General

Malware Config

Signatures

Files

• 91ef42b0f28693e070c042894f5a6283ad8d4441f66599f59e5e9561ab988371

  .exe windows x86

  9bb75a5faf60fcb8b865d0effa29a46f

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetProcessHeap

  ActivateActCtx

  GetACP

  OpenWaitableTimerA

  OpenWaitableTimerW

  GlobalFindAtomW

  CancelWaitableTimer

  CancelIo

  VirtualProtect

  GetCurrentThreadId

  GetVersion

  GetCurrentProcessId

  InterlockedExchange

  RaiseException

  LoadLibraryA

  lstrcpynA

  GetStartupInfoA

  InterlockedDecrement

  lstrcpyA

  lstrlenW

  MultiByteToWideChar

  AreFileApisANSI

  GetModuleHandleA

  FreeLibrary

  GetLastError

  LocalAlloc

  lstrlenA

  CloseHandle

  CreateMutexA

  SetLastError

  GetFileAttributesA

  LocalFree

  GetProcAddress

  GetModuleFileNameA

  WideCharToMultiByte

  GetOEMCP

  GetFullPathNameA

  user32

  IsWindowEnabled

  GetTopWindow

  IsWindowVisible

  IsZoomed

  GetDlgCtrlID

  EnableWindow

  UpdateWindow

  SetRect

  ReleaseCapture

  wsprintfW

  SetWindowTextA

  SendMessageA

  GetWindowRect

  DefWindowProcA

  GrayStringA

  GetParent

  PtInRect

  IsWindow

  FillRect

  GetSystemMetrics

  GetWindowTextA

  GetForegroundWindow

  CharLowerA

  IsWindowUnicode

  SetCapture

  GetDesktopWindow

  GetSystemMenu

  SetForegroundWindow

  OffsetRect

  DrawTextA

  TabbedTextOutA

  EnumChildWindows

  gdi32

  SetRectRgn

  CreatePolygonRgn

  DPtoLP

  TextOutA

  PtInRegion

  PtVisible

  BitBlt

  CombineRgn

  Polyline

  SetPixel

  CreateFontIndirectA

  CreatePalette

  LPtoDP

  RectVisible

  GetTextColor

  GetObjectA

  CreateRectRgn

  shell32

  ShellExecuteA

  SHGetMalloc

  SHGetDesktopFolder

  SHGetPathFromIDListA

  comctl32

  InitCommonControlsEx

  _TrackMouseEvent

  version

  VerQueryValueA

  GetFileVersionInfoA

  GetFileVersionInfoSizeA

  oledlg

  OleUIBusyW

  ord8

  msvcrt

  __getmainargs

  _splitpath

  _acmdln

  __dllonexit

  _onexit

  _except_handler3

  __setusermatherr

  __CxxFrameHandler

  _exit

  ??1type_info@@UAE@XZ

  _setmbcp

  _mbsicmp

  _CxxThrowException

  _XcptFilter

  ?terminate@@YAXXZ

  __p__commode

  __p__fmode

  __set_app_type

  _mbscmp

  _initterm

  _strdup

  _adjust_fdiv

  _controlfp

  _vsnprintf

  free

  exit

  _CIsin

  Sections

  .text

  Size: 77KB - Virtual size: 76KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text

  Size: - Virtual size: 4KB

  IMAGE_SCN_CNT_UNINITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdata

  Size: 29KB - Virtual size: 28KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 18KB - Virtual size: 18KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .data2

  Size: 4KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 31KB - Virtual size: 30KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 9KB - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ