General

Malware Config

Signatures

Files

• 5638c4d8dc87ed5a2ea5bf600bb3c90a01c742fa09973e9bfdb066a94836490b

  .exe windows x86

  90ccaec8faedbe251cf938da08879abb

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  rasapi32

  RasDialA

  RasEnumDevicesA

  msvcrt

  __p__fmode

  _setmbcp

  _outp

  _findnext

  _iob

  _acmdln

  __getmainargs

  _initterm

  __setusermatherr

  _adjust_fdiv

  __p__commode

  _controlfp

  __set_app_type

  _except_handler3

  _onexit

  __dllonexit

  _mktime64

  _ultow

  advapi32

  RegLoadKeyA

  GetSecurityDescriptorSacl

  AllocateAndInitializeSid

  MakeAbsoluteSD

  GetAce

  ChangeServiceConfig2W

  SetSecurityDescriptorGroup

  ChangeServiceConfigW

  StartServiceCtrlDispatcherA

  LockServiceDatabase

  GetServiceKeyNameW

  LsaAddAccountRights

  ImpersonateSelf

  RegCreateKeyExW

  AddAce

  SetServiceStatus

  EncryptFileW

  SetSecurityDescriptorSacl

  LookupPrivilegeValueA

  CopySid

  RegReplaceKeyA

  RegQueryValueA

  ControlService

  AdjustTokenPrivileges

  RevertToSelf

  RegConnectRegistryA

  EnumServicesStatusA

  ReportEventA

  DeleteAce

  RegSetValueExW

  RegOpenKeyExW

  LookupPrivilegeValueW

  ChangeServiceConfigA

  RegEnumKeyW

  GetAclInformation

  SetFileSecurityW

  OpenServiceA

  SetEntriesInAclA

  RegSetValueA

  RegCreateKeyA

  GetServiceDisplayNameW

  CreateProcessAsUserA

  LsaFreeMemory

  gdi32

  GetCharABCWidthsW

  GetPolyFillMode

  OffsetClipRgn

  GetTextCharsetInfo

  PolyBezier

  SetDeviceGammaRamp

  OffsetWindowOrgEx

  GetObjectW

  Rectangle

  SelectPalette

  GetKerningPairsA

  EndPage

  GetBkMode

  CloseEnhMetaFile

  SetBitmapBits

  RestoreDC

  PlayEnhMetaFile

  EndDoc

  DeleteEnhMetaFile

  CreateSolidBrush

  SetWinMetaFileBits

  GetEnhMetaFilePaletteEntries

  GetWorldTransform

  GetObjectType

  BeginPath

  SetArcDirection

  CreateICA

  ResetDCW

  SetBkMode

  GetROP2

  Ellipse

  ResizePalette

  CreateDCA

  GdiFlush

  GetMapMode

  CreateRoundRectRgn

  GetGlyphOutlineW

  SaveDC

  PlayMetaFileRecord

  CombineRgn

  CopyEnhMetaFileA

  CreateFontIndirectW

  RemoveFontResourceA

  GetTextMetricsW

  GetMetaFileBitsEx

  CreateMetaFileA

  SetBkColor

  CreateBitmap

  DeleteColorSpace

  GetTextExtentPointA

  SetPixelFormat

  PolyPolyline

  GetCharWidthA

  EnumFontsW

  GetWinMetaFileBits

  SetGraphicsMode

  ExtCreateRegion

  Pie

  GetDIBColorTable

  CreatePolygonRgn

  GetTextAlign

  SetWindowExtEx

  OffsetViewportOrgEx

  GetPixel

  CopyEnhMetaFileW

  GetBkColor

  MoveToEx

  SetPixelV

  CreateFontIndirectA

  SetColorAdjustment

  Arc

  StartDocW

  GetNearestPaletteIndex

  SetROP2

  GetTextColor

  ScaleViewportExtEx

  CancelDC

  GetObjectA

  RectVisible

  FillRgn

  MaskBlt

  GetTextExtentPoint32A

  SetPolyFillMode

  EnumFontFamiliesA

  Chord

  CreateDIBSection

  BitBlt

  SetViewportOrgEx

  Polygon

  SetTextColor

  CreateRectRgn

  GetEnhMetaFileBits

  ExtSelectClipRgn

  SetTextAlign

  SetPixel

  LPtoDP

  Escape

  GetTextMetricsA

  StretchBlt

  CreateDCW

  StrokePath

  DeleteObject

  UnrealizeObject

  SetViewportExtEx

  CreateEllipticRgn

  GetGlyphOutlineA

  SetRectRgn

  StartPage

  GetBitmapBits

  GetBrushOrgEx

  ExtTextOutA

  GetDeviceCaps

  CreateFontW

  AbortDoc

  OffsetRgn

  GetDeviceGammaRamp

  UpdateColors

  CreatePenIndirect

  CreatePen

  ExtEscape

  PtVisible

  CreateDIBPatternBrushPt

  EndPath

  SelectClipRgn

  EnumFontFamiliesExW

  PolyBezierTo

  SetWorldTransform

  GetStockObject

  DPtoLP

  GetRgnBox

  ScaleWindowExtEx

  ExtFloodFill

  GetClipRgn

  GetTextFaceA

  SwapBuffers

  GetTextExtentPoint32W

  SetDIBColorTable

  EnumMetaFile

  CreateICW

  PolyDraw

  IntersectClipRect

  SetMapMode

  SetTextCharacterExtra

  GetDCOrgEx

  SetMetaFileBitsEx

  FillPath

  CreateCompatibleDC

  PlayEnhMetaFileRecord

  StartDocA

  GetDIBits

  GetFontData

  RealizePalette

  EqualRgn

  SetAbortProc

  GetClipBox

  SetStretchBltMode

  CreateFontA

  DeleteDC

  GetWindowOrgEx

  SetWindowOrgEx

  EnumFontsA

  CreateCompatibleBitmap

  ExtCreatePen

  GetEnhMetaFileHeader

  WidenPath

  Polyline

  GetSystemPaletteEntries

  PatBlt

  CreateEnhMetaFileA

  TextOutA

  user32

  CreateCursor

  DialogBoxIndirectParamA

  CharUpperA

  RegisterWindowMessageA

  SetDlgItemTextW

  OffsetRect

  IsChild

  GetClassLongA

  UnhookWindowsHook

  DrawTextA

  GetForegroundWindow

  GetClassNameW

  SetRectEmpty

  IsMenu

  SystemParametersInfoA

  LoadBitmapA

  ShowWindow

  DefDlgProcA

  SetTimer

  OemToCharBuffA

  IsDlgButtonChecked

  SetDlgItemInt

  DefWindowProcA

  MapVirtualKeyExA

  GetClassInfoA

  EmptyClipboard

  CallWindowProcA

  GrayStringW

  DestroyMenu

  DestroyCursor

  GetGUIThreadInfo

  OpenClipboard

  GetDlgItem

  SetWindowTextA

  CharPrevA

  SetMenu

  DdeFreeStringHandle

  CreateDialogParamA

  DialogBoxIndirectParamW

  DrawTextExA

  ScrollWindow

  GrayStringA

  GetCaretPos

  ShowCaret

  GetKeyboardLayout

  CreateWindowStationW

  IsCharUpperA

  LoadMenuA

  DispatchMessageA

  GetScrollPos

  SetForegroundWindow

  keybd_event

  GetWindowRect

  mouse_event

  DdeConnect

  SetCapture

  DeferWindowPos

  CreateWindowExW

  BeginDeferWindowPos

  UnpackDDElParam

  GetClipboardData

  ChangeDisplaySettingsW

  ShowCursor

  GetParent

  IsCharAlphaNumericA

  DestroyAcceleratorTable

  TranslateAcceleratorA

  BringWindowToTop

  TrackPopupMenuEx

  GetWindowTextA

  GetMenuItemID

  IsCharAlphaW

  SetClipboardData

  VkKeyScanExA

  SystemParametersInfoW

  FrameRect

  EnumDisplaySettingsA

  CharLowerA

  SendDlgItemMessageA

  GetWindow

  EnableWindow

  LoadIconA

  SetWindowPlacement

  GetDlgItemTextA

  GetSysColorBrush

  DispatchMessageW

  ChangeClipboardChain

  GetMenu

  MessageBoxA

  CharUpperW

  TrackPopupMenu

  FindWindowExA

  GetClassInfoExW

  GetCapture

  SetPropA

  DestroyCaret

  DefDlgProcW

  GetDlgCtrlID

  CreateMenu

  DrawStateW

  IsCharLowerA

  IsWindowEnabled

  ModifyMenuA

  DrawStateA

  GetProcessWindowStation

  EnumClipboardFormats

  ToAscii

  IsDialogMessageA

  PeekMessageW

  GetClipboardFormatNameW

  GetLastActivePopup

  GetMessageW

  MoveWindow

  WaitMessage

  DrawFrameControl

  CharToOemBuffA

  DragDetect

  WinHelpA

  PostThreadMessageW

  ShowOwnedPopups

  CopyImage

  DrawIconEx

  GetScrollInfo

  FindWindowW

  CopyIcon

  InSendMessage

  FlashWindow

  GetDC

  ShowScrollBar

  ModifyMenuW

  GetQueueStatus

  GetClipCursor

  UnhookWinEvent

  VkKeyScanExW

  LoadCursorFromFileW

  ValidateRect

  GetWindowTextLengthA

  InsertMenuW

  CharNextW

  CheckMenuItem

  wvsprintfA

  IsClipboardFormatAvailable

  SetMenuDefaultItem

  GetWindowThreadProcessId

  GetCursorPos

  GetPropA

  PostMessageA

  DialogBoxParamA

  CopyAcceleratorTableW

  AppendMenuW

  BeginPaint

  EnumDisplaySettingsW

  CreateDialogIndirectParamA

  SetClassLongW

  FindWindowA

  IsZoomed

  InvalidateRgn

  DrawAnimatedRects

  GetMessageA

  ChildWindowFromPointEx

  DrawIcon

  GetMenuState

  MessageBeep

  GetKeyboardState

  ScreenToClient

  GetMenuItemRect

  kernel32

  GetStartupInfoA

  GetModuleHandleA

  HeapReAlloc

  GetCurrentProcessId

  Beep

  GetPrivateProfileSectionNamesA

  mfc42

  ord4998

  ord4274

  ord6375

  ord4486

  ord2554

  ord1000

  ord5731

  ord3922

  ord1089

  ord1003

  ord2396

  ord3346

  ord1096

  ord5302

  ord2725

  ord1071

  ord1168

  ord4234

  ord324

  ord641

  ord1037

  ord1097

  ord4425

  ord4627

  ord1034

  ord1067

  ord1039

  ord5261

  ord1727

  ord5065

  ord3749

  ord6376

  ord2055

  ord1007

  ord4441

  ord4837

  ord3798

  ord5280

  ord4353

  ord6374

  ord5163

  ord2385

  ord1046

  ord4407

  ord1775

  ord4078

  ord6052

  ord2514

  ord1576

  ord4853

  ord4376

  ord5265

  ord815

  ord561

  ord3738

  ord4424

  ord1045

  ord4080

  ord3079

  ord3825

  ord3831

  ord3830

  ord2976

  ord3081

  ord2985

  ord3262

  ord1061

  ord4465

  ord3259

  ord1037

  ord2982

  ord5714

  ord1042

  ord5307

  ord4698

  Sections

  .text

  Size: 104KB - Virtual size: 103KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 40KB - Virtual size: 38KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 4KB - Virtual size: 1.9MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 264KB - Virtual size: 261KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ