General

Malware Config

Signatures

Files

• ef0717bce91c868c367b3bbac22a28fe4ec72a230ec96ae646cb76a850ec6358

  .exe windows x86

  6e10955dc6e911423de36e8d2e7c8cbf

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DEBUG_STRIPPED

  Imports

  kernel32

  GetDiskFreeSpaceA

  GetACP

  GetCurrentThread

  GetDriveTypeA

  GetEnvironmentStringsA

  GetPrivateProfileSectionA

  IsValidCodePage

  GetProcAddress

  SearchPathA

  CreateFileA

  GetDateFormatW

  LZClose

  ExitThread

  shell32

  SHGetSpecialFolderPathA

  lz32

  LZRead

  LZInit

  esent

  JetGetCounter

  duser

  AddGadgetMessageHandler

  AttachWndProcA

  AttachWndProcW

  AutoTrace

  SetGadgetRotation

  BuildAnimation

  BuildDropTarget

  BuildInterpolation

  CreateAction

  CreateGadget

  SetGadgetScale

  DUserBuildGadget

  DUserCastClass

  DUserCastDirect

  DUserCastHandle

  DUserDeleteGadget

  DUserFindClass

  DUserGetAlphaPRID

  DUserGetGutsData

  DUserGetRectPRID

  DUserGetRotatePRID

  DUserGetScalePRID

  DUserInstanceOf

  DUserPostEvent

  DUserPostMethod

  DUserRegisterGuts

  DUserRegisterStub

  DUserRegisterSuper

  DUserSendEvent

  DUserSendMethod

  DUserStopAnimation

  Sections

  Size: 2KB - Virtual size: 20KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .aaa

  Size: 6KB - Virtual size: 82KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_CNT_UNINITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .bbb

  Size: 21KB - Virtual size: 24KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .css

  Size: 2KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .dss

  Size: 2KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE