General

Malware Config

Signatures

Files

• d5652714fea2de49981ac94b4ca021dacb4e297bcabb74806429bd6154bbcf32

  .exe windows x86

  604faaef48f9211ccb5038459ef46445

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  DestroyWindow

  SendMessageW

  PostQuitMessage

  DefWindowProcW

  CreateWindowExW

  LoadCursorW

  LoadIconW

  RegisterClassExW

  LoadAcceleratorsW

  GetMessageW

  TranslateAcceleratorW

  TranslateMessage

  DispatchMessageW

  kernel32

  GetModuleHandleW

  LoadLibraryA

  ReadFile

  CreateFileW

  GetTickCount

  GetModuleHandleA

  GetProcessHeap

  GetStartupInfoA

  GetCommandLineA

  HeapAlloc

  ExitProcess

  gdi32

  TextOutW

  SetTextAlign

  SetBkColor

  DeleteObject

  GetBkColor

  GetStockObject

  CreateSolidBrush

  comctl32

  ord17

  advapi32

  RegOpenKeyExA

  RegCloseKey

  RegQueryValueExA

  Sections

  .text

  Size: 6KB - Virtual size: 6KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 4KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 12KB - Virtual size: 11KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ