General

Malware Config

Signatures

Files

• 95a34321e790feaa5eb52be7407a6b78

  .exe windows:4 windows x86 arch:x86

  9d7fd5f0305d56f38ebf19d32f07c6e9

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  CreateWindowExW

  InvalidateRgn

  PostMessageW

  UpdateWindow

  SetTimer

  IsIconic

  GetSystemMetrics

  GetClientRect

  DrawIcon

  EnableWindow

  PostQuitMessage

  SetWindowPos

  MapDialogRect

  kernel32

  GetLogicalDriveStringsA

  SetUnhandledExceptionFilter

  QueryPerformanceCounter

  CreateFileA

  GetSystemTimeAsFileTime

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetCommandLineA

  SetHandleCount

  GetStdHandle

  GetFileType

  GetStartupInfoA

  HeapDestroy

  HeapCreate

  VirtualFree

  GetModuleFileNameA

  TerminateProcess

  UnhandledExceptionFilter

  GetACP

  GetOEMCP

  GetCPInfo

  IsValidCodePage

  HeapReAlloc

  GetTimeZoneInformation

  DebugBreak

  OutputDebugStringA

  WriteConsoleW

  OutputDebugStringW

  LCMapStringA

  LCMapStringW

  GetStringTypeA

  oleaut32

  DispGetIDsOfNames

  OleLoadPicture

  QueryPathOfRegTypeLib

  GetErrorInfo

  SetErrorInfo

  VariantClear

  SysReAllocStringLen

  advapi32

  RegQueryInfoKeyA

  RegSetValueExA

  RegOpenKeyExA

  RegCreateKeyExA

  RegCloseKey

  RegDeleteValueA

  RegDeleteKeyA

  RegEnumKeyExA

  shlwapi

  PathFindExtensionA

  Sections

  .text

  Size: 117KB - Virtual size: 204KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 124KB - Virtual size: 124KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .reloc

  Size: 512B - Virtual size: 242B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ