4f17bff80945542143732f49f88753f6

Sharing

Copy URL Twitter E-mail

General

Target

4f17bff80945542143732f49f88753f6
Size

4.1MB
MD5

4f17bff80945542143732f49f88753f6
SHA1

a4b88718c27351c0596a2702ae91f7c7d2617722
SHA256

eb0d30693bc71cc1c6c7b0475ccdaa7e466b58954c9db533c6b1f893d33952de
SHA512

fe96b57f467cafada25fde6bd989711f79dcd8c6866dcd1fcbc0cdcfcc31168d20f0a596f45a46727f8e59bf902d474e85166fbc09588f43981253dcd15f695e
SSDEEP

98304:BZyBPwhS946oKN3WkmfXPuivmWO/AnRXn24CB:BaPwhS946JeffumFO/WR3GB

Score

7^/10

themida

Malware Config

Signatures

Themida packer 1 IoCs

Detects Themida, an advanced Windows software protection system.

themida

resource	yara_rule
sample	themida

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4f17bff80945542143732f49f88753f6

Files

4f17bff80945542143732f49f88753f6
.dll windows:4 windows x86 arch:x86

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Exports

Exports

??0FCategoryItem@@QAE@ABV0@@Z
??0FCategoryItem@@QAE@PAVWPropertiesBase@@PAVFTreeItem@@PAVUClass@@VFName@@H@Z
??0FClassItem@@QAE@ABV0@@Z
??0FClassItem@@QAE@PAVWPropertiesBase@@PAVFTreeItem@@KPBGPAVUClass@@@Z
??0FClassItem@@QAE@XZ
??0FCommandTarget@@QAE@ABV0@@Z
??0FCommandTarget@@QAE@XZ
??0FConfigItem@@QAE@ABV0@@Z
??0FConfigItem@@QAE@ABVFPreferencesInfo@@PAVWPropertiesBase@@PAVFTreeItem@@@Z
??0FConfigItem@@QAE@XZ
??0FContainer@@QAE@XZ
??0FControlSnoop@@QAE@ABV0@@Z
??0FControlSnoop@@QAE@XZ
??0FDelegate@@QAE@ABU0@@Z
??0FDelegate@@QAE@PAVFCommandTarget@@P81@AEXXZ@Z
??0FDelegateInt@@QAE@ABU0@@Z
??0FDelegateInt@@QAE@PAVFCommandTarget@@P81@AEXH@Z@Z
??0FHeaderItem@@QAE@ABV0@@Z
??0FHeaderItem@@QAE@PAVWPropertiesBase@@PAVFTreeItem@@H@Z
??0FHeaderItem@@QAE@XZ
??0FNewObjectItem@@QAE@ABV0@@Z
??0FNewObjectItem@@QAE@PAVWPropertiesBase@@PAVFTreeItem@@PAVUObjectProperty@@@Z
??0FNewObjectItem@@QAE@XZ
??0FObjectConfigItem@@QAE@ABV0@@Z
??0FObjectConfigItem@@QAE@PAVWPropertiesBase@@PAVFTreeItem@@PBG2HVFName@@@Z
??0FObjectsItem@@QAE@ABV0@@Z
??0FObjectsItem@@QAE@PAVWPropertiesBase@@PAVFTreeItem@@KPBGHH@Z
??0FObjectsItem@@QAE@XZ
??0FPropertyItem@@QAE@ABV0@@Z
??0FPropertyItem@@QAE@PAVWPropertiesBase@@PAVFTreeItem@@PAVUProperty@@VFName@@HHH@Z
??0FPropertyItemBase@@QAE@ABV0@@Z
??0FPropertyItemBase@@QAE@PAVWPropertiesBase@@PAVFTreeItem@@KPBG@Z
??0FPropertyItemBase@@QAE@XZ
??0FTreeItem@@QAE@ABV0@@Z
??0FTreeItem@@QAE@PAVWPropertiesBase@@PAV0@H@Z
??0FTreeItem@@QAE@XZ
??0FTreeItemBase@@QAE@ABV0@@Z
??0FTreeItemBase@@QAE@XZ
??0FUDNHelpTopic@@QAE@ABV0@@Z
??0FUDNHelpTopic@@QAE@VFString@@0@Z
??0FUDNHelpTopic@@QAE@XZ
??0FWaitCursor@@QAE@XZ
??0FWindowAnchor@@QAE@PAUHWND__@@0HHHHHH@Z
??0FWindowAnchor@@QAE@XZ
??0FWindowsBitmap@@QAE@H@Z
??0WBitmapButton@@QAE@ABV0@@Z
??0WBitmapButton@@QAE@PAVWWindow@@HUFDelegate@@P6GJPAUHWND__@@IIJ@Z@Z
??0WBitmapButton@@QAE@XZ
??0WButton@@QAE@ABV0@@Z
??0WButton@@QAE@PAVWWindow@@HUFDelegate@@P6GJPAUHWND__@@IIJ@Z@Z
??0WButton@@QAE@XZ
??0WCheckBox@@QAE@ABV0@@Z
??0WCheckBox@@QAE@PAVWWindow@@HUFDelegate@@@Z
??0WCheckBox@@QAE@XZ
??0WCheckListBox@@QAE@ABV0@@Z
??0WCheckListBox@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WCheckListBox@@QAE@XZ
??0WClassProperties@@QAE@ABV0@@Z
??0WClassProperties@@QAE@VFName@@KPBGPAVUClass@@@Z
??0WClassProperties@@QAE@XZ
??0WColorButton@@QAE@ABV0@@Z
??0WColorButton@@QAE@PAVWWindow@@HUFDelegate@@P6GJPAUHWND__@@IIJ@Z@Z
??0WColorButton@@QAE@XZ
??0WComboBox@@QAE@ABV0@@Z
??0WComboBox@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WComboBox@@QAE@XZ
??0WConfigProperties@@QAE@ABV0@@Z
??0WConfigProperties@@QAE@VFName@@PBG@Z
??0WConfigProperties@@QAE@XZ
??0WControl@@QAE@ABV0@@Z
??0WControl@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WControl@@QAE@XZ
??0WCoolButton@@QAE@ABV0@@Z
??0WCoolButton@@QAE@PAVWWindow@@HUFDelegate@@K@Z
??0WCoolButton@@QAE@XZ
??0WCrashBoxDialog@@QAE@ABV0@@Z
??0WCrashBoxDialog@@QAE@PBG0@Z
??0WCrashBoxDialog@@QAE@XZ
??0WCustomLabel@@QAE@ABV0@@Z
??0WCustomLabel@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WCustomLabel@@QAE@XZ
??0WDialog@@QAE@ABV0@@Z
??0WDialog@@QAE@VFName@@HPAVWWindow@@@Z
??0WDialog@@QAE@XZ
??0WDragInterceptor@@QAE@ABV0@@Z
??0WDragInterceptor@@QAE@PAVWWindow@@UFPoint@@UFRect@@1@Z
??0WDragInterceptor@@QAE@XZ
??0WEdit@@QAE@ABV0@@Z
??0WEdit@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WEdit@@QAE@XZ
??0WEditTerminal@@QAE@ABV0@@Z
??0WEditTerminal@@QAE@PAVWTerminalBase@@@Z
??0WGroupBox@@QAE@ABV0@@Z
??0WGroupBox@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WGroupBox@@QAE@XZ
??0WItemBox@@QAE@ABV0@@Z
??0WItemBox@@QAE@PAVWWindow@@H@Z
??0WItemBox@@QAE@XZ
??0WLabel@@QAE@ABV0@@Z
??0WLabel@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WLabel@@QAE@XZ
??0WListBox@@QAE@ABV0@@Z
??0WListBox@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WListBox@@QAE@XZ
??0WListView@@QAE@ABV0@@Z
??0WListView@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WListView@@QAE@XZ
??0WLog@@QAE@ABV0@@Z
??0WLog@@QAE@PBGAAPAVFArchive@@VFName@@PAVWWindow@@@Z
??0WLog@@QAE@XZ
??0WObjectProperties@@QAE@ABV0@@Z
??0WObjectProperties@@QAE@VFName@@KPBGPAVWWindow@@H@Z
??0WObjectProperties@@QAE@XZ
??0WPictureButton@@QAE@ABV0@@Z
??0WPictureButton@@QAE@PAVWWindow@@@Z
??0WProgressBar@@QAE@ABV0@@Z
??0WProgressBar@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WProgressBar@@QAE@XZ
??0WProperties@@QAE@ABV0@@Z
??0WProperties@@QAE@VFName@@PAVWWindow@@@Z
??0WProperties@@QAE@XZ
??0WPropertiesBase@@QAE@ABV0@@Z
??0WPropertiesBase@@QAE@VFName@@PAVWWindow@@@Z
??0WPropertiesBase@@QAE@XZ
??0WPropertyPage@@QAE@ABV0@@Z
??0WPropertyPage@@QAE@PAVWWindow@@@Z
??0WPropertySheet@@QAE@ABV0@@Z
??0WPropertySheet@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WPropertySheet@@QAE@XZ
??0WRichEdit@@QAE@ABV0@@Z
??0WRichEdit@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WRichEdit@@QAE@XZ
??0WScrollBar@@QAE@ABV0@@Z
??0WScrollBar@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WScrollBar@@QAE@XZ
??0WSplitter@@QAE@ABV0@@Z
??0WSplitter@@QAE@PAVWWindow@@@Z
??0WSplitter@@QAE@XZ
??0WSplitterContainer@@QAE@ABV0@@Z
??0WSplitterContainer@@QAE@PAVWWindow@@@Z
??0WSplitterPane@@QAE@ABV0@@Z
??0WSplitterPane@@QAE@PAVWWindow@@@Z
??0WSplitterPane@@QAE@XZ
??0WTabControl@@QAE@ABV0@@Z
??0WTabControl@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WTabControl@@QAE@XZ
??0WTerminal@@QAE@ABV0@@Z
??0WTerminal@@QAE@VFName@@PAVWWindow@@@Z
??0WTerminal@@QAE@XZ
??0WTerminalBase@@QAE@ABV0@@Z
??0WTerminalBase@@QAE@VFName@@PAVWWindow@@@Z
??0WTerminalBase@@QAE@XZ
??0WThinScrollBar@@QAE@ABV0@@Z
??0WThinScrollBar@@QAE@PAVWWindow@@H@Z
??0WTimeScrollBar@@QAE@ABV0@@Z
??0WTimeScrollBar@@QAE@PAVWWindow@@H@Z
??0WToolTip@@QAE@ABV0@@Z
??0WToolTip@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WToolTip@@QAE@XZ
??0WTrackBar@@QAE@ABV0@@Z
??0WTrackBar@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WTrackBar@@QAE@XZ
??0WTreeView@@QAE@ABV0@@Z
??0WTreeView@@QAE@PAVWWindow@@HP6GJPAUHWND__@@IIJ@Z@Z
??0WTreeView@@QAE@XZ
??0WUDNWindow@@QAE@ABV0@@Z
??0WUDNWindow@@QAE@PAVWWindow@@@Z
??0WUrlButton@@QAE@ABV0@@Z
??0WUrlButton@@QAE@PAVWWindow@@PBGH@Z
??0WUrlButton@@QAE@XZ
??0WWindow@@QAE@ABV0@@Z
??0WWindow@@QAE@VFName@@PAV0@@Z
??0WWizardDialog@@QAE@ABV0@@Z
??0WWizardDialog@@QAE@XZ
??0WWizardPage@@QAE@ABV0@@Z
??0WWizardPage@@QAE@PBGHPAVWWizardDialog@@@Z
??0WWizardPage@@QAE@XZ
??1FCategoryItem@@UAE@XZ
??1FClassItem@@UAE@XZ
??1FConfigItem@@UAE@XZ
??1FHeaderItem@@UAE@XZ
??1FNewObjectItem@@UAE@XZ
??1FObjectConfigItem@@UAE@XZ
??1FObjectsItem@@UAE@XZ
??1FPropertyItem@@UAE@XZ
??1FPropertyItemBase@@UAE@XZ
??1FTreeItem@@UAE@XZ
??1FUDNHelpTopic@@QAE@XZ
??1FWaitCursor@@QAE@XZ
??1FWindowAnchor@@QAE@XZ
??1FWindowsBitmap@@QAE@XZ
??1WBitmapButton@@UAE@XZ
??1WButton@@UAE@XZ
??1WCheckBox@@UAE@XZ
??1WCheckListBox@@UAE@XZ
??1WClassProperties@@UAE@XZ
??1WColorButton@@UAE@XZ
??1WComboBox@@UAE@XZ
??1WConfigProperties@@UAE@XZ
??1WControl@@UAE@XZ
??1WCoolButton@@UAE@XZ
??1WCrashBoxDialog@@UAE@XZ
??1WCustomLabel@@UAE@XZ
??1WDialog@@UAE@XZ
??1WDragInterceptor@@UAE@XZ
??1WEdit@@UAE@XZ
??1WEditTerminal@@UAE@XZ
??1WGroupBox@@UAE@XZ
??1WItemBox@@UAE@XZ
??1WLabel@@UAE@XZ
??1WListBox@@UAE@XZ
??1WListView@@UAE@XZ
??1WLog@@UAE@XZ
??1WObjectProperties@@UAE@XZ
??1WPictureButton@@UAE@XZ
??1WProgressBar@@UAE@XZ
??1WProperties@@UAE@XZ
??1WPropertiesBase@@UAE@XZ
??1WPropertyPage@@UAE@XZ
??1WPropertySheet@@UAE@XZ
??1WRichEdit@@UAE@XZ
??1WScrollBar@@UAE@XZ
??1WSplitter@@UAE@XZ
??1WSplitterContainer@@UAE@XZ
??1WSplitterPane@@UAE@XZ
??1WTabControl@@UAE@XZ
??1WTerminal@@UAE@XZ
??1WTerminalBase@@UAE@XZ
??1WThinScrollBar@@UAE@XZ
??1WTimeScrollBar@@UAE@XZ
??1WToolTip@@UAE@XZ
??1WTrackBar@@UAE@XZ
??1WTreeView@@UAE@XZ
??1WUDNWindow@@UAE@XZ
??1WUrlButton@@UAE@XZ
??1WWindow@@UAE@XZ
??1WWizardDialog@@UAE@XZ
??1WWizardPage@@UAE@XZ
??4FCategoryItem@@QAEAAV0@ABV0@@Z
??4FClassItem@@QAEAAV0@ABV0@@Z
??4FCommandTarget@@QAEAAV0@ABV0@@Z
??4FConfigItem@@QAEAAV0@ABV0@@Z
??4FContainer@@QAEAAV0@ABV0@@Z
??4FControlSnoop@@QAEAAV0@ABV0@@Z
??4FDelegate@@QAEAAU0@ABU0@@Z
??4FDelegateInt@@QAEAAU0@ABU0@@Z
??4FHeaderItem@@QAEAAV0@ABV0@@Z
??4FNewObjectItem@@QAEAAV0@ABV0@@Z
??4FObjectConfigItem@@QAEAAV0@ABV0@@Z
??4FObjectsItem@@QAEAAV0@ABV0@@Z
??4FPropertyItem@@QAEAAV0@ABV0@@Z
??4FPropertyItemBase@@QAEAAV0@ABV0@@Z
??4FTreeItem@@QAEAAV0@ABV0@@Z
??4FTreeItemBase@@QAEAAV0@ABV0@@Z
??4FUDNHelpTopic@@QAEAAV0@ABV0@@Z
??4FWaitCursor@@QAEAAV0@ABV0@@Z
??4FWindowAnchor@@QAE?AV0@ABV0@@Z
??4FWindowsBitmap@@AAEXAAV0@@Z
??4WBitmapButton@@QAEAAV0@ABV0@@Z
??4WButton@@QAEAAV0@ABV0@@Z
??4WCheckBox@@QAEAAV0@ABV0@@Z
??4WCheckListBox@@QAEAAV0@ABV0@@Z
??4WClassProperties@@QAEAAV0@ABV0@@Z
??4WColorButton@@QAEAAV0@ABV0@@Z
??4WComboBox@@QAEAAV0@ABV0@@Z
??4WConfigProperties@@QAEAAV0@ABV0@@Z
??4WControl@@QAEAAV0@ABV0@@Z
??4WCoolButton@@QAEAAV0@ABV0@@Z
??4WCrashBoxDialog@@QAEAAV0@ABV0@@Z
??4WCustomLabel@@QAEAAV0@ABV0@@Z
??4WDialog@@QAEAAV0@ABV0@@Z
??4WDragInterceptor@@QAEAAV0@ABV0@@Z
??4WEdit@@QAEAAV0@ABV0@@Z
??4WEditTerminal@@QAEAAV0@ABV0@@Z
??4WGroupBox@@QAEAAV0@ABV0@@Z
??4WItemBox@@QAEAAV0@ABV0@@Z
??4WLabel@@QAEAAV0@ABV0@@Z
??4WListBox@@QAEAAV0@ABV0@@Z
??4WListView@@QAEAAV0@ABV0@@Z
??4WObjectProperties@@QAEAAV0@ABV0@@Z
??4WPictureButton@@QAEAAV0@ABV0@@Z
??4WProgressBar@@QAEAAV0@ABV0@@Z
??4WProperties@@QAEAAV0@ABV0@@Z
??4WPropertiesBase@@QAEAAV0@ABV0@@Z
??4WPropertyPage@@QAEAAV0@ABV0@@Z
??4WPropertySheet@@QAEAAV0@ABV0@@Z
??4WRichEdit@@QAEAAV0@ABV0@@Z
??4WScrollBar@@QAEAAV0@ABV0@@Z
??4WSplitter@@QAEAAV0@ABV0@@Z
??4WSplitterContainer@@QAEAAV0@ABV0@@Z
??4WSplitterPane@@QAEAAV0@ABV0@@Z
??4WTabControl@@QAEAAV0@ABV0@@Z
??4WTerminal@@QAEAAV0@ABV0@@Z
??4WTerminalBase@@QAEAAV0@ABV0@@Z
??4WThinScrollBar@@QAEAAV0@ABV0@@Z
??4WTimeScrollBar@@QAEAAV0@ABV0@@Z
??4WToolTip@@QAEAAV0@ABV0@@Z
??4WTrackBar@@QAEAAV0@ABV0@@Z
??4WTreeView@@QAEAAV0@ABV0@@Z
??4WUDNWindow@@QAEAAV0@ABV0@@Z
??4WUrlButton@@QAEAAV0@ABV0@@Z
??4WWindow@@QAEAAV0@ABV0@@Z
??4WWizardDialog@@QAEAAV0@ABV0@@Z
??4WWizardPage@@QAEAAV0@ABV0@@Z
??BWWindow@@QBEPAUHWND__@@XZ
??RFDelegate@@UAEXXZ
??RFDelegateInt@@UAEXH@Z
??_7FCategoryItem@@6BFCommandTarget@@@
??_7FCategoryItem@@6BFControlSnoop@@@
??_7FClassItem@@6BFCommandTarget@@@
??_7FClassItem@@6BFControlSnoop@@@
??_7FCommandTarget@@6B@
??_7FConfigItem@@6BFCommandTarget@@@
??_7FConfigItem@@6BFControlSnoop@@@
??_7FControlSnoop@@6B@
??_7FDelegate@@6B@
??_7FDelegateInt@@6B@
??_7FHeaderItem@@6BFCommandTarget@@@
??_7FHeaderItem@@6BFControlSnoop@@@
??_7FNewObjectItem@@6BFCommandTarget@@@
??_7FNewObjectItem@@6BFControlSnoop@@@
??_7FObjectConfigItem@@6BFCommandTarget@@@
??_7FObjectConfigItem@@6BFControlSnoop@@@
??_7FObjectsItem@@6BFCommandTarget@@@
??_7FObjectsItem@@6BFControlSnoop@@@
??_7FPropertyItem@@6BFCommandTarget@@@
??_7FPropertyItem@@6BFControlSnoop@@@
??_7FPropertyItemBase@@6BFCommandTarget@@@
??_7FPropertyItemBase@@6BFControlSnoop@@@
??_7FTreeItem@@6BFCommandTarget@@@
??_7FTreeItem@@6BFControlSnoop@@@
??_7FTreeItemBase@@6BFCommandTarget@@@
??_7FTreeItemBase@@6BFControlSnoop@@@
??_7WBitmapButton@@6B@
??_7WButton@@6B@
??_7WCheckBox@@6B@
??_7WCheckListBox@@6B@
??_7WClassProperties@@6BFControlSnoop@@@
??_7WClassProperties@@6BWWindow@@@
??_7WColorButton@@6B@
??_7WComboBox@@6B@
??_7WConfigProperties@@6BFControlSnoop@@@
??_7WConfigProperties@@6BWWindow@@@
??_7WControl@@6B@
??_7WCoolButton@@6B@
??_7WCrashBoxDialog@@6B@
??_7WCustomLabel@@6B@
??_7WDialog@@6B@
??_7WDragInterceptor@@6B@
??_7WEdit@@6B@
??_7WEditTerminal@@6B@
??_7WGroupBox@@6B@
??_7WItemBox@@6B@
??_7WLabel@@6B@
??_7WListBox@@6B@
??_7WListView@@6B@
??_7WLog@@6BFOutputDevice@@@
??_7WLog@@6BWTerminalBase@@@
??_7WObjectProperties@@6BFControlSnoop@@@
??_7WObjectProperties@@6BWWindow@@@
??_7WPictureButton@@6B@
??_7WProgressBar@@6B@
??_7WProperties@@6BFControlSnoop@@@
??_7WProperties@@6BWWindow@@@
??_7WPropertiesBase@@6BFControlSnoop@@@
??_7WPropertiesBase@@6BWWindow@@@
??_7WPropertyPage@@6B@
??_7WPropertySheet@@6B@
??_7WRichEdit@@6B@
??_7WScrollBar@@6B@
??_7WSplitter@@6B@
??_7WSplitterContainer@@6B@
??_7WSplitterPane@@6B@
??_7WTabControl@@6B@
??_7WTerminal@@6BFOutputDevice@@@
??_7WTerminal@@6BWTerminalBase@@@
??_7WTerminalBase@@6B@
??_7WThinScrollBar@@6B@
??_7WTimeScrollBar@@6B@
??_7WToolTip@@6B@
??_7WTrackBar@@6B@
??_7WTreeView@@6B@
??_7WUDNWindow@@6B@
??_7WUrlButton@@6B@
??_7WWindow@@6B@
??_7WWizardDialog@@6B@
??_7WWizardPage@@6B@
??_FFDelegate@@QAEXXZ
??_FFDelegateInt@@QAEXXZ
??_FFWindowsBitmap@@QAEXXZ
??_FWEditTerminal@@QAEXXZ
??_FWWindow@@QAEXXZ
?AcceptFlags@FPropertyItemBase@@UAEHK@Z
?AcceptFlags@FTreeItem@@UAEHK@Z
?AddButton@FTreeItem@@UAEXPBGUFDelegate@@@Z
?AddItem@WListBox@@QAEHPBX@Z
?AddItem@WTreeView@@QAEPAU_TREEITEM@@PBGPAU2@H@Z
?AddPage@WPropertySheet@@QAEXPAVWPropertyPage@@@Z
?AddString@WComboBox@@UAEXPBG@Z
?AddString@WListBox@@QAEHPBG@Z
?AddTab@WTabControl@@QAEXVFString@@H@Z
?AddTool@WToolTip@@QAEXPAUHWND__@@VFString@@HPAUtagRECT@@@Z
?Advance@FPropertyItem@@UAEXXZ
?Advance@WWizardDialog@@UAEXPAVWWizardPage@@@Z
?BeginSplitterDrag@WProperties@@UAEXXZ
?CallDefaultProc@WControl@@UAEHIIJ@Z
?CallDefaultProc@WDialog@@UAEHIIJ@Z
?CallDefaultProc@WWindow@@UAEHIIJ@Z
?Capture@WUDNWindow@@QAEXXZ
?CenterInOwnerWindow@WDialog@@QAEXXZ
?Cleanup@WPropertyPage@@QAEXXZ
?ClearSel@WListBox@@QAEXXZ
?Clicked@WBitmapButton@@UAEXXZ
?Clicked@WButton@@UAEXXZ
?Clicked@WCheckBox@@UAEXXZ
?ClientToScreen@WWindow@@QAE?AUFPoint@@ABU2@@Z
?ClientToScreen@WWindow@@QAE?AUFRect@@ABU2@@Z
?Collapse@FCategoryItem@@UAEXXZ
?Collapse@FConfigItem@@UAEXXZ
?Collapse@FPropertyItem@@UAEXXZ
?Collapse@FPropertyItemBase@@UAEXXZ
?Collapse@FTreeItem@@UAEXXZ
?ComboSelectionEndCancel@FNewObjectItem@@QAEXXZ
?ComboSelectionEndCancel@FPropertyItem@@QAEXXZ
?ComboSelectionEndOk@FNewObjectItem@@QAEXXZ
?ComboSelectionEndOk@FPropertyItem@@QAEXXZ
?DeleteString@WListBox@@QAEXH@Z
?DoDestroy@WProperties@@UAEXXZ
?DoDestroy@WWindow@@UAEXXZ
?DoModal@WDialog@@UAEHPAUHINSTANCE__@@@Z
?Draw@FHeaderItem@@UAEXPAUHDC__@@@Z
?Draw@FNewObjectItem@@UAEXPAUHDC__@@@Z
?Draw@FPropertyItem@@UAEXPAUHDC__@@@Z
?DrawTreeLines@FTreeItem@@UAEXPAUHDC__@@UFRect@@H@Z
?Empty@WComboBox@@QAEXXZ
?Empty@WListBox@@QAEXXZ
?Empty@WListView@@QAEXXZ
?Empty@WPropertySheet@@QAEXXZ
?Empty@WTabControl@@QAEXXZ
?Empty@WTreeView@@QAEXXZ
?EmptyChildren@FTreeItem@@QAEXXZ
?EndDialog@WDialog@@QAEXH@Z
?EndDialogFalse@WDialog@@QAEXXZ
?EndDialogTrue@WDialog@@QAEXXZ
?Eval@FObjectsItem@@QAEHVFString@@PAM@Z
?Expand@FCategoryItem@@UAEXXZ
?Expand@FClassItem@@UAEXXZ
?Expand@FConfigItem@@UAEXXZ
?Expand@FObjectConfigItem@@UAEXXZ
?Expand@FObjectsItem@@UAEXXZ
?Expand@FPropertyItem@@UAEXXZ
?Expand@FTreeItem@@UAEXXZ
?ExpandAll@WProperties@@UAEXXZ
?Finalize@WPropertyPage@@QAEXXZ
?FindItem@WListBox@@QAEHPBX@Z
?FindItemChecked@WListBox@@QAEHPBX@Z
?FindString@WComboBox@@UAEHPBG@Z
?FindString@WListBox@@QAEHPBG@Z
?FindStringChecked@WListBox@@QAEHPBG@Z
?FindStringExact@WComboBox@@UAEHPBG@Z
?FindStringExact@WListBox@@QAEHPBG@Z
?ForceRefresh@WProperties@@UAEXXZ
?FromHSV@FHeaderItem@@QAE?AVFVector@@EEE@Z
?GLogWindow@@3PAVWLog@@A
?GNotify@@3HA
?GOnKillFocus@@YAXPAUHWND__@@@Z
?GOnSetFocus@@YAXPAUHWND__@@@Z
?GetArrayIndex@FPropertyItem@@UAEHXZ
?GetArrayIndex@FTreeItem@@UAEHXZ
?GetBackText@WWizardPage@@UAEPBGXZ
?GetBackgroundBrush@FTreeItem@@UAEPAUHBRUSH__@@H@Z
?GetBase@FClassItem@@UAEPAEPAE@Z
?GetBase@FObjectConfigItem@@UAEPAEPAE@Z
?GetBase@FObjectsItem@@UAEPAEPAE@Z
?GetBase@FPropertyItem@@UAEPAEPAE@Z
?GetBase@FTreeItem@@UAEPAEPAE@Z
?GetBitmapHandle@FWindowsBitmap@@QAEPAUHBITMAP__@@XZ
?GetCancelText@WWizardPage@@UAEPBGXZ
?GetCaption@FCategoryItem@@UBE?AVFString@@XZ
?GetCaption@FConfigItem@@UBE?AVFString@@XZ
?GetCaption@FNewObjectItem@@UBE?AVFString@@XZ
?GetCaption@FObjectsItem@@UBE?AVFString@@XZ
?GetCaption@FPropertyItem@@UBE?AVFString@@XZ
?GetCaption@FPropertyItemBase@@UBE?AVFString@@XZ
?GetCaption@WPropertyPage@@QAE?AVFString@@XZ
?GetClientRect@WWindow@@QBE?AUFRect@@XZ
?GetColor@WColorButton@@QAEXAAH00@Z
?GetContents@FPropertyItem@@UAEPAEPAE@Z
?GetContents@FTreeItem@@UAEPAEPAE@Z
?GetCount@WComboBox@@UAEHXZ
?GetCount@WListBox@@QAEHXZ
?GetCount@WTabControl@@QAEHXZ
?GetCurrent@WComboBox@@UAEHXZ
?GetCurrent@WListBox@@QAEHXZ
?GetCurrent@WListView@@QAEHXZ
?GetCurrent@WTabControl@@QAEHXZ
?GetCurrentTopicID@WUDNWindow@@QAEHXZ
?GetCursorPos@WWindow@@QAE?AUFPoint@@XZ
?GetDividerWidth@WProperties@@UAEHXZ
?GetExpanderRect@FTreeItem@@UAE?AUFRect@@XZ

Sections

Size: 68KB - Virtual size: 248KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 32KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 4KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 4KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 16KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 20KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.edata
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.themida
Size: - Virtual size: 6.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 3.9MB - Virtual size: 3.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Headers

File Characteristics

Exports

Exports

Sections

Size: 68KB - Virtual size: 248KB

Size: 32KB - Virtual size: 153KB

Size: 4KB - Virtual size: 13KB

Size: 4KB - Virtual size: 20KB

Size: 16KB - Virtual size: 45KB

Size: 20KB - Virtual size: 32KB

.edata Size: 48KB - Virtual size: 48KB

.idata Size: 4KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.themida Size: - Virtual size: 6.6MB

.boot Size: 3.9MB - Virtual size: 3.9MB

.edata
Size: 48KB - Virtual size: 48KB

.idata
Size: 4KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.themida
Size: - Virtual size: 6.6MB

.boot
Size: 3.9MB - Virtual size: 3.9MB