General

Malware Config

Signatures

Files

• fc43397055a3a31ceee81da908837fca1374194708dbf55bae0eb280ddcd7f6d

  .dll windows x86

  654ef2f566570152047e2ef299bb36cc

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DEBUG_STRIPPED

  Imports

  gdi32

  MoveToEx

  kernel32

  CloseHandle

  CreateFileA

  CreateThread

  ExitProcess

  GetCommandLineA

  GetCurrentProcess

  GetCurrentThread

  GetCurrentThreadId

  GetExitCodeThread

  GetLastError

  GetModuleHandleA

  GetProcAddress

  GetStartupInfoA

  GetThreadPriority

  GetVersionExA

  GlobalAlloc

  GlobalFree

  LoadLibraryA

  MultiByteToWideChar

  ReadFile

  ResumeThread

  SetErrorMode

  SetFilePointer

  SetLastError

  SetThreadPriority

  Sleep

  SuspendThread

  TlsAlloc

  TlsFree

  TlsGetValue

  TlsSetValue

  WideCharToMultiByte

  WriteFile

  FlushInstructionCache

  VirtualAlloc

  VirtualProtect

  RtlMoveMemory

  ole32

  CLSIDFromProgID

  CoCreateInstance

  CoInitialize

  CoUninitialize

  ProgIDFromCLSID

  oleaut32

  GetActiveObject

  SafeArrayCreate

  SysAllocStringByteLen

  SysFreeString

  SysStringByteLen

  VariantClear

  VariantCopy

  user32

  CallWindowProcA

  CreateDialogIndirectParamA

  CreateDialogParamA

  CreateWindowExA

  DialogBoxIndirectParamA

  SetWindowLongA

  DialogBoxParamA

  GetPropA

  GetWindow

  RemovePropA

  SetPropA

  Sections

  .text

  Size: 19KB - Virtual size: 18KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .link

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rloc

  Size: 1024B - Virtual size: 540B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ