General

Malware Config

Signatures

Files

• 3483691270d16b0efc8aca6864941b509e8bf9f629b2fea5d2d9ff0f8f4e8212

  .exe windows x86

  45995f2a58017e821e9bbe466e30f3e4

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  IsBadCodePtr

  GetCommandLineA

  GetTickCount

  CreateFileA

  GetFileSize

  ReadFile

  GetModuleFileNameA

  IsBadReadPtr

  HeapFree

  HeapReAlloc

  HeapAlloc

  ExitProcess

  GetModuleHandleA

  GetProcessHeap

  Process32Next

  CloseHandle

  Process32First

  CreateToolhelp32Snapshot

  SetStdHandle

  GetStringTypeW

  GetStringTypeA

  SetUnhandledExceptionFilter

  LCMapStringW

  LCMapStringA

  CreateEventA

  OpenEventA

  IsBadWritePtr

  VirtualAlloc

  GetCurrentThreadId

  GetCurrentThread

  lstrcmpiA

  lstrcmpA

  GlobalDeleteAtom

  GlobalAlloc

  GlobalLock

  LocalAlloc

  LocalFree

  InitializeCriticalSection

  TlsAlloc

  DeleteCriticalSection

  GlobalFree

  GlobalUnlock

  GlobalHandle

  TlsFree

  LeaveCriticalSection

  GlobalReAlloc

  EnterCriticalSection

  TlsSetValue

  LocalReAlloc

  TlsGetValue

  lstrcpynA

  lstrlenA

  GlobalFlags

  InterlockedDecrement

  WritePrivateProfileStringA

  lstrcatA

  lstrcpyA

  InterlockedIncrement

  WideCharToMultiByte

  MultiByteToWideChar

  SetLastError

  GetProcAddress

  GetLastError

  GlobalFindAtomA

  GlobalAddAtomA

  GlobalGetAtomNameA

  GetVersion

  FreeLibrary

  LoadLibraryA

  GetProcessVersion

  SetErrorMode

  GetCurrentProcess

  WriteFile

  SetFilePointer

  FlushFileBuffers

  GetCPInfo

  GetOEMCP

  GetStartupInfoA

  RtlUnwind

  TerminateProcess

  RaiseException

  HeapSize

  GetACP

  UnhandledExceptionFilter

  FreeEnvironmentStringsA

  FreeEnvironmentStringsW

  GetEnvironmentStrings

  GetEnvironmentStringsW

  SetHandleCount

  GetStdHandle

  GetFileType

  GetEnvironmentVariableA

  GetVersionExA

  HeapDestroy

  HeapCreate

  VirtualFree

  user32

  FindWindowExA

  IsWindowVisible

  IsWindow

  GetWindowThreadProcessId

  GetWindowTextLengthA

  GetWindowTextA

  GetClassNameA

  SetWindowPos

  PeekMessageA

  GetMessageA

  TranslateMessage

  DispatchMessageA

  wsprintfA

  MessageBoxA

  OpenIcon

  IsIconic

  PostQuitMessage

  PostMessageA

  SendMessageA

  SetCursor

  EnableWindow

  GetWindowLongA

  IsWindowEnabled

  GetLastActivePopup

  GetParent

  SetWindowsHookExA

  GetCursorPos

  ValidateRect

  CallNextHookEx

  GetKeyState

  GetActiveWindow

  GetNextDlgTabItem

  GetFocus

  EnableMenuItem

  CheckMenuItem

  SetMenuItemBitmaps

  ModifyMenuA

  GetMenuState

  LoadBitmapA

  GetMenuCheckMarkDimensions

  PtInRect

  GetWindowRect

  GetDlgCtrlID

  GetWindow

  ClientToScreen

  SetWindowTextA

  UnhookWindowsHookEx

  GetMenuItemCount

  GetDC

  ReleaseDC

  TabbedTextOutA

  DrawTextA

  GrayStringA

  GetDlgItem

  UnregisterClassA

  SetWindowLongA

  ShowWindow

  SetFocus

  GetSystemMetrics

  GetWindowPlacement

  SystemParametersInfoA

  RegisterWindowMessageA

  SetForegroundWindow

  GetForegroundWindow

  GetMessagePos

  GetMessageTime

  DefWindowProcA

  RemovePropA

  CallWindowProcA

  GetPropA

  SetPropA

  GetClassLongA

  CreateWindowExA

  DestroyWindow

  GetMenuItemID

  GetSubMenu

  GetMenu

  RegisterClassA

  GetClassInfoA

  WinHelpA

  GetCapture

  GetTopWindow

  CopyRect

  GetClientRect

  AdjustWindowRectEx

  GetSysColor

  MapWindowPoints

  LoadIconA

  LoadCursorA

  GetSysColorBrush

  LoadStringA

  DestroyMenu

  advapi32

  CryptGetHashParam

  CryptDestroyHash

  CryptHashData

  CryptReleaseContext

  CryptCreateHash

  CryptAcquireContextA

  RegCloseKey

  RegCreateKeyExA

  RegOpenKeyExA

  RegSetValueExA

  gdi32

  GetDeviceCaps

  PtVisible

  RectVisible

  TextOutA

  ExtTextOutA

  Escape

  GetObjectA

  GetStockObject

  CreateBitmap

  DeleteObject

  DeleteDC

  SaveDC

  RestoreDC

  SelectObject

  SetBkColor

  SetTextColor

  SetMapMode

  SetViewportOrgEx

  OffsetViewportOrgEx

  SetViewportExtEx

  ScaleViewportExtEx

  SetWindowExtEx

  ScaleWindowExtEx

  GetClipBox

  winspool.drv

  OpenPrinterA

  DocumentPropertiesA

  ClosePrinter

  comctl32

  ord17

  Sections

  .text

  Size: 81KB - Virtual size: 80KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 16KB - Virtual size: 15KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 16KB - Virtual size: 42KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 85KB - Virtual size: 88KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ