General

Malware Config

Signatures

Files

• fa64636aa48efbc1f7d11c6260659dcccc7f03f470cf707b0b22c6cf886a5b8b

  .exe windows x86

  825dd62e47e155b68bd3fe556e00044c

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_WDM_DRIVER

  IMAGE_DLLCHARACTERISTICS_GUARD_CF

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_AGGRESIVE_WS_TRIM

  IMAGE_FILE_DEBUG_STRIPPED

  Imports

  kernel32

  WriteConsoleW

  OutputDebugStringA

  IsValidCodePage

  GetCPInfo

  GetOEMCP

  GetACP

  HeapFree

  HeapQueryInformation

  HeapSize

  HeapReAlloc

  WriteFile

  OutputDebugStringW

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  DeleteCriticalSection

  GetFileType

  InitializeCriticalSectionAndSpinCount

  SetHandleCount

  GetEnvironmentStringsW

  WideCharToMultiByte

  FreeEnvironmentStringsW

  GetModuleFileNameA

  ExitProcess

  GetModuleHandleW

  LoadLibraryW

  RtlUnwind

  IsProcessorFeaturePresent

  LCMapStringW

  MultiByteToWideChar

  GetStringTypeW

  FlushFileBuffers

  GetConsoleCP

  GetConsoleMode

  SetFilePointer

  CloseHandle

  SetStdHandle

  RaiseException

  GetCurrentProcessId

  SetLastError

  GetProcAddress

  InterlockedDecrement

  GetLastError

  HeapCreate

  HeapAlloc

  InterlockedIncrement

  CreateFileW

  GetSystemTimeAsFileTime

  GetCurrentThreadId

  GetTickCount

  QueryPerformanceCounter

  GetModuleFileNameW

  EncodePointer

  DecodePointer

  LeaveCriticalSection

  EnterCriticalSection

  IsBadReadPtr

  HeapValidate

  GetStdHandle

  lstrlenA

  IsDebuggerPresent

  SetUnhandledExceptionFilter

  GetCommandLineA

  HeapSetInformation

  GetStartupInfoW

  TerminateProcess

  GetCurrentProcess

  UnhandledExceptionFilter

  user32

  CopyRect

  SetDlgItemTextA

  RegisterClassA

  LoadCursorA

  SetMenuItemInfoA

  ClientToScreen

  ScreenToClient

  GetWindowRect

  CreateDialogParamA

  InsertMenuItemA

  RegisterClassExA

  GetWindowDC

  FillRect

  DrawTextA

  LoadStringA

  GetFocus

  LoadMenuA

  LoadIconA

  DefFrameProcA

  IsWindowEnabled

  GetClientRect

  SendMessageA

  GetDC

  OffsetRect

  GetWindowTextA

  SetRect

  GetWindowLongA

  CreateWindowExA

  ReleaseDC

  DefWindowProcA

  LoadAcceleratorsA

  EnumChildWindows

  SetMenu

  CreatePopupMenu

  GetSysColorBrush

  IsWindow

  GetSystemMetrics

  gdi32

  DeleteDC

  GetDeviceCaps

  ExcludeClipRect

  CreateDCA

  DeleteObject

  SelectObject

  SelectClipRgn

  CombineRgn

  Rectangle

  CreateRectRgn

  CreatePen

  GetTextMetricsA

  CreateSolidBrush

  winspool.drv

  ClosePrinter

  advapi32

  ControlService

  ClearEventLogA

  shell32

  SHGetPathFromIDListA

  SHBrowseForFolderA

  ole32

  CoTaskMemFree

  CoInitialize

  CoCreateInstance

  odbc32

  ord1

  ord2

  shlwapi

  PathFindFileNameA

  PathFindNextComponentA

  comctl32

  ord6

  uxtheme

  DrawThemeBackground

  Sections

  .text

  Size: 483KB - Virtual size: 483KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 50KB - Virtual size: 49KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 9KB - Virtual size: 16KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 15KB - Virtual size: 15KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 13KB - Virtual size: 13KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ