General

Malware Config

Signatures

Files

• f7f175a450a116c0be3c493e697c98c9469f2f894f3834fea484f5540621350c

  .exe windows x86

  3a8eb283f62eca7206b65c62b7d51bd5

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  ws2_32

  WSAGetLastError

  send

  recv

  select

  WSAStartup

  getpeername

  getservbyport

  ntohs

  gethostbyaddr

  gethostbyname

  getservbyname

  htonl

  inet_ntoa

  inet_addr

  WSAIoctl

  connect

  accept

  htons

  bind

  listen

  socket

  __WSAFDIsSet

  shutdown

  setsockopt

  ioctlsocket

  WSACleanup

  closesocket

  gdi32

  GetDIBits

  CreateCompatibleBitmap

  RealizePalette

  SelectPalette

  CreatePalette

  GetSystemPaletteEntries

  GdiFlush

  CombineRgn

  GetRegionData

  SetStretchBltMode

  CreateDIBitmap

  DeleteDC

  SelectObject

  CreateCompatibleDC

  BitBlt

  SetBkMode

  CreateFontIndirectA

  DPtoLP

  GetDeviceCaps

  CreateFontA

  StretchBlt

  CreateRectRgn

  ExtTextOutA

  GetBitmapBits

  GetObjectA

  CreateDIBSection

  SetBitmapBits

  CreateRectRgnIndirect

  SelectClipRgn

  TextOutW

  CreatePatternBrush

  SetTextAlign

  SetBrushOrgEx

  ExtTextOutW

  SetTextColor

  SetBkColor

  GetTextExtentPoint32W

  CreateSolidBrush

  DeleteObject

  GetStockObject

  user32

  FindWindowA

  OpenDesktopA

  VkKeyScanExA

  SendMessageTimeoutA

  LoadIconA

  IntersectRect

  IsWindowVisible

  GetIconInfo

  GetCursorInfo

  EqualRect

  OpenInputDesktop

  CloseDesktop

  GetUserObjectInformationA

  LoadKeyboardLayoutA

  EmptyClipboard

  SetClipboardData

  RegisterClassExA

  GetDesktopWindow

  PeekMessageA

  MsgWaitForMultipleObjects

  mouse_event

  MapVirtualKeyA

  LockWorkStation

  SetThreadDesktop

  keybd_event

  SetDlgItemTextA

  SetDlgItemInt

  GetKeyboardState

  ToAsciiEx

  DestroyAcceleratorTable

  TranslateAcceleratorA

  CreateAcceleratorTableA

  SetWindowTextA

  ReleaseCapture

  SetCapture

  GetAsyncKeyState

  GetThreadDesktop

  SystemParametersInfoW

  SwitchToThisWindow

  SendMessageA

  FindWindowW

  MessageBoxA

  ShowWindow

  wsprintfA

  RegisterClassExW

  DestroyCursor

  MessageBeep

  wsprintfW

  SetCursorPos

  GetClipboardOwner

  OpenClipboard

  GetClipboardData

  CloseClipboard

  ShowWindowAsync

  SetScrollInfo

  GetWindow

  WindowFromPoint

  ReleaseDC

  GetDC

  DestroyIcon

  DrawIconEx

  LoadImageA

  EnableWindow

  SetDlgItemTextW

  DestroyWindow

  SetWindowPos

  SetClassLongW

  InsertMenuItemW

  ChangeClipboardChain

  MapWindowPoints

  InsertMenuItemA

  EnumWindows

  GetClassNameA

  GetWindowTextA

  KillTimer

  GetWindowLongW

  PostMessageA

  DrawTextW

  SetRect

  ShowScrollBar

  IsIconic

  ScrollWindowEx

  AdjustWindowRectEx

  GetMenuState

  GetWindowPlacement

  SetWindowPlacement

  GetSysColorBrush

  AppendMenuW

  SetClipboardViewer

  SetWindowsHookExA

  UnhookWindowsHookEx

  DrawTextA

  EndDialog

  CreateDialogParamW

  DialogBoxParamA

  CallWindowProcW

  CallWindowProcA

  DefWindowProcA

  IsWindowUnicode

  GetSystemMenu

  RedrawWindow

  InvalidateRect

  DrawStateA

  DrawEdge

  GetClientRect

  CreateWindowExA

  IsWindow

  GetParent

  GetWindowLongA

  GetForegroundWindow

  GetWindowThreadProcessId

  AttachThreadInput

  SetActiveWindow

  SetCursor

  SetTimer

  PostThreadMessageA

  MoveWindow

  BeginPaint

  EndPaint

  GetDlgItemInt

  SendDlgItemMessageA

  MapDialogRect

  SetWindowLongA

  ClientToScreen

  LoadCursorA

  RegisterClassW

  CreateWindowExW

  SetWindowLongW

  UpdateWindow

  GetMessageA

  IsDialogMessageA

  TranslateMessage

  DispatchMessageA

  ScreenToClient

  SetWindowTextW

  SetMenu

  LoadMenuA

  GetMenuItemInfoA

  SetMenuItemInfoA

  GetSubMenu

  SetMenuItemInfoW

  GetMenuItemID

  EnableMenuItem

  GetMenuItemCount

  CheckMenuItem

  GetKeyState

  SetForegroundWindow

  SetFocus

  GetFocus

  PostQuitMessage

  DefWindowProcW

  CreatePopupMenu

  GetCursorPos

  TrackPopupMenu

  GetSysColor

  GetSystemMetrics

  GetMenuItemInfoW

  DrawMenuBar

  AppendMenuA

  DestroyMenu

  MessageBoxW

  GetDlgItem

  SendMessageW

  GetWindowRect

  SystemParametersInfoA

  shell32

  SHBrowseForFolderW

  SHGetPathFromIDListW

  ShellExecuteA

  SHGetMalloc

  ShellExecuteExW

  SHGetFolderPathA

  SHGetFolderPathW

  SHGetFileInfoW

  ShellExecuteW

  SHGetSpecialFolderPathW

  Shell_NotifyIconA

  msvcp60

  ??1Init@ios_base@std@@QAE@XZ

  ??0_Winit@std@@QAE@XZ

  ??1_Winit@std@@QAE@XZ

  ??0Init@ios_base@std@@QAE@XZ

  msvcrt

  _strnicmp

  _strupr

  _strlwr

  _controlfp

  _iob

  __set_app_type

  __p__fmode

  __p__commode

  _adjust_fdiv

  __setusermatherr

  _initterm

  __getmainargs

  _wcsicmp

  wcschr

  __CxxFrameHandler

  strlen

  isspace

  memchr

  _errno

  strtol

  isdigit

  strstr

  memcpy

  ??2@YAPAXI@Z

  _purecall

  free

  memset

  malloc

  sprintf

  printf

  fwrite

  srand

  time

  _CxxThrowException

  rand

  atol

  _stricmp

  isprint

  tolower

  strncpy

  atoi

  abs

  wcscpy

  strcmp

  strcpy

  wcslen

  memcmp

  iswspace

  wcsncmp

  _wtoi

  _ultow

  _stat

  strchr

  _ftol

  swprintf

  strcat

  strtoul

  calloc

  _rotl

  _rotr

  fopen

  fread

  fclose

  fseek

  ftell

  fflush

  wcsncpy

  wcsrchr

  vsprintf

  vswprintf

  memmove

  strrchr

  strncmp

  mbstowcs

  wcscmp

  wcsstr

  iswdigit

  _beginthreadex

  _endthreadex

  atof

  _i64tow

  wcscat

  realloc

  exit

  fprintf

  sscanf

  getenv

  floor

  fputc

  _CIpow

  _CIacos

  ??1type_info@@UAE@XZ

  __dllonexit

  _onexit

  _except_handler3

  ?terminate@@YAXXZ

  _exit

  _XcptFilter

  _acmdln

  secur32

  FreeCredentialsHandle

  InitializeSecurityContextA

  FreeContextBuffer

  AcquireCredentialsHandleA

  CompleteAuthToken

  QuerySecurityPackageInfoA

  setupapi

  SetupDiEnumDeviceInfo

  SetupDiGetClassDevsA

  SetupDiClassGuidsFromNameA

  SetupDiGetDeviceRegistryPropertyA

  SetupDiDestroyDeviceInfoList

  iphlpapi

  GetAdaptersInfo

  advapi32

  RegOpenKeyExA

  FreeSid

  SetFileSecurityW

  SetSecurityDescriptorDacl

  InitializeSecurityDescriptor

  ConvertSidToStringSidA

  GetTokenInformation

  OpenProcessToken

  RegCloseKey

  RegQueryValueExA

  ImpersonateLoggedOnUser

  RevertToSelf

  GetUserNameA

  StartServiceCtrlDispatcherW

  RegisterServiceCtrlHandlerExA

  SetServiceStatus

  SetTokenInformation

  DuplicateTokenEx

  CreateProcessAsUserW

  QueryServiceStatus

  CloseServiceHandle

  OpenServiceA

  OpenSCManagerA

  CreateServiceW

  DeleteService

  ControlService

  StartServiceA

  StartServiceW

  RegCreateKeyExA

  RegQueryValueExW

  RegSetValueExW

  RegSetValueExA

  RegDeleteKeyA

  RegDeleteValueW

  RegCreateKeyExW

  RegEnumKeyExW

  RegOpenKeyExW

  SetEntriesInAclA

  AllocateAndInitializeSid

  shlwapi

  PathGetDriveNumberA

  comdlg32

  GetOpenFileNameW

  GetSaveFileNameW

  userenv

  LoadUserProfileA

  UnloadUserProfile

  comctl32

  CreateToolbarEx

  ImageList_Create

  ImageList_Draw

  ImageList_Destroy

  ord17

  ImageList_GetIconSize

  ImageList_ReplaceIcon

  ImageList_Add

  ImageList_Duplicate

  _TrackMouseEvent

  CreatePropertySheetPageW

  PropertySheetW

  wininet

  HttpSendRequestA

  HttpQueryInfoA

  InternetConnectA

  InternetSetOptionA

  InternetCloseHandle

  InternetReadFile

  InternetOpenA

  HttpOpenRequestA

  dsound

  ord7

  ord6

  ord2

  ord1

  kernel32

  SizeofResource

  LoadResource

  LockResource

  GetLocalTime

  TryEnterCriticalSection

  LeaveCriticalSection

  EnterCriticalSection

  DeleteCriticalSection

  InitializeCriticalSection

  SetFileTime

  GetFileTime

  OpenMutexA

  CreateMutexA

  ResetEvent

  FindResourceExA

  OpenEventA

  CreateEventA

  ExitProcess

  SetUnhandledExceptionFilter

  GetSystemDirectoryA

  CompareFileTime

  GetSystemTimeAsFileTime

  GetSystemDirectoryW

  lstrcatW

  LoadLibraryW

  QueryPerformanceFrequency

  ReadFile

  QueryPerformanceCounter

  GetExitCodeProcess

  BeginUpdateResourceW

  EndUpdateResourceW

  UpdateResourceA

  OpenProcess

  CreateToolhelp32Snapshot

  Process32First

  Process32Next

  LoadLibraryA

  FreeLibrary

  GetFileSize

  SetFilePointer

  WriteFile

  WaitForSingleObject

  CreateThread

  GetFileAttributesW

  GetStartupInfoW

  CreateProcessW

  lstrcmpiW

  lstrcmpW

  MulDiv

  FormatMessageW

  MultiByteToWideChar

  WideCharToMultiByte

  GetModuleFileNameW

  GetComputerNameA

  LocalAlloc

  GetExitCodeThread

  SystemTimeToFileTime

  MoveFileW

  DeleteFileW

  GetTempPathW

  CreateFileW

  FindFirstFileW

  FindClose

  CreateFileA

  DeviceIoControl

  GetUserDefaultUILanguage

  GetModuleHandleA

  GetProcAddress

  GetLocaleInfoA

  CreateDirectoryW

  SetCurrentDirectoryW

  SetProcessShutdownParameters

  GetVersionExA

  GetCurrentProcess

  GetLastError

  CloseHandle

  LocalFree

  GetCurrentThreadId

  GetCurrentProcessId

  Sleep

  GetTickCount

  InterlockedIncrement

  InterlockedDecrement

  lstrlenA

  lstrlenW

  TerminateProcess

  GlobalUnlock

  GlobalLock

  SystemTimeToTzSpecificLocalTime

  FileTimeToSystemTime

  GetFileSizeEx

  SetEndOfFile

  SetFilePointerEx

  GlobalAlloc

  GetDriveTypeW

  RemoveDirectoryW

  FindNextFileW

  SetFileAttributesW

  GetLogicalDrives

  ProcessIdToSessionId

  SleepEx

  CreateDirectoryA

  DeleteFileA

  GlobalFree

  IsBadReadPtr

  lstrcmpA

  LocalFileTimeToFileTime

  WaitNamedPipeW

  lstrcpyA

  GetCurrentDirectoryA

  FindResourceA

  DuplicateHandle

  CreateSemaphoreA

  SetThreadPriority

  TlsSetValue

  GetCurrentThread

  TlsAlloc

  ResumeThread

  TlsGetValue

  InterlockedExchange

  GetStartupInfoA

  SetEvent

  SetLastError

  Sections

  .text

  Size: 520KB - Virtual size: 519KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdata

  Size: 100KB - Virtual size: 97KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .data

  Size: 80KB - Virtual size: 107KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 116KB - Virtual size: 116KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE