General

Malware Config

Signatures

Files

• SecuriteInfo.com.Variant.Lazy.263141.5523.6639.exe

  .exe windows x86

  d6ba3dcacec1706e5d05afbe5e1bfccc

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  shlwapi

  StrRChrIA

  UrlIsNoHistoryW

  ChrCmpIA

  UrlCanonicalizeW

  PathCommonPrefixW

  StrChrW

  StrCSpnW

  SHEnumKeyExA

  GetMenuPosFromID

  SHRegCreateUSKeyW

  kernel32

  GetStdHandle

  SetStdHandle

  GetCommandLineW

  GetEnvironmentVariableW

  SetEnvironmentVariableW

  ExpandEnvironmentStringsW

  SetCurrentDirectoryW

  GetCurrentDirectoryW

  SearchPathW

  CreateFileW

  FindClose

  FindFirstFileW

  GetFileAttributesW

  GetFileSize

  GetFullPathNameW

  GetTempFileNameW

  ReadFile

  SetFilePointer

  WriteFile

  GetTempPathW

  CloseHandle

  DuplicateHandle

  GetLastError

  WaitForSingleObject

  GetCurrentProcess

  ExitProcess

  GetExitCodeProcess

  CreateProcessW

  GetStartupInfoW

  GetSystemDirectoryW

  VirtualAlloc

  GetModuleHandleW

  LocalAlloc

  LocalFree

  FormatMessageW

  lstrcmpiW

  lstrcpynW

  lstrcpyW

  lstrcatW

  lstrlenW

  IsBadStringPtrW

  GetDateFormatW

  GetTimeFormatW

  CompareStringW

  GetStringTypeW

  WideCharToMultiByte

  EnumSystemCodePagesW

  GetConsoleCP

  GetConsoleOutputCP

  ReadConsoleW

  WriteConsoleW

  SetConsoleTitleW

  GetConsoleWindow

  GetEnvironmentStringsW

  GetCPInfo

  GetOEMCP

  GetACP

  IsValidCodePage

  FindNextFileW

  FindFirstFileExW

  GetFileType

  HeapAlloc

  HeapFree

  LCMapStringW

  GetProcessHeap

  DecodePointer

  SetFilePointerEx

  HeapSize

  FreeEnvironmentStringsW

  GetCommandLineA

  GetModuleHandleExW

  GetModuleFileNameW

  RaiseException

  LoadLibraryExW

  GetProcAddress

  FreeLibrary

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  InitializeCriticalSectionAndSpinCount

  DeleteCriticalSection

  LeaveCriticalSection

  EnterCriticalSection

  SetLastError

  RtlUnwind

  HeapReAlloc

  FlushFileBuffers

  GetConsoleMode

  MultiByteToWideChar

  QueryPerformanceCounter

  GetCurrentProcessId

  GetCurrentThreadId

  GetSystemTimeAsFileTime

  InitializeSListHead

  IsDebuggerPresent

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsProcessorFeaturePresent

  TerminateProcess

  winspool.drv

  EnumMonitorsA

  AddJobA

  DeletePortA

  AbortPrinter

  ord215

  ord100

  ord206

  DeviceCapabilitiesW

  shell32

  ShellHookProc

  SHGetDataFromIDListA

  SHGetFileInfoW

  FindExecutableW

  SHGetDiskFreeSpaceA

  Shell_NotifyIconW

  gdi32

  GdiPlayPrivatePageEMF

  CopyEnhMetaFileA

  StrokePath

  GetBitmapBits

  GetLayout

  CreateBrushIndirect

  rtutils

  RouterLogDeregisterA

  TraceDeregisterA

  TraceDeregisterW

  LogEventA

  TraceRegisterExW

  setupapi

  SetupDiGetINFClassA

  SetupOpenAppendInfFileA

  SetupDiGetSelectedDriverA

  SetupRemoveFromSourceListW

  user32

  ShowWindow

  wsprintfW

  LoadStringW

  IsCharAlphaNumericW

  CharUpperBuffW

  IsCharAlphaW

  advapi32

  RegQueryValueExW

  RegOpenKeyExW

  RegCloseKey

  Sections

  .text

  Size: 83KB - Virtual size: 83KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 31KB - Virtual size: 30KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 2KB - Virtual size: 57KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 512B - Virtual size: 480B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 5KB - Virtual size: 5KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ