General

Malware Config

Signatures

Files

• 3c89b44aefb48d3458ec2de81a1f00564ef40e8ce5015b3e94cd320bcd9a9de2

  .exe windows x86

  7ff7f55e596ac9b5e2e2ae457580ef2b

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  GetNextDlgTabItem

  GetTabbedTextExtentA

  EnumPropsExW

  SetClipboardViewer

  IsZoomed

  CreateIconFromResource

  BringWindowToTop

  EnumChildWindows

  IsCharAlphaNumericW

  SetParent

  SetWindowsHookExA

  EnableMenuItem

  SetMenu

  DrawIcon

  GetNextDlgGroupItem

  UnregisterHotKey

  IsMenu

  SetMenuItemBitmaps

  WaitForInputIdle

  GetSystemMenu

  GetLastActivePopup

  MenuItemFromPoint

  PostMessageA

  IsWindow

  InsertMenuA

  UserHandleGrantAccess

  AnyPopup

  GetClassNameA

  ChildWindowFromPointEx

  RemoveMenu

  GetMessageW

  GetInputState

  VkKeyScanExA

  DestroyCursor

  TabbedTextOutW

  LockSetForegroundWindow

  DrawCaption

  PostMessageW

  HiliteMenuItem

  DragObject

  ShowCaret

  SendMessageCallbackA

  MapVirtualKeyExA

  DragDetect

  AnimateWindow

  shell32

  ord89

  gdi32

  GetPixel

  SetRectRgn

  DeleteMetaFile

  GetCharWidthA

  EnumMetaFile

  CreateEllipticRgn

  GetOutlineTextMetricsA

  GetDIBits

  GetWorldTransform

  GdiGetBatchLimit

  DeleteEnhMetaFile

  GetDeviceGammaRamp

  GetLogColorSpaceA

  GdiGradientFill

  PolylineTo

  SetDIBitsToDevice

  CopyMetaFileW

  GetTextFaceW

  ExtTextOutW

  kernel32

  LCMapStringA

  RtlUnwind

  HeapReAlloc

  VirtualAlloc

  Sleep

  HeapAlloc

  GetOEMCP

  GetACP

  GetCPInfo

  InitializeCriticalSection

  LoadLibraryExA

  MultiByteToWideChar

  OutputDebugStringA

  EnterCriticalSection

  LeaveCriticalSection

  GetSystemTimeAsFileTime

  GetCurrentProcessId

  GetTickCount

  QueryPerformanceCounter

  HeapFree

  VirtualFree

  HeapCreate

  HeapDestroy

  GetCurrentThreadId

  LCMapStringW

  GetStringTypeA

  GetStringTypeW

  GetLocaleInfoA

  VirtualProtect

  GetSystemInfo

  VirtualQuery

  GetFileSize

  GetCommMask

  GetCommandLineA

  CreateIoCompletionPort

  LocalUnlock

  UpdateResourceW

  SetStdHandle

  GetProcessId

  GetEnvironmentStrings

  GetHandleInformation

  OpenProcess

  DefineDosDeviceW

  FindVolumeClose

  GetFileInformationByHandle

  CreateFileMappingW

  QueryInformationJobObject

  FreeEnvironmentStringsA

  ClearCommError

  CheckRemoteDebuggerPresent

  GetVersionExA

  GetStartupInfoA

  TerminateProcess

  GetCurrentProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  GetProcAddress

  GetModuleHandleA

  ExitProcess

  WriteFile

  GetStdHandle

  GetModuleFileNameA

  FreeEnvironmentStringsW

  WideCharToMultiByte

  GetLastError

  GetEnvironmentStringsW

  SetHandleCount

  GetFileType

  DeleteCriticalSection

  GetModuleHandleW

  TlsGetValue

  TlsAlloc

  TlsSetValue

  TlsFree

  InterlockedIncrement

  SetLastError

  InterlockedDecrement

  Sections

  .text

  Size: 60KB - Virtual size: 59KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 9KB - Virtual size: 9KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 11KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 135KB - Virtual size: 135KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ