General

Malware Config

Signatures

Files

• 415e04eb340f1b092288cbcc71295a2c95e864fc1bbfcd55d6e3f5aa67099b1a.zip

  .zip

  Password: infected

• 415e04eb340f1b092288cbcc71295a2c95e864fc1bbfcd55d6e3f5aa67099b1a.exe

  .exe windows x86

  Password: infected

  de3b3bef1d15dd8ecc264ee790a36468

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetStdHandle

  UnhandledExceptionFilter

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  SetHandleCount

  GetFileType

  QueryPerformanceCounter

  GetCurrentProcessId

  GetSystemTimeAsFileTime

  LCMapStringA

  LCMapStringW

  GetStringTypeA

  SetUnhandledExceptionFilter

  GetTimeZoneInformation

  IsBadReadPtr

  IsBadCodePtr

  VirtualProtect

  GetSystemInfo

  VirtualQuery

  SetStdHandle

  SetEnvironmentVariableA

  IsBadWritePtr

  VirtualAlloc

  VirtualFree

  HeapCreate

  HeapDestroy

  HeapSize

  TerminateProcess

  HeapReAlloc

  ExitProcess

  GetCommandLineA

  GetStartupInfoA

  HeapFree

  RaiseException

  HeapAlloc

  RtlUnwind

  SetErrorMode

  lstrcpyW

  LocalFileTimeToFileTime

  FileTimeToLocalFileTime

  GetShortPathNameA

  CreateFileA

  GetVolumeInformationA

  FindFirstFileA

  FindClose

  GetCurrentProcess

  DuplicateHandle

  GetFileSize

  SetEndOfFile

  UnlockFile

  LockFile

  FlushFileBuffers

  SetFilePointer

  WriteFile

  ReadFile

  DeleteFileA

  MoveFileA

  GetCurrentDirectoryA

  SystemTimeToFileTime

  FileTimeToSystemTime

  GetOEMCP

  GetCPInfo

  GlobalFlags

  TlsFree

  DeleteCriticalSection

  LocalReAlloc

  TlsSetValue

  TlsAlloc

  InitializeCriticalSection

  TlsGetValue

  EnterCriticalSection

  GlobalHandle

  GlobalReAlloc

  LeaveCriticalSection

  LocalAlloc

  GetTickCount

  GetDiskFreeSpaceA

  GetFullPathNameA

  GetTempFileNameA

  GetFileTime

  SetFileTime

  GetFileAttributesA

  GetLastError

  CopyFileA

  GlobalSize

  FormatMessageA

  LocalFree

  GetPrivateProfileStringA

  WritePrivateProfileStringA

  GetPrivateProfileIntA

  CloseHandle

  InterlockedDecrement

  GetCurrentThread

  GlobalAlloc

  ConvertDefaultLocale

  EnumResourceLanguagesA

  GetModuleFileNameA

  SetLastError

  lstrcpynA

  FreeResource

  GetCurrentThreadId

  GlobalGetAtomNameA

  GlobalAddAtomA

  GlobalFindAtomA

  GlobalDeleteAtom

  LoadLibraryA

  FreeLibrary

  lstrcatA

  lstrcmpW

  lstrcpyA

  GetModuleHandleA

  GetProcAddress

  lstrcmpA

  MulDiv

  GlobalLock

  GlobalUnlock

  GlobalFree

  InterlockedIncrement

  lstrlenA

  lstrcmpiA

  GetStringTypeExA

  lstrlenW

  CompareStringA

  CompareStringW

  MultiByteToWideChar

  GetVersion

  LoadResource

  LockResource

  SizeofResource

  FindResourceA

  WideCharToMultiByte

  GetThreadLocale

  GetLocaleInfoA

  GetACP

  GetVersionExA

  InterlockedExchange

  GetTimeFormatA

  GetLocalTime

  GetStringTypeW

  GetDateFormatA

  user32

  InsertMenuItemA

  CreatePopupMenu

  SetRectEmpty

  BringWindowToTop

  SetMenu

  TranslateAcceleratorA

  GetDesktopWindow

  GetActiveWindow

  CreateDialogIndirectParamA

  GetNextDlgTabItem

  EndDialog

  EndPaint

  BeginPaint

  GetWindowDC

  ReleaseDC

  GrayStringA

  DrawTextExA

  DrawTextA

  TabbedTextOutA

  FillRect

  SetMenuItemBitmaps

  ModifyMenuA

  GetMenuState

  EnableMenuItem

  CheckMenuItem

  GetMenuCheckMarkDimensions

  LoadBitmapA

  IsWindowEnabled

  ShowWindow

  MoveWindow

  SetWindowTextA

  IsDialogMessageA

  WinHelpA

  GetCapture

  CreateWindowExA

  SetWindowsHookExA

  CallNextHookEx

  GetClassLongA

  GetClassInfoExA

  GetClassNameA

  SetPropA

  GetPropA

  RemovePropA

  SendDlgItemMessageA

  SetFocus

  GetWindowTextLengthA

  GetWindowTextA

  GetForegroundWindow

  GetLastActivePopup

  DispatchMessageA

  BeginDeferWindowPos

  EndDeferWindowPos

  GetDlgItem

  GetTopWindow

  DestroyWindow

  UnhookWindowsHookEx

  GetMessageTime

  GetMessagePos

  PeekMessageA

  MapWindowPoints

  LockWindowUpdate

  TrackPopupMenu

  LoadAcceleratorsA

  IsWindowVisible

  GetMenu

  PostMessageA

  GetSubMenu

  GetMenuItemID

  GetMenuItemCount

  GetSysColor

  ScreenToClient

  EqualRect

  DeferWindowPos

  GetClassInfoA

  RegisterClassA

  UnregisterClassA

  DefWindowProcA

  CallWindowProcA

  GetWindowLongA

  SetWindowLongA

  SetWindowPos

  IntersectRect

  SystemParametersInfoA

  GetWindowPlacement

  CopyRect

  GetWindow

  GetDlgCtrlID

  GetFocus

  IsChild

  GetParent

  IsIconic

  SendMessageA

  GetDC

  EnableWindow

  GetDCEx

  WindowFromPoint

  KillTimer

  SetTimer

  InsertMenuA

  GetMenuItemInfoA

  InflateRect

  GetSysColorBrush

  AdjustWindowRectEx

  RegisterWindowMessageA

  IsWindow

  GetSystemMetrics

  CountClipboardFormats

  IsClipboardFormatAvailable

  GetKeyState

  ReleaseCapture

  SetCapture

  SetActiveWindow

  InvalidateRect

  ClientToScreen

  GetClientRect

  GetWindowRect

  OffsetRect

  PostThreadMessageA

  SetRect

  PtInRect

  MessageBeep

  CharUpperA

  MessageBoxA

  UpdateWindow

  LoadStringW

  LoadIconA

  wsprintfA

  GetNextDlgGroupItem

  InvalidateRgn

  CharNextA

  SetForegroundWindow

  DestroyIcon

  CopyAcceleratorTableA

  SendNotifyMessageA

  RegisterClipboardFormatA

  LoadCursorA

  GetMenuStringA

  SetCursor

  RemoveMenu

  SetWindowContextHelpId

  MapDialogRect

  GetMessageA

  TranslateMessage

  GetCursorPos

  ValidateRect

  ShowOwnedPopups

  PostQuitMessage

  SetParent

  GetSystemMenu

  AppendMenuA

  DeleteMenu

  IsRectEmpty

  IsZoomed

  LoadMenuA

  DestroyMenu

  UnpackDDElParam

  ReuseDDElParam

  gdi32

  CreateRectRgn

  GetViewportExtEx

  GetWindowExtEx

  BitBlt

  GetPixel

  PtVisible

  RectVisible

  TextOutA

  ExtTextOutA

  Escape

  SelectObject

  SetViewportOrgEx

  OffsetViewportOrgEx

  SetViewportExtEx

  ScaleViewportExtEx

  SetWindowExtEx

  ExtSelectClipRgn

  DeleteDC

  CreatePatternBrush

  CreateCompatibleDC

  GetStockObject

  CreateCompatibleBitmap

  GetTextMetricsA

  GetTextExtentPoint32A

  StretchDIBits

  GetCharWidthA

  CreateFontA

  CopyMetaFileA

  PatBlt

  CreateFontIndirectA

  CreateRectRgnIndirect

  SetRectRgn

  CombineRgn

  GetMapMode

  GetBkColor

  GetTextColor

  GetRgnBox

  SelectClipRgn

  DeleteObject

  IntersectClipRect

  ExcludeClipRect

  SetMapMode

  SetBkMode

  RestoreDC

  SaveDC

  CreateBitmap

  GetObjectA

  SetBkColor

  SetTextColor

  GetClipBox

  CreateSolidBrush

  GetDeviceCaps

  ScaleWindowExtEx

  DPtoLP

  CreateDCA

  comdlg32

  GetOpenFileNameA

  GetSaveFileNameA

  GetFileTitleA

  PrintDlgA

  FindTextA

  ReplaceTextA

  CommDlgExtendedError

  ChooseColorA

  ChooseFontA

  winspool.drv

  DocumentPropertiesA

  OpenPrinterA

  ClosePrinter

  advapi32

  GetFileSecurityA

  RegQueryValueExA

  RegOpenKeyExA

  RegDeleteKeyA

  RegEnumKeyA

  RegOpenKeyA

  RegQueryValueA

  RegCreateKeyExA

  RegSetValueExA

  RegDeleteValueA

  RegSetValueA

  RegCreateKeyA

  RegCloseKey

  SetFileSecurityA

  shell32

  SHGetFileInfoA

  DragAcceptFiles

  DragFinish

  DragQueryFileA

  ExtractIconA

  ShellAboutA

  comctl32

  ord17

  ImageList_Draw

  ImageList_GetImageInfo

  ImageList_Destroy

  shlwapi

  PathFindFileNameA

  PathStripToRootA

  PathFindExtensionA

  PathIsUNCA

  oledlg

  ord4

  ord11

  ord8

  ord3

  ole32

  OleCreateStaticFromData

  OleCreateFromFile

  OleCreateLinkToFile

  OleCreate

  OleLoad

  StgOpenStorageOnILockBytes

  GetHGlobalFromILockBytes

  OleGetIconOfClass

  CreateItemMoniker

  CreateGenericComposite

  OleSetMenuDescriptor

  OleGetClipboard

  CoGetClassObject

  OleCreateLinkFromData

  CoRevokeClassObject

  OleIsCurrentClipboard

  OleFlushClipboard

  CoRegisterMessageFilter

  CoDisconnectObject

  OleDuplicateData

  CoTaskMemAlloc

  CreateBindCtx

  CoTreatAsClass

  StringFromCLSID

  ReadClassStg

  ReadFmtUserTypeStg

  WriteClassStg

  WriteFmtUserTypeStg

  SetConvertStg

  CLSIDFromString

  CLSIDFromProgID

  OleRegGetUserType

  CoTaskMemFree

  ReleaseStgMedium

  OleCreateFromData

  OleSetContainedObject

  OleLockRunning

  CreateStreamOnHGlobal

  OleSaveToStream

  WriteClassStm

  OleSave

  CreateILockBytesOnHGlobal

  StgCreateDocfileOnILockBytes

  OleInitialize

  CoFreeUnusedLibraries

  OleUninitialize

  CreateFileMoniker

  oleaut32

  VariantClear

  VariantInit

  SysAllocStringLen

  SysFreeString

  SysStringLen

  SysAllocStringByteLen

  VariantCopy

  SafeArrayDestroy

  SystemTimeToVariantTime

  SysAllocString

  OleCreateFontIndirect

  VariantChangeType

  oleacc

  LresultFromObject

  CreateStdAccessibleObject

  Sections

  .text

  Size: 272KB - Virtual size: 268KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 80KB - Virtual size: 78KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 12KB - Virtual size: 24KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 196KB - Virtual size: 192KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ