General

Malware Config

Signatures

Files

• d8f4765e0e0c32e371038daec2f0e4c30bfa905ee3a6b5a9e51cca896276546e

  .exe windows x86

  6f8ae8d18fbe1f66868a15d53bee4c54

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  SendMessageTimeoutW

  GetSystemMenu

  CreateWindowExW

  DialogBoxParamW

  RegisterClassExW

  ChangeMenuW

  GetWindowRgn

  ClipCursor

  ToAscii

  CreateIconFromResource

  IsMenu

  CreateIcon

  EnumDisplaySettingsW

  shell32

  Shell_NotifyIconW

  ExtractIconExW

  DragFinish

  DragQueryPoint

  ExtractIconA

  ExtractIconExA

  ExtractAssociatedIconA

  DuplicateIcon

  ole32

  CoUninitialize

  CoInitialize

  StringFromGUID2

  CoCreateInstance

  OleUninitialize

  OleInitialize

  advapi32

  RegCreateKeyExW

  RegOpenKeyW

  RegQueryValueW

  RegSetValueW

  RegDeleteKeyW

  RegEnumKeyExW

  RegCloseKey

  RegQueryValueExW

  RegSetValueExW

  RegOpenKeyExW

  RegDeleteValueW

  RegCreateKeyW

  RegQueryInfoKeyW

  gdi32

  AddFontResourceA

  AngleArc

  CheckColorsInGamut

  CreateBitmap

  ColorMatchToTarget

  CombineTransform

  dbghelp

  SymGetLineNext64

  GetTimestampForLoadedLibrary

  SearchTreeForFile

  ImageDirectoryEntryToData

  FindExecutableImageEx

  MapDebugInformation

  SymGetModuleInfoW64

  version

  GetFileVersionInfoW

  VerQueryValueW

  GetFileVersionInfoSizeW

  winmm

  sndPlaySoundW

  kernel32

  LocalFree

  FormatMessageA

  SetEvent

  OpenEventA

  RemoveDirectoryA

  GetTempFileNameA

  GetTempPathA

  SetFileAttributesA

  GetLastError

  FindResourceExA

  FindResourceA

  LoadResource

  LockResource

  HeapFree

  HeapAlloc

  GetCommandLineA

  lstrcpyA

  ExitProcess

  HeapCreate

  SetComputerNameExA

  DebugActiveProcess

  GetFileSizeEx

  SetCalendarInfoW

  InterlockedIncrement

  InterlockedDecrement

  LoadLibraryExA

  VirtualProtect

  CopyFileA

  GetStringTypeW

  GetShortPathNameA

  GetWindowsDirectoryA

  GetFileAttributesA

  CreateDirectoryA

  SetLastError

  lstrlenA

  DeleteFileW

  SetFileAttributesW

  FindFirstFileW

  RemoveDirectoryW

  FormatMessageW

  CreateEventW

  GetWindowsDirectoryW

  GetCommandLineW

  SetEnvironmentVariableA

  CompareStringW

  CompareStringA

  CreateFileA

  GetTimeZoneInformation

  WriteConsoleW

  GetConsoleOutputCP

  WriteConsoleA

  RaiseException

  SetStdHandle

  IsValidCodePage

  IsValidLocale

  EnumSystemLocalesA

  GetLocaleInfoA

  GetVersionExA

  LoadLibraryA

  LoadLibraryW

  GetModuleHandleA

  GetModuleHandleW

  GetModuleFileNameW

  GetProcAddress

  GetFileAttributesW

  GetVersion

  CloseHandle

  GetExitCodeProcess

  WaitForSingleObject

  CreateProcessW

  CreateThread

  GetCurrentThreadId

  GetProcessHeap

  GetStartupInfoA

  MoveFileW

  RtlUnwind

  TerminateProcess

  GetCurrentProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  TlsGetValue

  TlsAlloc

  TlsSetValue

  TlsFree

  GetCurrentThread

  GetCPInfo

  GetOEMCP

  lstrcmpW

  GetStdHandle

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  SetHandleCount

  GetFileType

  VirtualFree

  GetCurrentProcessId

  FatalAppExitA

  VirtualAlloc

  LCMapStringA

  LCMapStringW

  GetConsoleCP

  GetConsoleMode

  FlushFileBuffers

  SetConsoleCtrlHandler

  GetStringTypeA

  GetTimeFormatA

  GetDateFormatA

  GetUserDefaultLCID

  GlobalLock

  GlobalAlloc

  GlobalFree

  GlobalUnlock

  GlobalHandle

  MultiByteToWideChar

  ReadFile

  GetFileSize

  CreateFileW

  OutputDebugStringA

  GetShortPathNameW

  FindClose

  WritePrivateProfileStringW

  GetPrivateProfileStringW

  GetPrivateProfileIntW

  LoadLibraryExW

  GlobalMemoryStatus

  Sleep

  QueryPerformanceCounter

  QueryPerformanceFrequency

  GetTickCount

  SetEndOfFile

  FreeResource

  VirtualQuery

  GetModuleFileNameA

  MulDiv

  FileTimeToSystemTime

  GetDateFormatW

  GetTimeFormatW

  GetCurrentDirectoryW

  ReleaseSemaphore

  CreateSemaphoreW

  SetErrorMode

  GetSystemInfo

  GetVersionExW

  GlobalSize

  GlobalReAlloc

  FindNextFileW

  HeapDestroy

  HeapReAlloc

  HeapSize

  IsBadReadPtr

  GetNumberFormatW

  InitializeCriticalSection

  EnumResourceLanguagesW

  GetSystemDefaultLCID

  SetThreadLocale

  GetLocaleInfoW

  GetUserDefaultUILanguage

  DeleteCriticalSection

  FreeLibrary

  SizeofResource

  FindResourceW

  FindResourceExW

  GetVolumeInformationW

  GetSystemTimeAsFileTime

  SetFileTime

  SetFilePointer

  GetFileTime

  CopyFileW

  MoveFileExW

  IsBadWritePtr

  CreateDirectoryW

  GetDiskFreeSpaceW

  GetTempPathW

  GetLocalTime

  GetFileInformationByHandle

  FileTimeToLocalFileTime

  FileTimeToDosDateTime

  EnterCriticalSection

  LeaveCriticalSection

  GetACP

  GetProfileIntW

  WideCharToMultiByte

  GetProfileStringW

  GetCommState

  SetCommState

  DeviceIoControl

  WriteFile

  GetFullPathNameW

  lstrcmpiW

  Sections

  .text

  Size: 65KB - Virtual size: 64KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 15KB - Virtual size: 15KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 11KB - Virtual size: 166KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 48KB - Virtual size: 47KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ