General

Malware Config

Signatures

Files

• 56706dfc3005ed7c30c1b1e23b2ee2f7e6596671e566985ae18e47486e6ee518

  .exe windows x86

  b21a359a222f1f9a2eb6b4f1ac08147a

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  FlushFileBuffers

  FormatMessageA

  FreeEnvironmentStringsA

  FreeEnvironmentStringsW

  FreeLibrary

  GetACP

  GetCommandLineA

  GetComputerNameA

  GetCurrentDirectoryA

  GetCurrentProcess

  GetCurrentProcessId

  GetCurrentThread

  GetCurrentThreadId

  GetDiskFreeSpaceA

  GetDiskFreeSpaceW

  GetEnvironmentStrings

  GetEnvironmentStringsW

  GetEnvironmentVariableA

  GetExitCodeProcess

  GetFileAttributesA

  GetFileAttributesExW

  GetFileAttributesW

  GetFileSize

  GetFileType

  GetFullPathNameA

  GetLastError

  GetLocaleInfoA

  GetModuleFileNameA

  GetModuleFileNameW

  GetProcessHeap

  GetProfileIntA

  GetProfileStringA

  GetStartupInfoA

  GetStdHandle

  GetStringTypeA

  GetStringTypeW

  GetSystemDefaultLangID

  GetSystemDirectoryA

  GetSystemDirectoryW

  GetSystemInfo

  GetSystemTime

  GetThreadLocale

  GetTickCount

  GetUserDefaultLangID

  GetVersion

  GetVersionExA

  GetVolumeInformationA

  GetVolumeInformationW

  GetWindowsDirectoryA

  GetWindowsDirectoryW

  GlobalAddAtomA

  GlobalAlloc

  GlobalDeleteAtom

  GlobalFindAtomA

  GlobalFlags

  GlobalFree

  GlobalGetAtomNameA

  GlobalLock

  GlobalSize

  GlobalUnlock

  HeapAlloc

  HeapCreate

  FindResourceA

  HeapFree

  HeapSize

  InterlockedDecrement

  InterlockedIncrement

  IsBadCodePtr

  IsBadReadPtr

  IsBadWritePtr

  LCMapStringA

  LCMapStringW

  LoadLibraryW

  LoadResource

  LocalFree

  LockFile

  LockResource

  MapViewOfFile

  MoveFileExW

  MoveFileW

  MulDiv

  MultiByteToWideChar

  OpenMutexA

  OpenProcess

  PeekNamedPipe

  ReleaseMutex

  RemoveDirectoryW

  ResetEvent

  ResumeThread

  SetEndOfFile

  SetEvent

  SetFileAttributesA

  SetFileAttributesW

  SetFilePointer

  SetFileTime

  SetHandleCount

  SetStdHandle

  SetThreadExecutionState

  SetThreadPriority

  SetUnhandledExceptionFilter

  SetWaitableTimer

  SizeofResource

  Sleep

  SuspendThread

  SystemTimeToFileTime

  TerminateProcess

  TlsAlloc

  UnhandledExceptionFilter

  UnlockFile

  UnmapViewOfFile

  VirtualAlloc

  VirtualFree

  VirtualProtect

  WaitForMultipleObjects

  WaitForSingleObject

  WideCharToMultiByte

  WriteFile

  lstrcatA

  lstrcmpA

  lstrcmpiA

  lstrcpyA

  lstrlenA

  lstrlenW

  FindNextFileW

  FindFirstFileW

  FindFirstFileA

  FindClose

  FileTimeToSystemTime

  FileTimeToLocalFileTime

  ExitThread

  ExitProcess

  DuplicateHandle

  DeviceIoControl

  DeleteFileW

  DeleteFileA

  DeleteCriticalSection

  CreateWaitableTimerA

  CreateProcessW

  CreateProcessA

  CreateMutexA

  CreateFileW

  CreateFileMappingA

  CreateFileA

  CreateEventA

  CopyFileA

  CompareStringW

  CompareStringA

  CloseHandle

  CancelWaitableTimer

  LoadLibraryA

  GetProcAddress

  GetModuleHandleA

  VirtualAllocEx

  HeapDestroy

  user32

  DrawFocusRect

  DrawFrameControl

  DrawIcon

  DrawIconEx

  DrawStateA

  DrawTextA

  DrawTextW

  EnableMenuItem

  EnableWindow

  EndDeferWindowPos

  EndDialog

  EndPaint

  EnumWindows

  EqualRect

  ExcludeUpdateRgn

  ExitWindowsEx

  FillRect

  FindWindowA

  FrameRect

  GetActiveWindow

  GetAsyncKeyState

  GetCapture

  GetClassInfoA

  GetClassLongA

  GetClassNameA

  GetClientRect

  GetCursorPos

  GetDC

  GetDCEx

  GetDesktopWindow

  GetDlgCtrlID

  GetDlgItem

  GetDlgItemTextA

  GetFocus

  GetForegroundWindow

  GetKeyState

  GetLastActivePopup

  GetMenu

  GetMenuCheckMarkDimensions

  GetMenuItemCount

  GetMenuItemID

  GetMenuState

  GetMessageA

  GetMessagePos

  GetMessageTime

  GetNextDlgGroupItem

  GetNextDlgTabItem

  GetParent

  GetPropA

  GetSubMenu

  GetSysColor

  GetSysColorBrush

  GetSystemMetrics

  GetTopWindow

  GetWindow

  GetWindowDC

  GetWindowLongA

  GetWindowPlacement

  GetWindowRect

  GetWindowTextA

  GetWindowTextLengthA

  GetWindowTextLengthW

  GetWindowTextW

  GetWindowThreadProcessId

  GrayStringA

  HideCaret

  InflateRect

  IntersectRect

  InvalidateRect

  IsChild

  IsClipboardFormatAvailable

  IsDialogMessageA

  IsIconic

  IsRectEmpty

  IsWindow

  IsWindowEnabled

  IsWindowUnicode

  IsWindowVisible

  KillTimer

  LoadBitmapA

  LoadCursorA

  LoadIconA

  LoadImageA

  LoadImageW

  LoadStringA

  LockWindowUpdate

  MapDialogRect

  MapWindowPoints

  MessageBeep

  MessageBoxA

  MessageBoxW

  ModifyMenuA

  ModifyMenuW

  MoveWindow

  MsgWaitForMultipleObjects

  OffsetRect

  PeekMessageA

  PostMessageA

  PostQuitMessage

  PostThreadMessageA

  PtInRect

  RegisterClassA

  RegisterClipboardFormatA

  RegisterWindowMessageA

  ReleaseCapture

  ReleaseDC

  RemoveMenu

  RemovePropA

  ScreenToClient

  SendDlgItemMessageA

  SendMessageA

  SendMessageW

  SetActiveWindow

  SetCapture

  SetClipboardViewer

  SetCursor

  SetCursorPos

  SetDlgItemTextA

  SetDlgItemTextW

  SetFocus

  SetForegroundWindow

  SetMenuItemBitmaps

  SetParent

  SetPropA

  SetRect

  SetRectEmpty

  SetTimer

  SetWindowContextHelpId

  SetWindowLongA

  SetWindowPos

  SetWindowTextA

  SetWindowTextW

  SetWindowsHookExA

  ShowCaret

  ShowWindow

  SystemParametersInfoA

  SystemParametersInfoW

  TabbedTextOutA

  TrackPopupMenu

  TranslateMessage

  UnhookWindowsHookEx

  UnionRect

  UnregisterClassA

  ValidateRect

  WinHelpA

  WindowFromPoint

  wsprintfA

  wsprintfW

  DispatchMessageA

  DestroyWindow

  DestroyIcon

  DeleteMenu

  DeferWindowPos

  DefWindowProcW

  DefWindowProcA

  DefDlgProcA

  CreateWindowExW

  CreateWindowExA

  CreatePopupMenu

  CreateDialogParamW

  CreateDialogParamA

  CreateDialogIndirectParamA

  CopyRect

  CopyIcon

  CopyAcceleratorTableA

  ClientToScreen

  CheckMenuRadioItem

  CheckMenuItem

  CharUpperA

  CharNextA

  ChangeClipboardChain

  CallWindowProcA

  CallNextHookEx

  BeginPaint

  BeginDeferWindowPos

  AppendMenuW

  AppendMenuA

  AdjustWindowRectEx

  DestroyMenu

  gdi32

  FillPath

  CreateCompatibleDC

  DeleteMetaFile

  AbortPath

  DeleteObject

  GdiGetBatchLimit

  DeleteDC

  DeleteColorSpace

  CloseFigure

  EndDoc

  CreatePatternBrush

  EndPath

  DeleteEnhMetaFile

  CreateHalftonePalette

  CreateSolidBrush

  CreateMetaFileA

  CloseMetaFile

  AbortDoc

  BeginPath

  EndPage

  CloseEnhMetaFile

  GdiFlush

  CancelDC

  comdlg32

  GetSaveFileNameA

  GetOpenFileNameA

  GetFileTitleA

  GetSaveFileNameW

  advapi32

  RegQueryValueExW

  ole32

  CLSIDFromProgID

  CLSIDFromString

  CoCreateInstance

  CoDisconnectObject

  CoFreeUnusedLibraries

  CoGetClassObject

  CoGetObject

  CoInitialize

  CoLockObjectExternal

  CoRegisterClassObject

  CoRegisterMessageFilter

  CoRevokeClassObject

  CoTaskMemAlloc

  CoTaskMemFree

  CoUninitialize

  CreateILockBytesOnHGlobal

  CreateStreamOnHGlobal

  DoDragDrop

  OleDuplicateData

  OleFlushClipboard

  OleGetClipboard

  OleInitialize

  OleIsCurrentClipboard

  OleUninitialize

  RegisterDragDrop

  ReleaseStgMedium

  RevokeDragDrop

  StgCreateDocfileOnILockBytes

  StgOpenStorageOnILockBytes

  StringFromGUID2

  Sections

  .text

  Size: 160KB - Virtual size: 159KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 12KB - Virtual size: 11KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 174KB - Virtual size: 173KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 44KB - Virtual size: 43KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ