799eed375727113accbdb51de672dc75ed509cf3577f0069b220dd141b0eaf13

Sharing

Copy URL Twitter E-mail

General

Target

799eed375727113accbdb51de672dc75ed509cf3577f0069b220dd141b0eaf13
Size

1.2MB
MD5

9625ecfe6ad1d979055de7caa3e2e34c
SHA1

00394596c6afc16398e7e7b885246032500d3107
SHA256

799eed375727113accbdb51de672dc75ed509cf3577f0069b220dd141b0eaf13
SHA512

f2dd0de845104d5123e34ab14315bb853cdcee4d7f36c255f714f3e8a7871d18081b3de530155e2d9c69754cae8a0ed2baa447e4a93b93c1563bf568efa636b1
SSDEEP

24576:OTjSDwbna8KSBnhgsqzJDcfbMis64hc5F+ieQQwcbXIKcFOS5oj+caORQsS9B7En:ySDwbna8KSBnmsqzJDcfbMisnhc5F+iI

Score

1^/10

Malware Config

Signatures

Files

799eed375727113accbdb51de672dc75ed509cf3577f0069b220dd141b0eaf13
.dll windows:6 windows x86 arch:x86

186f43bfa973ec416eaba81359cb8135

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2013, 12:00

Not After

15/01/2038, 12:00

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

29/04/2021, 00:00

Not After

28/04/2036, 23:59

Subject

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

Issuer

CN=DigiCert Trusted G4 Code Signing RSA4096 SHA384 2021 CA1,O=DigiCert\, Inc.,C=US

Not Before

17/01/2022, 00:00

Not After

15/01/2025, 23:59

Subject

CN=Python Software Foundation,O=Python Software Foundation,L=Beaverton,ST=Oregon,C=US

Extended Key Usages

ExtKeyUsageCodeSigning

Key Usages

KeyUsageDigitalSignature

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

Issuer

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Not Before

14/07/2023, 00:00

Not After

13/10/2034, 23:59

Subject

CN=DigiCert Timestamp 2023,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

Issuer

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

23/03/2022, 00:00

Not After

22/03/2037, 23:59

Subject

CN=DigiCert Trusted G4 RSA4096 SHA256 TimeStamping CA,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/08/2022, 00:00

Not After

09/11/2031, 23:59

Subject

CN=DigiCert Trusted Root G4,OU=www.digicert.com,O=DigiCert Inc,C=US

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

1c:04:44:39:19:6f:95:7a:b5:b8:5e:c9:43:67:47:25:1e:fa:49:00:4a:af:6a:8e:7b:ac:3f:4d:48:97:65:82
Signer

Actual PE Digest

1c:04:44:39:19:6f:95:7a:b5:b8:5e:c9:43:67:47:25:1e:fa:49:00:4a:af:6a:8e:7b:ac:3f:4d:48:97:65:82

Digest Algorithm

sha256

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetLocaleInfoW
GetLastError
IsDebuggerPresent
LocalFree
FormatMessageW
MultiByteToWideChar
MulDiv
GetTickCount
GetModuleHandleW
GetProcAddress
SetCurrentDirectoryW
GetCurrentDirectoryW
GetCurrentThreadId
GetFullPathNameW
OutputDebugStringW
GlobalUnlock
IsDBCSLeadByte
GlobalAlloc
GetLocaleInfoA
GetModuleFileNameW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
FindResourceW
LoadResource
LockResource
DisableThreadLibraryCalls
GetFileType
GetCommState
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetVersionExW
LoadLibraryW
FreeLibrary
InitializeSListHead
GlobalLock
GetConsoleMode
GetStdHandle

advapi32

RegCloseKey
RegOpenKeyExW
RegQueryValueExW

gdi32

RectInRegion
CombineRgn
GetRgnBox
CreateDIBSection
CreateDCW
GetTextFaceA
CreateRectRgnIndirect
GetMapMode
SetRectRgn
DPtoLP
UpdateColors
GetDIBits
GetPixel
GetTextExtentPoint32A
PatBlt
GetTextFaceW
GetTextCharset
EnumFontFamiliesW
GetTextMetricsW
TextOutW
GetTextExtentPoint32W
TranslateCharsetInfo
CreateRectRgn
GetObjectA
SetMapMode
SetBkColor
SetTextColor
StretchDIBits
DeleteObject
ResizePalette
CreatePalette
SetPaletteEntries
SelectPalette
GetDeviceCaps
GetNearestPaletteIndex
GetStockObject
RealizePalette
GetPaletteEntries
GetNearestColor
ExtTextOutW
SetROP2
CreateBitmap
CloseFigure
CreateSolidBrush
Polygon
SelectClipRgn
Rectangle
ExtCreatePen
CreatePen
SetBkMode
EndPath
DeleteDC
SetPolyFillMode
CreatePatternBrush
StrokeAndFillPath
StrokePath
Polyline
OffsetClipRgn
Chord
BeginPath
CreateDIBitmap
CreateCompatibleDC
GetBkMode
TextOutA
SelectObject
Pie
CreateCompatibleBitmap
BitBlt
SetBrushOrgEx
GetCharWidthW
GetCharWidthA
SetTextAlign
CreateFontIndirectW
GetFontData
GetTextExtentPointA
Arc

user32

FillRect
InvalidateRect
SetFocus
SystemParametersInfoW
ToUnicode
VkKeyScanW
MapVirtualKeyW
GetKeyState
GetCursorPos
CreateMenu
GetClientRect
RemoveMenu
InsertMenuW
DrawMenuBar
DestroyMenu
LoadBitmapW
RegisterClassW
GetCapture
GetAsyncKeyState
TrackPopupMenu
CreatePopupMenu
UnregisterClassW
GetMenuItemCount
DestroyWindow
CallWindowProcW
GetMessagePos
GetSystemMenu
SendInput
SetCursorPos
ReleaseCapture
SetCapture
ClientToScreen
WindowFromPoint
GetFocus
GetWindowRect
SetParent
SetScrollInfo
MoveWindow
ShowWindow
GetWindowTextW
IsIconic
SetForegroundWindow
GetDesktopWindow
GetClassLongW
IsZoomed
LoadIconW
SetLayeredWindowAttributes
EnumWindows
SetMenu
GetForegroundWindow
CreateIconFromResource
CreateIconIndirect
DestroyIcon
SetClassLongW
GetWindowPlacement
SetActiveWindow
IsWindowVisible
CreateIconFromResourceEx
GetWindow
AdjustWindowRectEx
PeekMessageA
DestroyCaret
GetKeyboardLayout
CreateCaret
SetCaretPos
MessageBeep
ScreenToClient
GetLastInputInfo
PostMessageW
GetMessageA
GetMessageW
RegisterClassExW
DrawFrameControl
DrawEdge
GetSysColorBrush
GetWindowLongW
MessageBoxW
SendMessageW
CallNextHookEx
EndDialog
SetWindowTextW
IsWindow
PeekMessageW
UnhookWindowsHookEx
SetWindowsHookExW
wsprintfW
GetDlgItem
GetParent
UpdateWindow
EnableWindow
LoadCursorFromFileA
LoadCursorA
LoadCursorW
GetDC
ReleaseDC
GetClipboardOwner
OpenClipboard
CloseClipboard
EmptyClipboard
GetClipboardData
SetClipboardData
IsClipboardFormatAvailable
DefWindowProcW
SetWindowPos
CreateWindowExW
GetSystemMetrics
DrawFocusRect
ScrollWindowEx
GetSysColor
SetWindowLongW
BeginPaint
EndPaint
SetCursor

api-ms-win-crt-math-l1-1-0

cos
sin
fabs
floor
atan2
atan
pow
log10
fmod
_hypot
sqrt

api-ms-win-crt-stdio-l1-1-0

__acrt_iob_func
__stdio_common_vfprintf
__stdio_common_vsscanf
__stdio_common_vsprintf

api-ms-win-crt-string-l1-1-0

isupper
wcsncmp
strncmp
isdigit
isprint
wcsncpy
_stricmp
_strnicmp
strncpy
isspace
isxdigit
isalnum

api-ms-win-crt-convert-l1-1-0

atof
atoi
strtol
strtod
strtoul

api-ms-win-crt-time-l1-1-0

_ctime64
_time64

api-ms-win-crt-runtime-l1-1-0

_initterm
_initterm_e
_initialize_narrow_environment
_initialize_onexit_table
_seh_filter_dll
_cexit
_configure_narrow_argv
_execute_onexit_table
abort

api-ms-win-crt-utility-l1-1-0

qsort

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
SHGetMalloc
SHGetDesktopFolder
SHGetFileInfoW

comdlg32

ChooseFontW
CommDlgExtendedError
GetOpenFileNameW
ChooseColorW
GetSaveFileNameW

ole32

CoInitialize
CoTaskMemFree
CoCreateInstance

comctl32

InitCommonControlsEx

imm32

ImmGetContext
ImmReleaseContext
ImmSetCompositionWindow
ImmGetCompositionStringW

vcruntime140

memcpy
strstr
memmove
__std_type_info_destroy_list
wcsrchr
strrchr
strchr
_except_handler4_common
memset

Exports

Exports

TkAllocWindow
TkBTreeNumLines
TkBezierPoints
TkBezierScreenPoints
TkBindEventProc
TkBindFree
TkBindInit
TkCanvasDashParseProc
TkCanvasDashPrintProc
TkChangeEventWindow
TkClipBox
TkClipCleanup
TkClipInit
TkComputeAnchor
TkCreateCursorFromData
TkCreateFrame
TkCreateMainWindow
TkCreateRegion
TkCreateThreadExitHandler
TkCreateXEventSource
TkCurrentTime
TkDebugBitmap
TkDebugBorder
TkDebugColor
TkDebugConfig
TkDebugCursor
TkDebugFont
TkDeleteAllImages
TkDeleteThreadExitHandler
TkDestroyRegion
TkDoConfigureNotify
TkDrawAngledChars
TkDrawAngledTextLayout
TkDrawInsetFocusHighlight
TkEventDeadWindow
TkFillPolygon
TkFindStateNum
TkFindStateNumObj
TkFindStateString
TkFocusDeadWindow
TkFocusFilterEvent
TkFocusFree
TkFocusKeyEvent
TkFontPkgFree
TkFontPkgInit
TkFreeBindingTags
TkGCCleanup
TkGetBitmapData
TkGetBitmapPredefTable
TkGetButtPoints
TkGetCursorByName
TkGetDefaultScreenName
TkGetDisplay
TkGetDisplayList
TkGetDisplayOf
TkGetFocusWin
TkGetInterpNames
TkGetMainInfoList
TkGetMiterPoints
TkGetOptionSpec
TkGetPointerCoords
TkGetServerInfo
TkGetWindowFromObj
TkGrabDeadWindow
TkGrabState
TkInOutEvents
TkIncludePoint
TkInstallFrameMenu
TkIntersectAngledTextLayout
TkIntersectRegion
TkKeysymToString
TkLineToArea
TkLineToPoint
TkMakeBezierCurve
TkMakeBezierPostscript
TkMakeRawCurve
TkMakeRawCurvePostscript
TkOffsetParseProc
TkOffsetPrintProc
TkOptionClassChanged
TkOptionDeadWindow
TkOrientParseProc
TkOrientPrintProc
TkOvalToArea
TkOvalToPoint
TkPhotoGetValidRegion
TkPixelParseProc
TkPixelPrintProc
TkPointerDeadWindow
TkPointerEvent
TkPolygonToArea
TkPolygonToPoint
TkPositionInTree
TkPutImage
TkQueueEventForAllChildren
TkReadBitmapFile
TkRectInRegion
TkScrollWindow
TkSelDeadWindow
TkSelEventProc
TkSelGetSelection
TkSelInit
TkSelPropProc
TkSetFocusWin
TkSetPixmapColormap
TkSetRegion
TkSetWindowMenuBar
TkSmoothParseProc
TkSmoothPrintProc
TkStateParseProc
TkStatePrintProc
TkStringToKeysym
TkStylePkgFree
TkStylePkgInit
TkSubtractRegion
TkTextChanged
TkTextGetIndex
TkTextIndexBackBytes
TkTextIndexForwBytes
TkTextInsertDisplayProc
TkTextMakeByteIndex
TkTextPrintIndex
TkTextSetMark
TkTextXviewCmd
TkThickPolyLineToArea
TkToplevelWindowForCommand
TkUnderlineAngledTextLayout
TkUnionRectWithRegion
TkWinCancelMouseTimer
TkWinClipboardRender
TkWinDialogDebug
TkWinEmbeddedEventProc
TkWinFillRect
TkWinGetBorderPixels
TkWinGetDrawableDC
TkWinGetMenuSystemDefault
TkWinGetModifierState
TkWinGetPlatformId
TkWinGetPlatformTheme
TkWinGetSystemPalette
TkWinGetWrapperWindow
TkWinHandleMenuEvent
TkWinIndexOfColor
TkWinReleaseDrawableDC
TkWinResendEvent
TkWinSelectPalette
TkWinSetForegroundWindow
TkWinSetHINSTANCE
TkWinSetMenu
TkWinSetWindowPos
TkWinWmCleanup
TkWinXCleanup
TkWinXInit
TkWmAddToColormapWindows
TkWmDeadWindow
TkWmFocusToplevel
TkWmMapWindow
TkWmNewWindow
TkWmProtocolEventProc
TkWmRemoveFromColormapWindows
TkWmRestackToplevel
TkWmSetClass
TkWmStackorderToplevel
TkWmUnmapWindow
Tk_3DBorderColor
Tk_3DBorderGC
Tk_3DHorizontalBevel
Tk_3DVerticalBevel
Tk_AddOption
Tk_Alloc3DBorderFromObj
Tk_AllocBitmapFromObj
Tk_AllocColorFromObj
Tk_AllocCursorFromObj
Tk_AllocFontFromObj
Tk_AllocStyleFromObj
Tk_AttachHWND
Tk_BindEvent
Tk_CanvasDrawableCoords
Tk_CanvasEventuallyRedraw
Tk_CanvasGetCoord
Tk_CanvasGetCoordFromObj
Tk_CanvasGetTextInfo
Tk_CanvasPsBitmap
Tk_CanvasPsColor
Tk_CanvasPsFont
Tk_CanvasPsOutline
Tk_CanvasPsPath
Tk_CanvasPsStipple
Tk_CanvasPsY
Tk_CanvasSetOffset
Tk_CanvasSetStippleOrigin
Tk_CanvasTagsParseProc
Tk_CanvasTagsPrintProc
Tk_CanvasTkwin
Tk_CanvasWindowCoords
Tk_ChangeOutlineGC
Tk_ChangeWindowAttributes
Tk_CharBbox
Tk_ClearSelection
Tk_ClipboardAppend
Tk_ClipboardClear
Tk_CollapseMotionEvents
Tk_ComputeTextLayout
Tk_ConfigOutlineGC
Tk_ConfigureInfo
Tk_ConfigureValue
Tk_ConfigureWidget
Tk_ConfigureWindow
Tk_CoordsToWindow
Tk_CreateAnonymousWindow
Tk_CreateBinding
Tk_CreateBindingTable
Tk_CreateClientMessageHandler
Tk_CreateConsoleWindow
Tk_CreateErrorHandler
Tk_CreateEventHandler
Tk_CreateGenericHandler
Tk_CreateImageType
Tk_CreateItemType
Tk_CreateOldImageType
Tk_CreateOldPhotoImageFormat
Tk_CreateOptionTable
Tk_CreateOutline
Tk_CreatePhotoImageFormat
Tk_CreateSelHandler
Tk_CreateSmoothMethod
Tk_CreateStyle
Tk_CreateWindow
Tk_CreateWindowFromPath
Tk_DefineBitmap
Tk_DefineCursor
Tk_DeleteAllBindings
Tk_DeleteBinding
Tk_DeleteBindingTable
Tk_DeleteClientMessageHandler
Tk_DeleteErrorHandler
Tk_DeleteEventHandler
Tk_DeleteGenericHandler
Tk_DeleteImage
Tk_DeleteOptionTable
Tk_DeleteOutline
Tk_DeleteSelHandler
Tk_DestroyWindow
Tk_DisplayName
Tk_DistanceToTextLayout
Tk_DitherPhoto
Tk_Draw3DPolygon
Tk_Draw3DRectangle
Tk_DrawChars
Tk_DrawElement
Tk_DrawFocusHighlight
Tk_DrawTextLayout
Tk_Fill3DPolygon
Tk_Fill3DRectangle
Tk_FindPhoto
Tk_FontId
Tk_Free3DBorder
Tk_Free3DBorderFromObj
Tk_FreeBitmap
Tk_FreeBitmapFromObj
Tk_FreeColor
Tk_FreeColorFromObj
Tk_FreeColormap
Tk_FreeConfigOptions
Tk_FreeCursor
Tk_FreeCursorFromObj
Tk_FreeFont
Tk_FreeFontFromObj
Tk_FreeGC
Tk_FreeImage
Tk_FreeOptions
Tk_FreePixmap
Tk_FreeSavedOptions
Tk_FreeStyle
Tk_FreeStyleFromObj
Tk_FreeTextLayout
Tk_FreeXId
Tk_GCForColor
Tk_GeometryRequest
Tk_Get3DBorder
Tk_Get3DBorderFromObj
Tk_GetAllBindings
Tk_GetAnchor
Tk_GetAnchorFromObj
Tk_GetAtomName
Tk_GetBinding
Tk_GetBitmap
Tk_GetBitmapFromData
Tk_GetBitmapFromObj
Tk_GetCapStyle
Tk_GetColor
Tk_GetColorByValue
Tk_GetColorFromObj
Tk_GetColormap
Tk_GetCursor
Tk_GetCursorFromData
Tk_GetCursorFromObj
Tk_GetDash
Tk_GetElementBorderWidth
Tk_GetElementBox
Tk_GetElementId
Tk_GetElementSize
Tk_GetFont
Tk_GetFontFromObj
Tk_GetFontMetrics
Tk_GetGC
Tk_GetHINSTANCE
Tk_GetHWND
Tk_GetImage
Tk_GetImageMasterData
Tk_GetItemTypes
Tk_GetJoinStyle
Tk_GetJustify
Tk_GetJustifyFromObj
Tk_GetMMFromObj
Tk_GetNumMainWindows
Tk_GetOption
Tk_GetOptionInfo
Tk_GetOptionValue
Tk_GetPixels
Tk_GetPixelsFromObj
Tk_GetPixmap
Tk_GetRelief
Tk_GetReliefFromObj
Tk_GetRootCoords
Tk_GetScreenMM
Tk_GetScrollInfo
Tk_GetScrollInfoObj
Tk_GetSelection
Tk_GetStyle
Tk_GetStyleEngine
Tk_GetStyleFromObj
Tk_GetStyledElement
Tk_GetUid
Tk_GetUserInactiveTime
Tk_GetVRootGeometry
Tk_GetVisual
Tk_Grab
Tk_HWNDToWindow
Tk_HandleEvent
Tk_IdToWindow
Tk_ImageChanged
Tk_Init
Tk_InitConsoleChannels
Tk_InitOptions
Tk_InternAtom
Tk_Interp
Tk_IntersectTextLayout
Tk_MainEx
Tk_MainExW
Tk_MainLoop
Tk_MainWindow
Tk_MaintainGeometry
Tk_MakeWindowExist
Tk_ManageGeometry
Tk_MapWindow
Tk_MeasureChars
Tk_MoveResizeWindow
Tk_MoveToplevelWindow
Tk_MoveWindow
Tk_NameOf3DBorder
Tk_NameOfAnchor
Tk_NameOfBitmap
Tk_NameOfCapStyle
Tk_NameOfColor
Tk_NameOfCursor
Tk_NameOfFont
Tk_NameOfImage
Tk_NameOfJoinStyle
Tk_NameOfJustify
Tk_NameOfRelief
Tk_NameOfStyle
Tk_NameToWindow
Tk_OwnSelection
Tk_ParseArgv
Tk_PhotoBlank
Tk_PhotoExpand
Tk_PhotoExpand_Panic
Tk_PhotoGetImage
Tk_PhotoGetSize
Tk_PhotoPutBlock
Tk_PhotoPutBlock_NoComposite
Tk_PhotoPutBlock_Panic
Tk_PhotoPutZoomedBlock
Tk_PhotoPutZoomedBlock_NoComposite
Tk_PhotoPutZoomedBlock_Panic
Tk_PhotoSetSize
Tk_PhotoSetSize_Panic
Tk_PkgInitStubsCheck
Tk_PointToChar
Tk_PointerEvent
Tk_PostscriptBitmap
Tk_PostscriptColor
Tk_PostscriptFont
Tk_PostscriptFontName
Tk_PostscriptImage
Tk_PostscriptPath
Tk_PostscriptPhoto
Tk_PostscriptStipple
Tk_PostscriptY
Tk_PreserveColormap
Tk_QueueWindowEvent
Tk_RedrawImage
Tk_RegisterStyleEngine
Tk_RegisterStyledElement
Tk_ResetOutlineGC
Tk_ResetUserInactiveTime
Tk_ResizeWindow
Tk_RestackWindow
Tk_RestoreSavedOptions
Tk_RestrictEvents
Tk_SafeInit
Tk_SetAppName
Tk_SetBackgroundFromBorder
Tk_SetCaretPos
Tk_SetClass
Tk_SetClassProcs
Tk_SetGrid
Tk_SetInternalBorder
Tk_SetInternalBorderEx
Tk_SetMinimumRequestSize
Tk_SetOptions
Tk_SetTSOrigin
Tk_SetWindowBackground
Tk_SetWindowBackgroundPixmap
Tk_SetWindowBorder
Tk_SetWindowBorderPixmap
Tk_SetWindowBorderWidth
Tk_SetWindowColormap
Tk_SetWindowVisual
Tk_SizeOfBitmap
Tk_SizeOfImage
Tk_StrictMotif
Tk_TextLayoutToPostscript
Tk_TextWidth
Tk_TranslateWinEvent
Tk_UndefineCursor
Tk_UnderlineChars
Tk_UnderlineTextLayout
Tk_Ungrab
Tk_UnmaintainGeometry
Tk_UnmapWindow
Tk_UnsetGrid
Tk_UpdatePointer
TkpChangeFocus
TkpClaimFocus
TkpCloseDisplay
TkpCmapStressed
TkpDisplayWarning
TkpDrawFrame
TkpDrawHighlightBorder
TkpFreeCursor
TkpGetAppName
TkpGetCapture
TkpGetKeySym
TkpGetMS
TkpGetOtherWindow
TkpGetString
TkpGetSubFonts
TkpGetSystemDefault
TkpGetWrapperWindow
TkpInit
TkpInitKeymapInfo
TkpInitializeMenuBindings
TkpMakeContainer
TkpMakeMenuWindow
TkpMakeWindow
TkpMenuNotifyToplevelCreate
TkpMenuThreadInit
TkpOpenDisplay
TkpPrintWindowId
TkpRedirectKeyEvent
TkpScanWindowId
TkpSetCapture
TkpSetCursor
TkpSetKeycodeAndState
TkpSetMainMenubar
TkpSync
TkpTestembedCmd
TkpTesttextCmd
TkpUseWindow
TkpWmSetState
XAllocColor
XBell
XChangeGC
XChangeProperty
XChangeWindowAttributes
XClearWindow
XConfigureWindow
XCopyArea
XCopyPlane
XCreateBitmapFromData
XCreateColormap
XCreateGC
XCreateGlyphCursor
XCreateIC
XCreateImage
XCreatePixmapCursor
XDefineCursor
XDeleteProperty

Sections

.text
Size: 870KB - Virtual size: 870KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

186f43bfa973ec416eaba81359cb8135

Code Sign

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5cCertificate

Key Usages

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9Certificate

Extended Key Usages

Key Usages

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:ddCertificate

Extended Key Usages

Key Usages

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16Certificate

Extended Key Usages

Key Usages

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5bCertificate

Extended Key Usages

Key Usages

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5aCertificate

Key Usages

1c:04:44:39:19:6f:95:7a:b5:b8:5e:c9:43:67:47:25:1e:fa:49:00:4a:af:6a:8e:7b:ac:3f:4d:48:97:65:82Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

gdi32

user32

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-time-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-utility-l1-1-0

shell32

comdlg32

ole32

comctl32

imm32

vcruntime140

Exports

Exports

Sections

.text Size: 870KB - Virtual size: 870KB

.rdata Size: 180KB - Virtual size: 179KB

.data Size: 20KB - Virtual size: 22KB

.rsrc Size: 95KB - Virtual size: 94KB

.reloc Size: 58KB - Virtual size: 58KB

05:9b:1b:57:9e:8e:21:32:e2:39:07:bd:a7:77:75:5c
Certificate

08:ad:40:b2:60:d2:9c:4c:9f:5e:cd:a9:bd:93:ae:d9
Certificate

07:1f:14:1b:8b:30:0d:25:f3:14:eb:23:0c:d0:d1:dd
Certificate

05:44:af:f3:94:9d:08:39:a6:bf:db:3f:5f:e5:61:16
Certificate

07:36:37:b7:24:54:7c:d8:47:ac:fd:28:66:2a:5e:5b
Certificate

0e:9b:18:8e:f9:d0:2d:e7:ef:db:50:e2:08:40:18:5a
Certificate

1c:04:44:39:19:6f:95:7a:b5:b8:5e:c9:43:67:47:25:1e:fa:49:00:4a:af:6a:8e:7b:ac:3f:4d:48:97:65:82
Signer

.text
Size: 870KB - Virtual size: 870KB

.rdata
Size: 180KB - Virtual size: 179KB

.data
Size: 20KB - Virtual size: 22KB

.rsrc
Size: 95KB - Virtual size: 94KB

.reloc
Size: 58KB - Virtual size: 58KB