General

Malware Config

Signatures

Files

• c50cad80e5a599707702cef4562e1c1d6e7f0a4073c3cbfd97785d8a461f1a38

  .exe windows x86

  293c62cdeedaf338eaf8d7db2aae5df9

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_GUARD_CF

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetConsoleDisplayMode

  GetConsoleWindow

  SystemTimeToTzSpecificLocalTime

  SetEvent

  GetCurrentProcessId

  GetCurrentProcess

  FlushConsoleInputBuffer

  GetCommandLineW

  GetStringTypeA

  GetOverlappedResult

  GetSystemWindowsDirectoryA

  GetConsoleProcessList

  FindCloseChangeNotification

  psapi

  GetModuleFileNameExW

  advapi32

  GetServiceDisplayNameA

  esent

  JetCommitTransaction

  user32

  GetWindow

  SetCursorPos

  TranslateMessage

  MonitorFromRect

  GetKeyboardType

  DestroyCursor

  GetCaretBlinkTime

  GetMenuItemCount

  GetDesktopWindow

  GetWindowDC

  GetScrollPos

  oleaut32

  VarDecFromR4

  gdi32

  GetLayout

  GetCharacterPlacementA

  FlattenPath

  powrprof

  GetPwrCapabilities

  Sections

  .text

  Size: 16KB - Virtual size: 13KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  bsxHx

  Size: 4KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 128KB - Virtual size: 132KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 48KB - Virtual size: 47KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 4KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ