Extracted

• d83054107f5512589ea5f2d140b6deae088142b867626a961216ec5e96154ec9

  .exe windows x86

  7b6caa18486dbf4ea3f85d14381690f8

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  LoadLibraryA

  FreeLibrary

  LocalFree

  MapViewOfFile

  UnmapViewOfFile

  GetCurrentProcess

  GetVersionExA

  TerminateThread

  DeleteFileA

  GetTempPathA

  CreateFileMappingA

  SetFileAttributesA

  CopyFileA

  MoveFileA

  ReadFile

  SetFilePointer

  GetFileSize

  WaitForSingleObject

  GetLastError

  ExitProcess

  lstrcmpiA

  MultiByteToWideChar

  GetModuleHandleA

  QueryPerformanceCounter

  QueryPerformanceFrequency

  CreateProcessA

  WriteFile

  GetDriveTypeA

  GetDiskFreeSpaceExA

  GetLogicalDriveStringsA

  GetLocaleInfoA

  ExpandEnvironmentStringsA

  ReleaseMutex

  CreateMutexA

  GetProcAddress

  GetExitCodeProcess

  PeekNamedPipe

  DuplicateHandle

  CreatePipe

  GetCurrentProcessId

  TerminateProcess

  OpenProcess

  GetCurrentThread

  GlobalMemoryStatus

  GetTimeFormatA

  GetDateFormatA

  GetSystemDirectoryA

  LocalAlloc

  GetLocalTime

  lstrcatA

  lstrcpyA

  lstrcpynA

  lstrcmpA

  lstrlenA

  GetFileAttributesA

  SetFileTime

  GetFileTime

  GetWindowsDirectoryA

  FindClose

  FindNextFileA

  FindFirstFileA

  RemoveDirectoryA

  GetComputerNameA

  InitializeCriticalSection

  IsBadWritePtr

  SetHandleCount

  HeapReAlloc

  VirtualAlloc

  CreateFileA

  TransactNamedPipe

  CloseHandle

  EnterCriticalSection

  LeaveCriticalSection

  DeleteCriticalSection

  InitializeCriticalSectionAndSpinCount

  ExitThread

  GetModuleFileNameA

  CreateThread

  Sleep

  CreateEventA

  GetTickCount

  VirtualFree

  SetEnvironmentVariableA

  HeapCreate

  CompareStringW

  CompareStringA

  SetEndOfFile

  IsBadCodePtr

  IsBadReadPtr

  FlushFileBuffers

  SetStdHandle

  GetStringTypeW

  GetStringTypeA

  SetUnhandledExceptionFilter

  GetEnvironmentStringsW

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  FreeEnvironmentStringsA

  UnhandledExceptionFilter

  GetOEMCP

  GetACP

  GetCPInfo

  HeapSize

  LCMapStringW

  LCMapStringA

  WideCharToMultiByte

  GetFileType

  GetStdHandle

  HeapDestroy

  GetEnvironmentVariableA

  HeapFree

  HeapAlloc

  InterlockedDecrement

  InterlockedIncrement

  GetTimeZoneInformation

  GetSystemTime

  RtlUnwind

  ResumeThread

  TlsSetValue

  GetStartupInfoA

  GetCommandLineA

  GetVersion

  RaiseException

  GetCurrentThreadId

  TlsAlloc

  SetLastError

  TlsGetValue

  user32

  wsprintfA

  SendMessageA

  GetClassNameA

  CharLowerA

  IsCharAlphaNumericA

  advapi32

  RegSetValueExA

  RegEnumKeyA

  RegOpenKeyExA

  RegQueryValueExA

  RegCloseKey

  OpenProcessToken

  LookupPrivilegeValueA

  AdjustTokenPrivileges

  GetSecurityInfo

  SetEntriesInAclA

  SetSecurityInfo

  GetUserNameA

  shell32

  ShellExecuteA

  ws2_32

  connect

  socket

  bind

  getsockname

  listen

  ntohs

  ntohl

  select

  WSAGetLastError

  send

  recv

  WSASocketA

  setsockopt

  closesocket

  gethostname

  htons

  htonl

  sendto

  gethostbyname

  inet_ntoa

  WSAStartup

  ioctlsocket

  recvfrom

  getsockopt

  __WSAFDIsSet

  accept

  inet_addr

  wininet

  InternetOpenUrlA

  DeleteUrlCacheEntry

  mpr

  WNetAddConnection2A

  oleaut32

  GetErrorInfo

  Sections

  .text

  Size: 736KB - Virtual size: 736KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 108KB - Virtual size: 108KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE