General

Malware Config

Signatures

Files

• 03ba732eb5d3a18a1a2365ca01d6df9d33327eb5ff9a7b607589513753742143

  .exe windows x86

  1c9032e8b3bc75aa50d1a71abc8956a7

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  wsock32

  ord1142

  nddeapi

  ord509

  ord512

  ord510

  ord605

  ord601

  user32

  UpdateWindow

  LoadIconA

  RegisterClassExA

  ShowWindow

  GetMessageA

  TranslateAcceleratorA

  TranslateMessage

  DispatchMessageA

  DestroyWindow

  CreateWindowExA

  LoadAcceleratorsA

  DefWindowProcA

  PostQuitMessage

  netapi32

  NetServerSetInfo

  NetShareEnum

  NetServerTransportEnum

  ole32

  HGLOBAL_UserMarshal

  CoCreateFreeThreadedMarshaler

  MonikerCommonPrefixWith

  DoDragDrop

  OleConvertOLESTREAMToIStorage

  HACCEL_UserMarshal

  CreateFileMoniker

  CoMarshalHresult

  OleCreateEx

  CoLoadLibrary

  HACCEL_UserFree

  CoRevokeClassObject

  HWND_UserUnmarshal

  CreateStdProgressIndicator

  CreatePointerMoniker

  HBITMAP_UserMarshal

  kernel32

  GetStartupInfoA

  GetModuleHandleA

  VirtualAlloc

  msvcrt

  _exit

  _acmdln

  __getmainargs

  _initterm

  __setusermatherr

  _XcptFilter

  __p__commode

  __p__fmode

  __set_app_type

  _except_handler3

  _controlfp

  __dllonexit

  _onexit

  _adjust_fdiv

  exit

  msi

  ord63

  Sections

  .text

  Size: 16KB - Virtual size: 14KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 4KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 4KB - Virtual size: 1.8MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 28KB - Virtual size: 24KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ