General

Malware Config

Signatures

Files

• 52fd49a35294a4de460bb34687c7423528ebe5e6016cf4a5889828d2ba9a26ab

  .dll windows x86

  be5332585ba6e150fa9197d231734e67

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  LocalFree

  GetStartupInfoA

  GetModuleHandleA

  lstrcmpiW

  LoadLibraryExA

  LoadLibraryA

  WideCharToMultiByte

  lstrlenA

  GetSystemDirectoryA

  LocalAlloc

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  GetCurrentProcess

  TerminateProcess

  GetSystemTimeAsFileTime

  GetCurrentProcessId

  lstrcatW

  GetTickCount

  QueryPerformanceCounter

  GetComputerNameW

  MultiByteToWideChar

  LoadLibraryW

  GetProcAddress

  FreeLibrary

  GlobalAddAtomW

  GlobalDeleteAtom

  lstrcpynW

  lstrcpyW

  lstrcpynA

  GetCurrentThreadId

  lstrlenW

  EnumResourceLanguagesA

  WriteConsoleInputW

  BuildCommDCBAndTimeoutsA

  Process32FirstW

  SetLocaleInfoA

  WritePrivateProfileSectionA

  UnlockFile

  SetCommMask

  FindCloseChangeNotification

  GetConsoleWindow

  ReadDirectoryChangesW

  GetPrivateProfileSectionNamesA

  EnumTimeFormatsA

  SetEnvironmentVariableA

  EnterCriticalSection

  CreateJobObjectW

  WritePrivateProfileStringA

  SetLocalTime

  GetSystemInfo

  GetVersion

  MulDiv

  FormatMessageW

  GetVersionExA

  CompareStringW

  GlobalFindAtomW

  FreeResource

  FileTimeToLocalFileTime

  VirtualProtect

  GetThreadLocale

  CompareStringA

  GetLocaleInfoW

  EnumResourceLanguagesW

  ConvertDefaultLocale

  GetCurrentThread

  SetThreadPriority

  WaitForSingleObject

  SetEvent

  SuspendThread

  WritePrivateProfileStringW

  WriteFile

  SetFilePointer

  FlushFileBuffers

  SetEndOfFile

  DuplicateHandle

  GetFullPathNameW

  TlsGetValue

  GlobalReAlloc

  GlobalHandle

  InitializeCriticalSection

  TlsAlloc

  TlsSetValue

  LocalReAlloc

  DeleteCriticalSection

  TlsFree

  GlobalFlags

  FindResourceExW

  SetErrorMode

  HeapFree

  HeapAlloc

  GetProcessHeap

  GetStartupInfoW

  RtlUnwind

  RaiseException

  IsDebuggerPresent

  ExitThread

  CreateThread

  HeapReAlloc

  VirtualAlloc

  VirtualQuery

  SetStdHandle

  GetFileType

  ExitProcess

  HeapSize

  GetStdHandle

  GetModuleFileNameA

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetCommandLineA

  SetHandleCount

  HeapDestroy

  HeapCreate

  VirtualFree

  GetTimeZoneInformation

  GetCPInfo

  GetACP

  GetOEMCP

  IsValidCodePage

  GetTimeFormatA

  GetDateFormatA

  GetConsoleCP

  GetConsoleMode

  LCMapStringA

  LCMapStringW

  GetStringTypeA

  GetStringTypeW

  GetUserDefaultLCID

  GetLocaleInfoA

  EnumSystemLocalesA

  IsValidLocale

  WriteConsoleA

  GetConsoleOutputCP

  WriteConsoleW

  CreateFileA

  GetCurrentDirectoryA

  GetDriveTypeA

  InterlockedCompareExchange

  SizeofResource

  GetFileSize

  ReadFile

  GetFileAttributesW

  CreateTimerQueueTimer

  DeleteTimerQueueTimer

  QueueUserWorkItem

  lstrcmpW

  GlobalAlloc

  GlobalLock

  GlobalUnlock

  GlobalFree

  InterlockedIncrement

  GetDiskFreeSpaceExW

  LeaveCriticalSection

  InterlockedExchange

  GetNumberFormatW

  GetPrivateProfileStringW

  GetDriveTypeW

  GetVolumeInformationW

  CreateDirectoryW

  Sleep

  GetCommandLineW

  GetModuleFileNameW

  InterlockedDecrement

  ResumeThread

  OpenEventW

  CreateEventW

  FindFirstFileW

  DeleteFileW

  FindNextFileW

  FindClose

  RemoveDirectoryW

  GetLastError

  SetLastError

  GetModuleHandleW

  CreateFileW

  GetFileTime

  CloseHandle

  FileTimeToSystemTime

  FindResourceW

  LoadResource

  LockResource

  LockFile

  user32

  EnableWindow

  CheckRadioButton

  GetMessageW

  TranslateAcceleratorW

  TranslateMessage

  DispatchMessageW

  LoadCursorW

  RegisterClassW

  DefWindowProcW

  LoadIconW

  BeginPaint

  DrawIconEx

  EndPaint

  PostQuitMessage

  FindWindowW

  DialogBoxParamW

  PostMessageW

  SendDlgItemMessageW

  SendMessageW

  LoadAcceleratorsW

  CreateWindowExW

  ShowWindow

  GetSystemMenu

  CheckMenuItem

  InvalidateRect

  SetFocus

  GetDlgItem

  MoveWindow

  GetSystemMetrics

  GetWindowRect

  EndDialog

  ChangeMenuW

  LoadStringW

  MessageBoxW

  SetDlgItemInt

  CheckDlgButton

  SetDlgItemTextW

  IsDlgButtonChecked

  GetDlgItemInt

  GetDlgItemTextW

  SetWindowTextW

  UpdateWindow

  SetWindowContextHelpId

  InsertMenuItemW

  MessageBoxIndirectA

  VkKeyScanExW

  DrawEdge

  GetGUIThreadInfo

  CharToOemBuffA

  UnhookWindowsHook

  GetMessageA

  PostThreadMessageA

  DrawTextA

  SetClassLongW

  IsDialogMessage

  SetPropW

  SendMessageA

  CharUpperBuffA

  SetLastErrorEx

  UnregisterClassA

  DdeCreateStringHandleW

  CharPrevA

  IsWindowVisible

  DeferWindowPos

  EnumPropsExW

  GetCaretPos

  OpenDesktopA

  ActivateKeyboardLayout

  CreateDialogIndirectParamW

  GetAncestor

  GetTopWindow

  SetActiveWindow

  GetLastActivePopup

  GetForegroundWindow

  RemovePropW

  GetPropW

  GetClassLongW

  CallNextHookEx

  SetWindowsHookExW

  IsChild

  WinHelpW

  SendDlgItemMessageA

  ModifyMenuW

  GetMenuCheckMarkDimensions

  SetMenuItemBitmaps

  GetNextDlgTabItem

  GetWindowThreadProcessId

  GetAsyncKeyState

  MapDialogRect

  CharNextW

  CharUpperW

  GetSysColorBrush

  UnregisterClassW

  CopyAcceleratorTableW

  IsRectEmpty

  SetRect

  InvalidateRgn

  GetNextDlgGroupItem

  MessageBeep

  RegisterClipboardFormatW

  OffsetRect

  IntersectRect

  SystemParametersInfoA

  GetWindowPlacement

  GetWindowDC

  GrayStringW

  DrawTextExW

  TabbedTextOutW

  GetWindowTextLengthW

  GetWindowTextW

  IsDialogMessageW

  GetWindow

  GetMenuState

  GetMenuItemID

  GetMenuItemCount

  GetDlgCtrlID

  SetCursor

  AttachThreadInput

  GetScrollPos

  DestroyWindow

  GetMenu

  GetSubMenu

  GetMenuItemInfoW

  ScreenToClient

  DrawFocusRect

  SetParent

  ValidateRect

  DestroyIcon

  EnableScrollBar

  EnumChildWindows

  GetFocus

  GetScrollInfo

  SetScrollInfo

  ScrollWindow

  GetSysColor

  IsWindowEnabled

  DrawTextW

  GetActiveWindow

  GetParent

  GetCapture

  WindowFromPoint

  ClientToScreen

  SystemParametersInfoW

  GetClassInfoExW

  RegisterClassExW

  SetWindowPos

  FillRect

  wsprintfW

  GetClassNameW

  SetWindowLongW

  GetWindowLongW

  IsWindow

  ReleaseCapture

  CreatePopupMenu

  GetCursorPos

  TrackPopupMenuEx

  PostThreadMessageW

  LoadImageW

  EnableMenuItem

  SetForegroundWindow

  SetCapture

  ReleaseDC

  GetDC

  GetClientRect

  IsIconic

  DestroyMenu

  DrawIcon

  LoadBitmapW

  RegisterWindowMessageW

  KillTimer

  SetTimer

  RedrawWindow

  GetClassInfoW

  UnhookWindowsHookEx

  GetMessageTime

  GetMessagePos

  PeekMessageW

  MapWindowPoints

  GetKeyState

  SetScrollRange

  SetScrollPos

  AdjustWindowRectEx

  EqualRect

  CopyRect

  PtInRect

  SetWindowPlacement

  GetDesktopWindow

  CallWindowProcW

  BringWindowToTop

  PaintDesktop

  InSendMessage

  GetQueueStatus

  gdi32

  StartDocW

  EnumFontFamiliesA

  GetKerningPairs

  CreateDiscardableBitmap

  GetCharacterPlacementW

  GetTextAlign

  SetLayoutWidth

  InvertRgn

  SetPixel

  EnumFontFamiliesExW

  Ellipse

  UpdateICMRegKeyA

  FlattenPath

  GetCharWidth32W

  XLATEOBJ_piVector

  GetObjectW

  ExtSelectClipRgn

  GetPaletteEntries

  RemoveFontResourceTracking

  GetLogColorSpaceW

  SetMetaFileBitsEx

  GdiSetBatchLimit

  StartPage

  EndPage

  EndDoc

  GetTextExtentPoint32W

  CreatePalette

  RealizePalette

  GetDIBColorTable

  SaveDC

  RestoreDC

  SetMapMode

  LineTo

  MoveToEx

  GetTextMetricsW

  GetDeviceCaps

  SetBkColor

  StretchBlt

  RoundRect

  CreatePen

  Rectangle

  SetTextColor

  SetBkMode

  CreateCompatibleBitmap

  BitBlt

  CreateSolidBrush

  CreateDIBSection

  SetDIBColorTable

  SelectObject

  CreateCompatibleDC

  GetViewportExtEx

  GetWindowExtEx

  PtVisible

  RectVisible

  TextOutW

  ExtTextOutW

  Escape

  SetViewportOrgEx

  OffsetViewportOrgEx

  SetViewportExtEx

  ScaleViewportExtEx

  SetWindowExtEx

  ScaleWindowExtEx

  CreateBitmap

  SelectPalette

  CreateRectRgnIndirect

  GetBkColor

  GetTextColor

  GetMapMode

  DPtoLP

  GetRgnBox

  DeleteDC

  DeleteObject

  CreateHalftonePalette

  CreateFontIndirectW

  GetClipBox

  GetStockObject

  CreateMetaFileW

  GetROP2

  CloseEnhMetaFile

  comdlg32

  GetFileTitleW

  GetOpenFileNameW

  GetSaveFileNameW

  advapi32

  RegQueryValueExA

  RegCloseKey

  RegOpenKeyExA

  GetSecurityDescriptorLength

  MakeSelfRelativeSD

  IsValidSecurityDescriptor

  RegQueryValueExW

  RegSetValueExW

  RegCreateKeyExW

  RegQueryValueW

  RegEnumKeyW

  RegDeleteKeyW

  RegOpenKeyW

  RegOpenKeyExW

  RegOpenKeyA

  shell32

  DragQueryFile

  SHGetPathFromIDListA

  ShellAboutA

  SHGetFileInfoA

  SHInvokePrinterCommandW

  SHCreateDirectoryExW

  ShellExecuteA

  SHGetInstanceExplorer

  SHAddToRecentDocs

  FindExecutableA

  SHGetIconOverlayIndexW

  SHLoadInProc

  CheckEscapesW

  SHGetDiskFreeSpaceA

  SHEmptyRecycleBinW

  Shell_NotifyIconW

  CommandLineToArgvW

  SHGetPathFromIDListW

  SHBrowseForFolderW

  ShellExecuteW

  SHGetFolderPathW

  ole32

  CoRegisterMessageFilter

  OleFlushClipboard

  OleIsCurrentClipboard

  CoRevokeClassObject

  OleInitialize

  CoFreeUnusedLibraries

  OleUninitialize

  CreateILockBytesOnHGlobal

  StgCreateDocfileOnILockBytes

  StgOpenStorageOnILockBytes

  CoGetClassObject

  CLSIDFromString

  CLSIDFromProgID

  CoTaskMemAlloc

  CoTaskMemFree

  CoInitializeSecurity

  CoSetProxyBlanket

  CoUninitialize

  CreateStreamOnHGlobal

  CoInitialize

  CoCreateInstance

  OleRun

  shlwapi

  StrCmpNIA

  StrChrW

  StrRStrIA

  StrCpyW

  PathFileExistsW

  PathIsDirectoryW

  SHGetValueW

  PathFindExtensionW

  PathFindFileNameW

  PathStripToRootW

  PathIsUNCW

  StrCmpW

  comctl32

  ImageList_GetIconSize

  ImageList_DrawEx

  msvcrt

  _vsnprintf

  strncpy

  wcschr

  wcscpy

  _c_exit

  _exit

  _XcptFilter

  _cexit

  exit

  _acmdln

  __getmainargs

  _initterm

  __setusermatherr

  _adjust_fdiv

  __p__commode

  __p__fmode

  __set_app_type

  _except_handler3

  _controlfp

  Sections

  .pop

  Size: 106KB - Virtual size: 106KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .text

  Size: 4KB - Virtual size: 4KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 2KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 14KB - Virtual size: 14KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 28KB - Virtual size: 27KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ