General

Malware Config

Signatures

Files

• 17ae6d806192ab41f146f5e759e5b1c8b85ba6b9b596a6cc2556207bf521b2bf

  .exe windows x86

  42f4d4cb8ff6d7b32ea10a070d871f29

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  GetMessageA

  PeekMessageA

  TranslateMessage

  DispatchMessageA

  GetWindow

  IsWindowEnabled

  MsgWaitForMultipleObjects

  GetDlgCtrlID

  SendMessageTimeoutW

  PeekMessageW

  GetUserObjectSecurity

  SetUserObjectSecurity

  IsDialogMessageW

  DrawIconEx

  WindowFromPoint

  CreateMenu

  DrawMenuBar

  LoadMenuW

  TranslateAcceleratorW

  LoadAcceleratorsW

  GetDlgItemTextW

  CreateDialogParamW

  ExitWindowsEx

  DispatchMessageW

  GetMessageW

  DrawEdge

  RegisterWindowMessageW

  SetMenuItemInfoW

  IsIconic

  ShowWindowAsync

  SystemParametersInfoW

  EnumWindows

  SetClassLongW

  GetWindowTextW

  InvalidateRgn

  TrackPopupMenuEx

  ModifyMenuW

  AppendMenuW

  GetMenuItemCount

  GetMenuItemID

  LoadImageW

  RegisterClassW

  DrawTextA

  DefDlgProcW

  CreateIconIndirect

  FrameRect

  IsWindowVisible

  GetClassNameW

  EnumChildWindows

  PtInRect

  UnionRect

  CopyRect

  ScreenToClient

  IsZoomed

  EndDeferWindowPos

  DeferWindowPos

  BeginDeferWindowPos

  PostMessageW

  DrawFrameControl

  SetDlgItemTextW

  DialogBoxParamW

  SetWindowTextW

  DialogBoxIndirectParamW

  GetScrollInfo

  SetScrollInfo

  GetParent

  GetClassLongW

  SetWindowLongW

  GetWindowLongW

  IntersectRect

  InflateRect

  MapWindowPoints

  SendMessageW

  WaitForInputIdle

  ShowWindow

  InsertMenuW

  GetPropW

  SetPropW

  GetWindowDC

  ReleaseDC

  FillRect

  OffsetRect

  SendMessageA

  wsprintfA

  PostMessageA

  PostQuitMessage

  GetSystemMetrics

  SetCursor

  MessageBoxA

  RegisterClassA

  LoadIconA

  LoadCursorA

  SetFocus

  InvalidateRect

  ScrollWindowEx

  ValidateRect

  GetUpdateRgn

  GetUpdateRect

  UpdateWindow

  DrawTextW

  EnableWindow

  SetCapture

  GetCapture

  DeleteMenu

  SetForegroundWindow

  MessageBoxW

  FindWindowW

  FindWindowExW

  EndPaint

  BeginPaint

  IsDialogMessageA

  CheckDlgButton

  SystemParametersInfoA

  IsWindow

  GetWindowRect

  GetWindowTextA

  CreateWindowExA

  SetWindowPos

  MoveWindow

  DefWindowProcA

  DefMDIChildProcW

  ReleaseCapture

  GetWindowThreadProcessId

  LoadCursorW

  LoadIconW

  EnumDisplaySettingsW

  GetKeyState

  GetFocus

  CreateWindowExW

  RegisterClassExW

  CallWindowProcW

  DefWindowProcW

  LoadStringW

  DefFrameProcW

  CreateDialogIndirectParamA

  GetDesktopWindow

  LoadImageA

  GetDC

  DialogBoxIndirectParamA

  CharLowerA

  GetKeyboardType

  LoadStringA

  CharNextA

  GetWindowLongA

  wvsprintfA

  FindWindowA

  RedrawWindow

  CheckRadioButton

  UnregisterClassA

  GetSysColorBrush

  DialogBoxParamA

  DestroyAcceleratorTable

  EmptyClipboard

  SetClipboardData

  CharUpperA

  OpenClipboard

  TranslateAcceleratorA

  LoadAcceleratorsA

  RemoveMenu

  ChildWindowFromPoint

  DestroyCursor

  CreateDialogParamA

  IsMenu

  GetSubMenu

  SetDlgItemInt

  GetWindowPlacement

  CharLowerBuffA

  EnableMenuItem

  CheckMenuRadioItem

  GetSysColor

  KillTimer

  DestroyIcon

  DestroyWindow

  GetClientRect

  GetSystemMenu

  SetTimer

  SetWindowPlacement

  InsertMenuItemA

  GetMenu

  CheckMenuItem

  SetMenuItemInfoA

  SetActiveWindow

  DefDlgProcA

  EndDialog

  SetDlgItemTextA

  EnumClipboardFormats

  GetClipboardData

  CloseClipboard

  GetClassInfoA

  CallWindowProcA

  SetWindowLongA

  IsDlgButtonChecked

  GetActiveWindow

  GetDlgItemTextA

  GetCursorPos

  TrackPopupMenu

  ClientToScreen

  DestroyMenu

  CreatePopupMenu

  AppendMenuA

  SendDlgItemMessageA

  GetDlgItem

  SetWindowTextA

  comdlg32

  ChooseColorW

  ChooseFontW

  FindTextW

  GetOpenFileNameW

  PrintDlgW

  GetSaveFileNameW

  shell32

  SHGetMalloc

  DragAcceptFiles

  SHGetPathFromIDListA

  SHBrowseForFolderA

  ShellExecuteA

  DragFinish

  DragQueryFileA

  SHGetFileInfoA

  SHGetPathFromIDListW

  SHBrowseForFolderW

  Shell_NotifyIconW

  ShellExecuteExW

  SHGetFileInfoW

  ShellExecuteW

  SHGetSpecialFolderLocation

  SHGetDesktopFolder

  SHGetDataFromIDListA

  SHChangeNotify

  ShellExecuteExA

  SHFileOperationA

  ole32

  CoInitialize

  CoUninitialize

  CoCreateInstance

  StringFromCLSID

  CoTaskMemAlloc

  CoTaskMemFree

  OleInitialize

  OleUninitialize

  RegisterDragDrop

  RevokeDragDrop

  DoDragDrop

  OleGetClipboard

  ReleaseStgMedium

  CLSIDFromString

  CoFreeAllLibraries

  CoGetInterfaceAndReleaseStream

  CoSetProxyBlanket

  CoMarshalInterThreadInterfaceInStream

  advapi32

  RegCreateKeyW

  SetKernelObjectSecurity

  IsValidSecurityDescriptor

  GetKernelObjectSecurity

  CreateProcessAsUserW

  RegConnectRegistryW

  AddAccessAllowedAce

  AddAce

  InitializeAcl

  GetSidSubAuthorityCount

  GetSidSubAuthority

  GetSidIdentifierAuthority

  IsValidSid

  SetTokenInformation

  QueryServiceConfigW

  CopySid

  GetLengthSid

  RevertToSelf

  GetTokenInformation

  EqualSid

  AllocateAndInitializeSid

  SetServiceObjectSecurity

  QueryServiceObjectSecurity

  MapGenericMask

  RegDeleteValueW

  StartServiceW

  QueryServiceStatus

  FreeSid

  GetAce

  LookupAccountSidW

  LookupAccountNameW

  LookupPrivilegeValueW

  ImpersonateLoggedOnUser

  RegCreateKeyExW

  RegDeleteKeyW

  RegEnumKeyW

  RegEnumValueW

  RegLoadKeyW

  RegOpenKeyW

  RegQueryInfoKeyW

  RegQueryValueExW

  RegSetValueExW

  RegUnLoadKeyW

  RegQueryValueW

  CryptAcquireContextW

  CryptReleaseContext

  CryptGetHashParam

  CryptCreateHash

  CryptHashData

  CryptDestroyHash

  CloseServiceHandle

  OpenSCManagerW

  OpenServiceW

  ControlService

  RegOpenKeyA

  RegSetValueExA

  RegQueryInfoKeyA

  RegFlushKey

  RegEnumValueA

  RegEnumKeyExA

  RegDeleteValueA

  RegCreateKeyExA

  RegCreateKeyA

  RegSetValueA

  GetUserNameA

  RegCloseKey

  RegOpenKeyExA

  AdjustTokenPrivileges

  LookupPrivilegeValueA

  OpenProcessToken

  RegQueryValueExA

  RegDeleteKeyA

  RegOpenKeyExW

  LookupPrivilegeNameW

  gdi32

  ExtTextOutW

  GetBkColor

  GetCharABCWidthsFloatW

  GetDIBits

  GetDeviceCaps

  GetObjectA

  GetPixel

  GetStockObject

  GetTextColor

  GetTextExtentPoint32A

  GetTextExtentPoint32W

  GetTextMetricsA

  LineTo

  MoveToEx

  ExtTextOutA

  Rectangle

  RemoveFontResourceA

  SelectClipRgn

  EndDoc

  DeleteObject

  DeleteDC

  CreateSolidBrush

  CreateRectRgn

  CreatePen

  CreateFontIndirectA

  CreateFontA

  CreateDIBitmap

  CreateDIBSection

  CreateDCA

  CreateCompatibleDC

  ExtCreatePen

  PtInRegion

  EndPage

  GetTextMetricsW

  RectInRegion

  GetObjectW

  CreateRectRgnIndirect

  GetBkMode

  CreateFontIndirectW

  UnrealizeObject

  SetWindowOrgEx

  SetWindowExtEx

  SetWinMetaFileBits

  SetViewportOrgEx

  CreateCompatibleBitmap

  SetROP2

  SetMapMode

  SetEnhMetaFileBits

  SetDIBColorTable

  SetBrushOrgEx

  SetAbortProc

  RoundRect

  RestoreDC

  RectVisible

  Polyline

  Polygon

  PolyPolyline

  PlayEnhMetaFile

  PatBlt

  MaskBlt

  IntersectClipRect

  GetWindowOrgEx

  GetWinMetaFileBits

  GetTextExtentPointA

  GetSystemPaletteEntries

  BitBlt

  GetPaletteEntries

  GetObjectType

  GetNearestPaletteIndex

  GetEnhMetaFilePaletteEntries

  GetEnhMetaFileHeader

  GetEnhMetaFileBits

  GetDIBColorTable

  GetDCOrgEx

  GetCurrentPositionEx

  GetClipBox

  GetBrushOrgEx

  GetBitmapBits

  GdiFlush

  ExcludeClipRect

  DeleteEnhMetaFile

  CreateRoundRectRgn

  CreatePenIndirect

  CreateICA

  CreateHalftonePalette

  CreateBrushIndirect

  CreateBitmap

  CopyEnhMetaFileA

  CombineRgn

  RealizePalette

  SelectPalette

  CreatePalette

  TextOutW

  TextOutA

  StretchDIBits

  StretchBlt

  StartPage

  StartDocW

  StartDocA

  SetTextColor

  SetTextAlign

  SetStretchBltMode

  GetRgnBox

  SetPixel

  SetBkMode

  SetBkColor

  SelectObject

  AddFontResourceA

  AbortDoc

  SaveDC

  SetViewportExtEx

  SetPixelV

  opengl32

  glTexCoord4dv

  glColor4fv

  glTexCoord3d

  glGetBooleanv

  glStencilFunc

  glLighti

  glColor4us

  glMaterialiv

  dbghelp

  SymEnumSourceFiles

  SymGetLineFromName

  SymRegisterCallback64

  SymFromName

  SymEnumerateSymbolsW

  SymEnumerateSymbols64

  crypt32

  CertGetNameStringW

  CertDuplicateCertificateContext

  comctl32

  ImageList_Destroy

  PropertySheetW

  CreateStatusWindowW

  CreatePropertySheetPageW

  CreateToolbarEx

  ImageList_ReplaceIcon

  ImageList_Create

  ImageList_DrawEx

  InitCommonControlsEx

  ImageList_Add

  version

  VerQueryValueA

  GetFileVersionInfoSizeA

  GetFileVersionInfoA

  VerInstallFileA

  VerQueryValueW

  GetFileVersionInfoW

  GetFileVersionInfoSizeW

  mpr

  WNetGetConnectionW

  shlwapi

  UrlUnescapeW

  ColorRGBToHLS

  ColorHLSToRGB

  kernel32

  OpenEventA

  GetStringTypeA

  GetPrivateProfileIntA

  TerminateProcess

  GetWindowsDirectoryA

  OpenProcess

  GlobalMemoryStatus

  FindVolumeClose

  EnumCalendarInfoW

  CompareStringW

  SetErrorMode

  CreateFileA

  CreateProcessA

  MultiByteToWideChar

  GlobalFree

  GlobalUnlock

  WideCharToMultiByte

  lstrlenW

  CloseHandle

  Sleep

  DeleteFileA

  GetAtomNameA

  RtlUnwind

  GetModuleFileNameA

  GetUserDefaultLangID

  GlobalAlloc

  GlobalLock

  GetVersionExA

  GetPrivateProfileStringA

  CompareStringA

  lstrlenA

  SetLastError

  CreateDirectoryA

  GetFileAttributesA

  GetShortPathNameA

  GetLastError

  SetFileAttributesA

  WaitForSingleObject

  GetTempPathA

  GetTempFileNameA

  SetEvent

  FormatMessageA

  LocalFree

  RemoveDirectoryA

  FindResourceExA

  FindResourceA

  LoadResource

  LockResource

  HeapFree

  HeapAlloc

  GetCommandLineA

  lstrcpyA

  ExitProcess

  HeapCreate

  GetStartupInfoA

  GetModuleHandleA

  HeapDestroy

  AddAtomA

  GetSystemTimeAsFileTime

  GetCurrentProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  GetTimeZoneInformation

  GetProcAddress

  GetModuleHandleW

  WriteFile

  GetStdHandle

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  SetHandleCount

  GetFileType

  DeleteCriticalSection

  TlsGetValue

  TlsAlloc

  TlsSetValue

  TlsFree

  InterlockedIncrement

  GetCurrentThreadId

  InterlockedDecrement

  VirtualFree

  QueryPerformanceCounter

  GetTickCount

  GetCurrentProcessId

  LeaveCriticalSection

  EnterCriticalSection

  GetCPInfo

  GetACP

  GetOEMCP

  IsValidCodePage

  LoadLibraryA

  InitializeCriticalSectionAndSpinCount

  VirtualAlloc

  HeapReAlloc

  LCMapStringA

  LCMapStringW

  GetStringTypeW

  GetLocaleInfoA

  HeapSize

  SetEnvironmentVariableA

  CopyFileA

  Sections

  .text

  Size: 63KB - Virtual size: 62KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 22KB - Virtual size: 21KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 7KB - Virtual size: 16KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 182KB - Virtual size: 181KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ