General

Malware Config

Signatures

Files

• b21161366811a20b0ea91afb9d3559828aa2e1480455ef9b42afb01d1fff104f

  .exe windows x86

  636b65e2d360e5c0a4b8dc1c48072e3b

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  HeapFree

  TerminateProcess

  HeapSize

  HeapReAlloc

  GetACP

  UnhandledExceptionFilter

  FreeEnvironmentStringsA

  FreeEnvironmentStringsW

  GetEnvironmentStrings

  GetEnvironmentStringsW

  SetHandleCount

  GetStdHandle

  GetFileType

  HeapDestroy

  HeapCreate

  VirtualFree

  HeapAlloc

  VirtualAlloc

  IsBadWritePtr

  LCMapStringA

  LCMapStringW

  GetStringTypeA

  GetStringTypeW

  IsBadReadPtr

  IsBadCodePtr

  SetStdHandle

  RaiseException

  ExitProcess

  GetCommandLineA

  GetStartupInfoA

  RtlUnwind

  FlushFileBuffers

  SetFilePointer

  WriteFile

  GetCurrentProcess

  SetErrorMode

  GetOEMCP

  GetCPInfo

  GetProcessVersion

  GlobalFlags

  TlsGetValue

  LocalReAlloc

  TlsSetValue

  EnterCriticalSection

  GlobalReAlloc

  LeaveCriticalSection

  TlsFree

  GlobalHandle

  DeleteCriticalSection

  TlsAlloc

  InitializeCriticalSection

  LocalAlloc

  GetLastError

  LocalFree

  GetTickCount

  WritePrivateProfileStringA

  GlobalAlloc

  lstrcmpA

  GetCurrentThread

  GlobalFree

  GlobalLock

  GlobalUnlock

  MulDiv

  SetLastError

  MultiByteToWideChar

  WideCharToMultiByte

  InterlockedDecrement

  InterlockedIncrement

  GetModuleFileNameA

  LoadLibraryA

  FreeLibrary

  FindResourceA

  LoadResource

  LockResource

  GetVersion

  lstrcatA

  GetCurrentThreadId

  GlobalGetAtomNameA

  lstrcmpiA

  GlobalAddAtomA

  GlobalFindAtomA

  GlobalDeleteAtom

  lstrcpyA

  WaitForSingleObject

  CloseHandle

  CreateEventA

  CreateThread

  WaitForMultipleObjects

  SetEvent

  lstrcpynA

  GetDriveTypeA

  lstrlenA

  GetModuleHandleA

  SetUnhandledExceptionFilter

  GetProcAddress

  user32

  InvalidateRect

  BringWindowToTop

  IsZoomed

  GetClassNameA

  PtInRect

  GetSysColorBrush

  LoadStringA

  PostThreadMessageA

  SetTimer

  KillTimer

  WindowFromPoint

  SetRect

  GetDCEx

  LockWindowUpdate

  SetCapture

  SetParent

  TranslateMessage

  ValidateRect

  GetCursorPos

  SetCursor

  ShowOwnedPopups

  PostQuitMessage

  EndDialog

  GetActiveWindow

  CreateDialogIndirectParamA

  DestroyMenu

  GrayStringA

  DrawTextA

  TabbedTextOutA

  EndPaint

  BeginPaint

  GetWindowDC

  GetDC

  ReleaseDC

  GetMenuCheckMarkDimensions

  LoadBitmapA

  ModifyMenuA

  SetMenuItemBitmaps

  CheckMenuItem

  EnableMenuItem

  GetNextDlgTabItem

  IsWindowEnabled

  ShowWindow

  SetWindowTextA

  IsDialogMessageA

  UnpackDDElParam

  LoadIconA

  SendDlgItemMessageA

  MapWindowPoints

  GetSysColor

  PeekMessageA

  DispatchMessageA

  GetFocus

  SetActiveWindow

  IsWindow

  SetFocus

  AdjustWindowRectEx

  DeferWindowPos

  BeginDeferWindowPos

  CopyRect

  EndDeferWindowPos

  IsWindowVisible

  GetScrollInfo

  SetScrollInfo

  GetTopWindow

  MessageBoxA

  IsChild

  GetParent

  GetCapture

  WinHelpA

  wsprintfA

  RegisterClassA

  GetMenu

  TrackPopupMenu

  GetDlgItem

  GetWindowTextA

  GetDlgCtrlID

  GetKeyState

  DefWindowProcA

  DestroyWindow

  CreateWindowExA

  SetWindowsHookExA

  CallNextHookEx

  GetClassLongA

  UnhookWindowsHookEx

  GetMessageTime

  GetLastActivePopup

  GetForegroundWindow

  SetForegroundWindow

  GetWindow

  SetWindowPos

  RegisterWindowMessageA

  IntersectRect

  SystemParametersInfoA

  IsIconic

  GetWindowPlacement

  GetWindowRect

  GetClientRect

  GetSystemMetrics

  PostMessageA

  ReuseDDElParam

  SetMenu

  GetDesktopWindow

  ReleaseCapture

  TranslateAcceleratorA

  LoadAcceleratorsA

  SetRectEmpty

  RegisterClipboardFormatA

  GetMessageA

  GetMenuDefaultItem

  SetMenuDefaultItem

  RemovePropA

  GetPropA

  CallWindowProcA

  GetWindowLongA

  SetPropA

  SetWindowLongA

  GetMenuItemID

  GetMenuItemInfoA

  SetMenuItemInfoA

  GetClassInfoA

  EnumWindows

  UpdateWindow

  LoadCursorA

  EnableWindow

  ScreenToClient

  ClientToScreen

  SendMessageA

  LoadMenuA

  InsertMenuA

  GetSubMenu

  GetMenuStringA

  GetMenuState

  GetMenuItemCount

  AppendMenuA

  DeleteMenu

  OffsetRect

  InflateRect

  DrawIconEx

  FrameRect

  FillRect

  DestroyCursor

  IsMenu

  GetAsyncKeyState

  GetMessagePos

  EqualRect

  UnregisterClassA

  gdi32

  GetDeviceCaps

  CreatePatternBrush

  PtVisible

  RectVisible

  TextOutA

  ExtTextOutA

  Escape

  GetTextExtentPoint32A

  GetTextMetricsA

  SetRectRgn

  CombineRgn

  CreateFontIndirectA

  ExcludeClipRect

  SelectClipRgn

  ScaleWindowExtEx

  SetWindowExtEx

  ScaleViewportExtEx

  SetViewportExtEx

  CreateRectRgn

  IntersectClipRect

  CreateSolidBrush

  OffsetViewportOrgEx

  SetViewportOrgEx

  SetMapMode

  GetStockObject

  SelectObject

  RestoreDC

  SaveDC

  DeleteDC

  CreateRectRgnIndirect

  PatBlt

  CreateBitmap

  SetBkColor

  SetTextColor

  GetClipBox

  BitBlt

  CreateCompatibleDC

  GetObjectA

  CreateCompatibleBitmap

  DeleteObject

  winspool.drv

  OpenPrinterA

  DocumentPropertiesA

  ClosePrinter

  advapi32

  RegCreateKeyExA

  RegOpenKeyExA

  RegSetValueExA

  RegCloseKey

  shell32

  DragQueryFileA

  DragFinish

  SHGetSpecialFolderLocation

  SHGetFileInfoA

  SHGetPathFromIDListA

  SHGetDesktopFolder

  SHGetMalloc

  comctl32

  ord17

  ImageList_Destroy

  oledlg

  ord8

  ole32

  OleIsCurrentClipboard

  OleFlushClipboard

  CoRevokeClassObject

  CoRegisterMessageFilter

  CoFreeUnusedLibraries

  OleUninitialize

  OleInitialize

  winmm

  timeKillEvent

  timeSetEvent

  Sections

  .text

  Size: 128KB - Virtual size: 127KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 36KB - Virtual size: 32KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 36KB - Virtual size: 50KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 28KB - Virtual size: 24KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 108KB - Virtual size: 107KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ