General

Malware Config

Signatures

Files

• 3f905291e33b577208c361868424a9b4cd000c5a081634bb4a880d11d13d8e76

  .exe windows x86

  4fd5a8ce85dee398d863adc840464ee0

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  FindResourceExW

  GetCommandLineW

  RtlUnwind

  ExitThread

  IsDebuggerPresent

  IsProcessorFeaturePresent

  HeapQueryInformation

  ExitProcess

  GetModuleHandleExW

  GetSystemInfo

  VirtualQuery

  GetSystemTimeAsFileTime

  SetStdHandle

  GetFileType

  IsValidCodePage

  GetACP

  GetOEMCP

  GetCPInfo

  GetStdHandle

  QueryPerformanceCounter

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  TerminateProcess

  GetTimeZoneInformation

  GetStringTypeW

  GetConsoleCP

  GetConsoleMode

  ReadConsoleW

  SetFilePointerEx

  LCMapStringW

  OutputDebugStringW

  WriteConsoleW

  SetEnvironmentVariableA

  SearchPathW

  GetProfileIntW

  GetTempFileNameW

  VerifyVersionInfoW

  VerSetConditionMask

  GetWindowsDirectoryW

  lstrcpyW

  GetCurrentDirectoryW

  GetFileTime

  GetFileSizeEx

  GetFileAttributesExW

  GetFileAttributesW

  GetVersionExW

  GlobalFlags

  GetUserDefaultUILanguage

  CompareStringW

  lstrcmpiW

  GetCurrentProcess

  DuplicateHandle

  WriteFile

  UnlockFile

  SetFilePointer

  SetEndOfFile

  LockFile

  GetFullPathNameW

  FlushFileBuffers

  FindFirstFileW

  FindClose

  GlobalFindAtomW

  GlobalAddAtomW

  LoadLibraryA

  lstrcmpW

  GlobalDeleteAtom

  LoadLibraryExW

  FreeResource

  FreeLibrary

  GetSystemDirectoryW

  EncodePointer

  FileTimeToSystemTime

  GlobalGetAtomNameW

  lstrcmpA

  ResumeThread

  SetThreadPriority

  GetCurrentThreadId

  WaitForSingleObject

  MultiByteToWideChar

  CopyFileW

  FormatMessageW

  MulDiv

  GlobalSize

  WideCharToMultiByte

  FindResourceW

  SizeofResource

  LockResource

  LoadResource

  GetCurrentProcessId

  LocalFree

  LocalReAlloc

  LocalAlloc

  GlobalFree

  GlobalUnlock

  GlobalHandle

  GlobalLock

  GlobalReAlloc

  GlobalAlloc

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  LeaveCriticalSection

  EnterCriticalSection

  InitializeCriticalSection

  LoadLibraryW

  GetProcAddress

  GetModuleHandleW

  GetModuleHandleA

  GetModuleFileNameW

  SetLastError

  OutputDebugStringA

  GetEnvironmentVariableW

  GetVolumeInformationW

  DeleteFileW

  GetVersion

  FileTimeToLocalFileTime

  CloseHandle

  DeleteCriticalSection

  VirtualProtect

  DecodePointer

  CreateEventW

  ResetEvent

  VirtualProtectEx

  HeapSize

  VirtualAlloc

  GetLastError

  RaiseException

  GetTempPathW

  GetStartupInfoW

  CreateFileW

  ReadFile

  Sleep

  InitializeCriticalSectionAndSpinCount

  GetProcessHeap

  GetTickCount

  CreateDirectoryW

  HeapFree

  HeapAlloc

  CreateProcessW

  GetFileSize

  HeapReAlloc

  CreateThread

  user32

  SetMenu

  TrackPopupMenu

  UpdateWindow

  SetActiveWindow

  GetForegroundWindow

  SetForegroundWindow

  RedrawWindow

  ScrollWindow

  SetScrollPos

  GetScrollPos

  SetScrollRange

  GetScrollRange

  ShowScrollBar

  SetPropW

  GetPropW

  RemovePropW

  GetClientRect

  GetWindowRect

  AdjustWindowRectEx

  ScreenToClient

  MapWindowPoints

  CopyRect

  EqualRect

  PtInRect

  SetWindowLongW

  GetClassLongW

  GetClassNameW

  GetTopWindow

  GetWindow

  LoadIconW

  SetScrollInfo

  GetScrollInfo

  WinHelpW

  MonitorFromWindow

  GetMonitorInfoW

  ShowWindow

  MoveWindow

  CheckDlgButton

  SetWindowTextW

  IsDialogMessageW

  DestroyIcon

  CharUpperW

  GetDesktopWindow

  RealChildWindowFromPoint

  DrawTextW

  DrawTextExW

  GrayStringW

  TabbedTextOutW

  GetWindowDC

  BeginPaint

  EndPaint

  FillRect

  DestroyMenu

  GetMenuItemInfoW

  InflateRect

  CopyImage

  SendDlgItemMessageA

  PostQuitMessage

  IsIconic

  IntersectRect

  ShowOwnedPopups

  SetCursor

  DeleteMenu

  SetTimer

  KillTimer

  InvalidateRect

  CreateDialogIndirectParamW

  EndDialog

  GetNextDlgTabItem

  GetNextDlgGroupItem

  SetCapture

  SetMenuItemBitmaps

  WindowFromPoint

  DrawFocusRect

  SetRectEmpty

  OffsetRect

  IsRectEmpty

  LoadImageW

  DrawIconEx

  GetIconInfo

  MessageBeep

  GetAsyncKeyState

  EnableScrollBar

  HideCaret

  InvertRect

  NotifyWinEvent

  CreatePopupMenu

  GetMenuDefaultItem

  MapVirtualKeyW

  LoadMenuW

  SetLayeredWindowAttributes

  EnumDisplayMonitors

  OpenClipboard

  GetMenu

  SetClipboardData

  EmptyClipboard

  DrawStateW

  DrawEdge

  DrawFrameControl

  SetWindowRgn

  UnionRect

  IsMenu

  UpdateLayeredWindow

  MonitorFromPoint

  BringWindowToTop

  LoadAcceleratorsW

  TranslateAcceleratorW

  InsertMenuItemW

  UnpackDDElParam

  ReuseDDElParam

  GetKeyNameTextW

  TrackMouseEvent

  GetComboBoxInfo

  IsZoomed

  GetSystemMenu

  PostThreadMessageW

  WaitMessage

  GetKeyboardLayout

  IsCharLowerW

  MapVirtualKeyExW

  ToUnicodeEx

  GetKeyboardState

  CreateAcceleratorTableW

  DestroyAcceleratorTable

  CopyAcceleratorTableW

  SetCursorPos

  SetRect

  SetParent

  LockWindowUpdate

  SetClassLongW

  GetDoubleClickTime

  CopyIcon

  SetMenuDefaultItem

  ModifyMenuW

  RegisterClipboardFormatW

  SetMenuItemInfoW

  DrawMenuBar

  DefFrameProcW

  DefMDIChildProcW

  TranslateMDISysAccel

  IsClipboardFormatAvailable

  GetUpdateRect

  SubtractRect

  CreateMenu

  MapDialogRect

  DestroyCursor

  GetWindowRgn

  DrawIcon

  RegisterClassExW

  EnableMenuItem

  CheckMenuItem

  GetFocus

  GetWindowTextW

  GetCapture

  SetFocus

  GetDlgCtrlID

  GetDlgItem

  EndDeferWindowPos

  DeferWindowPos

  BeginDeferWindowPos

  SetWindowPlacement

  GetWindowPlacement

  SetWindowPos

  DestroyWindow

  IsChild

  IsWindow

  CreateWindowExW

  LoadCursorW

  GetSysColorBrush

  GetSysColor

  GetWindowTextLengthW

  ClientToScreen

  ReleaseDC

  GetDC

  GetClassInfoExW

  GetClassInfoW

  RegisterClassW

  CallWindowProcW

  DefWindowProcW

  GetSystemMetrics

  CallNextHookEx

  SetWindowsHookExW

  GetCursorPos

  ValidateRect

  GetKeyState

  GetActiveWindow

  IsWindowVisible

  PeekMessageW

  DispatchMessageW

  TranslateMessage

  GetMessageW

  RemoveMenu

  AppendMenuW

  InsertMenuW

  GetMenuItemCount

  GetMenuItemID

  GetSubMenu

  GetMenuState

  GetMenuStringW

  GetLastActivePopup

  GetWindowThreadProcessId

  GetParent

  GetWindowLongW

  MessageBoxW

  IsWindowEnabled

  EnableWindow

  SendMessageW

  UnhookWindowsHookEx

  PostMessageW

  GetMessageTime

  GetMessagePos

  RegisterWindowMessageW

  LoadBitmapW

  CloseClipboard

  GetMenuCheckMarkDimensions

  SystemParametersInfoW

  FrameRect

  ReleaseCapture

  CharUpperBuffW

  comctl32

  ImageList_Add

  ord17

  _TrackMouseEvent

  ImageList_DragLeave

  ole32

  CreateStreamOnHGlobal

  CoInitializeEx

  CoUninitialize

  CoCreateInstance

  CoDisconnectObject

  DoDragDrop

  OleLockRunning

  OleCreateMenuDescriptor

  OleDestroyMenuDescriptor

  OleTranslateAccelerator

  IsAccelerator

  OleGetClipboard

  CoLockObjectExternal

  RegisterDragDrop

  RevokeDragDrop

  ReleaseStgMedium

  OleDuplicateData

  CoInitialize

  OleUninitialize

  OleInitialize

  OleSetContainedObject

  CoTaskMemFree

  CoTaskMemAlloc

  oleaut32

  SystemTimeToVariantTime

  VariantTimeToSystemTime

  SysStringLen

  VariantClear

  VariantCopy

  VariantChangeType

  VarBstrFromDate

  VariantInit

  SysAllocString

  SysFreeString

  SysAllocStringLen

  LoadTypeLi

  version

  VerQueryValueW

  GetFileVersionInfoSizeW

  GetFileVersionInfoW

  shlwapi

  StrFormatKBSizeW

  PathRemoveFileSpecW

  PathStripToRootW

  PathIsUNCW

  UrlIsW

  StrStrW

  PathFindFileNameW

  PathCreateFromUrlW

  StrRetToBufW

  PathFindExtensionW

  StrCmpNIW

  winmm

  PlaySoundW

  timeBeginPeriod

  gdi32

  CreateRoundRectRgn

  OffsetRgn

  GetRgnBox

  EnumFontFamiliesExW

  Rectangle

  Polyline

  PtInRegion

  CreatePolygonRgn

  Ellipse

  CreateEllipticRgn

  CreateDCW

  GetDeviceCaps

  CreateBitmap

  SetPixelV

  ExtFloodFill

  SetPaletteEntries

  FillRgn

  RoundRect

  GetTextColor

  FrameRgn

  GetBoundsRect

  GetWindowOrgEx

  LPtoDP

  GetViewportOrgEx

  Polygon

  SetDIBColorTable

  GetTextFaceW

  CreateDIBSection

  StretchBlt

  SetPixel

  GetTextCharsetInfo

  EnumFontFamiliesW

  CreateDIBitmap

  CreateCompatibleBitmap

  GetTextMetricsW

  GetBkColor

  RealizePalette

  GetSystemPaletteEntries

  GetPaletteEntries

  GetNearestPaletteIndex

  CreatePalette

  DPtoLP

  SetRectRgn

  PatBlt

  CreateRectRgnIndirect

  CombineRgn

  GetTextExtentPoint32W

  CreateFontIndirectW

  ScaleWindowExtEx

  ScaleViewportExtEx

  OffsetWindowOrgEx

  OffsetViewportOrgEx

  SetWindowOrgEx

  SetWindowExtEx

  SetViewportOrgEx

  SetViewportExtEx

  ExtTextOutW

  TextOutW

  MoveToEx

  SetTextAlign

  SetROP2

  SetPolyFillMode

  GetLayout

  SetLayout

  SetMapMode

  SetBkMode

  SelectPalette

  SelectObject

  ExtSelectClipRgn

  SelectClipRgn

  SaveDC

  RestoreDC

  RectVisible

  PtVisible

  LineTo

  IntersectClipRect

  GetWindowExtEx

  GetViewportExtEx

  GetStockObject

  GetPixel

  GetObjectType

  GetClipBox

  ExcludeClipRect

  Escape

  DeleteDC

  CreateSolidBrush

  CreateRectRgn

  CreatePatternBrush

  CreatePen

  CreateHatchBrush

  CreateCompatibleDC

  BitBlt

  DeleteObject

  GetObjectW

  SetTextColor

  SetBkColor

  CopyMetaFileW

  winspool.drv

  OpenPrinterW

  DocumentPropertiesW

  ClosePrinter

  shell32

  SHGetFileInfoW

  ShellExecuteW

  SHGetPathFromIDListW

  SHGetSpecialFolderLocation

  SHGetDesktopFolder

  DragQueryFileW

  DragFinish

  SHBrowseForFolderW

  SHAppBarMessage

  gdiplus

  GdipDrawImageRectI

  GdipSetInterpolationMode

  GdipCreateFromHDC

  GdipCreateBitmapFromHBITMAP

  GdipDrawImageI

  GdipDeleteGraphics

  GdipBitmapUnlockBits

  GdipBitmapLockBits

  GdipCreateBitmapFromScan0

  GdipCreateBitmapFromStream

  GdipGetImagePaletteSize

  GdipGetImagePalette

  GdipGetImagePixelFormat

  GdipGetImageHeight

  GdipGetImageWidth

  GdipGetImageGraphicsContext

  GdipDisposeImage

  GdipCloneImage

  GdiplusStartup

  GdipFree

  GdipAlloc

  GdiplusShutdown

  advapi32

  RegCloseKey

  RegCreateKeyExW

  RegDeleteKeyW

  RegOpenKeyExW

  RegDeleteValueW

  RegEnumKeyExW

  RegSetValueExW

  RegQueryValueExW

  uxtheme

  IsThemeBackgroundPartiallyTransparent

  GetThemeColor

  GetCurrentThemeName

  IsAppThemed

  DrawThemeText

  DrawThemeParentBackground

  OpenThemeData

  CloseThemeData

  GetThemePartSize

  GetWindowTheme

  GetThemeSysColor

  DrawThemeBackground

  msimg32

  TransparentBlt

  AlphaBlend

  oleacc

  LresultFromObject

  AccessibleObjectFromWindow

  CreateStdAccessibleObject

  imm32

  ImmGetOpenStatus

  ImmReleaseContext

  ImmGetContext

  Sections

  .text

  Size: 1.3MB - Virtual size: 1.3MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 314KB - Virtual size: 314KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 42KB - Virtual size: 78KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ