General

Malware Config

Signatures

Files

• ed57fc1d2e993ad7aa7379101a7a123ef68c1964f18584821160a3f451568e59

  .exe windows x86

  833e139b5d6304b1918b874f56b3a88f

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  shell32

  ShellExecuteW

  SHGetFolderPathW

  comctl32

  InitCommonControlsEx

  oledlg

  OleUIBusyW

  winspool.drv

  OpenPrinterW

  ClosePrinter

  DocumentPropertiesW

  ole32

  CoRevokeClassObject

  CoInitializeEx

  CoGetMarshalSizeMax

  StgCreateDocfileOnILockBytes

  CoFreeUnusedLibraries

  CLSIDFromString

  CLSIDFromProgID

  OleUninitialize

  OleIsCurrentClipboard

  OleInitialize

  CreateILockBytesOnHGlobal

  CoTaskMemFree

  CoGetClassObject

  CoTaskMemAlloc

  StgOpenStorageOnILockBytes

  advapi32

  RegQueryValueW

  RegOpenKeyW

  RegOpenKeyExW

  RegEnumKeyW

  RegDeleteKeyW

  RegCreateKeyExW

  RegCloseKey

  LookupAccountSidA

  RegSetValueExW

  comdlg32

  GetFileTitleW

  PageSetupDlgA

  user32

  UnregisterClassA

  UnhookWindowsHookEx

  TranslateMessage

  TabbedTextOutW

  SystemParametersInfoA

  ShowWindow

  SetWindowsHookExW

  SetWindowTextW

  SetWindowPos

  SetWindowLongW

  SetWindowContextHelpId

  SetRect

  SetPropW

  SetMenuItemBitmaps

  SetForegroundWindow

  SetFocus

  SetCursor

  SetCapture

  SetActiveWindow

  SendMessageW

  SendDlgItemMessageW

  SendDlgItemMessageA

  ScreenToClient

  RemovePropW

  ReleaseDC

  ReleaseCapture

  RegisterWindowMessageW

  RegisterClipboardFormatW

  RegisterClassW

  RedrawWindow

  PtInRect

  PostThreadMessageW

  PostQuitMessage

  PostMessageW

  PeekMessageW

  OffsetRect

  MoveWindow

  ModifyMenuW

  MessageBoxW

  MessageBeep

  MapWindowPoints

  MapDialogRect

  LoadImageW

  LoadIconW

  LoadCursorW

  LoadBitmapW

  IsWindowEnabled

  IsWindow

  IsRectEmpty

  IsIconic

  IsChild

  InvalidateRgn

  InvalidateRect

  IntersectRect

  GrayStringW

  GetWindowThreadProcessId

  GetWindowTextW

  GetWindowTextLengthW

  GetWindowRect

  UnregisterClassW

  GetWindowLongW

  GetWindowDC

  GetWindow

  GetTopWindow

  GetSystemMetrics

  GetSysColorBrush

  GetSysColor

  GetSubMenu

  GetPropW

  GetParent

  GetNextDlgTabItem

  GetNextDlgGroupItem

  GetMessageW

  GetMessageTime

  GetMessagePos

  GetMenuState

  GetMenuItemID

  GetMenuItemCount

  GetMenuCheckMarkDimensions

  GetMenu

  GetLastActivePopup

  GetKeyState

  GetForegroundWindow

  GetFocus

  GetDlgItem

  GetDlgCtrlID

  GetDesktopWindow

  GetDC

  GetCursorPos

  GetClientRect

  GetClassNameW

  GetClassLongW

  GetClassInfoW

  GetClassInfoExW

  GetCapture

  GetActiveWindow

  EqualRect

  EnumDisplaySettingsExA

  EndPaint

  EndDialog

  EnableWindow

  EnableMenuItem

  DrawTextW

  DrawTextExW

  DispatchMessageW

  DestroyWindow

  DestroyMenu

  DefWindowProcW

  CreateWindowExW

  CreateDialogIndirectParamW

  CopyRect

  CopyAcceleratorTableW

  ClientToScreen

  CheckMenuItem

  CharUpperW

  CharNextW

  CallWindowProcW

  CallNextHookEx

  BeginPaint

  AdjustWindowRectEx

  UpdateWindow

  ValidateRect

  WinHelpW

  GetWindowPlacement

  gdi32

  GetTextColor

  GetStockObject

  GetMapMode

  GetBkColor

  ExtTextOutW

  ExtTextOutA

  OffsetViewportOrgEx

  Escape

  DeleteDC

  GetViewportExtEx

  CreateRectRgnIndirect

  CreateFontIndirectW

  CreateCompatibleDC

  CreateBitmap

  SetBkMode

  PtVisible

  RestoreDC

  SaveDC

  ScaleViewportExtEx

  CreateSolidBrush

  GetWindowExtEx

  ScaleWindowExtEx

  SelectObject

  ExtSelectClipRgn

  GetClipBox

  SetMapMode

  SetTextColor

  SetViewportExtEx

  SetViewportOrgEx

  SetWindowExtEx

  StretchBlt

  TextOutW

  SetBkColor

  kernel32

  TlsAlloc

  TerminateProcess

  Sleep

  SizeofResource

  SetUnhandledExceptionFilter

  SetStdHandle

  SetLastError

  SetFilePointer

  SetEnvironmentVariableA

  SetEndOfFile

  RtlUnwind

  ReadFile

  RaiseException

  QueryPerformanceCounter

  MultiByteToWideChar

  MulDiv

  LockResource

  LockFile

  LocalReAlloc

  LocalFree

  LocalAlloc

  LoadResource

  LoadLibraryW

  LeaveCriticalSection

  LCMapStringW

  LCMapStringA

  IsValidLocale

  IsValidCodePage

  IsDebuggerPresent

  IsDBCSLeadByteEx

  InterlockedIncrement

  InterlockedExchange

  InterlockedDecrement

  InitializeCriticalSection

  HeapSize

  HeapReAlloc

  HeapFree

  HeapDestroy

  HeapAlloc

  GlobalUnlock

  GlobalReAlloc

  GlobalHandle

  GlobalFree

  GlobalFindAtomW

  GlobalDeleteAtom

  GlobalAlloc

  GlobalAddAtomW

  GetVolumeInformationW

  GetVersionExA

  TlsFree

  GetUserDefaultLCID

  GetTimeZoneInformation

  GetTickCount

  GetThreadLocale

  GetSystemTimeAsFileTime

  GetSystemInfo

  GetStringTypeW

  GetStringTypeA

  GetStdHandle

  GetStartupInfoA

  GetProcessHeap

  GetProcAddress

  GetOEMCP

  GetModuleHandleW

  GetModuleHandleA

  GetModuleFileNameW

  GetModuleFileNameA

  GetLocaleInfoW

  GetLocaleInfoA

  GetLastError

  GetFullPathNameW

  GetFileType

  GetFileTime

  GetFileSize

  GetFileAttributesW

  GetEnvironmentStringsW

  GetCurrentThreadId

  GetCurrentThread

  GetCurrentProcessId

  GetCurrentProcess

  GetCurrencyFormatA

  GetConsoleOutputCP

  GetConsoleMode

  GetConsoleCP

  GetCommandLineA

  GetCPInfo

  GetACP

  FreeResource

  FreeLibrary

  FreeEnvironmentStringsW

  FreeEnvironmentStringsA

  FormatMessageW

  FlushFileBuffers

  FindResourceW

  FindFirstFileW

  FindClose

  FileTimeToSystemTime

  FileTimeToLocalFileTime

  ExitProcess

  EnumSystemLocalesA

  EnumResourceLanguagesW

  EnterCriticalSection

  DuplicateHandle

  DeleteCriticalSection

  CreateFileW

  CreateFileA

  CreateDirectoryW

  ConvertDefaultLocale

  CompareStringW

  CloseHandle

  TlsGetValue

  TlsSetValue

  UnhandledExceptionFilter

  UnlockFile

  VirtualAlloc

  VirtualFree

  VirtualProtect

  VirtualQuery

  WideCharToMultiByte

  WriteConsoleA

  WriteConsoleW

  WriteFile

  WritePrivateProfileStringW

  lstrcmpA

  lstrcmpW

  lstrlenW

  GetVersion

  wininet

  InternetReadFile

  InternetOpenW

  InternetGetLastResponseInfoW

  InternetCreateUrlA

  InternetConnectW

  InternetCloseHandle

  HttpSendRequestW

  oleaut32

  SafeArrayDestroy

  SysAllocString

  SysAllocStringLen

  SysFreeString

  SysStringLen

  SystemTimeToVariantTime

  VariantChangeType

  VariantClear

  VariantCopy

  VariantInit

  VariantTimeToSystemTime

  OleCreateFontIndirect

  shlwapi

  PathFindFileNameW

  PathIsUNCW

  PathStripToRootW

  PathFindExtensionW

  Sections

  .text

  Size: 226KB - Virtual size: 228KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 58KB - Virtual size: 60KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 16KB - Virtual size: 68KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .idata

  Size: 9KB - Virtual size: 12KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 23KB - Virtual size: 24KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ