General

Malware Config

Signatures

Files

• 501a12070e9b88976668fe71f22b74eb94b3acdc15e28f651ee496d27b3e3e58

  .exe windows x86

  018107ad82844590428f615642dea9fb

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  RegisterClassExA

  RegisterClassA

  RedrawWindow

  PostMessageA

  PeekMessageA

  OffsetRect

  OemToCharBuffA

  MoveWindow

  MessageBoxA

  LoadStringA

  LoadImageA

  LoadIconA

  IsWindowVisible

  GetWindowRect

  GetSystemMetrics

  GetParent

  GetLastActivePopup

  GetDlgItem

  GetDC

  ExitWindowsEx

  EnumWindows

  EndPaint

  DispatchMessageA

  DestroyWindow

  DestroyIcon

  DefWindowProcA

  CreateWindowExA

  CreateDialogParamA

  CallNextHookEx

  BeginPaint

  CharUpperBuffA

  CharToOemBuffA

  kernel32

  GetSystemDirectoryA

  HeapSize

  LCMapStringW

  LCMapStringA

  GetStringTypeW

  MultiByteToWideChar

  GetStringTypeA

  RtlUnwind

  HeapReAlloc

  VirtualAlloc

  InitializeCriticalSection

  Sleep

  GetOEMCP

  GetACP

  EnterCriticalSection

  LeaveCriticalSection

  QueryPerformanceCounter

  VirtualFree

  HeapCreate

  HeapDestroy

  DeleteCriticalSection

  GetFileType

  CreateProcessA

  DeleteFileA

  DosDateTimeToFileTime

  EnumCalendarInfoA

  EnumSystemLocalesA

  ExpandEnvironmentStringsA

  FileTimeToDosDateTime

  FileTimeToLocalFileTime

  FindClose

  FindFirstFileA

  FindNextFileA

  FindResourceA

  FlushFileBuffers

  FormatMessageA

  FreeEnvironmentStringsA

  FreeLibrary

  GetCPInfo

  GetCurrentDirectoryA

  GetCurrentProcess

  GetCurrentThreadId

  GetDateFormatA

  GetDiskFreeSpaceA

  GetDriveTypeA

  GetEnvironmentStrings

  GetEnvironmentVariableA

  GetExitCodeProcess

  GetExitCodeThread

  GetFileAttributesA

  GetFileSize

  GetFileTime

  GetFullPathNameA

  GetLastError

  GetLocalTime

  GetLocaleInfoA

  GetLocaleInfoW

  GetModuleFileNameA

  GetModuleHandleA

  GetPrivateProfileStringA

  GetProcAddress

  GetShortPathNameA

  GetTempFileNameA

  GetTempPathA

  GetThreadLocale

  GetTickCount

  GetVersionExA

  GetWindowsDirectoryA

  LoadLibraryA

  LoadLibraryExA

  LoadResource

  LockResource

  MoveFileA

  VirtualAllocEx

  OpenProcess

  GetCurrentProcessId

  FreeUserPhysicalPages

  GetSystemTimeAsFileTime

  GetCommandLineA

  HeapFree

  HeapAlloc

  GetProcessHeap

  GetStartupInfoA

  TlsGetValue

  TlsAlloc

  TlsSetValue

  TlsFree

  InterlockedIncrement

  SetLastError

  InterlockedDecrement

  TerminateProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  ExitProcess

  WriteFile

  GetStdHandle

  FreeEnvironmentStringsW

  WideCharToMultiByte

  GetEnvironmentStringsW

  SetHandleCount

  Sections

  .text

  Size: 32KB - Virtual size: 31KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 9KB - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 593KB - Virtual size: 724KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 512B - Virtual size: 436B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ