General

Malware Config

Signatures

Files

• 1e874ea2052c99e1de54179aa616b1532bb2f8400fa59efbea83349a43603e62

  .exe windows x86

  2ce61544cd004eb845278d54f809e32d

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  rasapi32

  RasHangUpA

  winmm

  midiStreamOut

  ws2_32

  WSAAsyncSelect

  kernel32

  MultiByteToWideChar

  user32

  GetClassNameA

  gdi32

  CreateRoundRectRgn

  winspool.drv

  ClosePrinter

  advapi32

  RegCreateKeyExA

  shell32

  ShellExecuteA

  ole32

  StgCreateDocfileOnILockBytes

  oleaut32

  SafeArrayUnaccessData

  comctl32

  ImageList_Destroy

  oledlg

  ord8

  wininet

  InternetCanonicalizeUrlA

  comdlg32

  ChooseColorA

  msvcrt

  strncpy

  iphlpapi

  GetInterfaceInfo

  psapi

  GetMappedFileNameW

  Sections

  .text

  Size: 492KB - Virtual size: 1.1MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .sedata

  Size: 1.3MB - Virtual size: 1.3MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .idata

  Size: 4KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 36KB - Virtual size: 36KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .sedata

  Size: 4KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ