9071b7d7ac7cb64ea232fbc82ff6be81558381e5c92b25c1cfffff3e459760da

Sharing

Copy URL

Twitter E-mail

General

Target

9071b7d7ac7cb64ea232fbc82ff6be81558381e5c92b25c1cfffff3e459760da
Size

1.3MB
MD5

7ea38e84e0c5995007dd85f9d447c98d
SHA1

e5baf38808e6f8e3d96713c2fcae465c07a3725c
SHA256

9071b7d7ac7cb64ea232fbc82ff6be81558381e5c92b25c1cfffff3e459760da
SHA512

8dbb9560c2cedb2d09004ede45703d3eac2a4f8ef3b68453fe10d89f1c0e6547c621cff42aa14620115d6530771af650321e36804a32bbc7a92cbdf9f1833022
SSDEEP

24576:hAQ+5YtRe8QiOJuygnyAN1ZccKs6n9sshFwnAAthOnRxhTKZSc9:hAQBtRejiOwPnPfccdM5EAAthORxRwSK

Score

10^/10

Malware Config

Signatures

Nirsoft 2 IoCs

resource	yara_rule
static1/unpack001/【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/W10DigitalActivation.exe	Nirsoft
static1/unpack001/【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/W10DigitalActivation_x64.exe	Nirsoft

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/W10DigitalActivation.exe
unpack001/【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/W10DigitalActivation_x64.exe

Files

9071b7d7ac7cb64ea232fbc82ff6be81558381e5c92b25c1cfffff3e459760da
.zip
【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/W10DigitalActivation.exe
.exe windows:4 windows x86 arch:x86

82597a52e5ed627fbe14d9d86155a7d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

memset
setlocale
memcpy
log10
_wfopen
fseek
fclose
wcscmp
memmove
wcslen
wcscpy
wcscat
memcmp
strlen
strcpy
strcat
_stricmp
strncpy
_CIfmod
fread
longjmp
_setjmp3
malloc
free
_wcsicmp
wcsncmp
wcsncpy
_snwprintf
tolower
floor
gmtime
localtime
mktime
_wcsnicmp
_itow
abs
sqrt
fmod
ftell
pow
??3@YAXPAX@Z
wcsstr
_wcsdup
frexp
modf
_CIpow
fopen
_errno
strerror
abort
atof
fflush
fwrite
exit
sprintf
__p__iob
fprintf
ferror
getenv
sscanf
_vsnwprintf
cos
sin
ceil

kernel32

GetModuleHandleW
HeapCreate
GetEnvironmentVariableW
GetUserDefaultLangID
HeapDestroy
ExitProcess
SystemTimeToFileTime
LocalFileTimeToFileTime
FindResourceW
LoadResource
LockResource
SizeofResource
CreateToolhelp32Snapshot
CloseHandle
GetLogicalDriveStringsW
QueryDosDeviceW
FileTimeToLocalFileTime
FileTimeToSystemTime
ExpandEnvironmentStringsW
GetCurrentProcess
GetSystemDefaultLangID
MultiByteToWideChar
GetProcAddress
CreateRemoteThread
WaitForSingleObject
GetExitCodeThread
GetCurrentProcessId
OpenProcess
GetLastError
FormatMessageW
GetVolumeInformationW
FindFirstFileW
FindNextFileW
FindClose
WideCharToMultiByte
BeginUpdateResourceW
UpdateResourceW
EndUpdateResourceW
CreateProcessW
Process32FirstW
Process32NextW
Beep
CreateFileW
CreateSemaphoreW
DeviceIoControl
GetCommandLineW
GetComputerNameW
GetDateFormatW
GetDiskFreeSpaceExW
GetExitCodeProcess
GetFileTime
GetPrivateProfileStringW
GetShortPathNameW
GetSystemDirectoryW
GetSystemPowerStatus
GetTimeZoneInformation
GetUserDefaultLCID
GetWindowsDirectoryW
GlobalMemoryStatus
LocalFree
QueryPerformanceCounter
QueryPerformanceFrequency
SetComputerNameW
SetFileTime
SetLastError
SetSystemTime
SetVolumeLabelW
Sleep
TerminateProcess
WritePrivateProfileStringW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CreateThread
HeapAlloc
HeapFree
FreeLibrary
LoadLibraryExW
GetCurrentThreadId
GetModuleFileNameW
DuplicateHandle
CreatePipe
GetStdHandle
PeekNamedPipe
ReadFile
SetEnvironmentVariableW
HeapReAlloc
GetFileSize
SetFilePointer
SetEndOfFile
WriteFile
TlsAlloc
TlsSetValue
GetTickCount
TlsGetValue
LoadLibraryW
DeleteFileW
GetVersionExW
GetDriveTypeW
GetFileAttributesW
SetCurrentDirectoryW
CreateDirectoryW
SetFileAttributesW
RemoveDirectoryW
GetTempPathW
GetLongPathNameW
CopyFileW
MoveFileW
MulDiv
GetLocalTime
GlobalFree
GlobalAlloc
HeapSize
TlsFree
DeleteCriticalSection
InterlockedCompareExchange
InterlockedExchange
UnregisterWait
GetCurrentThread
RegisterWaitForSingleObject

user32

OemToCharW
GetSysColor
GetDlgCtrlID
CallWindowProcW
SetWindowLongW
GetWindowLongW
GetClientRect
FillRect
GetClassNameW
GetWindow
SetWindowPos
InvalidateRect
SendMessageW
EnableWindow
IsWindowEnabled
RedrawWindow
SetClassLongW
GetClassLongW
GetWindowRect
OffsetRect
IsRectEmpty
MapWindowPoints
SubtractRect
IsWindow
GetParent
GetDC
ReleaseDC
BeginPaint
EndPaint
DefWindowProcW
GetAsyncKeyState
KillTimer
GetCursorPos
ScreenToClient
SetTimer
DrawTextW
FrameRect
InflateRect
FindWindowW
FindWindowExW
DrawFrameControl
EnumWindows
GetWindowThreadProcessId
GetForegroundWindow
SetCursorPos
AnimateWindow
AttachThreadInput
BlockInput
ChangeDisplaySettingsW
CharToOemW
CreateWindowExW
DrawMenuBar
EnableMenuItem
EnumDisplaySettingsW
ExitWindowsEx
FlashWindow
GetDesktopWindow
GetFocus
GetKeyState
GetLastInputInfo
GetSystemMenu
GetSystemMetrics
GetWindowTextW
LoadCursorW
LockWorkStation
MessageBeep
PostMessageW
RegisterHotKey
RemoveMenu
SetFocus
SetForegroundWindow
ShowWindow
UnregisterHotKey
UpdateWindow
WaitForInputIdle
keybd_event
mouse_event
LoadIconW
RegisterClassExW
MessageBoxW
IsWindowVisible
DestroyWindow
SystemParametersInfoW
SetWindowTextW
GetWindowTextLengthW
MoveWindow
GetIconInfo
ReleaseCapture
DrawStateW
SetCapture
SetRect
SetCursor
GetMessagePos
RemovePropW
GetPropW
SetPropW
SetScrollPos
GetWindowDC
ClientToScreen
GetSysColorBrush
EnumPropsExW
SetActiveWindow
DestroyIcon
IsZoomed
IsIconic
RegisterClassW
AdjustWindowRectEx
UnregisterClassW
CreateAcceleratorTableW
PeekMessageW
MsgWaitForMultipleObjects
GetMessageW
GetActiveWindow
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
DefFrameProcW
DestroyAcceleratorTable
EnumChildWindows
IsChild
RegisterWindowMessageW
DrawIconEx
CopyImage
CreateIconFromResourceEx
CreateIconFromResource
CharUpperW
CharLowerW

gdi32

CreatePen
CreateSolidBrush
SelectObject
DeleteDC
DeleteObject
CreatePatternBrush
CreateRoundRectRgn
GetPixel
CreateCompatibleDC
SetBkMode
SetTextColor
SelectClipRgn
BitBlt
GetStockObject
RoundRect
SetDCBrushColor
SetBrushOrgEx
CreateDCW
CreateCompatibleBitmap
CreateFontIndirectW
GetObjectType
GetObjectW
GetTextExtentPoint32W
CreateRectRgnIndirect
TextOutW
MoveToEx
LineTo
ExcludeClipRect
SetBkColor
GetClipRgn
ExtSelectClipRgn
GetDeviceCaps
SelectPalette
RealizePalette
GetDIBits
SetPixelV
Rectangle
Ellipse
SetStretchBltMode
StretchDIBits
StretchBlt
SetROP2
ExtFloodFill
SetTextAlign
GetTextMetricsW
GdiGetBatchLimit
GdiSetBatchLimit
CreateDIBSection
CreateBitmap
SetPixel
CreateFontW

advapi32

RegOpenKeyExW
RegOpenKeyW
RegConnectRegistryW
RegQueryValueExW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
LookupAccountNameW
IsValidSid
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
GetTokenInformation
LookupAccountSidW
GetSidSubAuthorityCount
GetSidSubAuthority
ChangeServiceConfigW
CloseServiceHandle
ControlService
CreateProcessAsUserW
CryptAcquireContextW
CryptCreateHash
CryptDeriveKey
CryptDestroyHash
CryptDestroyKey
CryptEncrypt
CryptHashData
CryptReleaseContext
DuplicateTokenEx
GetLengthSid
GetSecurityInfo
GetUserNameW
ImpersonateLoggedOnUser
LogonUserW
OpenSCManagerW
OpenServiceW
QueryServiceStatus
RegEnumValueW
RevertToSelf
SetSecurityInfo
SetTokenInformation
StartServiceW

oleaut32

SafeArrayGetDim
SafeArrayGetUBound
SafeArrayGetElement

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateGuid
StringFromGUID2
RevokeDragDrop

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW
ExtractIconExW
ExtractIconW
ord66
ord524
SHAddToRecentDocs
SHFileOperationW
SHFormatDrive
SHGetFileInfoW
ShellAboutW
Shell_NotifyIconW
ShellExecuteExW

ws2_32

WSAStartup
gethostbyname
WSACleanup
gethostbyaddr
inet_addr
closesocket
gethostname
htons
select
__WSAFDIsSet
ioctlsocket
recvfrom
socket
connect
recv
bind

winmm

timeBeginPeriod

msimg32

AlphaBlend

gdiplus

GdipDeleteFont
GdipDeleteGraphics
GdipDeletePath
GdipDeleteMatrix
GdipDeletePen
GdipDeleteStringFormat
GdipFree
GdipGetDpiX
GdipGetDpiY

icmp

IcmpCloseHandle
IcmpCreateFile
IcmpSendEcho

imagehlp

MapFileAndCheckSumW
MakeSureDirectoryPathExists

iphlpapi

GetAdaptersInfo
GetNetworkParams

msi

ord45
ord70

netapi32

NetApiBufferFree
NetLocalGroupAdd
NetLocalGroupDel
NetLocalGroupEnum
NetUserDel
NetUserGetInfo
NetUserSetInfo

setupapi

SetupIterateCabinetW

urlmon

URLDownloadToFileW
UrlMkSetSessionOption

userenv

GetDefaultUserProfileDirectoryW

uxtheme

SetWindowTheme

wininet

DeleteUrlCacheEntryW
InternetCloseHandle
InternetGetConnectedState
InternetOpenUrlW
InternetOpenW
InternetReadFile
UnlockUrlCacheEntryFileW

winspool.drv

ClosePrinter
DeletePrinter
OpenPrinterW
SetPrinterW

comctl32

InitCommonControlsEx
ImageList_Replace
ImageList_Add
ImageList_ReplaceIcon
ImageList_Remove
ImageList_AddMasked
ImageList_Destroy
ImageList_Create

Sections

.code
Size: 86KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 355KB - Virtual size: 355KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

'.text'
Size: 512B - Virtual size: 21B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 673KB - Virtual size: 678KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/W10DigitalActivation_x64.exe
.exe windows:5 windows x64 arch:x64

6508c837f697477df34fd04a4d01fbf5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

msvcrt

memset
setlocale
memcpy
log10
_wfopen
fseek
fclose
wcscmp
memmove
wcslen
wcscpy
wcscat
memcmp
strlen
strcpy
strcat
_stricmp
strncpy
fmod
fread
longjmp
setjmp
malloc
free
_wcsicmp
wcsncmp
wcsncpy
_snwprintf
tolower
floor
_gmtime64
_localtime64
_mktime64
_wcsnicmp
_itow
sqrtf
abs
fmodf
ftell
pow
??3@YAXPEAX@Z
wcsstr
_wcsdup
frexp
modf
fopen
_errno
strerror
abort
atof
fflush
fwrite
exit
sprintf
__iob_func
fprintf
ferror
getenv
sscanf
_vsnwprintf
sinf
cosf
ceil

kernel32

GetModuleHandleW
HeapCreate
GetEnvironmentVariableW
GetUserDefaultLangID
HeapDestroy
ExitProcess
SystemTimeToFileTime
LocalFileTimeToFileTime
FindResourceW
LoadResource
LockResource
SizeofResource
CreateToolhelp32Snapshot
CloseHandle
GetLogicalDriveStringsW
QueryDosDeviceW
FileTimeToLocalFileTime
FileTimeToSystemTime
ExpandEnvironmentStringsW
GetCurrentProcess
GetSystemDefaultLangID
MultiByteToWideChar
GetProcAddress
CreateRemoteThread
WaitForSingleObject
GetExitCodeThread
GetCurrentProcessId
OpenProcess
GetLastError
FormatMessageW
GetVolumeInformationW
FindFirstFileW
FindNextFileW
FindClose
WideCharToMultiByte
BeginUpdateResourceW
UpdateResourceW
EndUpdateResourceW
CreateProcessW
Process32FirstW
Process32NextW
Beep
CreateFileW
CreateSemaphoreW
DeviceIoControl
GetCommandLineW
GetComputerNameW
GetDateFormatW
GetDiskFreeSpaceExW
GetExitCodeProcess
GetFileTime
GetPrivateProfileStringW
GetShortPathNameW
GetSystemDirectoryW
GetSystemPowerStatus
GetTimeZoneInformation
GetUserDefaultLCID
GetWindowsDirectoryW
GlobalMemoryStatus
LocalFree
QueryPerformanceCounter
QueryPerformanceFrequency
RtlZeroMemory
SetComputerNameW
SetFileTime
SetLastError
SetSystemTime
SetVolumeLabelW
Sleep
TerminateProcess
WritePrivateProfileStringW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
CreateThread
HeapAlloc
HeapFree
FreeLibrary
LoadLibraryExW
GetCurrentThreadId
GetModuleFileNameW
DuplicateHandle
CreatePipe
GetStdHandle
PeekNamedPipe
ReadFile
SetEnvironmentVariableW
HeapReAlloc
GetFileSize
SetFilePointer
SetEndOfFile
WriteFile
TlsAlloc
TlsSetValue
GetTickCount
TlsGetValue
LoadLibraryW
DeleteFileW
GetVersionExW
GetDriveTypeW
GetFileAttributesW
SetCurrentDirectoryW
CreateDirectoryW
SetFileAttributesW
RemoveDirectoryW
GetTempPathW
GetLongPathNameW
CopyFileW
MoveFileW
MulDiv
GetLocalTime
GlobalFree
GlobalAlloc
HeapSize
TlsFree
DeleteCriticalSection
UnregisterWait
GetCurrentThread
RegisterWaitForSingleObject

user32

OemToCharW
GetSysColor
GetDlgCtrlID
CallWindowProcW
SetWindowLongPtrW
GetWindowLongPtrW
GetClientRect
FillRect
GetClassNameW
GetWindow
SetWindowPos
InvalidateRect
SendMessageW
EnableWindow
IsWindowEnabled
RedrawWindow
SetClassLongPtrW
GetClassLongPtrW
GetWindowRect
OffsetRect
IsRectEmpty
MapWindowPoints
SubtractRect
IsWindow
GetParent
GetDC
ReleaseDC
BeginPaint
EndPaint
DefWindowProcW
GetAsyncKeyState
KillTimer
GetCursorPos
ScreenToClient
SetTimer
DrawTextW
FrameRect
InflateRect
FindWindowW
FindWindowExW
DrawFrameControl
EnumWindows
GetWindowThreadProcessId
GetForegroundWindow
SetCursorPos
AnimateWindow
AttachThreadInput
BlockInput
ChangeDisplaySettingsW
CharToOemW
CreateWindowExW
DrawMenuBar
EnableMenuItem
EnumDisplaySettingsW
ExitWindowsEx
FlashWindow
GetDesktopWindow
GetFocus
GetKeyState
GetLastInputInfo
GetSystemMenu
GetSystemMetrics
GetWindowTextW
LoadCursorW
LockWorkStation
MessageBeep
PostMessageW
RegisterHotKey
RemoveMenu
SetFocus
SetForegroundWindow
ShowWindow
UnregisterHotKey
UpdateWindow
WaitForInputIdle
keybd_event
mouse_event
LoadIconW
RegisterClassExW
MessageBoxW
IsWindowVisible
DestroyWindow
SystemParametersInfoW
SetWindowTextW
GetWindowTextLengthW
MoveWindow
GetIconInfo
ReleaseCapture
DrawStateW
SetCapture
SetRect
SetCursor
GetMessagePos
RemovePropW
GetPropW
SetPropW
SetScrollPos
GetWindowDC
ClientToScreen
GetSysColorBrush
EnumPropsExW
SetActiveWindow
DestroyIcon
IsZoomed
IsIconic
RegisterClassW
AdjustWindowRectEx
UnregisterClassW
CreateAcceleratorTableW
PeekMessageW
MsgWaitForMultipleObjects
GetMessageW
GetActiveWindow
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
DefFrameProcW
DestroyAcceleratorTable
EnumChildWindows
IsChild
RegisterWindowMessageW
DrawIconEx
CopyImage
CreateIconFromResourceEx
CreateIconFromResource
CharUpperW
CharLowerW

gdi32

CreatePen
CreateSolidBrush
SelectObject
DeleteDC
DeleteObject
CreatePatternBrush
CreateRoundRectRgn
GetPixel
CreateCompatibleDC
SetBkMode
SetTextColor
SelectClipRgn
BitBlt
GetStockObject
RoundRect
SetDCBrushColor
SetBrushOrgEx
CreateDCW
CreateCompatibleBitmap
CreateFontIndirectW
GetObjectType
GetObjectW
GetTextExtentPoint32W
CreateRectRgnIndirect
TextOutW
MoveToEx
LineTo
ExcludeClipRect
SetBkColor
GetClipRgn
ExtSelectClipRgn
GetDeviceCaps
SelectPalette
RealizePalette
GetDIBits
SetPixelV
Rectangle
Ellipse
SetStretchBltMode
StretchDIBits
StretchBlt
SetROP2
ExtFloodFill
SetTextAlign
GetTextMetricsW
GdiGetBatchLimit
GdiSetBatchLimit
CreateDIBSection
CreateBitmap
SetPixel
CreateFontW

advapi32

RegOpenKeyExW
RegOpenKeyW
RegConnectRegistryW
RegQueryValueExW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
LookupAccountNameW
IsValidSid
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyW
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
GetTokenInformation
LookupAccountSidW
GetSidSubAuthorityCount
GetSidSubAuthority
ChangeServiceConfigW
CloseServiceHandle
ControlService
CreateProcessAsUserW
CryptAcquireContextW
CryptCreateHash
CryptDeriveKey
CryptDestroyHash
CryptDestroyKey
CryptEncrypt
CryptHashData
CryptReleaseContext
DuplicateTokenEx
GetLengthSid
GetSecurityInfo
GetUserNameW
ImpersonateLoggedOnUser
LogonUserW
OpenSCManagerW
OpenServiceW
QueryServiceStatus
RegEnumValueW
RevertToSelf
SetSecurityInfo
SetTokenInformation
StartServiceW

oleaut32

SafeArrayGetDim
SafeArrayGetUBound
SafeArrayGetElement

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoInitializeEx
CoInitializeSecurity
CoSetProxyBlanket
CoCreateGuid
StringFromGUID2
RevokeDragDrop

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW
ExtractIconExW
ExtractIconW
ord66
ord524
SHAddToRecentDocs
SHFileOperationW
SHFormatDrive
SHGetFileInfoW
ShellAboutW
Shell_NotifyIconW
ShellExecuteExW

ws2_32

WSAStartup
gethostbyname
WSACleanup
gethostbyaddr
inet_addr
closesocket
gethostname
htons
select
__WSAFDIsSet
ioctlsocket
recvfrom
socket
connect
recv
bind

winmm

timeBeginPeriod

msimg32

AlphaBlend

gdiplus

GdipDeleteFont
GdipDeleteGraphics
GdipDeletePath
GdipDeleteMatrix
GdipDeletePen
GdipDeleteStringFormat
GdipFree
GdipGetDpiX
GdipGetDpiY

icmp

IcmpCloseHandle
IcmpCreateFile
IcmpSendEcho

imagehlp

MapFileAndCheckSumW
MakeSureDirectoryPathExists

iphlpapi

GetAdaptersInfo
GetNetworkParams

msi

ord45
ord70

netapi32

NetApiBufferFree
NetLocalGroupAdd
NetLocalGroupDel
NetLocalGroupEnum
NetUserDel
NetUserGetInfo
NetUserSetInfo

setupapi

SetupIterateCabinetW

urlmon

URLDownloadToFileW
UrlMkSetSessionOption

userenv

GetDefaultUserProfileDirectoryW

uxtheme

SetWindowTheme

wininet

DeleteUrlCacheEntryW
InternetCloseHandle
InternetGetConnectedState
InternetOpenUrlW
InternetOpenW
InternetReadFile
UnlockUrlCacheEntryFileW

winspool.drv

ClosePrinter
DeletePrinter
OpenPrinterW
SetPrinterW

comctl32

InitCommonControlsEx
ImageList_Replace
ImageList_Add
ImageList_ReplaceIcon
ImageList_Remove
ImageList_AddMasked
ImageList_Destroy
ImageList_Create

Sections

.code
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text
Size: 421KB - Virtual size: 421KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 575KB - Virtual size: 586KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/readme_en.txt
【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/readme_ru.txt
【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/热否网 hotfou.com 良心站常来看看有惊喜.url
.url
【热否网】W10DigitalActivation-1.5.5.1-x86-x64-EN/W10DigitalActivation/软件通用激活破解步骤 Patch-Crack-KeyGen 使用说明.url
.url
热否网 hotfou.com 良心站常来看看有惊喜.url
.url
软件通用激活破解步骤 Patch-Crack-KeyGen 使用说明.url
.url

Sharing

General

Malware Config

Signatures

Files

82597a52e5ed627fbe14d9d86155a7d3

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

oleaut32

ole32

shell32

ws2_32

winmm

msimg32

gdiplus

icmp

imagehlp

iphlpapi

msi

netapi32

setupapi

urlmon

userenv

uxtheme

wininet

winspool.drv

comctl32

Sections

.code Size: 86KB - Virtual size: 85KB

.text Size: 355KB - Virtual size: 355KB

'.text' Size: 512B - Virtual size: 21B

.rdata Size: 39KB - Virtual size: 38KB

.data Size: 673KB - Virtual size: 678KB

.rsrc Size: 68KB - Virtual size: 72KB

6508c837f697477df34fd04a4d01fbf5

Headers

File Characteristics

Imports

msvcrt

kernel32

user32

gdi32

advapi32

oleaut32

ole32

shell32

ws2_32

winmm

msimg32

gdiplus

icmp

imagehlp

iphlpapi

msi

netapi32

setupapi

urlmon

userenv

uxtheme

wininet

winspool.drv

comctl32

Sections

.code Size: 139KB - Virtual size: 139KB

.text Size: 421KB - Virtual size: 421KB

.rdata Size: 73KB - Virtual size: 72KB

.pdata Size: 23KB - Virtual size: 22KB

.data Size: 575KB - Virtual size: 586KB

.rsrc Size: 68KB - Virtual size: 72KB

.code
Size: 86KB - Virtual size: 85KB

.text
Size: 355KB - Virtual size: 355KB

'.text'
Size: 512B - Virtual size: 21B

.rdata
Size: 39KB - Virtual size: 38KB

.data
Size: 673KB - Virtual size: 678KB

.rsrc
Size: 68KB - Virtual size: 72KB

.code
Size: 139KB - Virtual size: 139KB

.text
Size: 421KB - Virtual size: 421KB

.rdata
Size: 73KB - Virtual size: 72KB

.pdata
Size: 23KB - Virtual size: 22KB

.data
Size: 575KB - Virtual size: 586KB

.rsrc
Size: 68KB - Virtual size: 72KB