044961c9a6240c3574c4156fbe83b11e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

044961c9a6240c3574c4156fbe83b11e_JaffaCakes118
Size

6.4MB
MD5

044961c9a6240c3574c4156fbe83b11e
SHA1

448be9b83a9b4285f0f84bdd3beba1eeb3836fbf
SHA256

053e300feca726ed3ee5dbc9e5e0acf61f17b1f22ba4a211aada95380ada1758
SHA512

07e470ce97e242379ec9b668666bfead977956f938654358b0c32b00eda9a6b383b04eb5fad791f30395bc6c7566ee6c5da7109dafa43f703ad8ffc01f3ea89b
SSDEEP

196608:vbE1rM82WYvTBLElMJGQdZjZ8Wf/0jmq7gRjeWO3zBAquWkHxmG:zOM0WO3zBAquWkHxmG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
044961c9a6240c3574c4156fbe83b11e_JaffaCakes118

Files

044961c9a6240c3574c4156fbe83b11e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

94874b10d7f7f149ce967255579c5605

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\e盘拷贝\游戏盒版本\youxun\trunk\bin\Win32\Debug\build\GameGuide\点此安装.pdb

Imports

wininet

InternetOpenW
InternetSetStatusCallbackW
InternetSetCookieW
InternetGetCookieW
InternetSetFilePointer
InternetConnectW
InternetWriteFile
InternetQueryDataAvailable
FtpDeleteFileW
FtpRenameFileW
FtpCreateDirectoryW
FtpRemoveDirectoryW
FtpSetCurrentDirectoryW
FtpGetCurrentDirectoryW
FtpOpenFileW
FtpCommandW
FtpPutFileW
InternetCanonicalizeUrlW
GopherCreateLocatorW
GopherGetAttributeW
GopherOpenFileW
InternetErrorDlg
HttpEndRequestW
HttpSendRequestExW
FtpFindFirstFileW
InternetFindNextFileW
GopherFindFirstFileW
InternetGetLastResponseInfoW
GopherGetLocatorTypeW
HttpOpenRequestW
HttpAddRequestHeadersW
HttpSendRequestW
HttpQueryInfoW
GetUrlCacheEntryInfoW
InternetReadFile
InternetCloseHandle
InternetCrackUrlW
DeleteUrlCacheEntryW
InternetQueryOptionW
InternetOpenUrlW
FtpGetFileW
InternetSetOptionExW

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

psapi

GetModuleFileNameExW
EnumProcessModules
EnumProcesses
GetModuleBaseNameW

dbghelp

MiniDumpWriteDump

kernel32

EnumSystemLocalesA
GetUserDefaultLCID
CreateFileA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFullPathNameA
IsValidLocale
SetEnvironmentVariableA
OpenFileMappingA
CreateFileMappingA
OpenEventA
InterlockedCompareExchange
GetDateFormatA
GetDriveTypeA
GetTimeFormatA
CloseHandle
GetCurrentProcess
GetCurrentProcessId
GetStringTypeW
GetCurrentThreadId
CreateFileW
GetCommandLineW
SetUnhandledExceptionFilter
FindResourceW
SizeofResource
LockResource
LoadResource
CreateThread
FreeResource
GlobalUnlock
GlobalLock
GlobalAlloc
GetDriveTypeW
GetDiskFreeSpaceExW
GetLogicalDriveStringsW
GetPrivateProfileStringW
lstrlenW
WaitForSingleObject
MultiByteToWideChar
DeleteFileW
CreateDirectoryW
GetLastError
GetTickCount
GetStringTypeA
LCMapStringA
GetLocaleInfoA
HeapReAlloc
HeapSize
GetConsoleOutputCP
WriteConsoleA
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
LCMapStringW
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
SetConsoleCtrlHandler
FatalAppExitA
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
QueryPerformanceCounter
OutputDebugStringW
OutputDebugStringA
VirtualQuery
GetSystemInfo
VirtualAlloc
GetModuleFileNameA
ExitProcess
IsBadReadPtr
HeapValidate
FileTimeToLocalFileTime
FindNextFileA
FindFirstFileA
GetConsoleMode
GetConsoleCP
SetStdHandle
GetProcessHeap
HeapAlloc
HeapFree
SetCurrentDirectoryW
SetEnvironmentVariableW
UnhandledExceptionFilter
DebugBreak
IsDebuggerPresent
GetFileType
WriteConsoleW
GetSystemTimeAsFileTime
RaiseException
RtlUnwind
GetStartupInfoW
ReleaseMutex
CreateMutexW
FindResourceExW
GetDiskFreeSpaceW
PulseEvent
GetFileAttributesExW
GetFileTime
GetFileSizeEx
GetProfileIntW
VirtualProtect
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
GlobalFlags
InterlockedIncrement
GetPrivateProfileIntW
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GetVolumeInformationW
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
GetHandleInformation
LocalAlloc
GetAtomNameW
GetModuleHandleA
CompareStringW
LoadLibraryA
GlobalGetAtomNameW
GlobalFindAtomW
GetVersionExA
MulDiv
CopyFileW
GlobalSize
GlobalFree
InterlockedDecrement
GetThreadPriority
SetThreadPriority
SetLastError
GlobalAddAtomW
SuspendThread
CompareStringA
InterlockedExchange
lstrcmpW
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetLocaleInfoW
ConvertDefaultLocale
EnumResourceLanguagesW
ReleaseSemaphore
CreateSemaphoreW
SetVolumeLabelW
FormatMessageW
LocalFree
ResetEvent
SetEvent
OpenEventW
CreateEventW
WaitForMultipleObjects
ExitThread
OpenProcess
TerminateProcess
Module32FirstW
Module32NextW
CreateToolhelp32Snapshot
Process32FirstW
Process32NextW
LoadLibraryExW
GetStdHandle
SetEndOfFile
CompareFileTime
FindFirstChangeNotificationW
FindCloseChangeNotification
FindNextFileW
GetTempFileNameW
SearchPathW
GetFullPathNameW
MoveFileW
RemoveDirectoryW
GetSystemDirectoryW
GetWindowsDirectoryW
SetFileTime
LocalFileTimeToFileTime
GetCurrentDirectoryW
LeaveCriticalSection
TryEnterCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SetFileAttributesW
WritePrivateProfileStringW
ResumeThread
GetLocalTime
SystemTimeToFileTime
UnmapViewOfFile
CreateFileMappingW
MapViewOfFile
GetFileInformationByHandle
GetFileSize
SetFilePointer
ReadFile
FileTimeToSystemTime
GetVersionExW
GetShortPathNameW
GetTempPathW
WriteFile
GetFileAttributesW
GetModuleFileNameW
Sleep
FindFirstFileW
FindClose
GetModuleHandleW
SetErrorMode
FreeLibrary
WideCharToMultiByte
lstrlenA
LoadLibraryW
GetProcAddress

user32

CheckMenuRadioItem
GetMenuContextHelpId
SetMenuContextHelpId
LoadMenuIndirectW
LoadMenuW
ModifyMenuW
InsertMenuItemW
SetMenuItemInfoW
GetMenuItemInfoW
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
DeleteMenu
CreatePopupMenu
CreateMenu
ScrollDC
GrayStringW
GetTabbedTextExtentW
DrawTextExW
DrawTextW
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateW
DrawIcon
InvertRect
FrameRect
FillRect
ExcludeUpdateRgn
WindowFromDC
GetSysColorBrush
RegisterWindowMessageW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
SendDlgItemMessageA
GetSysColor
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
WinHelpW
TrackPopupMenuEx
TrackPopupMenu
SetWindowPlacement
DestroyWindow
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetMenu
GetMenu
GetMessageTime
GetMessagePos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
RemoveMenu
IsMenu
GetMenuItemCount
GetSubMenu
GetMenuState
GetMenuStringW
AppendMenuW
InsertMenuW
GetMenuItemID
RegisterClipboardFormatW
UnhookWindowsHookEx
ShowWindow
SetWindowPos
MoveWindow
GetDlgCtrlID
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
IsDialogMessageW
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextW
SetDlgItemInt
SendDlgItemMessageW
GetDlgItemTextW
GetDlgItemInt
CreateDialogIndirectParamW
CheckRadioButton
CheckDlgButton
OpenIcon
CloseWindow
LoadIconW
PostThreadMessageW
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
GetWindowContextHelpId
SetWindowContextHelpId
SendNotifyMessageW
GetForegroundWindow
SetForegroundWindow
ShowCaret
HideCaret
SetCaretPos
IsClipboardFormatAvailable
CreateCaret
GetClipboardViewer
GetClipboardOwner
GetOpenClipboardWindow
OpenClipboard
SetClipboardViewer
ChangeClipboardChain
FlashWindow
WindowFromPoint
SetParent
IsChild
GetWindow
GetTopWindow
FindWindowExW
ChildWindowFromPointEx
ChildWindowFromPoint
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
DlgDirSelectComboBoxExW
DlgDirSelectExW
DlgDirListComboBoxW
DlgDirListW
GetCapture
SetActiveWindow
GetActiveWindow
KillTimer
SetTimer
DrawCaption
DrawAnimatedRects
EnableScrollBar
RedrawWindow
LockWindowUpdate
GetDCEx
ShowOwnedPopups
ValidateRgn
InvalidateRgn
GetUpdateRgn
GetUpdateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
EndPaint
BeginPaint
ClientToScreen
MapWindowPoints
GetClientRect
BringWindowToTop
SetMenuItemBitmaps
LoadBitmapW
GetMenuCheckMarkDimensions
DispatchMessageW
TranslateMessage
GetWindowRgn
SetWindowRgn
ArrangeIconicWindows
IsZoomed
IsIconic
HiliteMenuItem
GetSystemMenu
DrawMenuBar
DragDetect
MessageBoxW
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
GetKeyState
CallNextHookEx
PeekMessageW
SetWindowsHookExW
EndDialog
CharUpperW
LoadAcceleratorsW
DestroyMenu
GetAsyncKeyState
GetClipboardFormatNameA
GetClipboardFormatNameW
UnpackDDElParam
DestroyIcon
TranslateAcceleratorW
ReuseDDElParam
GetMenuBarInfo
SystemParametersInfoW
ValidateRect
GetMessageW
UnregisterClassW
CharNextW
CopyAcceleratorTableW
MessageBeep
GetKeyNameTextW
MapVirtualKeyW
GetDialogBaseUnits
MsgWaitForMultipleObjects
GetDlgItem
InSendMessage
TabbedTextOutW
MapDialogRect
PeekMessageA
IsWindowUnicode
GetMessageA
DispatchMessageA
PostQuitMessage
SubtractRect
UnionRect
InflateRect
SetRect
PtInRect
SetRectEmpty
PostMessageW
InvalidateRect
GetWindowLongW
SetFocus
SetCapture
ReleaseCapture
SendMessageW
CallWindowProcW
DefWindowProcW
SetWindowLongW
FindWindowW
IsWindow
GetWindowThreadProcessId
CharToOemW
GetDesktopWindow
wsprintfW
PrivateExtractIconsW
GetWindowRect
IsWindowVisible
GetCursorPos
ScreenToClient
SetCursor
GetSystemMetrics
LoadCursorW
WaitMessage
IsRectEmpty
GetTabbedTextExtentA
GetCaretPos
GetFocus

gdi32

CreatePatternBrush
CreateDIBPatternBrushPt
CreateFontIndirectW
CreateFontW
CreateBitmapIndirect
SetBitmapBits
GetBitmapBits
SetBitmapDimensionEx
GetBitmapDimensionEx
CreateCompatibleBitmap
CreateDiscardableBitmap
CreatePalette
CreateHalftonePalette
GetPaletteEntries
SetPaletteEntries
AnimatePalette
GetNearestPaletteIndex
ResizePalette
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreateEllipticRgnIndirect
CreatePolygonRgn
CreatePolyPolygonRgn
CreateRoundRectRgn
PathToRegion
ExtCreateRegion
GetRegionData
SetRectRgn
CombineRgn
EqualRgn
OffsetRgn
GetRgnBox
PtInRegion
RectInRegion
CreateICW
CreateCompatibleDC
GetBrushOrgEx
SetBrushOrgEx
EnumObjects
SelectObject
GetNearestColor
RealizePalette
UpdateColors
GetBkColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextColor
GetMapMode
GetGraphicsMode
GetWorldTransform
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
InvertRgn
PaintRgn
PtVisible
RectVisible
GetCurrentPositionEx
Arc
Polyline
Chord
Ellipse
Pie
Polygon
PolyPolygon
Rectangle
RoundRect
PatBlt
BitBlt
StretchBlt
GetPixel
SetPixel
FloodFill
ExtFloodFill
TextOutW
GetTextExtentPoint32W
GetTextAlign
GetTextFaceW
GetTextMetricsW
GetTextCharacterExtra
CreateSolidBrush
GetFontLanguageInfo
CreateBrushIndirect
GetAspectRatioFilterEx
Escape
SetBoundsRect
GetBoundsRect
ResetDCW
GetOutlineTextMetricsW
GetCharABCWidthsW
GetFontData
GetKerningPairsW
GetGlyphOutlineW
StartDocW
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
MaskBlt
PlgBlt
SetPixelV
AngleArc
GetArcDirection
PolyPolyline
GetColorAdjustment
GetCurrentObject
PolyBezier
DrawEscape
ExtEscape
GetCharABCWidthsFloatW
GetCharWidthFloatW
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetMiterLimit
GetPath
SetMiterLimit
StrokeAndFillPath
StrokePath
WidenPath
GdiComment
PlayEnhMetaFile
DeleteDC
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
DeleteObject
GetClipRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
EnumMetaFile
PlayMetaFile
StretchDIBits
EnumFontFamiliesExW
DeleteMetaFile
GetCharacterPlacementW
CreateHatchBrush
ExtCreatePen
CreatePenIndirect
CreatePen
CreateMetaFileW
CloseMetaFile
CreateEnhMetaFileW
CloseEnhMetaFile
ExtTextOutW
CreateBitmap
CopyMetaFileW
CreateDCW
GetDeviceCaps
GetClipBox
SetTextColor
SetBkColor
GetObjectW
GetStockObject
UnrealizeObject
GetCharWidthW
GetDCOrgEx
GetObjectType

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
OpenPrinterW
GetJobW
ClosePrinter

advapi32

RegQueryValueW
GetFileSecurityW
SetFileSecurityW
RegCreateKeyW
OpenThreadToken
RevertToSelf
SetThreadToken
RegDeleteValueW
RegSetValueW
RegEnumKeyW
RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
RegOpenKeyW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW

shell32

DragFinish
ShellExecuteW
SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteExW
SHGetSpecialFolderLocation
SHFileOperationW
DragAcceptFiles
SHGetFileInfoW
DragQueryFileW
CommandLineToArgvW
ExtractIconW

comctl32

_TrackMouseEvent

shlwapi

ord156
PathFileExistsW
PathFindExtensionW
PathRemoveExtensionW
PathFindFileNameW
UrlUnescapeW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW

oledlg

OleUIConvertW
OleUIInsertObjectW
OleUIBusyW
OleUIChangeIconW
OleUIEditLinksW
OleUIUpdateLinksW
OleUIPasteSpecialW

ole32

OleLockRunning
OleSetContainedObject
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateFromFile
OleCreateLinkToFile
OleCreate
OleLoad
OleSave
StgIsStorageILockBytes
StgOpenStorage
StgCreateDocfile
CoGetMalloc
OleRun
GetClassFile
GetHGlobalFromILockBytes
OleGetIconOfClass
WriteClassStm
OleSaveToStream
OleIsRunning
OleQueryCreateFromData
OleQueryLinkFromData
OleGetClipboard
OleSetMenuDescriptor
DoDragDrop
OleRegEnumVerbs
OleRegGetMiscStatus
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CreateOleAdviseHolder
CreateDataAdviseHolder
OleTranslateAccelerator
IsAccelerator
GetRunningObjectTable
CoLockObjectExternal
CreateFileMoniker
CreateGenericComposite
CreateItemMoniker
CoDisconnectObject
StringFromGUID2
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
OleFlushClipboard
OleSetClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoRegisterClassObject
CoGetClassObject
CoRegisterMessageFilter
CoInitializeEx
ReleaseStgMedium
CoTaskMemAlloc
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
OleDuplicateData
CLSIDFromString
CLSIDFromProgID
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemFree
CoInitialize
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
CoUnmarshalInterface
CoMarshalInterface
CoReleaseMarshalData
StgIsStorageFile

oleaut32

SysAllocStringLen
SysAllocString
SysAllocStringByteLen
VariantClear
VariantCopy
SysStringLen
SysStringByteLen
VariantChangeType
OleCreateFontIndirect
SafeArrayDestroy
SafeArrayGetDim
SafeArrayGetElemsize
RegisterTypeLi
LoadTypeLi
LoadRegTypeLi
SafeArrayUnaccessData
VariantInit
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayRedim
SafeArrayCreate
SysReAllocStringLen
VarBstrFromCy
SafeArrayCopy
SafeArrayAllocData
SafeArrayDestroyDescriptor
VarBstrFromDec
VarDecFromStr
VarDateFromStr
VarBstrFromDate
SafeArrayAllocDescriptor
SafeArrayGetElement
SafeArrayPtrOfIndex
SafeArrayAccessData
SysFreeString
SafeArrayPutElement
SafeArrayLock
SystemTimeToVariantTime
SafeArrayUnlock
SafeArrayDestroyData
DosDateTimeToVariantTime
VariantTimeToSystemTime
VarUdateFromDate
VarDateFromUdate
VarCyFromStr

gdiplus

GdipGetPathWorldBounds
GdipGetFontStyle
GdipDeletePath
GdipCreatePath
GdipDrawImageRectRect
GdipAddPathString
GdipGetFamily
GdipGetFontSize
GdipSetImageAttributesWrapMode
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdiplusStartup
GdiplusShutdown
GdipCreateFromHDC
GdipDeleteGraphics
GdipFree
GdipAlloc
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipDisposeImage
GdipCloneImage
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipFillRectangle
GdipDrawString
GdipCreateFontFamilyFromName
GdipDeleteFontFamily
GdipCreateFont
GdipDeleteFont
GdipFillRectangleI
GdipLoadImageFromFile
GdipLoadImageFromFileICM
GdipGetImageWidth
GdipGetImageHeight
GdipCreatePen1
GdipDeletePen
GdipDrawRectangleI
GdipSetSolidFillColor
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatAlign
GdipSetTextRenderingHint

iphlpapi

GetAdaptersInfo
GetAdaptersAddresses

netapi32

Netbios

snmpapi

SnmpUtilOidNCmp
SnmpUtilVarBindFree
SnmpUtilOidCpy

ws2_32

WSACleanup
socket
WSAGetLastError
gethostbyname
htons
inet_addr
send
select
__WSAFDIsSet
recv
closesocket
WSAStartup
inet_ntoa
setsockopt
connect

Sections

.textbss
Size: - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 3.6MB - Virtual size: 3.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 581KB - Virtual size: 581KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 29KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 29KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 1024B - Virtual size: 793B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

94874b10d7f7f149ce967255579c5605

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

wininet

version

psapi

dbghelp

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

iphlpapi

netapi32

snmpapi

ws2_32

Sections

.textbss Size: - Virtual size: 1.7MB

.text Size: 3.6MB - Virtual size: 3.6MB

.rdata Size: 581KB - Virtual size: 581KB

.data Size: 29KB - Virtual size: 51KB

.idata Size: 29KB - Virtual size: 29KB

.didat Size: 1024B - Virtual size: 793B

.rsrc Size: 2.0MB - Virtual size: 2.0MB

.reloc Size: 162KB - Virtual size: 161KB

.textbss
Size: - Virtual size: 1.7MB

.text
Size: 3.6MB - Virtual size: 3.6MB

.rdata
Size: 581KB - Virtual size: 581KB

.data
Size: 29KB - Virtual size: 51KB

.idata
Size: 29KB - Virtual size: 29KB

.didat
Size: 1024B - Virtual size: 793B

.rsrc
Size: 2.0MB - Virtual size: 2.0MB

.reloc
Size: 162KB - Virtual size: 161KB