General

Malware Config

Signatures

Files

• 3e34c4a312108c89977fa9d8b38f13601875494fa9cb87f44bdeb20d8b159902

  .exe windows x86

  6e321d0fbeb0a6534c553610430a6cb8

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DEBUG_STRIPPED

  Imports

  kernel32

  HeapFree

  GetFileAttributesW

  GetStringTypeA

  TlsGetValue

  RemoveDirectoryW

  VirtualProtectEx

  SetCommBreak

  DeviceIoControl

  GetFileAttributesW

  GetCurrentProcess

  CreateEventA

  CreateDirectoryW

  GetPrivateProfileSectionA

  LocalFlags

  FindClose

  SetLastError

  GetLocaleInfoW

  GetVersionExA

  GetModuleHandleA

  GlobalLock

  GetCurrentThread

  user32

  SetCursor

  PostMessageW

  SetCursorPos

  GetWindowLongW

  IsWindow

  wsprintfW

  GetWindowTextW

  DefDlgProcA

  IsDialogMessageA

  SetFocus

  LoadCursorA

  PeekMessageW

  DispatchMessageA

  msorcl32

  SQLCancel

  SQLError

  SQLConnect

  SQLDisconnect

  ntshrui

  IsPathSharedA

  Sections

  .text

  Size: 3KB - Virtual size: 3KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 3KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 512B - Virtual size: 11KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 113KB - Virtual size: 113KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .import

  Size: 512B - Virtual size: 384B

  IMAGE_SCN_CNT_UNINITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE