General

Malware Config

Signatures

Files

• c6b2d57e8ce70dae5585a096e2e17619.exe

  .exe windows x86

  723cc953b12cb6b338f21949bdcae860

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_BYTES_REVERSED_LO

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DEBUG_STRIPPED

  Imports

  kernel32

  GetVersionExA

  MulDiv

  SetEndOfFile

  CreateFileW

  GetModuleFileNameW

  CopyFileExW

  InterlockedIncrement

  MoveFileA

  GetVersion

  GetFileAttributesA

  SetErrorMode

  GetModuleFileNameA

  GetOEMCP

  InterlockedExchange

  EnterCriticalSection

  GetFileType

  FreeEnvironmentStringsA

  GetCPInfo

  CopyFileW

  GetStringTypeW

  CreateProcessW

  WriteProcessMemory

  SetEnvironmentVariableA

  LCMapStringW

  OpenProcess

  CreateDirectoryW

  FreeEnvironmentStringsW

  CloseHandle

  SetStdHandle

  ReadProcessMemory

  WriteConsoleA

  GetLastError

  DeleteFileA

  FindFirstFileW

  InitializeCriticalSection

  QueryPerformanceFrequency

  LoadLibraryExW

  FindFirstChangeNotificationW

  RtlUnwind

  LeaveCriticalSection

  DeleteCriticalSection

  GetModuleHandleA

  TlsGetValue

  GetProcAddress

  FindFirstFileA

  GetCurrentProcessId

  GetModuleHandleW

  GetStartupInfoA

  FlushFileBuffers

  QueryPerformanceCounter

  InterlockedDecrement

  RemoveDirectoryA

  GetProcessHeap

  CreateThread

  FindFirstFileExA

  GetCommandLineA

  WaitForSingleObject

  TlsSetValue

  ReadFile

  IsValidCodePage

  GetCurrentProcess

  WriteFile

  GetCommandLineW

  TlsFree

  FreeLibrary

  SetUnhandledExceptionFilter

  GetConsoleMode

  VirtualFree

  CompareStringW

  GetACP

  CreateDirectoryExA

  FindNextFileA

  HeapSize

  LoadLibraryExA

  InterlockedCompareExchange

  SetThreadPriority

  GetThreadPriority

  CreateDirectoryA

  GetFileAttributesExW

  CreateEventA

  FindNextFileW

  HeapCreate

  DeleteFileW

  SetFilePointer

  RemoveDirectoryW

  CreateProcessA

  MoveFileExW

  WaitForMultipleObjects

  ResetEvent

  MoveFileW

  LoadLibraryW

  CreateFileA

  LoadLibraryA

  SetEvent

  ExitProcess

  HeapAlloc

  HeapReAlloc

  RaiseException

  ddraw

  GetSurfaceFromDC

  DSoundHelp

  DDInternalLock

  comdlg32

  dwOKSubclass

  dwLBSubclass

  GetSaveFileNameW

  GetOpenFileNameA

  CommDlgExtendedError

  Ssync_ANSI_UNICODE_Struct_For_WOW

  GetOpenFileNameW

  winmm

  mciGetErrorStringA

  mmioDescend

  timeSetEvent

  mciSetDriverData

  mmioAscend

  timeBeginPeriod

  mmioOpenA

  mmioRead

  mciSendStringA

  GetDriverModuleHandle

  timeEndPeriod

  mmioFlush

  midiOutPrepareHeader

  shell32

  SHFileOperationA

  SHGetSpecialFolderPathA

  Shell_NotifyIconW

  SHGetFileInfoW

  DragQueryFileA

  ShellExecuteExW

  SHBrowseForFolderA

  comctl32

  InitMUILanguage

  ImageList_GetImageInfo

  CreatePropertySheetPageW

  PropertySheetW

  ord2

  FlatSB_ShowScrollBar

  DestroyPropertySheetPage

  ImageList_BeginDrag

  imm32

  ImmGetStatusWindowPos

  ImmSetCompositionWindow

  ImmGetProperty

  advapi32

  LsaOpenTrustedDomain

  IsTextUnicode

  dinput

  DirectInputCreateA

  DirectInputCreateEx

  DirectInputCreateW

  dsound

  ord12

  ord9

  ord6

  ord1

  oleaut32

  SysAllocString

  VarFormatCurrency

  SysFreeString

  gdi32

  RestoreDC

  DeleteObject

  user32

  MapWindowPoints

  GetGuiResources

  GetIconInfo

  SetDeskWallpaper

  msvfw32

  ICRemove

  DrawDibChangePalette

  DrawDibEnd

  ICSendMessage

  ICDrawBegin

  avifil32

  AVIFileInfoA

  AVISaveA

  AVIFileWriteData

  EditStreamSetInfoA

  IID_IAVIStream

  AVIStreamReadFormat

  AVIStreamTimeToSample

  AVIFileInfoW

  AVIFileCreateStreamW

  EditStreamSetInfoW

  AVIStreamEndStreaming

  AVIStreamAddRef

  AVIFileOpenW

  EditStreamClone

  AVIStreamBeginStreaming

  EditStreamCut

  AVISaveW

  AVISaveVW

  AVIMakeCompressedStream

  AVIStreamInfoW

  AVIStreamInfoA

  AVIStreamGetFrameOpen

  AVIFileGetStream

  AVISaveVA

  AVIBuildFilterW

  AVIMakeFileFromStreams

  CreateEditableStream

  AVIClearClipboard

  EditStreamSetNameW

  AVIFileAddRef

  AVIStreamOpenFromFileW

  AVIFileExit

  AVIFileInit

  AVIStreamWrite

  EditStreamSetNameA

  AVIFileCreateStreamA

  AVISaveOptionsFree

  AVIFileEndRecord

  AVIGetFromClipboard

  AVISaveOptions

  AVIStreamRelease

  EditStreamPaste

  AVIStreamCreate

  AVIStreamSetFormat

  AVIStreamFindSample

  AVIStreamGetFrameClose

  IID_IAVIFile

  AVIStreamWriteData

  AVIStreamLength

  AVIFileRelease

  AVIStreamRead

  AVIStreamStart

  EditStreamCopy

  IID_IGetFrame

  AVIFileOpenA

  AVIMakeStreamFromClipboard

  AVIFileReadData

  AVIStreamOpenFromFileA

  Sections

  .text

  Size: 87KB - Virtual size: 88KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 77KB - Virtual size: 77KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdata

  Size: 329KB - Virtual size: 328KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_CNT_UNINITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .bss

  Size: - Virtual size: 20KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .idata

  Size: 6KB - Virtual size: 6KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .CRT

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .tls

  Size: 512B - Virtual size: 32B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 20KB - Virtual size: 20KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE