General

Malware Config

Signatures

Files

• a7b207f6af3fa4097125b42337432681385c8a93f58df65921043fff400bef07

  .exe windows x86

  ca6be599b8cf9f4daf7f381202396d5b

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  winspool.drv

  ord204

  ClosePrinter

  DocumentPropertiesA

  user32

  ShowWindow

  RegisterClassA

  RemoveMenu

  wsprintfA

  GetClassInfoExA

  ReleaseDC

  GetMessageTime

  GetMenuStringA

  TabbedTextOutA

  MessageBoxA

  SetMenuItemBitmaps

  SystemParametersInfoA

  AppendMenuA

  SetFocus

  KillTimer

  MapWindowPoints

  GetLastActivePopup

  GetSysColorBrush

  GetMenuCheckMarkDimensions

  DrawFocusRect

  IsClipboardFormatAvailable

  GetWindowTextA

  GetDlgCtrlID

  FrameRect

  PostMessageA

  RegisterClassExA

  RegisterClipboardFormatA

  SetRectEmpty

  GetIconInfo

  PeekMessageA

  SetWindowsHookExA

  CallWindowProcA

  SetCapture

  GetKeyboardState

  GetMessageA

  EmptyClipboard

  GetCursorPos

  CloseClipboard

  IsChild

  SendDlgItemMessageA

  DestroyWindow

  TranslateMessage

  GetMenuState

  CheckMenuItem

  UpdateWindow

  OffsetRect

  ScrollWindow

  GetDC

  IsIconic

  GetMenuItemInfoA

  CreateWindowExA

  IsWindow

  DefWindowProcA

  AdjustWindowRectEx

  LoadCursorA

  SetCursor

  BeginPaint

  LoadAcceleratorsA

  GrayStringA

  TrackPopupMenu

  CharUpperA

  GetSysColor

  GetNextDlgTabItem

  GetWindowPlacement

  TrackPopupMenuEx

  GetMessagePos

  IntersectRect

  GetDesktopWindow

  FillRect

  LoadMenuA

  GetKeyState

  OpenClipboard

  GetWindowLongA

  EndPaint

  CopyRect

  MoveWindow

  DrawTextA

  DrawIconEx

  GetWindowRect

  GetClassNameA

  CreateDialogIndirectParamA

  IsWindowVisible

  shlwapi

  PathCanonicalizeW

  PathIsURLW

  PathCommonPrefixW

  PathCombineW

  gdi32

  SetAbortProc

  GetDCOrgEx

  CreateEllipticRgn

  GetBitmapDimensionEx

  CreateCompatibleDC

  CreateDCA

  GetCurrentPositionEx

  SetMapMode

  SetViewportOrgEx

  SetROP2

  Polyline

  SetBitmapDimensionEx

  CreateHatchBrush

  GetMapMode

  GetBkColor

  LineTo

  OffsetClipRgn

  SelectClipRgn

  FillRgn

  SelectObject

  SetBkMode

  advapi32

  CreateServiceA

  OpenServiceA

  RegEnumKeyExA

  DeleteService

  RegEnumValueA

  RegCreateKeyA

  OpenSCManagerA

  RegOpenKeyA

  RegSetValueExA

  QueryServiceStatus

  FreeSid

  SetSecurityDescriptorDacl

  RegDeleteValueA

  RegCreateKeyExA

  SetServiceStatus

  RegCloseKey

  GetUserNameA

  CloseServiceHandle

  ControlService

  StartServiceA

  QueryServiceConfigA

  StartServiceCtrlDispatcherA

  shell32

  DragQueryFileA

  SHGetSpecialFolderLocation

  ord155

  ShellExecuteA

  comctl32

  CreatePropertySheetPageA

  ImageList_GetImageInfo

  ImageList_DragEnter

  ImageList_GetImageCount

  ImageList_Add

  ImageList_AddMasked

  ImageList_DragLeave

  ImageList_GetBkColor

  ImageList_ReplaceIcon

  ImageList_Draw

  ImageList_SetBkColor

  ord17

  ImageList_BeginDrag

  ImageList_Create

  _TrackMouseEvent

  ImageList_DragShowNolock

  kernel32

  GetCurrentProcessId

  GetCurrentProcess

  VirtualAlloc

  LoadLibraryW

  GetProcessHeap

  InterlockedDecrement

  HeapCreate

  VirtualQuery

  CloseHandle

  SetLastError

  OutputDebugStringA

  WideCharToMultiByte

  GetModuleFileNameW

  GetTimeZoneInformation

  FreeLibrary

  GetModuleHandleW

  TerminateProcess

  VirtualFree

  GetConsoleMode

  HeapReAlloc

  GetCurrentThread

  EnumSystemLocalesA

  GetModuleFileNameA

  GetLocaleInfoW

  CreateFileA

  TlsSetValue

  GetTickCount

  EnterCriticalSection

  SetUnhandledExceptionFilter

  FreeEnvironmentStringsW

  RaiseException

  GetSystemTimeAsFileTime

  GetTimeFormatA

  DebugBreak

  RtlUnwind

  IsDebuggerPresent

  HeapValidate

  GetLocaleInfoA

  TlsAlloc

  LCMapStringA

  Sleep

  LoadLibraryA

  GetEnvironmentStringsW

  GetConsoleOutputCP

  InterlockedExchange

  FreeEnvironmentStringsA

  SetHandleCount

  FatalAppExitA

  GetStartupInfoA

  CompareStringA

  FlushFileBuffers

  GetOEMCP

  UnhandledExceptionFilter

  GetACP

  GetStringTypeA

  HeapDestroy

  IsValidLocale

  GetModuleHandleA

  GetStdHandle

  ExitProcess

  WriteConsoleA

  WaitForSingleObject

  GetLastError

  lstrlenA

  GetConsoleCP

  SetConsoleCtrlHandler

  WriteConsoleW

  LCMapStringW

  CompareStringW

  InitializeCriticalSectionAndSpinCount

  GetCPInfo

  LocalFree

  GetStringTypeW

  GetCommandLineA

  OutputDebugStringW

  GetEnvironmentStrings

  GetCurrentThreadId

  TlsGetValue

  InterlockedIncrement

  GetProcAddress

  HeapSize

  SetEnvironmentVariableA

  TlsFree

  GetUserDefaultLCID

  GetFileType

  SetFilePointer

  CreateMutexA

  SetStdHandle

  HeapAlloc

  DeleteCriticalSection

  MultiByteToWideChar

  HeapFree

  GetDateFormatA

  LeaveCriticalSection

  ReadFile

  WriteFile

  IsValidCodePage

  QueryPerformanceCounter

  IsBadReadPtr

  Sections

  .text

  Size: 200KB - Virtual size: 196KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 132KB - Virtual size: 128KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 56KB - Virtual size: 81KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 32KB - Virtual size: 30KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ