General

Malware Config

Signatures

Files

• 811fdcf364b471b858e14bc33ba06147c4d58fea5b6303a3af1239fdc326af8c

  .exe windows x86

  1685e9f9d4e4af6c472be82d837dce37

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetModuleHandleA

  GetProcAddress

  FreeLibrary

  LoadLibraryA

  GetSystemDirectoryA

  GlobalGetAtomNameA

  ReleaseMutex

  WaitForSingleObject

  GetTickCount

  GlobalDeleteAtom

  SetLastError

  LocalFree

  IsBadReadPtr

  GlobalAddAtomA

  GetCommandLineA

  GetLastError

  Sleep

  GetModuleFileNameA

  FindClose

  CreateMutexA

  FindFirstFileA

  SetErrorMode

  FindNextFileA

  LCMapStringW

  LCMapStringA

  GetStringTypeW

  GetStringTypeA

  GetOEMCP

  GetACP

  GetCPInfo

  InterlockedIncrement

  InterlockedDecrement

  IsBadCodePtr

  IsBadWritePtr

  HeapReAlloc

  VirtualAlloc

  WriteFile

  VirtualFree

  HeapCreate

  HeapDestroy

  GetFileType

  GetStdHandle

  SetHandleCount

  GetEnvironmentStringsW

  GetEnvironmentStrings

  WideCharToMultiByte

  FreeEnvironmentStringsW

  FreeEnvironmentStringsA

  UnhandledExceptionFilter

  GetCurrentProcess

  TerminateProcess

  SetUnhandledExceptionFilter

  TlsGetValue

  MultiByteToWideChar

  TlsAlloc

  TlsSetValue

  GetCurrentThreadId

  LeaveCriticalSection

  LocalAlloc

  EnterCriticalSection

  CloseHandle

  InitializeCriticalSection

  HeapAlloc

  GetVersion

  HeapFree

  ExitProcess

  RtlUnwind

  RaiseException

  GetStartupInfoA

  user32

  RedrawWindow

  GetWindowRect

  CallWindowProcA

  SendMessageA

  ReleaseDC

  GetClientRect

  GetDC

  InvalidateRect

  FillRect

  GetParent

  SetWindowLongA

  GetDlgItem

  GetSysColor

  EndDialog

  SendDlgItemMessageA

  EnableWindow

  DialogBoxParamA

  SetFocus

  EnumChildWindows

  PtInRect

  IsWindowVisible

  GetClassNameA

  WindowFromPoint

  ValidateRgn

  ClientToScreen

  InvalidateRgn

  GetKeyState

  ValidateRect

  EnumWindows

  SetWindowPos

  GetCursorPos

  FindWindowA

  PostMessageA

  IsIconic

  ShowWindow

  GetMenu

  IsWindow

  GetWindowLongA

  KillTimer

  SetTimer

  SystemParametersInfoA

  GetClassLongA

  SetClassLongA

  GetWindow

  GetUpdateRect

  SetRect

  BeginPaint

  GetForegroundWindow

  EndPaint

  EqualRect

  RemovePropA

  UpdateWindow

  SetWindowTextA

  ScreenToClient

  MessageBoxA

  LoadStringA

  SetCursor

  DefWindowProcA

  LoadCursorA

  RegisterWindowMessageA

  wsprintfA

  GetSystemMetrics

  GetDesktopWindow

  GetPropA

  SetPropA

  MessageBeep

  gdi32

  CreateSolidBrush

  CreateDCA

  OffsetRgn

  LineTo

  SetROP2

  TextOutA

  DeleteObject

  MoveToEx

  SetBkMode

  GetTextMetricsA

  SetTextColor

  GetStockObject

  DeleteDC

  CreateRectRgn

  FrameRgn

  SelectObject

  GdiFlush

  shell32

  SHAppBarMessage

  SHChangeNotify

  advapi32

  RegOpenKeyExA

  RegQueryInfoKeyA

  RegEnumValueA

  RegCreateKeyExA

  RegCloseKey

  RegDeleteValueA

  RegDeleteKeyA

  RegOpenKeyA

  RegQueryValueExA

  RegCreateKeyA

  RegSetValueExA

  Sections

  .text

  Size: 372KB - Virtual size: 369KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdata

  Size: 72KB - Virtual size: 69KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 12KB - Virtual size: 20KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 120KB - Virtual size: 119KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ