General

Malware Config

Signatures

Files

• 35bcfe6758ef68dad38cc7df598fe6df4fa7feb5cc4c72940b61a1e06ba01157

  .exe windows x86

  96fed1c6887e56af1482d24427bf8dde

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  FindFirstFileA

  CreateNamedPipeA

  GetTickCount

  GetFileType

  GetShortPathNameA

  GetStartupInfoW

  lstrcmpiW

  user32

  CopyIcon

  CharLowerA

  RegisterWindowMessageA

  GetClipboardData

  DrawTextW

  CharLowerW

  KillTimer

  IsDlgButtonChecked

  SetWindowPos

  FillRect

  GetDlgItemInt

  CharPrevA

  LoadCursorA

  CreateMenu

  DestroyCursor

  SystemParametersInfoA

  GetKeyNameTextW

  LoadMenuA

  CreateDialogParamA

  ChildWindowFromPointEx

  DrawStateA

  EnumDisplaySettingsW

  ModifyMenuA

  GetUserObjectInformationW

  CreateWindowExW

  CharUpperA

  ChangeClipboardChain

  advapi32

  InitializeSid

  CopySid

  SetFileSecurityA

  RegQueryValueW

  CloseServiceHandle

  RegCreateKeyA

  LsaFreeMemory

  RegOpenKeyExA

  DeleteService

  AdjustTokenPrivileges

  RegEnumKeyW

  RegCreateKeyExA

  GetAce

  SetFileSecurityW

  AddAce

  ChangeServiceConfigW

  RegEnumKeyExA

  GetSidSubAuthorityCount

  Sections

  .text

  Size: 68KB - Virtual size: 65KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 36KB - Virtual size: 35KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 28KB - Virtual size: 142KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 48KB - Virtual size: 45KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ