General

Malware Config

Signatures

Files

• 3b3c2bbd44645af71db243bdb80635e8ab9e5c6c830d1362ad0fbb439c22c4f3

  .exe windows x86

  3ee6ac7bcf2b92bf440ac0f5c72b83ba

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  msvcrt

  _wmakepath

  _wsplitpath

  _wcsnicmp

  iswctype

  wcscpy

  wcsncat

  wcschr

  malloc

  _initterm

  free

  wcslen

  _wcsicmp

  kernel32

  HeapFree

  GetPrivateProfileIntW

  GetPrivateProfileStringW

  lstrcpyW

  GetModuleFileNameW

  LoadLibraryW

  GetLastError

  HeapSize

  IsBadWritePtr

  lstrcpynW

  GetProcAddress

  FreeLibrary

  GetCurrentProcess

  CloseHandle

  SetEvent

  SetEndOfFile

  SetFilePointer

  CreateFileW

  FreeResource

  LockResource

  LoadResource

  FindResourceW

  WaitForSingleObject

  CreateThread

  CreateEventW

  GetProfileStringW

  IsBadReadPtr

  GetModuleHandleW

  LeaveCriticalSection

  EnterCriticalSection

  GetTickCount

  DeleteCriticalSection

  Sleep

  InitializeCriticalSection

  lstrcmpiW

  AllocConsole

  GetStdHandle

  SetConsoleScreenBufferSize

  HeapAlloc

  OutputDebugStringW

  FreeConsole

  GetProcessHeap

  WriteFile

  lstrlenW

  VirtualAlloc

  CreateTimerQueueTimer

  GetGeoInfoW

  CreateEventA

  FreeUserPhysicalPages

  GetTimeFormatW

  AddAtomA

  GetUserGeoID

  _lcreat

  SetTermsrvAppInstallMode

  WriteConsoleOutputCharacterA

  CreateSemaphoreW

  GetFullPathNameA

  WriteProcessMemory

  WriteProfileStringA

  EnumDateFormatsW

  FindFirstVolumeMountPointW

  SetTapePosition

  CreateJobSet

  PeekConsoleInputW

  GetNumberFormatW

  GetOEMCP

  GetDateFormatW

  ScrollConsoleScreenBufferW

  FindResourceExW

  GetVolumePathNameW

  FatalExit

  GetVolumePathNamesForVolumeNameW

  GetConsoleCommandHistoryLengthW

  MoveFileA

  BuildCommDCBAndTimeoutsA

  OutputDebugStringA

  VirtualProtect

  TermsrvAppInstallMode

  GetDiskFreeSpaceW

  GetConsoleTitleA

  CancelIo

  GetVersion

  SetCommMask

  IsDBCSLeadByte

  FormatMessageA

  BackupSeek

  DebugBreakProcess

  QueryPerformanceFrequency

  GetUserDefaultLangID

  GetProfileStringA

  FlushConsoleInputBuffer

  SetFileValidData

  GetConsoleNlsMode

  QueryDepthSList

  CreateSemaphoreA

  GetBinaryType

  GetVersionExA

  CreateConsoleScreenBuffer

  _lopen

  OpenFile

  GetConsoleCP

  GetComputerNameExA

  TerminateThread

  Process32NextW

  SetErrorMode

  GetCurrentDirectoryW

  GetFileAttributesW

  VirtualQuery

  UnregisterConsoleIME

  CancelDeviceWakeupRequest

  SetThreadPriority

  CloseProfileUserMapping

  SetCalendarInfoW

  CreateJobObjectW

  SetComputerNameW

  WriteConsoleW

  CompareFileTime

  InterlockedPopEntrySList

  VerifyVersionInfoA

  LocalAlloc

  msacm32

  acmDriverAddW

  acmDriverEnum

  acmDriverRemove

  acmStreamOpen

  acmGetVersion

  acmFormatTagDetailsW

  acmFormatDetailsW

  acmFormatSuggest

  acmStreamClose

  acmStreamSize

  acmStreamUnprepareHeader

  acmStreamConvert

  acmDriverDetailsW

  acmMetrics

  acmFormatChooseW

  acmStreamPrepareHeader

  ole32

  CoInitialize

  CoUninitialize

  user32

  SetWindowLongW

  DefWindowProcW

  IsWindow

  GetMessageW

  CreateWindowExW

  RegisterClassW

  SendMessageW

  PostMessageW

  PostThreadMessageW

  TranslateMessage

  DispatchMessageW

  DestroyWindow

  wvsprintfW

  GetWindowLongW

  ChangeDisplaySettingsW

  GetWindowTextLengthW

  IsDialogMessageA

  DrawStateW

  GetCursorPos

  SetUserObjectSecurity

  GetKeyState

  DdeFreeDataHandle

  GetMenuBarInfo

  CreateSystemThreads

  IsCharUpperA

  GetGuiResources

  WindowFromDC

  UnhookWindowsHook

  MB_GetString

  GetClassLongW

  IsDlgButtonChecked

  EnableMenuItem

  DdeNameService

  DestroyAcceleratorTable

  CharPrevW

  DdeGetQualityOfService

  OpenInputDesktop

  GetLastActivePopup

  PrintWindow

  SetProcessWindowStation

  LoadAcceleratorsA

  TranslateAccelerator

  WINNLSGetEnableStatus

  QuerySendMessage

  MessageBoxExA

  MonitorFromPoint

  IsClipboardFormatAvailable

  GetScrollPos

  LoadCursorW

  GetKeyboardLayout

  SwapMouseButton

  DdeAddData

  LookupIconIdFromDirectoryEx

  DdeInitializeW

  GetInputState

  MsgWaitForMultipleObjects

  CloseDesktop

  GetKeyboardState

  EnumPropsExW

  DlgDirSelectExW

  UserLpkPSMTextOut

  CreateDialogIndirectParamA

  UnregisterMessagePumpHook

  MessageBoxA

  DdeInitializeA

  winmm

  waveInClose

  waveInOpen

  waveInStart

  waveInAddBuffer

  waveInPrepareHeader

  waveInGetPosition

  waveInGetDevCapsW

  waveInMessage

  waveInUnprepareHeader

  waveInReset

  waveInGetID

  mixerClose

  mixerSetControlDetails

  mixerGetControlDetailsW

  mixerGetLineControlsW

  mixerGetLineInfoW

  mixerOpen

  waveOutGetNumDevs

  waveOutClose

  waveOutOpen

  waveOutWrite

  waveOutPrepareHeader

  waveOutGetPosition

  waveOutGetDevCapsW

  waveOutMessage

  waveOutGetVolume

  waveOutSetVolume

  waveOutGetPlaybackRate

  waveOutSetPlaybackRate

  waveOutGetPitch

  waveOutSetPitch

  waveOutUnprepareHeader

  waveOutReset

  waveOutPause

  waveOutRestart

  waveOutGetID

  mmioOpenW

  mmioDescend

  mmioCreateChunk

  sndPlaySoundW

  mmioRead

  mmioSendMessage

  mmioSeek

  mmioAscend

  mmioWrite

  mmioClose

  waveInGetNumDevs

  gdi32

  GetCharWidthFloatA

  SetWindowOrgEx

  GetWinMetaFileBits

  SetDCBrushColor

  CloseFigure

  GdiFlush

  EngMultiByteToWideChar

  GdiGetPageHandle

  SetStretchBltMode

  CreateBitmap

  Rectangle

  SetPixel

  GetDCBrushColor

  DdEntry1

  GetEnhMetaFileHeader

  DrawEscape

  EngGetDriverName

  GdiEntry11

  GetFontData

  CloseEnhMetaFile

  DdEntry13

  EngAlphaBlend

  EnumFontFamiliesA

  GetTextExtentExPointWPri

  SetAbortProc

  GdiConvertBrush

  GdiPlayPageEMF

  RectVisible

  GetDCOrgEx

  GdiComment

  STROBJ_vEnumStart

  DdEntry53

  GdiGetLocalFont

  OffsetWindowOrgEx

  GdiDeleteSpoolFileHandle

  SetDIBits

  DdEntry46

  GetPixel

  CreateSolidBrush

  EngLockSurface

  GetColorAdjustment

  GetTextExtentPointW

  DdEntry18

  EngLoadModule

  GdiEntry12

  GdiEntry16

  TranslateCharsetInfo

  UpdateICMRegKeyW

  GdiQueryTable

  GetRasterizerCaps

  MaskBlt

  GetLogColorSpaceW

  GetBitmapAttributes

  DdEntry32

  DdEntry12

  DdEntry36

  Polygon

  EndDoc

  DdEntry2

  GdiConvertMetaFilePict

  OffsetRgn

  GetMapMode

  GetMiterLimit

  CreateFontIndirectExA

  EngGradientFill

  FillPath

  DdEntry43

  AnimatePalette

  CopyEnhMetaFileW

  DeviceCapabilitiesExA

  SetViewportOrgEx

  PlayEnhMetaFileRecord

  DeleteDC

  EngFreeModule

  EngPaint

  CreatePen

  GetObjectType

  Sections

  .text

  Size: 92KB - Virtual size: 92KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .�������

  Size: 3KB - Virtual size: 5.2MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

  .������

  Size: 1024B - Virtual size: 8.4MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_WRITE

  .data

  Size: 260KB - Virtual size: 351KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdata

  Size: 9KB - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ