General

Malware Config

Signatures

Files

• 36dc15aa6901f38cd68678b2c45459bb82d9cb7965dd36a63315eab2f907130c

  .exe windows x86

  91cd26b1d529fab5e196720a926744ef

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  ExitProcess

  GetCommandLineW

  GetTempFileNameW

  SetVolumeLabelA

  GetFileSize

  SetFilePointer

  WritePrivateProfileStructA

  SetLocalTime

  DebugActiveProcessStop

  GetNumberOfConsoleInputEvents

  BuildCommDCBAndTimeoutsA

  DeleteVolumeMountPointA

  SetConsoleActiveScreenBuffer

  WritePrivateProfileSectionA

  CreateJobObjectW

  WaitForSingleObject

  WriteConsoleInputA

  SetComputerNameW

  GetSystemDefaultLCID

  SetTapeParameters

  GetProcessPriorityBoost

  IsBadReadPtr

  EnumTimeFormatsW

  GetUserDefaultLangID

  SetCommState

  GetDriveTypeA

  TlsSetValue

  FindResourceExA

  GlobalAlloc

  SetConsoleCP

  HeapDestroy

  GlobalFlags

  SetConsoleMode

  GetFileAttributesW

  MulDiv

  WriteConsoleW

  GetBinaryTypeA

  SetSystemPowerState

  GetAtomNameW

  LocalHandle

  GetTimeZoneInformation

  GetOverlappedResult

  GetACP

  lstrlenW

  RaiseException

  DeactivateActCtx

  GetPrivateProfileIntW

  GetConsoleOutputCP

  VerifyVersionInfoW

  FreeLibraryAndExitThread

  OpenMutexW

  GetLastError

  SetLastError

  GetProcAddress

  VirtualAlloc

  CreateNamedPipeA

  EnterCriticalSection

  SearchPathA

  SetFileApisToOEM

  LoadLibraryA

  OpenThread

  ProcessIdToSessionId

  OpenWaitableTimerW

  MoveFileA

  SetConsoleDisplayMode

  GetProfileStringA

  GetCurrentConsoleFont

  SetCommMask

  WaitForMultipleObjects

  GetPrivateProfileSectionNamesA

  RequestWakeupLatency

  GetCurrentDirectoryA

  GetConsoleCursorInfo

  ScrollConsoleScreenBufferA

  OpenSemaphoreW

  GetVersionExA

  WriteFileEx

  AddConsoleAliasA

  GetSystemTime

  GetProfileSectionW

  CopyFileExA

  AreFileApisANSI

  GetVolumeInformationW

  lstrcpyA

  SetStdHandle

  CloseHandle

  DeleteFileA

  EncodePointer

  DecodePointer

  GetCommandLineA

  HeapSetInformation

  GetStartupInfoW

  HeapValidate

  LeaveCriticalSection

  TerminateProcess

  GetCurrentProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  GetModuleFileNameW

  InterlockedIncrement

  InterlockedDecrement

  GetModuleHandleW

  IsProcessorFeaturePresent

  QueryPerformanceCounter

  GetTickCount

  GetCurrentThreadId

  GetCurrentProcessId

  GetSystemTimeAsFileTime

  GetModuleFileNameA

  FreeEnvironmentStringsW

  WideCharToMultiByte

  GetEnvironmentStringsW

  SetHandleCount

  GetStdHandle

  InitializeCriticalSectionAndSpinCount

  GetFileType

  DeleteCriticalSection

  TlsAlloc

  TlsGetValue

  TlsFree

  HeapCreate

  WriteFile

  HeapAlloc

  HeapReAlloc

  HeapSize

  HeapQueryInformation

  HeapFree

  GetOEMCP

  GetCPInfo

  IsValidCodePage

  OutputDebugStringA

  OutputDebugStringW

  LoadLibraryW

  RtlUnwind

  MultiByteToWideChar

  LCMapStringW

  GetStringTypeW

  FlushFileBuffers

  GetConsoleCP

  GetConsoleMode

  ReadFile

  CreateFileW

  user32

  GetAncestor

  Exports

  Exports

  _futurama@4

  _getArchiveInfo@8

  Sections

  .text

  Size: 140KB - Virtual size: 140KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 44KB - Virtual size: 44KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 4.2MB - Virtual size: 4.2MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 38KB - Virtual size: 4.7MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ