General

Malware Config

Signatures

Files

• 61af296315100576566ffb596f2ca367845e70235b1915afcb5fec2916939d04

  .exe windows x86

  47657811ea6dc53e52c759fc345e7145

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  SetRectEmpty

  FindWindowW

  MoveWindow

  RemovePropA

  DrawIcon

  ClientToScreen

  GetDlgItem

  GetWindowLongA

  AttachThreadInput

  EnableScrollBar

  GetClassNameA

  CreateDialogIndirectParamW

  ShowCursor

  PostThreadMessageA

  GetCapture

  DestroyCursor

  MapVirtualKeyExW

  ShowWindow

  MapWindowPoints

  SetWindowTextA

  SystemParametersInfoA

  AdjustWindowRect

  GetDlgItemTextW

  GetMenuState

  BringWindowToTop

  RegisterHotKey

  OemToCharBuffA

  CreateDialogIndirectParamA

  CharLowerBuffA

  GetSysColorBrush

  GetDC

  EnableWindow

  GetCursorPos

  IsChild

  DrawTextW

  GetForegroundWindow

  GetWindowTextLengthA

  CopyImage

  GetKeyNameTextW

  DdeConnect

  VkKeyScanW

  GetMessagePos

  GetSysColor

  PostMessageA

  SetClipboardData

  SetWindowLongA

  CreateWindowExW

  MessageBeep

  DrawTextExA

  GetScrollPos

  GetProcessWindowStation

  BeginDeferWindowPos

  SystemParametersInfoW

  ChangeClipboardChain

  SetCursor

  GetKeyboardState

  InvalidateRect

  DialogBoxIndirectParamW

  DialogBoxParamA

  GetLastActivePopup

  PostMessageW

  SetPropA

  FindWindowExW

  SetClassLongA

  FindWindowExA

  LoadIconA

  GetDlgItemTextA

  RegisterClipboardFormatW

  IsWindowVisible

  GetClassInfoW

  GetMenuItemID

  LockWindowUpdate

  DestroyAcceleratorTable

  CharToOemA

  WaitMessage

  GetSystemMetrics

  LoadAcceleratorsA

  DefFrameProcW

  DestroyMenu

  TranslateAcceleratorW

  TrackPopupMenu

  AppendMenuW

  GetClipboardData

  SetForegroundWindow

  IsWindow

  GetScrollRange

  RemoveMenu

  EnumDisplaySettingsW

  SetRect

  IsWindowEnabled

  SetWindowPos

  SetWindowLongW

  GetParent

  CreateDialogParamA

  SetCapture

  CloseClipboard

  wvsprintfA

  SetDlgItemTextW

  SetActiveWindow

  CharNextW

  MessageBoxA

  LoadCursorA

  SetClassLongW

  GetWindowTextA

  KillTimer

  GetDlgCtrlID

  TrackPopupMenuEx

  ChildWindowFromPointEx

  IsClipboardFormatAvailable

  SetMenu

  LoadImageA

  ScreenToClient

  advapi32

  RegSetValueExW

  SetSecurityDescriptorOwner

  GetAce

  DeleteService

  RegisterEventSourceA

  QueryServiceStatus

  RegOpenKeyExA

  SetSecurityDescriptorSacl

  StartServiceCtrlDispatcherA

  GetKernelObjectSecurity

  RegCreateKeyA

  AllocateAndInitializeSid

  RegQueryValueW

  RegQueryValueA

  OpenProcessToken

  OpenSCManagerW

  RevertToSelf

  RegRestoreKeyW

  MakeAbsoluteSD

  GetSidIdentifierAuthority

  RegCloseKey

  ReportEventA

  RegConnectRegistryA

  CreateServiceW

  GetSidSubAuthorityCount

  RegSetValueExA

  RegSetValueA

  OpenSCManagerA

  CreateProcessAsUserW

  RegCreateKeyExW

  SetFileSecurityW

  RegDeleteKeyA

  CloseServiceHandle

  OpenThreadToken

  QueryServiceConfigW

  kernel32

  DeleteFileA

  CreateEventA

  QueryActCtxW

  EnumSystemLocalesW

  FatalAppExitA

  Sections

  .text

  Size: 100KB - Virtual size: 97KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 8KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 20KB - Virtual size: 135KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 60KB - Virtual size: 58KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ