General

Malware Config

Signatures

Files

• 58553fc3eff5d458d6ae936e2439eca019b7767d4d6f16761b867a3a72ca3e9b

  .exe windows x86

  20ed0326734e21dbcc987345888bac75

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  certcli

  CAEnumFirstCA

  CADeleteCA

  CACloseCertType

  CACloseCA

  CAEnumNextCA

  msimg32

  vSetDdrawflag

  GradientFill

  DllInitialize

  user32

  GetWindowLongA

  GetPropA

  GetWindowTextA

  DispatchMessageA

  IsDialogMessageA

  LoadImageA

  wsprintfA

  IsCharLowerW

  LoadCursorA

  IsWindow

  GetMessageA

  IsZoomed

  CharToOemA

  PostMessageA

  PeekMessageA

  DialogBoxParamA

  nddeapi

  NDdeShareEnumA

  NDdeShareGetInfoA

  NDdeShareAddA

  shlwapi

  UrlCreateFromPathA

  PathCombineA

  UrlIsA

  UrlCompareA

  UrlUnescapeA

  UrlIsNoHistoryW

  PathCompactPathA

  UrlEscapeA

  UrlCombineA

  UrlCanonicalizeA

  PathCommonPrefixA

  UrlGetPartA

  kernel32

  VirtualAllocEx

  GetComputerNameA

  GetFullPathNameA

  GetConsoleAliasW

  ReadConsoleA

  GetPrivateProfileIntA

  HeapValidate

  GetCurrentProcess

  WriteConsoleA

  lstrcpynA

  GetGeoInfoA

  WaitForSingleObject

  GetDateFormatA

  GetAtomNameA

  GetFullPathNameW

  DeviceIoControl

  GetModuleHandleA

  GetTickCount

  GetCurrentDirectoryA

  CloseHandle

  GetLongPathNameA

  GetConsoleTitleA

  GetProcessHeap

  GetPrivateProfileStructW

  FormatMessageA

  UpdateResourceA

  Sections

  .text

  Size: 22KB - Virtual size: 22KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 3KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 675KB - Virtual size: 675KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ