General

Malware Config

Signatures

Files

• c2f846e094adff75d54f4d31986842fbc25ba215ce8407d234464b3f759b851d

  .dll windows x86

  80c19e36dd5d0c5410c6d8b706d39dca

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  advapi32

  CreateServiceA

  FreeSid

  GetTokenInformation

  GetUserNameA

  OpenServiceA

  RegDeleteValueA

  RegEnumKeyExA

  RegEnumValueA

  RegFlushKey

  RegisterServiceCtrlHandlerA

  SetSecurityDescriptorDacl

  kernel32

  AddAtomA

  CloseHandle

  CreateDirectoryA

  CreateEventA

  CreateFileA

  CreateMutexA

  DeleteAtom

  DeleteFileA

  DeviceIoControl

  DisableThreadLibraryCalls

  EnumSystemLocalesA

  ExitProcess

  ExitThread

  FileTimeToLocalFileTime

  FindNextFileA

  FindResourceA

  FormatMessageA

  FreeLibrary

  GetComputerNameA

  GetConsoleMode

  GetCurrentDirectoryA

  GetCurrentProcess

  GetCurrentProcessId

  GetCurrentThreadId

  GetDriveTypeA

  GetFullPathNameA

  GetLastError

  GetModuleHandleA

  GetPrivateProfileSectionNamesA

  GetPrivateProfileStructA

  GetProcAddress

  GetShortPathNameA

  GetStdHandle

  GetSystemDirectoryA

  GetSystemTimeAsFileTime

  GetTempPathA

  GetThreadTimes

  GetTickCount

  GetUserDefaultLCID

  GetVersion

  GetVersionExA

  GetWindowsDirectoryA

  GlobalAlloc

  GlobalHandle

  HeapAlloc

  HeapDestroy

  HeapFree

  InitializeCriticalSection

  InterlockedCompareExchange

  InterlockedExchange

  IsBadWritePtr

  IsValidCodePage

  LCMapStringA

  LeaveCriticalSection

  LoadLibraryA

  Module32Next

  OpenProcess

  QueryPerformanceCounter

  ReadFile

  RemoveDirectoryA

  SearchPathA

  SetEndOfFile

  SetErrorMode

  SetFileTime

  SetHandleCount

  SetPriorityClass

  SetStdHandle

  SetThreadPriority

  SizeofResource

  Sleep

  TerminateProcess

  TlsAlloc

  UnhandledExceptionFilter

  VirtualAlloc

  VirtualProtect

  WideCharToMultiByte

  WriteConsoleA

  WritePrivateProfileStringA

  lstrcatA

  lstrlenA

  ole32

  CLSIDFromProgID

  CoGetMalloc

  CoInitializeEx

  CoRevokeClassObject

  CreateBindCtx

  OleLoadFromStream

  user32

  CheckMenuItem

  CreateDialogParamA

  DispatchMessageA

  EnableMenuItem

  GetActiveWindow

  GetAsyncKeyState

  GetDC

  GetMessageA

  GetProcessWindowStation

  GetSystemMenu

  GetWindowLongA

  IntersectRect

  IsWindow

  IsWindowVisible

  LoadIconA

  MessageBoxA

  OffsetRect

  PeekMessageA

  PostQuitMessage

  RegisterClassA

  RegisterClipboardFormatA

  ReleaseDC

  SendMessageA

  SetForegroundWindow

  SetTimer

  SetWindowRgn

  ShowWindow

  SystemParametersInfoA

  UpdateWindow

  version

  GetFileVersionInfoA

  GetFileVersionInfoSizeA

  VerQueryValueA

  Sections

  CODE

  Size: 44KB - Virtual size: 48KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  BSS

  Size: - Virtual size: 40KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_CNT_UNINITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  CRT

  Size: 38KB - Virtual size: 40KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .idata

  Size: 4KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  .rsrc

  Size: 1024B - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ