca3f52c

  .exe windows x86

  193b77a60e8fe5bcda540780ba10305e

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  TlsFree

  TlsGetValue

  TlsSetValue

  TryEnterCriticalSection

  UnhandledExceptionFilter

  UnlockFile

  UnmapViewOfFile

  VerLanguageNameW

  VerSetConditionMask

  VerifyVersionInfoW

  VirtualFree

  VirtualProtect

  VirtualQuery

  VirtualQueryEx

  WaitForMultipleObjectsEx

  WaitForSingleObject

  WideCharToMultiByte

  WriteConsoleA

  WriteConsoleW

  WriteFile

  TlsAlloc

  WritePrivateProfileSectionW

  WritePrivateProfileStringW

  lstrcmpA

  lstrcmpW

  lstrcmpiW

  lstrcpyW

  lstrcpynA

  lstrcpynW

  lstrlenW

  GetStringTypeA

  LCMapStringA

  HeapCreate

  GetEnvironmentStrings

  FreeEnvironmentStringsA

  TerminateThread

  TerminateProcess

  SwitchToThread

  SystemTimeToFileTime

  SuspendThread

  Sleep

  SizeofResource

  SignalObjectAndWait

  SetUnhandledExceptionFilter

  SetTimerQueueTimer

  SetThreadPriority

  SetThreadLocale

  SetThreadContext

  SetStdHandle

  SetMessageWaitingIndicator

  SetLocaleInfoA

  SetLastError

  SetHandleCount

  SetFilePointerEx

  SetFilePointer

  SetFileAttributesW

  SetFileAttributesA

  SetEvent

  SetEnvironmentVariableA

  SetEndOfFile

  SearchPathW

  RtlUnwind

  ResumeThread

  ResetEvent

  RemoveDirectoryW

  RemoveDirectoryA

  ReleaseMutex

  ReadProcessMemory

  ReadFileScatter

  ReadFile

  ReadConsoleW

  ReadConsoleInputW

  ReadConsoleA

  RaiseException

  QueryPerformanceFrequency

  QueryPerformanceCounter

  OutputDebugStringW

  OutputDebugStringA

  OpenProcess

  OpenFileMappingW

  OpenFileMappingA

  MultiByteToWideChar

  MulDiv

  MapViewOfFile

  LockResource

  LockFileEx

  LockFile

  LocalSize

  LocalReAlloc

  LocalFree

  LocalAlloc

  LoadResource

  LoadModule

  LoadLibraryW

  LoadLibraryExW

  LoadLibraryExA

  LoadLibraryA

  LeaveCriticalSection

  LCMapStringW

  IsValidLocale

  IsValidCodePage

  IsProcessorFeaturePresent

  IsDebuggerPresent

  IsBadReadPtr

  InterlockedIncrement

  InterlockedExchangeAdd

  InterlockedExchange

  InterlockedDecrement

  InterlockedCompareExchange

  InitializeCriticalSectionEx

  InitializeCriticalSectionAndSpinCount

  InitializeCriticalSection

  HeapValidate

  HeapSize

  HeapReAlloc

  HeapQueryInformation

  HeapFree

  HeapAlloc

  GlobalWire

  GlobalUnlock

  GlobalSize

  GlobalReAlloc

  GlobalMemoryStatus

  GlobalLock

  GlobalHandle

  GlobalGetAtomNameW

  GlobalFree

  GlobalFlags

  GlobalFix

  GlobalFindAtomW

  GlobalDeleteAtom

  GlobalAlloc

  GlobalAddAtomW

  GetWindowsDirectoryW

  GetWindowsDirectoryA

  GetVolumeInformationW

  GetVersionExW

  GetVersionExA

  GetVersion

  GetUserDefaultUILanguage

  GetUserDefaultLCID

  GetTimeZoneInformation

  GetTickCount

  GetThreadSelectorEntry

  GetThreadPriority

  GetThreadLocale

  GetThreadContext

  GetTempPathW

  GetTempPathA

  GetTempFileNameW

  GetSystemTimeAsFileTime

  GetSystemTime

  GetSystemInfo

  GetSystemDirectoryW

  GetSystemDefaultUILanguage

  GetSystemDefaultLangID

  GetStringTypeW

  GetStdHandle

  GetStartupInfoW

  GetStartupInfoA

  GetShortPathNameW

  GetProfileStringW

  GetProfileIntW

  GetProcessHeap

  GetProcessAffinityMask

  GetProcAddress

  GetPrivateProfileStringW

  GetPrivateProfileIntW

  GetPriorityClass

  GetOverlappedResult

  GetOEMCP

  GetModuleHandleW

  GetModuleHandleExW

  GetModuleFileNameW

  GetModuleFileNameA

  GetLongPathNameW

  GetLocaleInfoW

  GetLocaleInfoA

  GetLocalTime

  GetLastError

  GetFullPathNameW

  GetFileType

  GetFileTime

  GetFileSizeEx

  GetFileSize

  GetFileAttributesW

  GetFileAttributesExW

  GetFileAttributesA

  GetExitCodeThread

  GetEnvironmentStringsW

  GetDriveTypeW

  GetDiskFreeSpaceW

  GetDiskFreeSpaceA

  GetDateFormatW

  GetCurrentThreadId

  GetCurrentThread

  GetCurrentProcessId

  GetCurrentProcess

  GetCurrentDirectoryW

  GetConsoleMode

  GetConsoleCP

  GetConsoleAliasA

  GetComputerNameW

  GetComputerNameA

  GetCommandLineW

  GetCommandLineA

  GetCPInfoExW

  GetCPInfo

  GetACP

  FreeResource

  FreeLibrary

  FreeEnvironmentStringsW

  FormatMessageW

  FormatMessageA

  FoldStringW

  FlushFileBuffers

  FindResourceW

  FindResourceExW

  FindResourceA

  FindNextFileA

  FindFirstFileW

  FindFirstFileA

  FindClose

  FileTimeToSystemTime

  FileTimeToLocalFileTime

  FileTimeToDosDateTime

  ExpandEnvironmentStringsA

  ExitThread

  ExitProcess

  EnumSystemLocalesW

  EnumResourceNamesW

  EnumCalendarInfoW

  EnterCriticalSection

  EncodePointer

  DuplicateHandle

  DeleteFileW

  DeleteFileA

  DeleteCriticalSection

  DecodePointer

  CreateThread

  CreateRemoteThread

  CreateProcessW

  CreateProcessA

  CreatePipe

  CreateMutexW

  CreateMutexA

  CreateFileW

  CreateFileMappingW

  CreateFileMappingA

  CreateFileA

  CreateEventW

  CreateDirectoryW

  CreateDirectoryA

  CopyFileW

  CopyFileA

  CompareStringW

  CompareStringA

  CloseHandle

  BuildCommDCBA

  Beep

  AllocateUserPhysicalPages

  SetErrorMode

  VirtualAlloc

  WriteFileGather

  GetModuleHandleA

  user32

  UnregisterClassA

  UnregisterClassW

  UpdateLayeredWindow

  UpdateWindow

  ValidateRect

  ValidateRgn

  WaitMessage

  WinHelpW

  WindowFromPoint

  SetMenuItemInfoW

  SetMenuItemBitmaps

  SetMenuDefaultItem

  SetMenu

  SetLayeredWindowAttributes

  SetForegroundWindow

  SetFocus

  SetDoubleClickTime

  SetCursorPos

  SetCursor

  SetClipboardData

  SetClassWord

  SetClassLongW

  SetClassLongA

  SetCapture

  SetActiveWindow

  SendNotifyMessageW

  SendMessageW

  SendMessageTimeoutW

  SendMessageA

  SendInput

  SendDlgItemMessageA

  ScrollWindow

  ScreenToClient

  ReuseDDElParam

  RemovePropW

  RemoveMenu

  ReleaseDC

  ReleaseCapture

  RegisterWindowMessageW

  RegisterClipboardFormatW

  RegisterClassW

  RedrawWindow

  RealChildWindowFromPoint

  PtInRect

  PostThreadMessageW

  PostQuitMessage

  PostMessageW

  PeekMessageW

  PeekMessageA

  OpenDesktopA

  OpenClipboard

  OffsetRect

  NotifyWinEvent

  MsgWaitForMultipleObjectsEx

  MsgWaitForMultipleObjects

  MoveWindow

  MonitorFromWindow

  MonitorFromRect

  MonitorFromPoint

  ModifyMenuW

  ModifyMenuA

  MessageBoxW

  MessageBoxExA

  MessageBoxA

  MessageBeep

  MapWindowPoints

  MapVirtualKeyW

  MapVirtualKeyExW

  MapDialogRect

  LockWindowUpdate

  LoadStringW

  LoadMenuW

  LoadKeyboardLayoutW

  LoadImageW

  LoadIconW

  LoadCursorW

  LoadBitmapW

  LoadAcceleratorsW

  KillTimer

  IsZoomed

  IsWindowVisible

  IsWindowUnicode

  IsWindowEnabled

  IsRectEmpty

  IsMenu

  IsIconic

  IsDialogMessageW

  IsDialogMessageA

  IsClipboardFormatAvailable

  IsChild

  IsCharLowerW

  InvertRect

  InvalidateRgn

  InvalidateRect

  IntersectRect

  InsertMenuW

  InsertMenuItemW

  InflateRect

  HiliteMenuItem

  HideCaret

  GrayStringW

  GetWindowThreadProcessId

  GetWindowTextW

  GetWindowTextLengthW

  GetWindowRgn

  GetWindowRect

  GetWindowPlacement

  GetWindowLongW

  GetWindowInfo

  GetWindowDC

  GetWindow

  GetUpdateRect

  GetSystemMenu

  GetSysColorBrush

  GetSysColor

  GetSubMenu

  GetScrollRange

  GetScrollPos

  UnpackDDElParam

  GetPropW

  GetNextDlgTabItem

  GetNextDlgGroupItem

  GetMonitorInfoW

  GetMessageW

  GetMessageExtraInfo

  GetMenuStringW

  GetMenuState

  GetMenuItemInfoW

  GetMenuItemID

  GetMenuDefaultItem

  GetMenu

  GetLastActivePopup

  GetKeyboardState

  GetKeyboardLayoutNameW

  GetKeyboardLayoutList

  GetKeyState

  GetKeyNameTextW

  GetIconInfo

  GetForegroundWindow

  GetFocus

  GetDoubleClickTime

  GetDlgItem

  GetDlgCtrlID

  GetDesktopWindow

  GetDCEx

  GetDC

  GetCursorPos

  GetCursor

  GetComboBoxInfo

  GetClipboardData

  GetClientRect

  GetClassNameW

  GetClassLongW

  GetClassInfoW

  GetClassInfoExW

  GetCapture

  GetAsyncKeyState

  FrameRect

  FlashWindowEx

  FindWindowW

  FindWindowExW

  FillRect

  EqualRect

  EnumWindows

  EnumThreadWindows

  EnumPropsExW

  EnumDisplayMonitors

  EnumChildWindows

  EndPaint

  EndMenu

  EndDialog

  EndDeferWindowPos

  EnableWindow

  EnableScrollBar

  EnableMenuItem

  EmptyClipboard

  DrawTextW

  DrawTextExW

  DrawStateW

  DrawMenuBar

  DrawIconEx

  DrawIcon

  DrawFrameControl

  DrawFocusRect

  DrawEdge

  DispatchMessageW

  DispatchMessageA

  DestroyWindow

  DestroyMenu

  DestroyIcon

  DestroyCursor

  DestroyAcceleratorTable

  DeleteMenu

  DeferWindowPos

  DefWindowProcW

  DefMDIChildProcW

  DefFrameProcW

  DefDlgProcA

  UnionRect

  UnhookWindowsHookEx

  TranslateMessage

  TranslateMDISysAccel

  TranslateAcceleratorW

  TrackPopupMenu

  TrackMouseEvent

  ToUnicodeEx

  TabbedTextOutW

  SystemParametersInfoW

  SubtractRect

  ShowWindow

  ShowScrollBar

  ShowOwnedPopups

  SetWindowsHookExW

  SetWindowTextW

  SetWindowRgn

  SetWindowPos

  SetWindowPlacement

  SetWindowLongW

  SetWindowContextHelpId

  GetClipboardSequenceNumber

  CharUpperW

  GetClipboardViewer

  CharLowerA

  ShowCaret

  GetKeyboardLayout

  GetMessagePos

  GetKBCodePage

  InSendMessage

  GetDialogBaseUnits

  GetTopWindow

  GetMenuItemCount

  LoadCursorFromFileW

  CharNextA

  GetSystemMetrics

  GetMenuCheckMarkDimensions

  GetParent

  GetActiveWindow

  GetMessageTime

  CreatePopupMenu

  CopyIcon

  LoadIconA

  ActivateKeyboardLayout

  AdjustWindowRectEx

  AppendMenuW

  AttachThreadInput

  BeginDeferWindowPos

  BeginPaint

  BringWindowToTop

  CallNextHookEx

  CallWindowProcW

  CharLowerBuffW

  CharLowerW

  CharNextW

  CharPrevW

  CharUpperBuffA

  CharUpperBuffW

  CheckDlgButton

  CheckMenuItem

  ClientToScreen

  CloseClipboard

  SetTimer

  SetScrollRange

  SetScrollPos

  SetScrollInfo

  SetRectEmpty

  SetRect

  SetPropW

  GetScrollInfo

  SetParent

  DdeQueryStringA

  CreateWindowStationW

  CreateWindowExW

  CreateMenu

  CreateIcon

  CreateDialogIndirectParamW

  CreateAcceleratorTableW

  CopyRect

  CopyImage

  CopyAcceleratorTableW

  IsWindow

  gdi32

  GdiFlush

  GdiPlayPageEMF

  GdiProcessSetup

  GetBitmapBits

  GetBkColor

  GetBoundsRect

  GetBrushOrgEx

  GetCharWidth32W

  GetClipBox

  GetCurrentPositionEx

  GetDIBColorTable

  GetDIBits

  GetDeviceCaps

  GetEnhMetaFileBits

  GetEnhMetaFileDescriptionW

  GetEnhMetaFileHeader

  GetEnhMetaFilePaletteEntries

  GetICMProfileW

  GetLayout

  GetMapMode

  GetNearestColor

  GetNearestPaletteIndex

  GetObjectType

  GetObjectW

  GetPaletteEntries

  GetPixel

  GetRandomRgn

  GetRgnBox

  GetStockObject

  GetSystemPaletteEntries

  GetTextCharsetInfo

  GetTextColor

  GetTextExtentPoint32W

  GetTextExtentPointA

  GetTextExtentPointW

  GetTextFaceW

  GetTextMetricsW

  GetViewportExtEx

  GetViewportOrgEx

  GetWinMetaFileBits

  GetWindowExtEx

  GetWindowOrgEx

  IntersectClipRect

  InvertRgn

  LPtoDP

  LineTo

  MaskBlt

  MoveToEx

  OffsetRgn

  OffsetViewportOrgEx

  OffsetWindowOrgEx

  PatBlt

  FrameRgn

  PlayEnhMetaFile

  PlayMetaFile

  PolyBezier

  PolyBezierTo

  Polygon

  Polyline

  PtInRegion

  PtVisible

  RectVisible

  Rectangle

  ResizePalette

  RestoreDC

  RoundRect

  STROBJ_dwGetCodePage

  SaveDC

  ScaleViewportExtEx

  ScaleWindowExtEx

  SelectClipRgn

  SelectObject

  SelectPalette

  SetAbortProc

  SetArcDirection

  SetBkColor

  SetBkMode

  SetBrushOrgEx

  SetDIBColorTable

  SetDIBits

  SetEnhMetaFileBits

  SetLayout

  SetMapMode

  SetPaletteEntries

  SetPixel

  SetPixelV

  SetPolyFillMode

  SetROP2

  SetRectRgn

  SetStretchBltMode

  SetTextAlign

  SetTextColor

  SetViewportExtEx

  SetViewportOrgEx

  SetWinMetaFileBits

  SetWindowExtEx

  SetWindowOrgEx

  StartDocW

  StartFormPage

  StartPage

  StretchBlt

  StretchDIBits

  TextOutW

  UnrealizeObject

  FontIsLinked

  FillRgn

  FONTOBJ_pfdg

  ExtTextOutW

  ExtSelectClipRgn

  ExtFloodFill

  ExcludeClipRect

  Escape

  EnumFontsW

  EnumFontFamiliesW

  EnumFontFamiliesExW

  EngDeleteSurface

  EngCheckAbort

  EndPage

  EndDoc

  Ellipse

  DeleteObject

  DeleteEnhMetaFile

  DeleteDC

  DPtoLP

  CreateSolidBrush

  CreateRoundRectRgn

  CreateRectRgnIndirect

  CreateRectRgn

  CreatePolygonRgn

  CreatePenIndirect

  CreatePen

  CreatePatternBrush

  CreatePalette

  CreateICW

  CreateHatchBrush

  CreateFontIndirectW

  CreateEnhMetaFileW

  CreateEllipticRgn

  CreateDIBitmap

  CreateDIBSection

  CreateDCW

  CreateCompatibleDC

  CreateCompatibleBitmap

  CreateBrushIndirect

  CreateBitmap

  CopyMetaFileW

  CopyEnhMetaFileW

  CombineRgn

  CloseEnhMetaFile

  Chord

  BitBlt

  ArcTo

  Arc

  AngleArc

  AbortDoc

  GetTextAlign

  FlattenPath

  FillPath

  EndPath

  WidenPath

  DeleteColorSpace

  RealizePalette

  Pie

  GetColorSpace

  CreateHalftonePalette

  advapi32

  RegQueryValueExA

  ConvertStringSecurityDescriptorToSecurityDescriptorW

  GetSecurityDescriptorSacl

  RegCloseKey

  RegConnectRegistryW

  RegCreateKeyExW

  RegDeleteKeyW

  RegDeleteValueW

  RegEnumKeyExW

  RegEnumKeyW

  RegEnumValueW

  RegFlushKey

  RegLoadKeyW

  RegQueryInfoKeyW

  RegQueryValueExW

  RegQueryValueW

  RegReplaceKeyW

  RegRestoreKeyW

  RegSaveKeyW

  RegSetValueExW

  RegUnLoadKeyW

  RegOpenKeyExW

  shell32

  SHBrowseForFolderW

  Shell_NotifyIcon

  ShellHookProc

  ShellExecuteW

  ShellExecuteExA

  SHGetSpecialFolderLocation

  SHGetPathFromIDListW

  SHGetMalloc

  DragFinish

  DragQueryFileW

  ExtractIconA

  SHAppBarMessage

  SHBrowseForFolderA

  Shell_NotifyIconW

  SHGetDataFromIDListW

  SHGetDesktopFolder

  SHGetDiskFreeSpaceExW

  SHGetFileInfoW

  SHGetFolderPathW

  SHGetIconOverlayIndexW

  ole32

  StringFromCLSID

  StgOpenStorageOnILockBytes

  StgCreateDocfileOnILockBytes

  RevokeDragDrop

  ReleaseStgMedium

  RegisterDragDrop

  ProgIDFromCLSID

  OleUninitialize

  OleTranslateAccelerator

  OleSetMenuDescriptor

  OleRegEnumVerbs

  OleLockRunning

  OleIsCurrentClipboard

  OleInitialize

  OleGetClipboard

  OleFlushClipboard

  OleDuplicateData

  OleDraw

  OleDestroyMenuDescriptor

  OleCreateMenuDescriptor

  IsEqualGUID

  IsAccelerator

  DoDragDrop

  CreateStreamOnHGlobal

  CreateILockBytesOnHGlobal

  CoUninitialize

  CoTaskMemFree

  CoTaskMemAlloc

  CoRevokeClassObject

  CoRegisterMessageFilter

  CoLockObjectExternal

  CoInitializeEx

  CoInitialize

  CoGetClassObject

  CoFreeUnusedLibraries

  CoDisconnectObject

  CoCreateInstance

  CoCreateGuid

  CLSIDFromString

  CLSIDFromProgID

  shlwapi

  PathFindExtensionW

  PathFindFileNameW

  PathIsUNCW

  PathRemoveFileSpecW

  PathStripToRootW

  StrFormatKBSizeW

  PathCombineW

  StrRStrIW

  comctl32

  ImageList_DragMove

  ImageList_DragLeave

  ImageList_DragEnter

  ImageList_Destroy

  ImageList_Create

  ImageList_Copy

  ImageList_DragShowNolock

  ImageList_Add

  FlatSB_SetScrollProp

  FlatSB_SetScrollPos

  FlatSB_SetScrollInfo

  FlatSB_GetScrollPos

  FlatSB_GetScrollInfo

  ImageList_Draw

  ImageList_DrawEx

  ImageList_EndDrag

  ImageList_GetBkColor

  ImageList_GetDragImage

  ImageList_GetIcon

  ImageList_GetIconSize

  ImageList_GetImageCount

  ImageList_GetImageInfo

  ImageList_LoadImageW

  ImageList_Read

  ImageList_Remove

  ImageList_Replace

  ImageList_ReplaceIcon

  ImageList_SetBkColor

  ImageList_SetIconSize

  ImageList_SetImageCount

  ImageList_SetOverlayImage

  ImageList_Write

  InitCommonControlsEx

  InitializeFlatSB

  ImageList_BeginDrag

  _TrackMouseEvent

  imm32

  ImmGetContext

  ImmReleaseContext

  ImmGetOpenStatus

  Sections

  .text

  Size: 1.9MB - Virtual size: 1.9MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 31KB - Virtual size: 31KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 6KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 5KB - Virtual size: 5KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ