General

Malware Config

Signatures

Files

• test2.test

  .dll windows:4 windows x86 arch:x86

  6edb7b49e7ce8702a069ef7ebf257bdc

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DLL

  Imports

  kernel32

  GetProcAddress

  LoadLibraryA

  VirtualAlloc

  VirtualProtect

  GetCurrentThread

  lstrcmpA

  version

  VerInstallFileA

  VerFindFileA

  comdlg32

  GetSaveFileNameA

  CommDlgExtendedError

  advapi32

  LsaEnumerateAccountsWithUserRight

  SystemFunction020

  gdi32

  GdiConvertBitmapV5

  GetGlyphOutlineA

  SetDIBits

  gdiplus

  GdipShearMatrix

  GdiplusStartup

  GdipMeasureCharacterRanges

  oleacc

  WindowFromAccessibleObject

  msimg32

  AlphaBlend

  oledlg

  OleUIUpdateLinksW

  shell32

  Shell_MergeMenus

  SHChangeNotifyDeregister

  winspool.drv

  PrinterMessageBoxW

  ExtDeviceMode

  SetPortW

  GetPrintProcessorDirectoryA

  shlwapi

  PathRemoveBackslashA

  SHDeleteKeyW

  comctl32

  CreatePropertySheetPageW

  GetEffectiveClientRect

  imagehlp

  SymGetSymFromAddr

  SymGetModuleInfoW64

  oleaut32

  VarBoolFromUI8

  ole32

  CoRevokeMallocSpy

  CoCopyProxy

  DllGetClassObject

  user32

  BroadcastSystemMessageExW

  Exports

  Exports

  GetClass

  Sections

  .text

  Size: 197KB - Virtual size: 196KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .edata

  Size: 512B - Virtual size: 112B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 24KB - Virtual size: 4KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .data

  Size: 49KB - Virtual size: 48KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rdatat

  Size: 2KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 69KB - Virtual size: 68KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ