General

Malware Config

Signatures

Files

• 1f7ce43b4cd2e523ae2d979f12d375c2c0b637a4a960a470bd30e793712080e4

  .exe windows x86

  fac09a19d65ad56ee17b57aea913250d

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  FreeEnvironmentStringsA

  FreeEnvironmentStringsW

  GetEnvironmentStrings

  GetEnvironmentStringsW

  SetHandleCount

  GetStdHandle

  GetStringTypeA

  GetStringTypeW

  IsBadCodePtr

  UnhandledExceptionFilter

  CompareStringA

  CompareStringW

  SetEnvironmentVariableA

  LCMapStringW

  LCMapStringA

  SetUnhandledExceptionFilter

  IsBadWritePtr

  HeapCreate

  HeapDestroy

  GetProfileStringA

  InterlockedExchange

  WinExec

  GetWindowsDirectoryA

  GetVersionExA

  GetEnvironmentVariableA

  HeapSize

  GetACP

  GetFileType

  SetStdHandle

  TerminateProcess

  ExitProcess

  GetCommandLineA

  GetStartupInfoA

  GetLocalTime

  GetSystemTime

  GetTimeZoneInformation

  RaiseException

  RtlUnwind

  FileTimeToLocalFileTime

  FileTimeToSystemTime

  SystemTimeToFileTime

  LocalFileTimeToFileTime

  GetFileSize

  SizeofResource

  CopyFileA

  lstrlenW

  GetShortPathNameA

  GetThreadLocale

  GetStringTypeExA

  GetVolumeInformationA

  SetEndOfFile

  UnlockFile

  LockFile

  FlushFileBuffers

  SetFilePointer

  GetCurrentProcess

  DuplicateHandle

  GlobalSize

  GetOEMCP

  GetCPInfo

  GlobalFlags

  TlsGetValue

  LocalReAlloc

  TlsSetValue

  EnterCriticalSection

  GlobalReAlloc

  LeaveCriticalSection

  GlobalHandle

  DeleteCriticalSection

  TlsAlloc

  InitializeCriticalSection

  GetProcessVersion

  LocalAlloc

  LocalLock

  LocalUnlock

  GetDiskFreeSpaceA

  GetFileTime

  SetFileTime

  GetFullPathNameA

  GetLastError

  GetCurrentThread

  GetModuleFileNameA

  SetLastError

  lstrcmpA

  FormatMessageA

  LocalFree

  WritePrivateProfileStringA

  GetPrivateProfileStringA

  GetPrivateProfileIntA

  GlobalFree

  GetTickCount

  GetProfileIntA

  MultiByteToWideChar

  WideCharToMultiByte

  InterlockedDecrement

  InterlockedIncrement

  FindResourceA

  LoadResource

  LockResource

  GetVersion

  GlobalGetAtomNameA

  lstrcmpiA

  GlobalAddAtomA

  GlobalFindAtomA

  GlobalDeleteAtom

  GetModuleHandleA

  GetCurrentThreadId

  Sleep

  OutputDebugStringA

  FreeLibrary

  IsBadReadPtr

  LoadLibraryA

  GetProcAddress

  VirtualFree

  VirtualProtect

  VirtualAlloc

  HeapReAlloc

  HeapAlloc

  GetProcessHeap

  HeapFree

  GetCurrentDirectoryA

  lstrcpynA

  GlobalAlloc

  MulDiv

  lstrcpyA

  lstrcatA

  GetTempFileNameA

  WriteFile

  FindFirstFileA

  DeleteFileA

  MoveFileA

  FindClose

  GetFileAttributesA

  CreateFileA

  ReadFile

  CloseHandle

  lstrlenA

  GlobalLock

  GlobalUnlock

  user32

  DestroyIcon

  CharNextA

  CopyAcceleratorTableA

  GetNextDlgGroupItem

  GetDCEx

  LockWindowUpdate

  InvertRect

  RegisterClipboardFormatA

  DestroyCursor

  LoadStringA

  EndDialog

  GetActiveWindow

  CreateDialogIndirectParamA

  InflateRect

  PtInRect

  GetMenuCheckMarkDimensions

  LoadBitmapA

  GetMenuState

  ModifyMenuA

  SetMenuItemBitmaps

  CheckMenuItem

  EnableMenuItem

  GetNextDlgTabItem

  IsWindowEnabled

  ShowWindow

  MoveWindow

  SetWindowTextA

  IsDialogMessageA

  SetDlgItemTextA

  LoadIconA

  PostMessageA

  SendDlgItemMessageA

  MapWindowPoints

  PeekMessageA

  DispatchMessageA

  SetActiveWindow

  SetFocus

  EqualRect

  DeferWindowPos

  BeginDeferWindowPos

  CopyRect

  EndDeferWindowPos

  IsWindowVisible

  ScrollWindow

  GetScrollInfo

  SetScrollInfo

  ShowScrollBar

  GetScrollRange

  SetScrollRange

  GetScrollPos

  SetScrollPos

  GetTopWindow

  MessageBoxA

  GetCapture

  WinHelpA

  wsprintfA

  GetClassInfoA

  RegisterClassA

  GetMenu

  FindWindowA

  GetMenuItemID

  TrackPopupMenu

  GetWindowTextLengthA

  GetWindowTextA

  DestroyWindow

  CreateWindowExA

  SetWindowsHookExA

  CallNextHookEx

  GetClassLongA

  DeleteMenu

  UnhookWindowsHookEx

  GetPropA

  CallWindowProcA

  RemovePropA

  DefWindowProcA

  GetMessageTime

  GetMessagePos

  GetLastActivePopup

  GetForegroundWindow

  SetForegroundWindow

  GetWindow

  GetWindowLongA

  SetWindowLongA

  SetWindowPos

  GetSysColorBrush

  IntersectRect

  SystemParametersInfoA

  GetWindowPlacement

  GetWindowRect

  GetDlgCtrlID

  IsIconic

  GetFocus

  IsChild

  AdjustWindowRectEx

  GetSystemMetrics

  PostThreadMessageA

  GetInputState

  GetMessageA

  ClientToScreen

  LoadMenuA

  GetAsyncKeyState

  UpdateWindow

  GetClientRect

  HideCaret

  ShowCaret

  SetCaretPos

  ExcludeUpdateRgn

  DrawFocusRect

  DefDlgProcA

  DefFrameProcA

  IsWindowUnicode

  CreateMenu

  MapVirtualKeyA

  GetKeyNameTextA

  GetSubMenu

  GetParent

  GetClipboardData

  OpenClipboard

  EmptyClipboard

  SetClipboardData

  CloseClipboard

  IsClipboardFormatAvailable

  GetKeyState

  SetCapture

  SetTimer

  TranslateAcceleratorA

  LoadAcceleratorsA

  ReleaseCapture

  KillTimer

  GetMenuStringA

  InsertMenuA

  CharUpperA

  GetMenuItemCount

  GetClassNameA

  GetCursorPos

  ScreenToClient

  LoadCursorA

  SetCursor

  EnableScrollBar

  GetDlgItem

  GetDC

  ReleaseDC

  SendMessageA

  InvalidateRect

  IsWindow

  SetMenuItemInfoA

  DrawEdge

  DrawStateA

  GetMenuItemInfoA

  DrawIconEx

  CopyIcon

  CreateCaret

  EnableWindow

  GetSysColor

  OffsetRect

  AppendMenuA

  SetParent

  IsZoomed

  MessageBeep

  GetTabbedTextExtentA

  WindowFromPoint

  WaitMessage

  MapDialogRect

  SetWindowContextHelpId

  ShowOwnedPopups

  TranslateMessage

  ValidateRect

  PostQuitMessage

  DefMDIChildProcA

  DrawMenuBar

  TranslateMDISysAccel

  SetRect

  wvsprintfA

  IsRectEmpty

  RedrawWindow

  GrayStringA

  DrawTextA

  TabbedTextOutA

  EndPaint

  BeginPaint

  GetWindowDC

  BringWindowToTop

  UnpackDDElParam

  ReuseDDElParam

  RegisterWindowMessageA

  GetSystemMenu

  SetMenu

  DestroyMenu

  GetDesktopWindow

  SetRectEmpty

  SetPropA

  FillRect

  gdi32

  SetRectRgn

  CombineRgn

  CreateRectRgn

  CreateRectRgnIndirect

  ExtTextOutA

  SaveDC

  RestoreDC

  SelectObject

  SetBkMode

  SetPolyFillMode

  SetROP2

  SetStretchBltMode

  SetMapMode

  SetViewportOrgEx

  OffsetViewportOrgEx

  SetViewportExtEx

  ScaleViewportExtEx

  SetWindowOrgEx

  SetWindowExtEx

  ScaleWindowExtEx

  SelectClipRgn

  ExcludeClipRect

  IntersectClipRect

  MoveToEx

  LineTo

  SetTextAlign

  GetCurrentPositionEx

  CreatePatternBrush

  GetViewportExtEx

  GetWindowExtEx

  CreateSolidBrush

  PtVisible

  RectVisible

  TextOutA

  Escape

  GetTextMetricsA

  GetCharWidthA

  StretchDIBits

  CopyMetaFileA

  LPtoDP

  GetBkColor

  GetNearestColor

  GetTextColor

  GetStretchBltMode

  GetPolyFillMode

  GetTextAlign

  GetBkMode

  GetROP2

  GetTextFaceA

  GetWindowOrgEx

  DeleteObject

  GetMapMode

  DeleteDC

  CreateDCA

  SetAbortProc

  StartDocA

  StartPage

  EndPage

  EndDoc

  AbortDoc

  GetViewportOrgEx

  CreatePen

  DPtoLP

  Rectangle

  GetStockObject

  PatBlt

  CreateBitmap

  SetBkColor

  SetTextColor

  GetClipBox

  CreateFontA

  GetObjectA

  GetDeviceCaps

  GetTextExtentPoint32A

  CreateFontIndirectA

  Ellipse

  GetTextExtentPointA

  CreateDIBitmap

  CreateCompatibleDC

  CreateCompatibleBitmap

  BitBlt

  comdlg32

  ReplaceTextA

  GetOpenFileNameA

  GetSaveFileNameA

  GetFileTitleA

  ChooseFontA

  CommDlgExtendedError

  PrintDlgA

  PageSetupDlgA

  FindTextA

  winspool.drv

  DocumentPropertiesA

  ClosePrinter

  OpenPrinterA

  advapi32

  RegCloseKey

  RegCreateKeyExA

  RegQueryValueExA

  RegSetValueExA

  RegDeleteValueA

  RegDeleteKeyA

  RegQueryValueA

  RegEnumKeyA

  RegOpenKeyA

  SetFileSecurityA

  GetFileSecurityA

  RegSetValueA

  RegCreateKeyA

  RegOpenKeyExA

  shell32

  SHGetFileInfoA

  DragQueryFileA

  DragFinish

  DragAcceptFiles

  ShellExecuteA

  ExtractIconA

  comctl32

  ImageList_Draw

  ord17

  ImageList_Destroy

  ImageList_Create

  ImageList_LoadImageA

  ImageList_GetIcon

  ImageList_AddMasked

  ImageList_GetImageInfo

  ImageList_GetImageCount

  oledlg

  ord8

  ole32

  OleIsCurrentClipboard

  DoDragDrop

  CLSIDFromProgID

  CLSIDFromString

  CreateStreamOnHGlobal

  OleDuplicateData

  CoTaskMemAlloc

  OleFlushClipboard

  RevokeDragDrop

  CoLockObjectExternal

  RegisterDragDrop

  OleGetClipboard

  ReleaseStgMedium

  CoTaskMemFree

  CoRevokeClassObject

  CoGetClassObject

  StgOpenStorageOnILockBytes

  StgCreateDocfileOnILockBytes

  CreateILockBytesOnHGlobal

  OleInitialize

  OleUninitialize

  CoFreeUnusedLibraries

  CoRegisterMessageFilter

  olepro32

  ord253

  oleaut32

  SysAllocStringByteLen

  VariantTimeToSystemTime

  VariantClear

  SysAllocStringLen

  SysFreeString

  VariantCopy

  VariantChangeType

  SysAllocString

  SysStringLen

  wsock32

  WSAGetLastError

  WSASetLastError

  WSACleanup

  shutdown

  ioctlsocket

  WSAStartup

  accept

  connect

  sendto

  recvfrom

  socket

  inet_ntoa

  WSAAsyncSelect

  send

  recv

  gethostbyname

  closesocket

  htonl

  htons

  bind

  Sections

  .text

  Size: 370KB - Virtual size: 370KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 91KB - Virtual size: 91KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 422KB - Virtual size: 441KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 27KB - Virtual size: 27KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ