General

Malware Config

Signatures

Files

• 2cd9bc76624eebb8dd89600ca372b1de083a96d8e868eda0e974a7b2f58fc14e

  .exe windows x86

  dd3c06c9a19c82f5287723a30fdae481

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  LCMapStringW

  GetModuleHandleW

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  TerminateProcess

  GetOEMCP

  GetCPInfo

  GetStringTypeW

  FlushFileBuffers

  GetConsoleCP

  GetConsoleMode

  SetStdHandle

  GetProcAddress

  SetFilePointerEx

  CloseHandle

  GetLocaleInfoA

  MultiByteToWideChar

  SystemTimeToFileTime

  GetSystemTimeAsFileTime

  DeleteCriticalSection

  InitializeCriticalSectionAndSpinCount

  GetLastError

  RaiseException

  GetCurrentProcess

  Sleep

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetCurrentProcessId

  QueryPerformanceCounter

  GetStartupInfoW

  GetCurrentThreadId

  WriteFile

  LoadLibraryExW

  WideCharToMultiByte

  ExitProcess

  GetProcessHeap

  HeapSize

  DecodePointer

  IsProcessorFeaturePresent

  GetCommandLineW

  RtlUnwind

  IsValidCodePage

  LoadLibraryA

  GetACP

  WriteConsoleW

  GetModuleHandleExW

  GetModuleFileNameW

  GetFileType

  GetStdHandle

  EncodePointer

  LeaveCriticalSection

  EnterCriticalSection

  OutputDebugStringW

  IsDebuggerPresent

  SetLastError

  GetLongPathNameW

  HeapFree

  HeapReAlloc

  HeapAlloc

  GlobalAlloc

  CreateFileW

  user32

  SetTimer

  DrawTextA

  ShowWindow

  GetDlgItem

  EndDialog

  EndDeferWindowPos

  BeginPaint

  InvalidateRect

  SetScrollPos

  DestroyWindow

  CreateWindowExA

  RegisterClassA

  CallWindowProcA

  UpdateWindow

  GetScrollPos

  EnableScrollBar

  GetClientRect

  GetWindowRect

  MessageBoxA

  GetSysColorBrush

  FillRect

  GetTopWindow

  SendMessageA

  DestroyIcon

  CreateIconIndirect

  GetIconInfo

  SetScrollInfo

  gdi32

  GetObjectA

  ExtTextOutA

  GetStockObject

  SetTextColor

  SetROP2

  SetBkMode

  SetBkColor

  SelectObject

  DeleteObject

  DeleteDC

  CreateSolidBrush

  CreateRectRgn

  CreateFontIndirectA

  CreateCompatibleDC

  CombineRgn

  advapi32

  CredUnmarshalCredentialA

  CredReadDomainCredentialsA

  CredWriteDomainCredentialsA

  ole32

  RevokeDragDrop

  RegisterDragDrop

  OleUninitialize

  OleInitialize

  CoInitialize

  StgSetTimes

  CoLockObjectExternal

  CoCreateInstance

  CoUninitialize

  ReadFmtUserTypeStg

  CoGetClassObject

  oleaut32

  SysFreeString

  VariantInit

  VariantClear

  VariantChangeType

  SysAllocString

  comctl32

  ImageList_GetIconSize

  ImageList_DrawEx

  winmm

  waveOutGetErrorTextA

  waveOutGetDevCapsW

  imm32

  ImmGetDefaultIMEWnd

  ImmGetVirtualKey

  shlwapi

  AssocQueryStringA

  uxtheme

  GetWindowTheme

  wininet

  HttpSendRequestA

  InternetReadFile

  InternetConnectA

  InternetOpenA

  HttpOpenRequestA

  HttpQueryInfoA

  pdh

  PdhAddCounterW

  avifil32

  AVIMakeCompressedStream

  activeds

  ord9

  ord13

  d2d1

  ord1

  dwrite

  DWriteCreateFactory

  Sections

  .text

  Size: 155KB - Virtual size: 154KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 70KB - Virtual size: 70KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 11KB - Virtual size: 21KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 604KB - Virtual size: 604KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 9KB - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ