General

Malware Config

Signatures

Files

• 5fedbc3b71195496fc6aebff9d06997c0540ee7a6a8570c86ead9551fddaf146

  .exe windows x86

  c6e1b21bf92c62b3782a41755ad5a98a

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  rpcrt4

  RpcMgmtEpEltInqNextA

  secur32

  AddCredentialsA

  oleaut32

  VarR8Pow

  rasapi32

  RasClearConnectionStatistics

  shell32

  ord137

  imm32

  ImmNotifyIME

  msvcrt

  _time64

  toupper

  wininet

  InternetOpenA

  shlwapi

  ChrCmpIW

  PathBuildRootA

  comctl32

  InitCommonControlsEx

  kernel32

  LoadLibraryA

  GetLastError

  InterlockedExchange

  LocalAlloc

  GetProcAddress

  GetEnvironmentVariableW

  GetSystemDefaultLangID

  FreeLibrary

  RaiseException

  user32

  SetWindowTextA

  IsCharAlphaNumericA

  gdi32

  GetStockObject

  ExtTextOutW

  comdlg32

  ChooseFontW

  advapi32

  CryptReleaseContext

  Exports

  Exports

  ?BritharkGoalBikeOnusBeysOpendunkcaveClubAuksdensDove@@YGGXZ

  ?KinoOdylslobCuesBeefSkipPumperrsreppwovepeelamen@@YGXXZ

  ?KipsgodsRubySingzas@@YGGACK@Z

  ?WalkCiaoGridLambKanatingblebof@@YGKXZ

  Sections

  .text

  Size: 115KB - Virtual size: 115KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 129KB - Virtual size: 128KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 512B - Virtual size: 468B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 13KB - Virtual size: 12KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ