General

Malware Config

Signatures

Files

• 5DCF34F35A1874D190C81C7197785C4F4F9305842918F.exe

  .exe windows x86

  8384a97d22d1e307b8692493c7d1a249

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_GUARD_CF

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  lstrcatW

  SetSystemTimeAdjustment

  FindNextVolumeA

  LeaveCriticalSection

  GetNamedPipeHandleStateA

  FileTimeToLocalFileTime

  FillConsoleOutputCharacterA

  SetThreadAffinityMask

  TerminateProcess

  GetCurrentProcessId

  GetVersionExW

  EnumDateFormatsExW

  EnumResourceNamesW

  FindNextFileA

  CopyFileExW

  BuildCommDCBAndTimeoutsW

  SetDefaultCommConfigW

  WritePrivateProfileStructW

  HeapSetInformation

  CreateTimerQueueTimer

  ReadConsoleInputA

  WriteConsoleInputA

  GetSystemDirectoryW

  GetDriveTypeW

  BuildCommDCBAndTimeoutsA

  VirtualProtect

  GetModuleHandleA

  GlobalAlloc

  VerifyVersionInfoA

  GetBinaryTypeA

  GetProfileSectionA

  InterlockedDecrement

  ReadConsoleOutputCharacterW

  FindFirstChangeNotificationW

  FormatMessageA

  SetDllDirectoryW

  CreateIoCompletionPort

  LoadLibraryA

  WritePrivateProfileStringA

  GetConsoleAliasesLengthA

  GetProcessHeap

  OpenWaitableTimerA

  SetConsoleTextAttribute

  InterlockedIncrement

  GetStartupInfoW

  GetSystemWow64DirectoryW

  GetConsoleAliasExesW

  DebugBreak

  EndUpdateResourceA

  SetLastError

  FatalAppExitW

  SetSystemTime

  OpenFileMappingW

  lstrcmpW

  SetConsoleActiveScreenBuffer

  ContinueDebugEvent

  VirtualAlloc

  InterlockedCompareExchange

  GlobalFix

  GetSystemWindowsDirectoryA

  CopyFileW

  TerminateThread

  GetACP

  GlobalFindAtomA

  lstrcatA

  HeapWalk

  SetMailslotInfo

  CreateActCtxW

  GetPrivateProfileIntA

  _lread

  CreateNamedPipeA

  GetAtomNameA

  SetConsoleScreenBufferSize

  EnumResourceTypesW

  lstrlenA

  WriteConsoleW

  lstrcpyA

  ReadConsoleOutputA

  SetThreadContext

  BuildCommDCBA

  ReleaseActCtx

  GetStringTypeW

  GetPrivateProfileStringW

  GetDriveTypeA

  GetFileAttributesA

  GetVolumePathNameA

  MoveFileW

  SetCommMask

  SetFileShortNameW

  VerLanguageNameW

  LockFile

  EndUpdateResourceW

  LoadLibraryW

  GetOverlappedResult

  FreeConsole

  GlobalGetAtomNameW

  SetComputerNameW

  GetConsoleAliasExesLengthW

  WriteConsoleInputW

  CreateMailslotW

  TzSpecificLocalTimeToSystemTime

  MoveFileExW

  DebugActiveProcess

  GetStringTypeExW

  EnumSystemLocalesA

  GetConsoleAliasExesLengthA

  FindActCtxSectionGuid

  MoveFileA

  ResetWriteWatch

  GetPrivateProfileIntW

  ProcessIdToSessionId

  GetTickCount

  GetModuleFileNameA

  GetConsoleAliasesLengthW

  GlobalUnWire

  FillConsoleOutputCharacterW

  GetCompressedFileSizeW

  SetThreadPriority

  MapUserPhysicalPages

  WriteConsoleOutputCharacterA

  EnumDateFormatsW

  TerminateJobObject

  CreateFileA

  GetDateFormatW

  GetBinaryTypeW

  RaiseException

  GetCommandLineA

  GetStartupInfoA

  HeapValidate

  IsBadReadPtr

  DeleteCriticalSection

  EnterCriticalSection

  GetModuleFileNameW

  SetUnhandledExceptionFilter

  QueryPerformanceCounter

  GetCurrentThreadId

  GetSystemTimeAsFileTime

  GetModuleHandleW

  Sleep

  GetProcAddress

  ExitProcess

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  WideCharToMultiByte

  GetLastError

  GetEnvironmentStringsW

  SetHandleCount

  GetStdHandle

  GetFileType

  TlsGetValue

  TlsAlloc

  TlsSetValue

  TlsFree

  HeapDestroy

  HeapCreate

  HeapFree

  VirtualFree

  WriteFile

  HeapAlloc

  GetCurrentProcess

  UnhandledExceptionFilter

  IsDebuggerPresent

  HeapSize

  HeapReAlloc

  GetOEMCP

  GetCPInfo

  IsValidCodePage

  RtlUnwind

  InitializeCriticalSectionAndSpinCount

  OutputDebugStringA

  OutputDebugStringW

  MultiByteToWideChar

  LCMapStringA

  LCMapStringW

  GetStringTypeA

  GetLocaleInfoA

  SetFilePointer

  GetConsoleCP

  GetConsoleMode

  SetStdHandle

  WriteConsoleA

  GetConsoleOutputCP

  CloseHandle

  FlushFileBuffers

  user32

  GetCaretBlinkTime

  Sections

  .text

  Size: 148KB - Virtual size: 147KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 126KB - Virtual size: 377KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 37KB - Virtual size: 36KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ