General

Malware Config

Signatures

Files

• 7f3bcbb3e8080ac75f7bba326a23c54f

  .exe windows x64

  4d2f17d7a26b36510199cec63891b6ed

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  Imports

  kernel32

  GetStartupInfoW

  RtlLookupFunctionEntry

  RtlUnwindEx

  HeapReAlloc

  RaiseException

  RtlPcToFileHeader

  Sleep

  HeapQueryInformation

  HeapSize

  SetUnhandledExceptionFilter

  GetStdHandle

  GetModuleFileNameA

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetCommandLineW

  SetHandleCount

  GetFileType

  GetStartupInfoA

  EncodePointer

  DecodePointer

  FlsGetValue

  FlsSetValue

  FlsFree

  FlsAlloc

  HeapSetInformation

  SetErrorMode

  QueryPerformanceCounter

  GetTickCount

  GetSystemTimeAsFileTime

  TerminateProcess

  UnhandledExceptionFilter

  IsDebuggerPresent

  RtlVirtualUnwind

  RtlCaptureContext

  GetCPInfo

  GetACP

  GetOEMCP

  IsValidCodePage

  InitializeCriticalSectionAndSpinCount

  LCMapStringA

  LCMapStringW

  GetStringTypeA

  GetStringTypeW

  GetUserDefaultLCID

  GetLocaleInfoA

  EnumSystemLocalesA

  IsValidLocale

  GetConsoleCP

  GetConsoleMode

  SetStdHandle

  WriteConsoleA

  GetConsoleOutputCP

  WriteConsoleW

  CreateFileA

  GetCurrentProcess

  FlushFileBuffers

  SetFilePointer

  WriteFile

  ReadFile

  WritePrivateProfileStringW

  TlsFree

  LocalReAlloc

  TlsSetValue

  GlobalHandle

  GlobalReAlloc

  TlsAlloc

  TlsGetValue

  LocalAlloc

  lstrlenA

  GlobalFlags

  EnterCriticalSection

  LeaveCriticalSection

  DeleteCriticalSection

  InitializeCriticalSection

  CloseHandle

  GetCurrentProcessId

  GetCurrentThread

  ConvertDefaultLocale

  EnumResourceLanguagesW

  GetModuleFileNameW

  lstrcmpA

  GetLocaleInfoW

  FreeResource

  GetCurrentThreadId

  GlobalAddAtomW

  GlobalFindAtomW

  GlobalDeleteAtom

  GetVersionExW

  CompareStringW

  lstrcmpW

  GetVersionExA

  GlobalFree

  GlobalAlloc

  GlobalLock

  GlobalUnlock

  FormatMessageW

  LocalFree

  MulDiv

  MultiByteToWideChar

  GetLastError

  GetModuleHandleW

  lstrlenW

  WideCharToMultiByte

  GetCurrentDirectoryW

  LoadLibraryW

  ExitProcess

  LockResource

  SizeofResource

  GetLogicalDrives

  LoadResource

  FindResourceW

  GetDriveTypeW

  LoadLibraryA

  GetProcAddress

  SetLastError

  HeapFree

  HeapAlloc

  FreeLibrary

  HeapCreate

  user32

  DestroyMenu

  LoadCursorW

  GetSysColorBrush

  EndPaint

  BeginPaint

  ClientToScreen

  GrayStringW

  DrawTextExW

  DrawTextW

  TabbedTextOutW

  GetDesktopWindow

  CreateDialogIndirectParamW

  GetNextDlgTabItem

  EndDialog

  GetMessageW

  TranslateMessage

  GetActiveWindow

  GetCursorPos

  ValidateRect

  GetWindowThreadProcessId

  SetCursor

  PostQuitMessage

  IsWindowEnabled

  ShowWindow

  SetWindowTextW

  IsDialogMessageW

  RegisterWindowMessageW

  SendDlgItemMessageA

  SendDlgItemMessageW

  GetCapture

  SetWindowsHookExW

  CallNextHookEx

  GetClassNameW

  GetClassLongPtrW

  SetPropW

  GetPropW

  RemovePropW

  GetWindowTextW

  GetForegroundWindow

  GetLastActivePopup

  SetActiveWindow

  DispatchMessageW

  GetDlgItem

  GetTopWindow

  DestroyWindow

  GetWindowLongPtrW

  SetWindowLongPtrW

  UnhookWindowsHookEx

  GetMessageTime

  GetMessagePos

  PeekMessageW

  MapWindowPoints

  GetKeyState

  SetMenu

  SetForegroundWindow

  IsWindowVisible

  UpdateWindow

  PostMessageW

  MessageBoxW

  CreateWindowExW

  GetClassInfoExW

  GetClassInfoW

  EnableWindow

  SendMessageW

  GetSystemMetrics

  LoadIconW

  RegisterClassW

  GetSysColor

  AdjustWindowRectEx

  GetDlgCtrlID

  DefWindowProcW

  CallWindowProcW

  PtInRect

  UnregisterClassW

  WinHelpW

  GetClientRect

  DrawIcon

  IsIconic

  CheckMenuItem

  EnableMenuItem

  GetMenuState

  ModifyMenuW

  GetParent

  GetFocus

  LoadBitmapW

  GetMenuCheckMarkDimensions

  SetMenuItemBitmaps

  IsWindow

  CopyRect

  GetDC

  ReleaseDC

  GetSubMenu

  GetMenu

  GetWindowLongW

  SetWindowLongW

  SetWindowPos

  SystemParametersInfoA

  GetWindowPlacement

  GetWindow

  GetMenuItemID

  GetMenuItemCount

  GetWindowRect

  SetFocus

  gdi32

  DeleteDC

  GetStockObject

  ScaleWindowExtEx

  SetWindowExtEx

  ScaleViewportExtEx

  SetViewportExtEx

  OffsetViewportOrgEx

  SetViewportOrgEx

  SelectObject

  Escape

  ExtTextOutW

  TextOutW

  RectVisible

  CreateBitmap

  DeleteObject

  SetMapMode

  RestoreDC

  SaveDC

  GetObjectW

  SetBkColor

  SetTextColor

  GetClipBox

  GetDeviceCaps

  PtVisible

  winspool.drv

  DocumentPropertiesW

  OpenPrinterW

  ClosePrinter

  advapi32

  RegSetValueExW

  RegCreateKeyExW

  RegQueryValueW

  RegOpenKeyW

  RegEnumKeyW

  RegDeleteKeyW

  RegOpenKeyExW

  RegQueryValueExW

  RegCloseKey

  shlwapi

  PathFindFileNameW

  PathFindExtensionW

  oleaut32

  VariantClear

  VariantChangeType

  VariantInit

  Sections

  .text

  Size: 197KB - Virtual size: 196KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 71KB - Virtual size: 71KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 12KB - Virtual size: 36KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 14KB - Virtual size: 14KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 171KB - Virtual size: 171KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 11KB - Virtual size: 11KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ