General

Malware Config

Signatures

Files

• 259a930eea98f28ab0cc8fe72164f76efee956facd186963d3519aaaefeda780

  .exe windows x86

  9a0ee8954fe26be03815d17b6bd43484

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  EndDialog

  IsDialogMessageW

  SetWindowTextW

  GetTopWindow

  CreateDialogIndirectParamW

  GetNextDlgTabItem

  CallNextHookEx

  SetWindowsHookExW

  GetWindow

  GetLastActivePopup

  GetClassNameW

  GetClassLongW

  SetWindowLongW

  GetWindowLongW

  PtInRect

  CopyRect

  MapWindowPoints

  ScreenToClient

  MessageBoxW

  AdjustWindowRectEx

  GetWindowTextLengthW

  GetWindowTextW

  RemovePropW

  GetPropW

  SetPropW

  ValidateRect

  SetActiveWindow

  SetMenu

  GetMenu

  GetCapture

  GetKeyState

  GetFocus

  GetDlgCtrlID

  GetDlgItem

  IsWindowVisible

  SetWindowPos

  DestroyWindow

  IsWindow

  CreateWindowExW

  GetClassInfoExW

  RegisterClassW

  CallWindowProcW

  DefWindowProcW

  GetMessageTime

  GetMessagePos

  UnhookWindowsHookEx

  GetMenuItemCount

  GetMenuItemID

  wsprintfW

  GetClassInfoW

  EnableWindow

  GetSubMenu

  SendDlgItemMessageA

  MsgWaitForMultipleObjects

  TranslateMessage

  PeekMessageW

  DispatchMessageW

  CharLowerW

  CharUpperW

  SetFocus

  SetForegroundWindow

  BringWindowToTop

  SystemParametersInfoW

  AttachThreadInput

  GetWindowThreadProcessId

  GetForegroundWindow

  SendMessageTimeoutW

  UpdateWindow

  RedrawWindow

  ReleaseDC

  GetDC

  DestroyCursor

  GetParent

  SetCursor

  DrawStateW

  DrawFocusRect

  FrameRect

  FillRect

  InvalidateRect

  GetSysColor

  GetWindowInfo

  GetWindowRect

  MapDialogRect

  LoadImageW

  WinHelpW

  MonitorFromWindow

  GetMonitorInfoW

  IsWindowEnabled

  DrawTextW

  DrawTextExW

  GrayStringW

  TabbedTextOutW

  BeginPaint

  EndPaint

  LoadBitmapW

  LoadIconW

  ShowWindow

  ClientToScreen

  CheckMenuItem

  EnableMenuItem

  SetMenuItemBitmaps

  GetMenuCheckMarkDimensions

  SetMenuItemInfoW

  GetMessageW

  GetActiveWindow

  RegisterWindowMessageW

  GetCursorPos

  PostQuitMessage

  SendMessageW

  PostMessageW

  IsIconic

  GetSystemMetrics

  DrawIcon

  SetTimer

  KillTimer

  DestroyMenu

  UnregisterClassW

  RealChildWindowFromPoint

  LoadCursorW

  GetSysColorBrush

  GetDesktopWindow

  GetClientRect

  shell32

  ShellExecuteA

  SHGetPathFromIDListW

  ShellExecuteW

  SHBrowseForFolderW

  SHGetFolderPathW

  SHGetMalloc

  ole32

  CoUninitialize

  CoCreateInstance

  CoInitialize

  CoCreateGuid

  CoTaskMemFree

  gdi32

  ExtTextOutW

  SetViewportOrgEx

  SetWindowExtEx

  OffsetViewportOrgEx

  ScaleViewportExtEx

  ScaleWindowExtEx

  SetMapMode

  SetBkMode

  SaveDC

  RestoreDC

  RectVisible

  PtVisible

  GetClipBox

  Escape

  DeleteDC

  CreateSolidBrush

  CreateBitmap

  SelectObject

  GetStockObject

  SetTextColor

  SetBkColor

  GetDeviceCaps

  DeleteObject

  GetTextExtentPoint32W

  CreateFontIndirectW

  StretchBlt

  SetViewportExtEx

  CreateCompatibleDC

  GetObjectW

  TextOutW

  comctl32

  InitCommonControlsEx

  _TrackMouseEvent

  shlwapi

  PathFindFileNameW

  PathFindExtensionW

  PathFindFileNameA

  PathIsUNCW

  PathStripToRootW

  kernel32

  TlsSetValue

  TlsFree

  GlobalReAlloc

  GlobalHandle

  LocalReAlloc

  CompareStringW

  GetLocaleInfoW

  GlobalFlags

  GetVolumeInformationW

  SetErrorMode

  FileTimeToLocalFileTime

  GetFileAttributesExW

  GetCommandLineW

  IsDebuggerPresent

  SetStdHandle

  GetFileType

  RaiseException

  QueryDepthSList

  CreateTimerQueue

  CreateTimerQueueTimer

  HeapReAlloc

  CreateThread

  ExitThread

  lstrcmpW

  ExitProcess

  GetModuleHandleExW

  HeapSize

  HeapQueryInformation

  GetStartupInfoW

  QueryPerformanceCounter

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsValidCodePage

  GetOEMCP

  GetCPInfo

  SetFilePointerEx

  GetConsoleMode

  GetConsoleCP

  GetStringTypeW

  SwitchToThread

  GetThreadTimes

  FreeLibraryAndExitThread

  InitializeSListHead

  UnregisterWaitEx

  ChangeTimerQueueTimer

  GetNumaHighestNodeNumber

  RegisterWaitForSingleObject

  DeleteTimerQueueTimer

  TlsGetValue

  SetThreadAffinityMask

  VirtualProtect

  GetTimeZoneInformation

  LCMapStringW

  EnumSystemLocalesW

  WriteConsoleW

  UnregisterWait

  GetThreadPriority

  SignalObjectAndWait

  SetEnvironmentVariableA

  OpenEventA

  HeapDestroy

  lstrcmpA

  GlobalDeleteAtom

  GetCurrentThread

  SetLastError

  FormatMessageW

  MulDiv

  GlobalFree

  GlobalAlloc

  GetACP

  GetTickCount

  GetSystemTimeAsFileTime

  DuplicateHandle

  CreateEventA

  GetLocalTime

  GetPrivateProfileSectionW

  GetPrivateProfileSectionNamesW

  GetPrivateProfileStringW

  GetPrivateProfileIntW

  WritePrivateProfileStringW

  LocalFree

  LocalAlloc

  GetExitCodeThread

  SetThreadPriority

  GetCurrentThreadId

  GetUserDefaultLCID

  IsValidLocale

  GetSystemDefaultUILanguage

  PulseEvent

  ReleaseMutex

  CreateMutexW

  GetExitCodeProcess

  ResumeThread

  CreateProcessW

  FlushFileBuffers

  WaitForMultipleObjects

  CreateSemaphoreW

  ReleaseSemaphore

  GetSystemInfo

  VirtualFree

  TlsAlloc

  GlobalFindAtomW

  GlobalAddAtomW

  LoadLibraryA

  GetModuleHandleA

  FreeResource

  GetVersion

  DecodePointer

  EncodePointer

  OutputDebugStringA

  CompareStringA

  GetCommandLineA

  GetStartupInfoA

  HeapCreate

  GetModuleFileNameA

  InterlockedIncrement

  InterlockedDecrement

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  SetHandleCount

  LCMapStringA

  GetStringTypeA

  GetLocaleInfoA

  GetConsoleOutputCP

  WriteConsoleA

  CreateFileA

  GetProcessAffinityMask

  EnterCriticalSection

  GetVersionExW

  FileTimeToSystemTime

  SetEndOfFile

  ReadFile

  SetFilePointer

  GetFileSize

  GetStdHandle

  VirtualAlloc

  GetModuleFileNameW

  RtlUnwind

  GetProcAddress

  GetModuleHandleW

  lstrlenA

  OutputDebugStringW

  ExpandEnvironmentStringsW

  GetLastError

  SizeofResource

  LockResource

  LoadResource

  FindResourceW

  DeleteCriticalSection

  LeaveCriticalSection

  SetCurrentDirectoryW

  WaitForSingleObject

  GetCurrentProcessId

  GlobalUnlock

  RemoveDirectoryW

  GetUserDefaultUILanguage

  CloseHandle

  InitializeCriticalSection

  GlobalLock

  GetTempPathW

  WriteFile

  SleepEx

  GetFileAttributesW

  CreateDirectoryW

  CreateFileW

  DeleteFileW

  lstrcpyW

  MultiByteToWideChar

  LoadLibraryW

  FreeLibrary

  GetCurrentProcess

  TerminateProcess

  FindFirstFileW

  FindNextFileW

  FindClose

  CopyFileW

  GetDiskFreeSpaceExW

  SetFileAttributesW

  MoveFileExW

  GetFullPathNameW

  CreateEventW

  SetEvent

  Sleep

  ResetEvent

  GetSystemDirectoryW

  HeapAlloc

  GetProcessHeap

  HeapFree

  GetLogicalDriveStringsW

  lstrlenW

  InitializeCriticalSectionAndSpinCount

  WideCharToMultiByte

  IsProcessorFeaturePresent

  SetFileTime

  MoveFileW

  GetTempFileNameW

  LoadLibraryExW

  Sections

  .text

  Size: 143KB - Virtual size: 142KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 16KB - Virtual size: 15KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 7KB - Virtual size: 52.8MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 104KB - Virtual size: 103KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ