General

Malware Config

Signatures

Files

• f73818d00fc14af6af90e67f2a44643b35103f02f4daaa7f15a5d2b1bbf40ff3

  .exe windows x86

  7ce77625c1b47ea4104742c4c78d7022

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  msvcrt

  malloc

  fsetpos

  urlmon

  CoInternetGetSecurityUrl

  lz32

  LZSeek

  user32

  DefMDIChildProcW

  GetDlgItemTextA

  GetUpdateRgn

  GetClipboardViewer

  GetQueueStatus

  GetWindowLongA

  FlashWindowEx

  DestroyCaret

  EqualRect

  GetUpdateRect

  secur32

  DeleteSecurityContext

  winspool.drv

  FindNextPrinterChangeNotification

  advapi32

  LookupPrivilegeNameA

  LogonUserA

  GetSidIdentifierAuthority

  gdi32

  EndDoc

  FillPath

  GetLogColorSpaceA

  GetDeviceCaps

  GetROP2

  GetCurrentObject

  kernel32

  GetStartupInfoW

  FillConsoleOutputCharacterA

  GlobalAlloc

  GetCommandLineA

  GetFileAttributesW

  GetCurrentProcess

  GetCommModemStatus

  FindFirstVolumeMountPointW

  FindFirstVolumeW

  WritePrivateProfileStructW

  Module32FirstW

  GetModuleHandleW

  GetCalendarInfoEx

  IsSystemResumeAutomatic

  GetUserDefaultLCID

  shell32

  ExtractIconA

  Sections

  .text

  Size: 28KB - Virtual size: 25KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 188KB - Virtual size: 186KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 20KB - Virtual size: 24KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_CNT_UNINITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .DATA

  Size: 4KB - Virtual size: 1KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_READ