General

Malware Config

Signatures

Files

• 4726df02c033fd5a1a0bba8de4ae42d5

  .exe windows:5 windows x86 arch:x86

  90a324b20cf7e8fa46865251ec9e4cfb

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetLogicalDrives

  GetProcessWorkingSetSize

  CreateNamedPipeA

  GetPrivateProfileSectionNamesW

  ReadConsoleA

  GetEnvironmentStringsA

  GetVolumeNameForVolumeMountPointA

  ConnectNamedPipe

  VirtualAlloc

  GetConsoleMode

  GetStdHandle

  GetWriteWatch

  GetExitCodeThread

  GetLastError

  user32

  CheckDlgButton

  TranslateAccelerator

  BroadcastSystemMessageExA

  RealGetWindowClass

  SetMenuItemBitmaps

  UpdatePerUserSystemParameters

  PostThreadMessageW

  LoadBitmapA

  GetClassWord

  IsZoomed

  DeregisterShellHookWindow

  GetWindowTextLengthA

  SetScrollRange

  FindWindowExW

  Exports

  Exports

  WriteHrnrhlu

  Tfrgxrhk

  Twinkdgqgo

  Dupaqonlnh

  AddHtgfbgdiv

  IsEuqvlroosf

  IsXfqtvrslutw

  InitHkxxtvxvefa

  Vpwxmej

  Hsxpjwoj

  Vwvcqbsv

  CloseHfxgrnl

  WriteGfobyubw

  Gmfmupscotl

  OpenSbvqjrfwu

  ReadNwogdxy

  ReadMdnpjtcxrm

  Qdjblvie

  Esxreccxm

  Sqpovkjxdbn

  Sections

  .text

  Size: 75KB - Virtual size: 74KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 512B - Virtual size: 145KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .data

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .idata

  Size: 24KB - Virtual size: 24KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 32KB - Virtual size: 31KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ