General

Malware Config

Signatures

Files

• f4bb0089dcf3629b1570fda839ef2f06c29cbf846c5134755d22d419015c8bd2.zip

  .zip

  Password: infected

• f4bb0089dcf3629b1570fda839ef2f06c29cbf846c5134755d22d419015c8bd2.exe

  .exe windows:6 windows x64 arch:x64

  Password: infected

  c1ef6924e6721ad4ed4dc1b88d669574

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  PDB Paths

  E:\cpp\git7\x64\Release\WndResizerApp.pdb

  Imports

  kernel32

  GetConsoleMode

  GetConsoleOutputCP

  GetTimeZoneInformation

  LCMapStringW

  FlsFree

  FlsSetValue

  FlsGetValue

  FlsAlloc

  GetStdHandle

  GetFileType

  SetStdHandle

  SetFilePointerEx

  GetACP

  VirtualAlloc

  GetSystemInfo

  HeapQueryInformation

  FreeLibraryAndExitThread

  ExitThread

  CreateThread

  GetCommandLineW

  GetCommandLineA

  ExitProcess

  RtlPcToFileHeader

  RtlUnwindEx

  RaiseException

  OutputDebugStringW

  FindFirstFileExW

  FindNextFileW

  QueryPerformanceFrequency

  GetOEMCP

  GetCPInfo

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  SetEnvironmentVariableW

  GetStringTypeW

  WriteConsoleW

  GetStartupInfoW

  IsDebuggerPresent

  InitializeSListHead

  GetSystemTimeAsFileTime

  QueryPerformanceCounter

  IsProcessorFeaturePresent

  TerminateProcess

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  IsValidCodePage

  RtlVirtualUnwind

  RtlLookupFunctionEntry

  RtlCaptureContext

  SleepConditionVariableSRW

  WakeAllConditionVariable

  AcquireSRWLockExclusive

  ReleaseSRWLockExclusive

  SearchPathW

  GetProfileIntW

  GetTickCount64

  GetTempPathW

  SetErrorMode

  SystemTimeToTzSpecificLocalTime

  GetFileSizeEx

  GetFileAttributesExW

  FileTimeToLocalFileTime

  GetWindowsDirectoryW

  lstrcmpiW

  GetCurrentProcess

  DuplicateHandle

  WriteFile

  UnlockFile

  SetFilePointer

  SetEndOfFile

  ReadFile

  LockFile

  GetVolumeInformationW

  FlushFileBuffers

  FindFirstFileW

  FindClose

  GetFileSize

  CreateFileW

  VerifyVersionInfoW

  VerSetConditionMask

  DeleteFileW

  GetCurrentDirectoryW

  FileTimeToSystemTime

  GetTempFileNameW

  GetFullPathNameW

  GetFileTime

  GetFileAttributesW

  FindResourceExW

  GetUserDefaultUILanguage

  GetSystemDefaultUILanguage

  GetLocaleInfoW

  LocalReAlloc

  LocalAlloc

  GlobalHandle

  GlobalReAlloc

  TlsFree

  TlsSetValue

  TlsGetValue

  TlsAlloc

  InitializeCriticalSection

  GlobalFlags

  ResumeThread

  SetThreadPriority

  WaitForSingleObject

  CloseHandle

  WritePrivateProfileStringW

  GetPrivateProfileStringW

  GetPrivateProfileIntW

  lstrcpyW

  GetVersionExW

  GetCurrentThread

  lstrcmpA

  CopyFileW

  FormatMessageW

  LocalFree

  GlobalSize

  InitializeCriticalSectionAndSpinCount

  WideCharToMultiByte

  GlobalGetAtomNameW

  GetCurrentProcessId

  MultiByteToWideChar

  GlobalAlloc

  VirtualProtect

  MulDiv

  CompareStringW

  GlobalFindAtomW

  GlobalAddAtomW

  lstrcmpW

  GlobalDeleteAtom

  LoadLibraryExW

  GetProcAddress

  GetModuleHandleW

  FreeLibrary

  GetSystemDirectoryW

  GetCurrentThreadId

  EncodePointer

  QueryActCtxW

  FindActCtxSectionStringW

  DeactivateActCtx

  ActivateActCtx

  CreateActCtxW

  GlobalFree

  GlobalLock

  GlobalUnlock

  LoadLibraryW

  GetModuleHandleExW

  GetModuleFileNameW

  SetLastError

  OutputDebugStringA

  Sleep

  FindResourceW

  LoadResource

  LockResource

  SizeofResource

  GetProcessHeap

  DeleteCriticalSection

  DecodePointer

  HeapFree

  HeapAlloc

  HeapReAlloc

  GetLastError

  HeapSize

  InitializeCriticalSectionEx

  LeaveCriticalSection

  EnterCriticalSection

  VirtualQuery

  user32

  PostQuitMessage

  RemoveMenu

  AppendMenuW

  InsertMenuW

  GetMenuState

  GetMenuStringW

  SystemParametersInfoW

  IsRectEmpty

  GetCursorPos

  SetWindowRgn

  KillTimer

  SetTimer

  ReuseDDElParam

  UnpackDDElParam

  LoadImageW

  DestroyIcon

  GetWindowThreadProcessId

  SetRectEmpty

  InsertMenuItemW

  DestroyMenu

  CreatePopupMenu

  LoadMenuW

  TranslateAcceleratorW

  LoadAcceleratorsW

  BringWindowToTop

  MapVirtualKeyW

  GetKeyNameTextW

  MapDialogRect

  GetAsyncKeyState

  ReleaseDC

  GetWindowDC

  GetDC

  TabbedTextOutW

  GrayStringW

  DrawTextExW

  DrawTextW

  IsDialogMessageW

  SetWindowTextW

  CheckDlgButton

  MoveWindow

  ShowWindow

  LoadBitmapW

  SetMenuItemInfoW

  GetMenuCheckMarkDimensions

  SetMenuItemBitmaps

  EnableMenuItem

  CheckMenuItem

  GetMonitorInfoW

  MonitorFromWindow

  WinHelpW

  GetScrollInfo

  SetScrollInfo

  CallNextHookEx

  UnhookWindowsHookEx

  SetWindowsHookExW

  GetWindow

  GetLastActivePopup

  GetTopWindow

  GetClassNameW

  GetClassLongPtrW

  EqualRect

  MapWindowPoints

  ScreenToClient

  MessageBoxW

  GetWindowTextLengthW

  GetWindowTextW

  RemovePropW

  GetPropW

  SetPropW

  ShowScrollBar

  GetScrollRange

  SetScrollRange

  GetScrollPos

  SetScrollPos

  ScrollWindow

  RedrawWindow

  ValidateRect

  EndPaint

  BeginPaint

  SetForegroundWindow

  GetForegroundWindow

  UpdateWindow

  TrackPopupMenu

  GetMenuItemCount

  GetMenuItemID

  GetSubMenu

  SetMenu

  GetMenu

  GetCapture

  GetKeyState

  GetFocus

  SetFocus

  DrawStateW

  GetSysColorBrush

  DrawFocusRect

  SetClassLongPtrW

  EnableWindow

  GetWindowRect

  UnionRect

  GetClientRect

  GetDlgCtrlID

  IsWindowVisible

  SetWindowPlacement

  GetWindowPlacement

  SetWindowPos

  IsChild

  IsMenu

  CreateWindowExW

  GetClassInfoExW

  GetClassInfoW

  RegisterClassW

  DefWindowProcW

  PostMessageW

  GetMessageTime

  GetMessagePos

  InflateRect

  DrawIconEx

  GetMessageW

  TranslateMessage

  ShowOwnedPopups

  SendDlgItemMessageA

  RealChildWindowFromPoint

  GetMenuItemInfoW

  CopyImage

  GetSystemMenu

  DeleteMenu

  SetParent

  WaitMessage

  PeekMessageW

  DispatchMessageW

  SetLayeredWindowAttributes

  EnumDisplayMonitors

  OpenClipboard

  CloseClipboard

  SetClipboardData

  EmptyClipboard

  MonitorFromPoint

  DrawEdge

  SendMessageW

  UnregisterClassW

  FillRect

  OffsetRect

  CopyRect

  GetSystemMetrics

  SetWindowLongPtrW

  BeginDeferWindowPos

  DeferWindowPos

  EndDeferWindowPos

  InvalidateRect

  ClientToScreen

  WindowFromPoint

  PtInRect

  ReleaseCapture

  SetCursor

  DestroyCursor

  SetCapture

  LoadCursorW

  GetWindowLongPtrW

  AdjustWindowRectEx

  CallWindowProcW

  SetRect

  SubtractRect

  IntersectRect

  DrawFrameControl

  GetSysColor

  CreateWindowExA

  SetWindowLongW

  LoadIconW

  IsIconic

  DrawIcon

  IsWindow

  DestroyWindow

  DestroyAcceleratorTable

  CreateDialogIndirectParamW

  EndDialog

  GetDlgItem

  GetNextDlgTabItem

  GetActiveWindow

  IsWindowEnabled

  SetActiveWindow

  GetWindowLongW

  GetDesktopWindow

  GetParent

  RegisterWindowMessageW

  GetUpdateRect

  UpdateLayeredWindow

  ToUnicodeEx

  GetKeyboardLayout

  GetKeyboardState

  CreateAcceleratorTableW

  CopyAcceleratorTableW

  RegisterClipboardFormatW

  CharUpperBuffW

  FrameRect

  IsClipboardFormatAvailable

  PostThreadMessageW

  GetNextDlgGroupItem

  IsCharLowerW

  MapVirtualKeyExW

  DrawMenuBar

  DefFrameProcW

  DefMDIChildProcW

  TranslateMDISysAccel

  GetComboBoxInfo

  HideCaret

  InvertRect

  CreateMenu

  GetWindowRgn

  ModifyMenuW

  SetMenuDefaultItem

  GetMenuDefaultItem

  CopyIcon

  GetIconInfo

  GetDoubleClickTime

  EnableScrollBar

  LockWindowUpdate

  SetCursorPos

  NotifyWinEvent

  MessageBeep

  CharUpperW

  IsZoomed

  TrackMouseEvent

  gdi32

  GetDeviceCaps

  GetObjectType

  GetPixel

  GetStockObject

  GetViewportExtEx

  GetWindowExtEx

  IntersectClipRect

  LineTo

  PtVisible

  RectVisible

  RestoreDC

  SaveDC

  SelectClipRgn

  ExtSelectClipRgn

  SelectObject

  SelectPalette

  SetBkMode

  SetMapMode

  SetLayout

  GetLayout

  SetPolyFillMode

  SetROP2

  SetTextAlign

  MoveToEx

  TextOutW

  ExtTextOutW

  SetViewportExtEx

  SetViewportOrgEx

  SetWindowExtEx

  SetWindowOrgEx

  OffsetViewportOrgEx

  OffsetWindowOrgEx

  ScaleViewportExtEx

  ScaleWindowExtEx

  CreateRectRgnIndirect

  PatBlt

  CreateCompatibleBitmap

  CreateEllipticRgn

  GetClipBox

  CreateDIBSection

  DPtoLP

  LPtoDP

  CopyMetaFileW

  CreateDCW

  CombineRgn

  GetBkColor

  GetTextColor

  GetTextExtentPoint32W

  CreatePolygonRgn

  Polygon

  Polyline

  GetTextMetricsW

  CreateFontIndirectW

  SetRectRgn

  EnumFontFamiliesExW

  CreateDIBitmap

  EnumFontFamiliesW

  GetTextCharsetInfo

  RealizePalette

  SetPixel

  StretchBlt

  SetDIBColorTable

  CreateRoundRectRgn

  GetRgnBox

  OffsetRgn

  RoundRect

  CreatePalette

  GetPaletteEntries

  GetNearestPaletteIndex

  GetSystemPaletteEntries

  ExtFloodFill

  SetPaletteEntries

  FillRgn

  FrameRgn

  GetBoundsRect

  PtInRegion

  GetViewportOrgEx

  GetWindowOrgEx

  SetPixelV

  GetTextFaceW

  ExcludeClipRect

  Escape

  DeleteObject

  CreateSolidBrush

  CreateRectRgn

  CreatePatternBrush

  CreatePen

  CreateHatchBrush

  CreateCompatibleDC

  BitBlt

  CreateBitmap

  GetObjectW

  SetTextColor

  SetBkColor

  Rectangle

  Ellipse

  DeleteDC

  msimg32

  TransparentBlt

  AlphaBlend

  winspool.drv

  ClosePrinter

  OpenPrinterW

  DocumentPropertiesW

  advapi32

  RegSetValueExW

  RegEnumKeyExW

  RegEnumValueW

  RegQueryValueW

  RegEnumKeyW

  RegCloseKey

  RegDeleteValueW

  RegDeleteKeyW

  RegCreateKeyExW

  RegQueryValueExW

  RegOpenKeyExW

  shell32

  DragQueryFileW

  DragFinish

  SHGetMalloc

  SHGetPathFromIDListW

  SHGetSpecialFolderLocation

  ShellExecuteW

  SHGetFileInfoW

  SHAppBarMessage

  SHGetDesktopFolder

  SHBrowseForFolderW

  comctl32

  InitCommonControlsEx

  shlwapi

  PathFindFileNameW

  PathIsUNCW

  PathRemoveFileSpecW

  PathStripToRootW

  StrFormatKBSizeW

  PathFindExtensionW

  uxtheme

  GetWindowTheme

  GetThemeSysColor

  CloseThemeData

  OpenThemeData

  DrawThemeBackground

  GetThemeColor

  GetCurrentThemeName

  IsAppThemed

  GetThemePartSize

  IsThemeBackgroundPartiallyTransparent

  DrawThemeParentBackground

  DrawThemeText

  ole32

  OleCreateMenuDescriptor

  OleDestroyMenuDescriptor

  OleTranslateAccelerator

  IsAccelerator

  CreateStreamOnHGlobal

  OleLockRunning

  RevokeDragDrop

  RegisterDragDrop

  CoLockObjectExternal

  OleGetClipboard

  DoDragDrop

  CoInitializeEx

  CoDisconnectObject

  CoInitialize

  CoCreateInstance

  CoCreateGuid

  CoUninitialize

  ReleaseStgMedium

  OleDuplicateData

  CoTaskMemFree

  CoTaskMemAlloc

  oleaut32

  VarBstrFromDate

  VariantCopy

  VariantTimeToSystemTime

  SystemTimeToVariantTime

  SysStringLen

  LoadTypeLi

  SysAllocString

  SysFreeString

  VariantChangeType

  VariantClear

  VariantInit

  SysAllocStringLen

  gdiplus

  GdipCreateFromHDC

  GdipDrawImageRectI

  GdipDrawImageI

  GdipBitmapUnlockBits

  GdipBitmapLockBits

  GdipCreateBitmapFromScan0

  GdipCreateBitmapFromStream

  GdipGetImagePaletteSize

  GdipGetImagePalette

  GdipGetImagePixelFormat

  GdipGetImageHeight

  GdipGetImageWidth

  GdipGetImageGraphicsContext

  GdipDisposeImage

  GdipCloneImage

  GdiplusStartup

  GdipFree

  GdipAlloc

  GdipSetInterpolationMode

  GdipCreateBitmapFromHBITMAP

  GdiplusShutdown

  GdipDeleteGraphics

  oleacc

  LresultFromObject

  CreateStdAccessibleObject

  AccessibleObjectFromWindow

  imm32

  ImmReleaseContext

  ImmGetOpenStatus

  ImmGetContext

  winmm

  PlaySoundW

  Sections

  .text

  Size: 2.0MB - Virtual size: 2.0MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 561KB - Virtual size: 560KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 30KB - Virtual size: 59KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 84KB - Virtual size: 84KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  _RDATA

  Size: 512B - Virtual size: 500B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1.4MB - Virtual size: 1.4MB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 62KB - Virtual size: 62KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ