General

Malware Config

Signatures

Files

• c84ea16497a2788633fbc879537a11f1582040d13f48819f1404cd88539b30a0

  .exe windows x86

  1fab1995631c124d4c5ad10f386f1fa8

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  comdlg32

  PrintDlgW

  ChooseFontW

  GetSaveFileNameW

  PageSetupDlgW

  gdi32

  ScaleWindowExtEx

  CreateSolidBrush

  MoveToEx

  LPtoDP

  CreateRectRgn

  GetPixel

  CreateDiscardableBitmap

  CreateFontIndirectW

  SetBrushOrgEx

  OffsetRgn

  AddFontResourceW

  CreateCompatibleDC

  SetLayout

  SetTextAlign

  PatBlt

  SetBitmapBits

  SetPixel

  CreateEllipticRgnIndirect

  msvcrt

  _controlfp

  printf

  remove

  ftell

  __set_app_type

  strstr

  __p__fmode

  __p__commode

  mbstowcs

  _amsg_exit

  time

  wcschr

  _initterm

  wcsncpy

  qsort

  _acmdln

  exit

  _ismbblead

  wcslen

  free

  _XcptFilter

  fgets

  _exit

  _cexit

  __setusermatherr

  __getmainargs

  user32

  GetMenu

  GetClassInfoExW

  CloseDesktop

  GetMessageTime

  TabbedTextOutW

  GetMenuItemID

  DialogBoxIndirectParamA

  GetDlgItem

  AdjustWindowRectEx

  GetDlgItemInt

  CreatePopupMenu

  InsertMenuW

  SendMessageTimeoutW

  GetKeyboardLayout

  UpdateWindow

  DestroyAcceleratorTable

  ScreenToClient

  SetLastErrorEx

  GetScrollInfo

  GetForegroundWindow

  DeferWindowPos

  ValidateRect

  wsprintfA

  SendInput

  LoadAcceleratorsW

  MapVirtualKeyExW

  CharUpperA

  keybd_event

  GetDialogBaseUnits

  SendMessageW

  OffsetRect

  SetClassLongW

  ChildWindowFromPoint

  RedrawWindow

  SetCursorPos

  DrawIconEx

  GetNextDlgTabItem

  LoadMenuW

  CheckRadioButton

  SetForegroundWindow

  DrawFocusRect

  CreateAcceleratorTableW

  DrawStateA

  CreateIconIndirect

  EnumThreadWindows

  FillRect

  shlwapi

  StrToIntA

  StrNCatA

  PathRemoveBlanksW

  kernel32

  GetProcessHeap

  SearchPathA

  SetFileAttributesA

  IsBadWritePtr

  GetThreadContext

  GlobalAddAtomW

  SetCommMask

  MoveFileA

  GetModuleHandleW

  SleepEx

  HeapAlloc

  IsBadCodePtr

  EnumResourceLanguagesA

  GetSystemDefaultUILanguage

  CreateDirectoryA

  CreateWaitableTimerA

  GetDateFormatA

  CompareFileTime

  GetSystemDirectoryA

  OpenEventW

  SystemTimeToFileTime

  GetCurrentDirectoryW

  CopyFileA

  HeapFree

  Exports

  Exports

  ?RtlFullNameExA@@YGJEJ*Z

  ?CloseState@@YGJFHF*Z

  ?CrtStateExW@@YGKPAMHPAM*Z

  ?LoadCharExA@@YGPAK_NN*Z

  ?GetListItemA@@YGJPAKM*Z

  ?DeleteTimeExA@@YGPAXIN_N*Z

  Sections

  .text

  Size: 200KB - Virtual size: 200KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .ditxt

  Size: 512B - Virtual size: 508B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .dbug

  Size: 512B - Virtual size: 28B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .dimp

  Size: 3KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .dbg

  Size: 512B - Virtual size: 85B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .dvr

  Size: 512B - Virtual size: 140B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .dpt

  Size: 512B - Virtual size: 508B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .dcode

  Size: 12KB - Virtual size: 12KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 2KB - Virtual size: 377KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 8KB - Virtual size: 8KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ