General

Malware Config

Signatures

Files

• fa471f2defd3886c6fe98ced87b1a9bb632f7e3f1611393e68c92eab46adbff1

  .exe windows x86

  af874a07793accc3bdd0aa4640d2bda1

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_NO_BIND

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_SYSTEM

  Imports

  kernel32

  CreateFileW

  ReadFile

  FlushFileBuffers

  GetStringTypeW

  LCMapStringW

  WriteConsoleW

  SetStdHandle

  HeapReAlloc

  RtlUnwind

  HeapSize

  IsValidCodePage

  GetOEMCP

  GetACP

  GetCPInfo

  GetConsoleMode

  GetConsoleCP

  SetFilePointer

  Sleep

  GetSystemTimeAsFileTime

  GetCurrentProcessId

  QueryPerformanceCounter

  HeapCreate

  GetFileType

  SetHandleCount

  FreeEnvironmentStringsW

  GetModuleFileNameA

  GetModuleFileNameW

  GetStdHandle

  InterlockedDecrement

  GetCurrentThreadId

  SetLastError

  InterlockedIncrement

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  LoadLibraryW

  EnterCriticalSection

  LeaveCriticalSection

  DeleteCriticalSection

  InitializeCriticalSectionAndSpinCount

  HeapFree

  EncodePointer

  IsProcessorFeaturePresent

  IsDebuggerPresent

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  GetCurrentProcess

  TerminateProcess

  RaiseException

  LoadLibraryA

  GetProcAddress

  GetLastError

  ReleaseActCtx

  DeactivateActCtx

  GlobalUnlock

  MultiByteToWideChar

  lstrcatA

  CreateActCtxA

  MulDiv

  FreeLibrary

  CreateEventA

  WideCharToMultiByte

  ActivateActCtx

  GetTickCount

  FreeEnvironmentStringsA

  WaitForSingleObject

  GlobalLock

  GetEnvironmentStringsW

  GetStartupInfoW

  HeapSetInformation

  GetCommandLineA

  DecodePointer

  ExitProcess

  GetModuleHandleW

  HeapAlloc

  WriteFile

  CloseHandle

  user32

  SetDlgItemTextA

  EnableWindow

  SetWindowTextA

  GetSystemMetrics

  SystemParametersInfoA

  GetWindow

  IsRectEmpty

  EndPaint

  GetMessageA

  CloseClipboard

  GetClassNameA

  SendDlgItemMessageA

  KillTimer

  GetPropA

  LoadStringA

  IsClipboardFormatAvailable

  GetClientRect

  SendMessageA

  BeginPaint

  GetMonitorInfoA

  GetDC

  TranslateMessage

  GetForegroundWindow

  SetDlgItemInt

  GetWindowTextA

  MessageBoxA

  InvalidateRect

  AppendMenuW

  GetClipboardData

  CreateWindowExA

  GetClassNameW

  ReleaseDC

  TranslateAcceleratorA

  MonitorFromWindow

  GetDlgItem

  DefWindowProcA

  GetDesktopWindow

  CheckDlgButton

  LoadAcceleratorsA

  ShowWindow

  IsDlgButtonChecked

  CreateDialogParamW

  DispatchMessageA

  OpenClipboard

  gdi32

  SetWindowOrgEx

  BitBlt

  SetTextColor

  DeleteDC

  DeleteObject

  SelectObject

  CreateCompatibleDC

  CreateCompatibleBitmap

  CreateFontW

  EnumFontFamiliesA

  GetDeviceCaps

  advapi32

  CreatePrivateObjectSecurity

  AdjustTokenGroups

  shell32

  SHGetPathFromIDListA

  ole32

  CoTaskMemFree

  CoInitialize

  CoUninitialize

  CoCreateInstance

  CoTaskMemAlloc

  winmm

  mmioClose

  mmioWrite

  waveOutGetNumDevs

  mmioCreateChunk

  mmioOpenA

  shlwapi

  StrChrA

  StrToIntA

  activeds

  ord17

  Sections

  .text

  Size: 57KB - Virtual size: 56KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 22KB - Virtual size: 22KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 9KB - Virtual size: 16KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .ltdata

  Size: 195KB - Virtual size: 194KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 21KB - Virtual size: 21KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 9KB - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ