General

Malware Config

Signatures

Files

• 750ea151345b5ace88676aa29618cf60

  .exe windows:4 windows x86 arch:x86

  6efdac12cf42786c4251c89c4f2cbe27

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  version

  VerQueryValueA

  GetFileVersionInfoSizeA

  GetFileVersionInfoA

  kernel32

  SetErrorMode

  TerminateProcess

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  IsDebuggerPresent

  HeapFree

  RaiseException

  RtlUnwind

  HeapAlloc

  HeapReAlloc

  VirtualProtect

  VirtualAlloc

  GetSystemInfo

  VirtualQuery

  GetCommandLineA

  GetProcessHeap

  GetStartupInfoA

  ExitThread

  CreateThread

  ExitProcess

  HeapSize

  GetACP

  GetStdHandle

  HeapDestroy

  HeapCreate

  VirtualFree

  Sleep

  SetHandleCount

  GetFileType

  GetConsoleCP

  GetUserDefaultLCID

  EnumSystemLocalesA

  IsValidLocale

  IsValidCodePage

  GetStringTypeA

  GetStringTypeW

  LCMapStringA

  LCMapStringW

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  QueryPerformanceCounter

  GetSystemTimeAsFileTime

  GetTimeZoneInformation

  GetLocaleInfoW

  WriteConsoleA

  GetConsoleOutputCP

  WriteConsoleW

  SetStdHandle

  SetEnvironmentVariableA

  GetFileTime

  GetOEMCP

  GetCPInfo

  GlobalFlags

  FileTimeToLocalFileTime

  FileTimeToSystemTime

  GetVolumeInformationA

  FindFirstFileA

  FindClose

  GetCurrentProcess

  DuplicateHandle

  GetThreadLocale

  GetFileSize

  SetEndOfFile

  UnlockFile

  LockFile

  FlushFileBuffers

  SetFilePointer

  WriteFile

  ReadFile

  DeleteFileA

  MoveFileA

  InterlockedIncrement

  TlsFree

  DeleteCriticalSection

  LocalReAlloc

  TlsSetValue

  TlsAlloc

  InitializeCriticalSection

  GlobalHandle

  GlobalReAlloc

  EnterCriticalSection

  TlsGetValue

  LeaveCriticalSection

  LocalAlloc

  InterlockedCompareExchange

  CreateMutexA

  CreateSemaphoreA

  WritePrivateProfileStringA

  GetCurrentProcessId

  GetCurrentThread

  ConvertDefaultLocale

  EnumResourceLanguagesA

  GetLocaleInfoA

  lstrcmpA

  GetProfileIntA

  GetTickCount

  FreeResource

  GlobalGetAtomNameA

  GlobalAddAtomA

  GlobalFindAtomA

  GlobalDeleteAtom

  lstrcmpW

  GetVersionExA

  ReleaseMutex

  ReleaseSemaphore

  FindNextFileA

  GetFileAttributesExA

  CreateDirectoryA

  WaitForSingleObject

  GetCurrentThreadId

  InterlockedDecrement

  GetModuleFileNameW

  GlobalFree

  CopyFileA

  GlobalSize

  GlobalAlloc

  FormatMessageA

  LocalFree

  MulDiv

  GetPrivateProfileStringA

  GetPrivateProfileIntA

  GetFileAttributesA

  FreeLibrary

  CreateFileA

  CloseHandle

  CompareStringW

  CompareStringA

  lstrlenW

  GetVersion

  MultiByteToWideChar

  InterlockedExchange

  lstrlenA

  lstrcpyA

  GetModuleFileNameA

  GetFullPathNameA

  GlobalLock

  GlobalUnlock

  GetLastError

  SetLastError

  GetProcAddress

  GetModuleHandleA

  LoadLibraryA

  WideCharToMultiByte

  FindResourceA

  LoadResource

  LockResource

  SizeofResource

  RemoveDirectoryA

  GetConsoleMode

  CreateFileW

  user32

  LockWindowUpdate

  PostThreadMessageA

  GetNextDlgGroupItem

  MessageBeep

  DrawTextExA

  DrawTextA

  TabbedTextOutA

  UnpackDDElParam

  ReuseDDElParam

  LoadAcceleratorsA

  InsertMenuItemA

  CreatePopupMenu

  SetRectEmpty

  BringWindowToTop

  SetMenu

  TranslateAcceleratorA

  ReleaseCapture

  SetCursor

  LoadCursorA

  SetCapture

  KillTimer

  ClientToScreen

  SetWindowRgn

  DrawIcon

  FillRect

  IsRectEmpty

  GetWindowThreadProcessId

  PostQuitMessage

  GetDesktopWindow

  CreateDialogIndirectParamA

  GetNextDlgTabItem

  EndDialog

  ShowWindow

  MoveWindow

  SetWindowTextA

  IsDialogMessageA

  SetDlgItemTextA

  SetMenuItemBitmaps

  GetMenuCheckMarkDimensions

  ModifyMenuA

  CheckMenuItem

  InvalidateRect

  ReleaseDC

  GetDC

  IsWindowEnabled

  SendDlgItemMessageA

  WinHelpA

  IsChild

  GetCapture

  GetClassLongA

  GetDCEx

  SetPropA

  GetPropA

  RemovePropA

  GetFocus

  IsWindow

  SetFocus

  GetWindowTextLengthA

  GetWindowTextA

  GetLastActivePopup

  SetActiveWindow

  BeginDeferWindowPos

  EndDeferWindowPos

  GetDlgItem

  GetTopWindow

  DestroyWindow

  GetMessageTime

  GetMessagePos

  MapWindowPoints

  ScrollWindow

  TrackPopupMenu

  SetScrollRange

  GetScrollRange

  SetScrollPos

  GetScrollPos

  SetForegroundWindow

  ShowScrollBar

  MessageBoxA

  CreateWindowExA

  GetClassInfoExA

  GetClassInfoA

  RegisterClassA

  AdjustWindowRectEx

  GetParent

  ScreenToClient

  EqualRect

  DeferWindowPos

  GetScrollInfo

  SetScrollInfo

  PtInRect

  GetDlgCtrlID

  DefWindowProcA

  CallWindowProcA

  GetWindowLongA

  SetWindowLongA

  SetWindowPos

  IntersectRect

  IsIconic

  GetWindowPlacement

  GetWindow

  GetSystemMetrics

  GetSysColor

  SystemParametersInfoA

  DestroyMenu

  InflateRect

  CopyRect

  SetWindowsHookExA

  CallNextHookEx

  GetMessageA

  SetParent

  SetWindowContextHelpId

  MapDialogRect

  CharNextA

  InvalidateRgn

  CopyAcceleratorTableA

  TranslateMessage

  DispatchMessageA

  UnregisterClassA

  ShowOwnedPopups

  WindowFromPoint

  SetRect

  EndPaint

  BeginPaint

  GetWindowDC

  GetClassNameA

  GrayStringA

  GetActiveWindow

  GetKeyState

  PeekMessageA

  GetCursorPos

  ValidateRect

  UnhookWindowsHookEx

  GetMenuState

  GetMenuItemID

  GetMenuItemCount

  wsprintfA

  FindWindowA

  RegisterWindowMessageA

  SendNotifyMessageA

  LoadImageA

  UpdateWindow

  CharUpperA

  SetTimer

  FrameRect

  LoadBitmapA

  GetSysColorBrush

  OffsetRect

  IsWindowVisible

  GetClientRect

  GetMenu

  SetMenuItemInfoA

  GetMenuItemInfoA

  RegisterClipboardFormatA

  LoadIconA

  EnableWindow

  SendMessageA

  GetWindowRect

  PostMessageA

  LoadMenuA

  InsertMenuA

  GetSubMenu

  EnableMenuItem

  DeleteMenu

  GetForegroundWindow

  gdi32

  OffsetViewportOrgEx

  SetViewportExtEx

  ScaleViewportExtEx

  SetWindowExtEx

  ScaleWindowExtEx

  ExtSelectClipRgn

  CreatePatternBrush

  SetViewportOrgEx

  CreateSolidBrush

  GetBkColor

  SetRectRgn

  CombineRgn

  GetMapMode

  GetRgnBox

  GetTextColor

  Escape

  TextOutA

  RectVisible

  PtVisible

  GetPixel

  GetWindowExtEx

  GetViewportExtEx

  CreateRectRgn

  SelectClipRgn

  GetStockObject

  GetDeviceCaps

  IntersectClipRect

  ExcludeClipRect

  SetMapMode

  SetBkMode

  RestoreDC

  SaveDC

  StretchDIBits

  DeleteDC

  CreateFontA

  SelectObject

  GetCharWidthA

  DeleteObject

  CreateCompatibleBitmap

  Ellipse

  LPtoDP

  CreateEllipticRgn

  CreateBitmap

  PatBlt

  CreateRectRgnIndirect

  SetBkColor

  SetTextColor

  GetClipBox

  GetTextExtentPoint32A

  ExtTextOutA

  BitBlt

  CreateCompatibleDC

  CreateFontIndirectA

  GetObjectA

  CopyMetaFileA

  comdlg32

  GetFileTitleA

  winspool.drv

  ClosePrinter

  DocumentPropertiesA

  OpenPrinterA

  advapi32

  RegQueryValueA

  RegSetValueExA

  RegCreateKeyExA

  RegCloseKey

  RegEnumKeyA

  RegDeleteKeyA

  RegOpenKeyExA

  RegQueryValueExA

  RegOpenKeyA

  shell32

  SHGetMalloc

  SHGetPathFromIDListA

  SHBrowseForFolderA

  DragQueryFileA

  ShellExecuteA

  DragFinish

  SHGetFileInfoA

  comctl32

  ord17

  shlwapi

  PathRenameExtensionA

  PathStripPathA

  PathFindExtensionA

  PathFindFileNameA

  PathStripToRootA

  StrFormatByteSizeA

  PathIsUNCA

  oledlg

  ord8

  ole32

  CLSIDFromString

  OleInitialize

  CoFreeUnusedLibraries

  OleUninitialize

  RevokeDragDrop

  CoLockObjectExternal

  RegisterDragDrop

  OleGetClipboard

  OleDuplicateData

  OleFlushClipboard

  CoGetClassObject

  CoTaskMemFree

  StgOpenStorageOnILockBytes

  StgCreateDocfileOnILockBytes

  CreateILockBytesOnHGlobal

  CoCreateInstance

  CoRegisterMessageFilter

  CLSIDFromProgID

  CoRevokeClassObject

  ReleaseStgMedium

  OleIsCurrentClipboard

  CoTaskMemAlloc

  oleaut32

  OleCreateFontIndirect

  SystemTimeToVariantTime

  VariantTimeToSystemTime

  SafeArrayDestroy

  VariantCopy

  SafeArrayCreate

  SafeArrayGetDim

  SafeArrayGetElemsize

  SafeArrayGetLBound

  SafeArrayGetUBound

  SafeArrayAccessData

  SafeArrayUnaccessData

  SysAllocString

  SysAllocStringByteLen

  SysFreeString

  VariantClear

  VariantChangeType

  VariantInit

  SysAllocStringLen

  SysStringLen

  ws2_32

  ntohs

  htons

  Sections

  .text

  Size: 492KB - Virtual size: 489KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 124KB - Virtual size: 123KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 24KB - Virtual size: 36KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 136KB - Virtual size: 133KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ