General

Malware Config

Signatures

Files

• F8EAD10CD80934A84D94736726E5F3C2098731DF934E5.exe

  .exe windows x86

  7c019bfd9cbcb09ec79f787dd811881a

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  UnhandledExceptionFilter

  GetModuleFileNameA

  GetLocaleInfoA

  _lwrite

  GetCommTimeouts

  GetSystemDirectoryW

  CreateEventA

  WriteConsoleW

  VerifyVersionInfoA

  BuildCommDCBA

  AddConsoleAliasW

  HeapLock

  PeekConsoleInputW

  EnumDateFormatsW

  ResetEvent

  UnregisterWaitEx

  LoadLibraryA

  InterlockedDecrement

  WaitNamedPipeW

  FindResourceExW

  VirtualQuery

  GetFirmwareEnvironmentVariableW

  GetModuleFileNameW

  BeginUpdateResourceW

  GetConsoleAliasExesLengthW

  DeleteFileA

  WriteConsoleOutputCharacterW

  WriteConsoleA

  LocalAlloc

  GetProcAddress

  GetUserDefaultLangID

  GetConsoleAliasesLengthA

  GetSystemWindowsDirectoryA

  WritePrivateProfileStringA

  EnumResourceNamesW

  SearchPathW

  CreateDirectoryA

  RemoveDirectoryW

  AreFileApisANSI

  GetCurrentDirectoryW

  SetFileAttributesW

  CreateMutexA

  GetNumaHighestNodeNumber

  GetLongPathNameA

  VirtualProtect

  SetLastError

  GetThreadLocale

  GetCurrentProcessId

  GetComputerNameExA

  FindNextFileA

  BuildCommDCBAndTimeoutsW

  EnterCriticalSection

  EnumCalendarInfoA

  _lopen

  GetConsoleAliasExesW

  GlobalMemoryStatus

  ReadConsoleOutputCharacterW

  EnumSystemLocalesW

  GetComputerNameA

  GetLastError

  EnumTimeFormatsA

  LoadLibraryW

  GetStringTypeW

  LCMapStringW

  GetProcessHeap

  HeapReAlloc

  HeapFree

  HeapAlloc

  GetModuleHandleW

  ExitProcess

  DecodePointer

  GetCommandLineA

  HeapSetInformation

  GetStartupInfoW

  IsProcessorFeaturePresent

  SetFilePointer

  LeaveCriticalSection

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  EncodePointer

  TerminateProcess

  GetCurrentProcess

  InitializeCriticalSectionAndSpinCount

  RtlUnwind

  HeapCreate

  WriteFile

  GetStdHandle

  DeleteCriticalSection

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  InterlockedIncrement

  GetCurrentThreadId

  ReadFile

  WideCharToMultiByte

  GetConsoleCP

  GetConsoleMode

  SetHandleCount

  GetFileType

  CloseHandle

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  QueryPerformanceCounter

  GetTickCount

  GetSystemTimeAsFileTime

  SetStdHandle

  FlushFileBuffers

  Sleep

  CreateFileA

  GetCPInfo

  GetACP

  GetOEMCP

  IsValidCodePage

  HeapSize

  MultiByteToWideChar

  SetEndOfFile

  CreateFileW

  advapi32

  OpenEventLogA

  ole32

  OleUninitialize

  winhttp

  WinHttpCloseHandle

  msimg32

  TransparentBlt

  Sections

  .text

  Size: 114KB - Virtual size: 113KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 11KB - Virtual size: 2.1MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .guti

  Size: 3KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .sefah

  Size: 1024B - Virtual size: 624B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 83KB - Virtual size: 83KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ