General

Malware Config

Signatures

Files

• cb225661c987049bf363fa619496b15c

  .exe windows:4 windows x86 arch:x86

  1483bd8d311bdb73370a1308ddcba89d

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetModuleFileNameA

  LoadLibraryA

  VirtualAlloc

  lstrcatA

  CloseHandle

  lstrcpynA

  ExpandEnvironmentStringsA

  TlsGetValue

  GetModuleHandleA

  lstrcpyA

  GetSystemTime

  GetCommandLineA

  GetStringTypeA

  LCMapStringW

  LCMapStringA

  MultiByteToWideChar

  GetProcAddress

  GetStartupInfoA

  GetVersion

  ExitProcess

  TerminateProcess

  GetCurrentProcess

  UnhandledExceptionFilter

  FreeEnvironmentStringsA

  FreeEnvironmentStringsW

  WideCharToMultiByte

  GetEnvironmentStrings

  GetEnvironmentStringsW

  SetHandleCount

  GetStdHandle

  GetFileType

  GetCurrentThreadId

  TlsSetValue

  TlsAlloc

  SetLastError

  GetLastError

  HeapDestroy

  HeapCreate

  VirtualFree

  HeapFree

  RtlUnwind

  WriteFile

  InitializeCriticalSection

  EnterCriticalSection

  LeaveCriticalSection

  GetCPInfo

  GetACP

  GetOEMCP

  HeapAlloc

  HeapReAlloc

  GetStringTypeW

  user32

  KillTimer

  GetGuiResources

  ole32

  CoInitialize

  Sections

  .text

  Size: 16KB - Virtual size: 13KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 4KB - Virtual size: 2KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 4KB - Virtual size: 3KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 64KB - Virtual size: 61KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ