General

Malware Config

Signatures

Files

• 8f179bd65c740d4f9832a90372e7d731e28ba4e3c8559187a05ec32c2559f9b7

  .exe windows x86

  5cb25fe37abeec1552fb0b3e5a8b3948

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  SetWindowPos

  ReleaseDC

  GetWindowRect

  ShowWindow

  DialogBoxIndirectParamA

  MessageBeep

  GetDC

  MessageBoxA

  GetGUIThreadInfo

  MapDialogRect

  DestroyCaret

  SetSystemCursor

  GetCaretPos

  GetMessageExtraInfo

  BroadcastSystemMessageA

  RegisterClipboardFormatA

  GetKeyboardLayoutList

  CreateIconFromResourceEx

  WaitForInputIdle

  PeekMessageA

  LoadStringA

  GetDesktopWindow

  wsprintfA

  ExitWindowsEx

  CharPrevA

  CharNextA

  SetWindowLongA

  GetWindowLongA

  CallWindowProcA

  GetDlgItem

  SetForegroundWindow

  SetWindowTextA

  SendDlgItemMessageA

  GetDlgItemTextA

  EnableWindow

  SendMessageA

  SetDlgItemTextA

  DispatchMessageA

  MsgWaitForMultipleObjects

  EndDialog

  shell32

  DragQueryPoint

  ShellExecuteExW

  FindExecutableW

  Shell_NotifyIconW

  ExtractIconA

  ExtractIconW

  ExtractAssociatedIconA

  ole32

  CoCreateFreeThreadedMarshaler

  OleTranslateAccelerator

  StringFromCLSID

  OleGetIconOfClass

  CoFileTimeNow

  GetConvertStg

  OleCreateDefaultHandler

  advapi32

  StartServiceCtrlDispatcherA

  GetServiceKeyNameW

  IsValidSid

  CreatePrivateObjectSecurity

  AreAnyAccessesGranted

  RegOpenKeyExW

  RegSetValueW

  IsValidSecurityDescriptor

  AddAccessDeniedAce

  opengl32

  glRectfv

  glTexGeni

  glCallList

  glGenLists

  glRasterPos2s

  glMapGrid1f

  glTexCoord1f

  kernel32

  CloseHandle

  SetFilePointer

  GetStringTypeW

  GetStringTypeA

  FlushFileBuffers

  GetConsoleMode

  GetConsoleCP

  Sleep

  GetTimeZoneInformation

  LoadLibraryExA

  SetEnvironmentVariableA

  CompareStringW

  CompareStringA

  InitializeCriticalSection

  WriteConsoleA

  GetOEMCP

  GetACP

  GetCPInfo

  GetCurrentProcessId

  GetTickCount

  QueryPerformanceCounter

  InterlockedDecrement

  SetLastError

  InterlockedIncrement

  TlsFree

  TlsSetValue

  TlsAlloc

  TlsGetValue

  GetModuleHandleW

  GetFileType

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  GetEnvironmentStrings

  FreeEnvironmentStringsA

  GetModuleFileNameA

  GetStdHandle

  WriteFile

  GetConsoleOutputCP

  WriteConsoleW

  SetStdHandle

  VirtualProtect

  GetSystemInfo

  VirtualQuery

  CreateFileA

  RtlUnwind

  GetCurrentThreadId

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  GetCurrentProcess

  TerminateProcess

  ExitProcess

  GetModuleHandleA

  GetProcAddress

  SetHandleCount

  lstrcpyA

  LCMapStringW

  MultiByteToWideChar

  LCMapStringA

  CreateWaitableTimerA

  InitializeSListHead

  VirtualLock

  GlobalMemoryStatus

  GetShortPathNameA

  GetTempPathA

  GetLocaleInfoA

  GetSystemTimeAsFileTime

  GetLastError

  HeapFree

  GetCommandLineA

  GetVersionExA

  GetStartupInfoA

  EnterCriticalSection

  LeaveCriticalSection

  OutputDebugStringA

  HeapDestroy

  HeapCreate

  VirtualFree

  DeleteCriticalSection

  HeapAlloc

  VirtualAlloc

  HeapReAlloc

  WideCharToMultiByte

  Sections

  .text

  Size: 64KB - Virtual size: 64KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 30KB - Virtual size: 29KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 27KB - Virtual size: 34KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 238KB - Virtual size: 238KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ