21f053cb15ba0f35d17bdc2f59362e3f2c4e14907b97ef69b02a4fb71b6b0a08

Sharing

Copy URL Twitter E-mail

General

Target

21f053cb15ba0f35d17bdc2f59362e3f2c4e14907b97ef69b02a4fb71b6b0a08
Size

8.3MB
MD5

0cef708c056940e64abea465a2182ce5
SHA1

65f96ec15b98c1f7c36c3b05e46a4847edd2d152
SHA256

21f053cb15ba0f35d17bdc2f59362e3f2c4e14907b97ef69b02a4fb71b6b0a08
SHA512

597768215f9f57e5aee5d160b68d049560893145bb01cffa2b192abcfc6c1aff30681586d7b917b014c70239bd156d77f67a5d4afdf494d856665f3b16364dd0
SSDEEP

98304:FIBNooU1GgK+rvwkieXjg2g8Ysr3DFGXAcg:FIkoUYv+7wkiEjpg8FrRc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21f053cb15ba0f35d17bdc2f59362e3f2c4e14907b97ef69b02a4fb71b6b0a08

Files

21f053cb15ba0f35d17bdc2f59362e3f2c4e14907b97ef69b02a4fb71b6b0a08
.exe windows:6 windows x86 arch:x86

d6ca391b9716f6279c9e6abc011d992d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Program Files\Witium_YModem\XYModem - 端口配置 - EM200-CAN\Debug\XYModem.pdb

Imports

kernel32

RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
GetModuleHandleExW
HeapValidate
GetSystemInfo
VirtualAlloc
GetCommandLineA
GetCommandLineW
ExitThread
FreeLibraryAndExitThread
HeapQueryInformation
QueryPerformanceFrequency
GetStdHandle
GetFileType
WriteConsoleW
SetStdHandle
ExitProcess
SetConsoleCtrlHandler
GetStringTypeW
GetDateFormatW
GetTimeFormatW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
FindFirstFileExA
FindFirstFileExW
FindNextFileA
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
VirtualQuery
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
LocalUnlock
LocalLock
SearchPathA
GetTempPathA
GetUserDefaultLCID
ReplaceFileA
GetTempFileNameA
GetDiskFreeSpaceA
GetTickCount
VerifyVersionInfoA
VerSetConditionMask
FindResourceExW
GetWindowsDirectoryA
SystemTimeToTzSpecificLocalTime
SetFileTime
SetFileAttributesA
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
GetCurrentDirectoryA
CreateSemaphoreA
WaitForMultipleObjects
CreateMutexA
ReleaseMutex
ReleaseSemaphore
GetCPInfo
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
lstrcpyA
SystemTimeToFileTime
FileTimeToSystemTime
VirtualProtect
GetProfileIntA
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
SetErrorMode
GlobalFlags
GetACP
GetAtomNameA
OutputDebugStringW
GetVolumeInformationA
MoveFileA
lstrcmpiA
GetShortPathNameA
LoadLibraryExA
GetHandleInformation
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
GetThreadLocale
PulseEvent
ResetEvent
GetCurrentProcessId
ResumeThread
SuspendThread
GetThreadPriority
SetThreadPriority
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
LeaveCriticalSection
EnterCriticalSection
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalSize
GlobalAlloc
FindResourceA
LoadLibraryW
GlobalFree
GlobalUnlock
GlobalLock
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
FreeResource
OutputDebugStringA
WideCharToMultiByte
FindResourceW
SetThreadAffinityMask
SizeofResource
LockResource
LoadResource
SetPriorityClass
GetCurrentThread
GetCurrentProcess
SetThreadUILanguage
GetSystemDefaultLangID
SetThreadLocale
GetVersionExA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
RaiseException
DecodePointer
WaitCommEvent
SetCommTimeouts
SetCommState
SetCommMask
PurgeComm
GetCommTimeouts
GetCommState
SetupComm
ClearCommError
GetLastError
CreateThread
Sleep
CreateEventA
WaitForSingleObject
SetEvent
GetOverlappedResult
CloseHandle
WriteFile
ReadFile
CreateFileA
MultiByteToWideChar
GetModuleFileNameA
CreateProcessA
SetLastError
GetStringTypeExA
CreateFileW

user32

DrawFocusRect
GetSysColorBrush
GetMenuContextHelpId
SetMenuContextHelpId
ScrollDC
ExcludeUpdateRgn
WindowFromDC
GetTabbedTextExtentA
DrawStateA
GrayStringA
DrawTextExA
DrawTextA
DrawIcon
SetMenuDefaultItem
GetMenuDefaultItem
SetMenuItemInfoA
GetMenuItemInfoA
InsertMenuItemA
DeleteMenu
ModifyMenuA
EnableMenuItem
CheckMenuItem
CreatePopupMenu
CreateMenu
LoadMenuIndirectA
LoadMenuW
LoadMenuA
DrawFrameControl
DrawEdge
NotifyWinEvent
ArrangeIconicWindows
DlgDirSelectComboBoxExA
DlgDirListComboBoxA
DlgDirSelectExA
DlgDirListA
LoadCursorW
LoadCursorA
GetLastActivePopup
FindWindowExA
FindWindowA
SetParent
ChildWindowFromPointEx
ChildWindowFromPoint
WindowFromPoint
ClientToScreen
GetCaretPos
SetCaretPos
ShowCaret
HideCaret
CreateCaret
GetWindowContextHelpId
SetWindowContextHelpId
EnableScrollBar
ShowScrollBar
LockWindowUpdate
RedrawWindow
ValidateRgn
InvalidateRgn
ValidateRect
InvalidateRect
GetWindowRgn
SetWindowRgn
GetUpdateRgn
GetUpdateRect
ReleaseDC
GetWindowDC
GetDCEx
GetDC
SetForegroundWindow
GetForegroundWindow
UpdateWindow
DragDetect
GetSystemMenu
DrawMenuBar
HiliteMenuItem
KillTimer
SetTimer
SetCapture
GetOpenClipboardWindow
ChangeClipboardChain
GetClipboardViewer
SetClipboardViewer
GetClipboardOwner
OpenClipboard
GetNextDlgTabItem
GetNextDlgGroupItem
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
CloseWindow
OpenIcon
ShowOwnedPopups
FillRect
PostThreadMessageA
SendNotifyMessageA
DrawAnimatedRects
DrawCaption
IsDialogMessageA
SetWindowTextA
ScrollWindowEx
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextA
SetDlgItemTextA
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxA
AdjustWindowRectEx
GetWindowRect
GetClientRect
RemovePropA
GetPropA
SetPropA
GetScrollRange
SetScrollRange
ScrollWindow
EndPaint
BeginPaint
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
CharNextA
GetMessageA
TranslateMessage
GetCursorPos
PostMessageA
UnregisterClassA
GetKeyState
GetSystemMetrics
PeekMessageA
GetCapture
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
SetCursor
CharUpperA
InflateRect
IntersectRect
GetDialogBaseUnits
RealChildWindowFromPoint
SetRect
ReleaseCapture
GetAsyncKeyState
TrackMouseEvent
DestroyIcon
LoadImageW
DestroyMenu
SystemParametersInfoA
CopyImage
GetMessagePos
DispatchMessageA
FrameRect
InvertRect
CheckMenuRadioItem
LoadBitmapA
GetKeyNameTextA
MapVirtualKeyA
FlashWindow
GetWindowThreadProcessId
PostQuitMessage
IsWindow
DestroyWindow
CreateDialogIndirectParamA
EndDialog
GetDlgItem
GetActiveWindow
EnableWindow
IsWindowEnabled
TranslateMDISysAccel
SetActiveWindow
GetWindowLongA
GetDesktopWindow
IsMenu
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
SendMessageA
TabbedTextOutA
MapDialogRect
SetFocus
SetScrollPos
GetScrollPos
GetWindowTextA
GetWindowTextLengthA
GetWindow
SendDlgItemMessageA
SetRectEmpty
OffsetRect
GetParent
GetFocus
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
RegisterWindowMessageA
SubtractRect
MonitorFromRect
InSendMessage
DestroyCursor
GetTabbedTextExtentW
DefMDIChildProcA
DefFrameProcA
EnumChildWindows
IsClipboardFormatAvailable
CharUpperBuffA
GetDoubleClickTime
DestroyAcceleratorTable
CreateAcceleratorTableA
ToAsciiEx
GetKeyboardState
MapVirtualKeyExA
IsCharLowerA
GetKeyboardLayout
GetComboBoxInfo
MonitorFromPoint
UpdateLayeredWindow
RegisterClipboardFormatA
UnionRect
CopyIcon
SetCursorPos
EmptyClipboard
SetClipboardData
CloseClipboard
SetClassLongA
EnumDisplayMonitors
SetLayeredWindowAttributes
GetIconInfo
DrawIconEx
MessageBeep
WaitMessage
LoadAcceleratorsW
IsRectEmpty
CopyAcceleratorTableA
MsgWaitForMultipleObjectsEx
ReuseDDElParam
GetMenuBarInfo
LoadImageA
TranslateAcceleratorA
LoadAcceleratorsA
UnpackDDElParam
GetClipboardFormatNameA

gdi32

CreateBrushIndirect
CreateCompatibleBitmap
CreateDiscardableBitmap
CreateCompatibleDC
CreateDIBPatternBrushPt
CreateEllipticRgn
CreateEllipticRgnIndirect
CreateFontIndirectA
CreateFontA
CreateHatchBrush
CreateICA
CreatePalette
CreatePen
CreatePenIndirect
CreatePolyPolygonRgn
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
CreateSolidBrush
DrawEscape
Ellipse
EnumObjects
EqualRgn
Escape
ExtEscape
ExtCreateRegion
ExtFloodFill
FillRgn
FloodFill
FrameRgn
GetROP2
GetAspectRatioFilterEx
GetBkColor
GetBkMode
GetBitmapBits
GetBitmapDimensionEx
GetBoundsRect
GetBrushOrgEx
GetCharWidthA
GetCharWidthFloatA
GetCharABCWidthsA
GetCharABCWidthsFloatA
GetCurrentObject
GetCurrentPositionEx
GetFontData
GetGlyphOutlineA
GetGraphicsMode
GetMapMode
GetNearestColor
GetNearestPaletteIndex
GetObjectType
GetOutlineTextMetricsA
GetPaletteEntries
GetPixel
GetPolyFillMode
GetRegionData
GetRgnBox
GetStockObject
GetStretchBltMode
GetTextCharacterExtra
GetTextAlign
GetTextColor
GetTextExtentPoint32A
GetFontLanguageInfo
GetCharacterPlacementA
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
InvertRgn
MaskBlt
PlgBlt
OffsetRgn
PatBlt
Pie
PaintRgn
PolyPolygon
PtInRegion
PtVisible
RectInRegion
RectVisible
Rectangle
ResetDCA
RealizePalette
RoundRect
ResizePalette
SelectObject
SetBitmapBits
SetBoundsRect
SetPaletteEntries
SetPixel
SetPixelV
StretchBlt
SetRectRgn
UpdateColors
PlayEnhMetaFile
Chord
GetTextMetricsA
CreateBitmapIndirect
PolyPolyline
GetWorldTransform
GetColorAdjustment
CreateHalftonePalette
StartDocA
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetPath
PathToRegion
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
ExtCreatePen
GetMiterLimit
GetArcDirection
TextOutA
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
PolyBezier
SetBitmapDimensionEx
SetBrushOrgEx
GetTextFaceA
GetKerningPairsA
UnrealizeObject
DeleteObject
ExcludeClipRect
GetClipBox
GetClipRgn
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
MoveToEx
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
StretchDIBits
EnumFontFamiliesExA
GetSystemPaletteEntries
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
GetDIBits
CreateDIBSection
SetDIBColorTable
DeleteMetaFile
GetTextExtentPointA
GetTextExtentPoint32W
Arc
AnimatePalette
GetObjectA
SetTextColor
AngleArc
CombineRgn
SetBkColor
CreateBitmap
DeleteDC
ExtTextOutA
CreateEnhMetaFileA
BitBlt
CloseEnhMetaFile
CreateMetaFileA
CloseMetaFile
GetDeviceCaps
CreateDCA
GdiComment
CopyMetaFileA

msimg32

AlphaBlend
GradientFill
TransparentBlt

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
GetJobA

advapi32

RegQueryValueA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegEnumKeyA
RegOpenKeyExW
RegEnumKeyExA
SetFileSecurityA
GetFileSecurityA
RegQueryValueExA
RegOpenKeyExA
RegEnumValueA
RegCloseKey
RegSetValueA

shell32

SHGetMalloc
ShellExecuteA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ExtractIconA
SHAddToRecentDocs
DragFinish
DragQueryFileA
SHGetFileInfoA
DragAcceptFiles
SHAppBarMessage
ShellExecuteExA
SHBrowseForFolderA

comctl32

InitCommonControlsEx

shlwapi

PathRemoveFileSpecW
PathStripToRootA
PathIsUNCA
PathRemoveExtensionA
PathFindFileNameA
PathFindExtensionA
StrFormatKBSizeA

uxtheme

GetCurrentThemeName
GetThemeSysColor
GetWindowTheme
GetThemeColor
DrawThemeText
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeParentBackground

ole32

OleUninitialize
OleInitialize
OleQueryCreateFromData
CreateDataAdviseHolder
CreateOleAdviseHolder
GetRunningObjectTable
GetClassFile
OleRegEnumVerbs
OleRegGetMiscStatus
PropVariantCopy
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
CoRegisterMessageFilter
StgIsStorageILockBytes
CreateGenericComposite
CreateItemMoniker
WriteClassStm
OleCreate
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
OleCreateFromFile
OleSave
OleSaveToStream
OleSetContainedObject
OleIsRunning
OleLockRunning
OleGetIconOfClass
CoFreeUnusedLibraries
CreateStreamOnHGlobal
CoRevokeClassObject
CoRegisterClassObject
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
GetHGlobalFromILockBytes
OleSetMenuDescriptor
CoGetMalloc
OleRun
StringFromGUID2
CoDisconnectObject
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
WriteClassStg
ReadClassStg
CreateBindCtx
CoTreatAsClass
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
StgCreateDocfile
StgOpenStorage
StgIsStorageFile
CreateFileMoniker
OleLoad
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleQueryLinkFromData

oleaut32

VarBstrFromDate
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayRedim
SafeArrayDestroy
SafeArrayDestroyData
VarBstrFromDec
SafeArrayCreate
SafeArrayAllocData
SafeArrayAllocDescriptor
VariantTimeToSystemTime
SystemTimeToVariantTime
VarDecFromStr
SysStringLen
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SafeArrayGetElemsize
SafeArrayGetDim
OleCreateFontIndirect
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
SysFreeString
SysAllocString
SafeArrayDestroyDescriptor
SysReAllocStringLen

oledlg

ord9
ord7
ord6
ord5
ord4
ord3
ord8

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundA
sndPlaySoundA

Sections

.text
Size: 6.8MB - Virtual size: 6.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 890KB - Virtual size: 890KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 708KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gfids
Size: 183KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 289B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1024B - Virtual size: 777B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.00cfg
Size: 512B - Virtual size: 260B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 320KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6ca391b9716f6279c9e6abc011d992d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 6.8MB - Virtual size: 6.8MB

.rdata Size: 890KB - Virtual size: 890KB

.data Size: 39KB - Virtual size: 708KB

.idata Size: 28KB - Virtual size: 27KB

.gfids Size: 183KB - Virtual size: 183KB

.giats Size: 512B - Virtual size: 289B

.tls Size: 1024B - Virtual size: 777B

.00cfg Size: 512B - Virtual size: 260B

.rsrc Size: 65KB - Virtual size: 65KB

.reloc Size: 320KB - Virtual size: 320KB

.text
Size: 6.8MB - Virtual size: 6.8MB

.rdata
Size: 890KB - Virtual size: 890KB

.data
Size: 39KB - Virtual size: 708KB

.idata
Size: 28KB - Virtual size: 27KB

.gfids
Size: 183KB - Virtual size: 183KB

.giats
Size: 512B - Virtual size: 289B

.tls
Size: 1024B - Virtual size: 777B

.00cfg
Size: 512B - Virtual size: 260B

.rsrc
Size: 65KB - Virtual size: 65KB

.reloc
Size: 320KB - Virtual size: 320KB