General

Malware Config

Signatures

Files

• Unconfirmed 155663.crdownload

  .zip
• XWorm-v5-Remote-Access-Tool-main/ComponentFactory.Krypton.Toolkit.dll

  .dll windows:4 windows x86 arch:x86

  dae02f32a21e03ce65412f6e56942daa

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  IMAGE_FILE_DLL

  PDB Paths

  D:\Github\Krypton\build\obj\ComponentFactory.Krypton.Toolkit\Debug\ComponentFactory.Krypton.Toolkit.pdb

  Imports

  mscoree

  _CorDllMain

  Sections

  .text

  Size: 2.7MB - Virtual size: 2.7MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 99KB - Virtual size: 98KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• XWorm-v5-Remote-Access-Tool-main/ComponentFactory.Krypton.Toolkit.pdb
• XWorm-v5-Remote-Access-Tool-main/D3DX9_43.dll

  .dll windows:6 windows x64 arch:x64

  336d8057d1db03e5a3ac3b62e8902f4b

  
  

  Code Sign

  2e:ab:11:dc:50:ff:5c:9d:cb:c0

  Certificate

  Issuer

  CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

  Not Before

  22-08-2007 22:31

  Not After

  25-08-2012 07:00

  Subject

  CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  61:01:cf:3e:00:00:00:00:00:0f

  Certificate

  Issuer

  CN=Microsoft Code Signing PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Not Before

  07-12-2009 22:40

  Not After

  07-03-2011 22:40

  Subject

  CN=Microsoft Corporation,OU=MOPR,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Extended Key Usages

  ExtKeyUsageCodeSigning

  Key Usages

  KeyUsageDigitalSignature

  6a:0b:99:4f:c0:00:25:ab:11:db:45:1f:58:7a:67:a2

  Certificate

  Issuer

  CN=Microsoft Root Authority,OU=Copyright (c) 1997 Microsoft Corp.+OU=Microsoft Corporation

  Not Before

  16-09-2006 01:04

  Not After

  15-09-2019 07:00

  Subject

  CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageCertSign

  KeyUsageCRLSign

  61:06:94:2d:00:00:00:00:00:09

  Certificate

  Issuer

  CN=Microsoft Timestamping PCA,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Not Before

  25-07-2008 19:02

  Not After

  25-07-2013 19:12

  Subject

  CN=Microsoft Time-Stamp Service,OU=MOPR+OU=nCipher DSE ESN:7A82-688A-9F92,O=Microsoft Corporation,L=Redmond,ST=Washington,C=US

  Extended Key Usages

  ExtKeyUsageTimeStamping

  Key Usages

  KeyUsageDigitalSignature

  KeyUsageContentCommitment

  bd:1c:4f:ec:4a:e7:0c:11:ef:6d:b7:89:8e:6a:4a:de:c2:22:ed:47

  Signer

  Actual PE Digest

  bd:1c:4f:ec:4a:e7:0c:11:ef:6d:b7:89:8e:6a:4a:de:c2:22:ed:47

  Digest Algorithm

  sha1

  PE Digest Matches

  true

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  IMAGE_FILE_DLL

  PDB Paths

  d3dx9_43.pdb

  Imports

  msvcrt

  malloc

  _vsnprintf

  _finite

  memmove

  _purecall

  qsort

  _stricmp

  modff

  iswpunct

  _clearfp

  iswdigit

  iswalpha

  iswspace

  ??2@YAPEAX_K@Z

  ??3@YAXPEAX@Z

  _strdup

  setlocale

  free

  calloc

  realloc

  sscanf

  _strtime

  _isatty

  _write

  _lseeki64

  __pioinfo

  __badioinfo

  wctomb

  _itoa

  _snprintf

  _iob

  _fileno

  isleadbyte

  ?terminate@@YAXXZ

  _onexit

  _lock

  __dllonexit

  _unlock

  memset

  memcpy

  __C_specific_handler

  _amsg_exit

  _initterm

  _XcptFilter

  srand

  strtod

  fread

  fwrite

  fflush

  abort

  _tempnam

  _ultoa

  isalpha

  atol

  atof

  isxdigit

  wcstombs

  _isnan

  rand

  atoi

  isalnum

  _vsnwprintf

  isdigit

  isspace

  longjmp

  ldexp

  frexp

  __CxxFrameHandler

  _errno

  _strdate

  sqrt

  powf

  sqrtf

  floor

  fmodf

  memcmp

  log

  cos

  exp

  sinf

  cosf

  floorf

  ceilf

  atan2

  atan

  acos

  asin

  sin

  pow

  atan2f

  logf

  acosf

  fmod

  asinf

  _setjmp

  ceil

  gdi32

  GetObjectW

  GetGlyphOutlineW

  GetCurrentObject

  GetOutlineTextMetricsA

  TranslateCharsetInfo

  ExtTextOutA

  MoveToEx

  ExtTextOutW

  CreateDIBSection

  GetGlyphOutlineA

  GetObjectA

  GetCharacterPlacementA

  GetCharacterPlacementW

  SetTextColor

  SetBkColor

  SetBkMode

  GetTextMetricsA

  GetTextMetricsW

  GetFontLanguageInfo

  CreateFontIndirectA

  CreateFontIndirectW

  SetTextAlign

  SetMapMode

  CreateCompatibleDC

  DeleteDC

  DeleteObject

  SelectObject

  kernel32

  FindResourceW

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  GetCurrentProcess

  TerminateProcess

  GetSystemTimeAsFileTime

  GetCurrentProcessId

  GetCurrentThreadId

  GetTickCount

  QueryPerformanceCounter

  RtlCaptureContext

  RtlLookupFunctionEntry

  RtlVirtualUnwind

  GetProcessHeap

  HeapFree

  HeapAlloc

  ReleaseMutex

  WaitForSingleObject

  CreateMutexA

  IsBadWritePtr

  IsBadReadPtr

  IsBadCodePtr

  ExpandEnvironmentStringsA

  GlobalMemoryStatus

  GetSystemInfo

  SetEndOfFile

  MoveFileW

  GetTempFileNameW

  MoveFileA

  CompareStringA

  SetFilePointer

  DeleteFileW

  FindResourceA

  LoadResource

  LockResource

  SizeofResource

  GetFileSize

  CreateFileMappingA

  MapViewOfFile

  FreeResource

  UnmapViewOfFile

  LeaveCriticalSection

  EnterCriticalSection

  DeleteCriticalSection

  InitializeCriticalSection

  LocalFree

  FormatMessageA

  GetFullPathNameW

  CreateFileW

  GetFileSizeEx

  GetLastError

  IsDBCSLeadByte

  WriteFile

  DeleteFileA

  CloseHandle

  ReadFile

  CreateFileA

  GetTempFileNameA

  GetTempPathA

  IsProcessorFeaturePresent

  VirtualFree

  VirtualAlloc

  GetACP

  MultiByteToWideChar

  WideCharToMultiByte

  OutputDebugStringA

  GetModuleHandleA

  FreeLibrary

  GetProcAddress

  LoadLibraryA

  GetVersionExA

  Sleep

  VirtualProtect

  DisableThreadLibraryCalls

  advapi32

  RegCloseKey

  RegQueryValueExA

  RegOpenKeyA

  Exports

  Exports

  D3DXAssembleShader

  D3DXAssembleShaderFromFileA

  D3DXAssembleShaderFromFileW

  D3DXAssembleShaderFromResourceA

  D3DXAssembleShaderFromResourceW

  D3DXBoxBoundProbe

  D3DXCheckCubeTextureRequirements

  D3DXCheckTextureRequirements

  D3DXCheckVersion

  D3DXCheckVolumeTextureRequirements

  D3DXCleanMesh

  D3DXColorAdjustContrast

  D3DXColorAdjustSaturation

  D3DXCompileShader

  D3DXCompileShaderFromFileA

  D3DXCompileShaderFromFileW

  D3DXCompileShaderFromResourceA

  D3DXCompileShaderFromResourceW

  D3DXComputeBoundingBox

  D3DXComputeBoundingSphere

  D3DXComputeIMTFromPerTexelSignal

  D3DXComputeIMTFromPerVertexSignal

  D3DXComputeIMTFromSignal

  D3DXComputeIMTFromTexture

  D3DXComputeNormalMap

  D3DXComputeNormals

  D3DXComputeTangent

  D3DXComputeTangentFrame

  D3DXComputeTangentFrameEx

  D3DXConcatenateMeshes

  D3DXConvertMeshSubsetToSingleStrip

  D3DXConvertMeshSubsetToStrips

  D3DXCreateAnimationController

  D3DXCreateBox

  D3DXCreateBuffer

  D3DXCreateCompressedAnimationSet

  D3DXCreateCubeTexture

  D3DXCreateCubeTextureFromFileA

  D3DXCreateCubeTextureFromFileExA

  D3DXCreateCubeTextureFromFileExW

  D3DXCreateCubeTextureFromFileInMemory

  D3DXCreateCubeTextureFromFileInMemoryEx

  D3DXCreateCubeTextureFromFileW

  D3DXCreateCubeTextureFromResourceA

  D3DXCreateCubeTextureFromResourceExA

  D3DXCreateCubeTextureFromResourceExW

  D3DXCreateCubeTextureFromResourceW

  D3DXCreateCylinder

  D3DXCreateEffect

  D3DXCreateEffectCompiler

  D3DXCreateEffectCompilerFromFileA

  D3DXCreateEffectCompilerFromFileW

  D3DXCreateEffectCompilerFromResourceA

  D3DXCreateEffectCompilerFromResourceW

  D3DXCreateEffectEx

  D3DXCreateEffectFromFileA

  D3DXCreateEffectFromFileExA

  D3DXCreateEffectFromFileExW

  D3DXCreateEffectFromFileW

  D3DXCreateEffectFromResourceA

  D3DXCreateEffectFromResourceExA

  D3DXCreateEffectFromResourceExW

  D3DXCreateEffectFromResourceW

  D3DXCreateEffectPool

  D3DXCreateFontA

  D3DXCreateFontIndirectA

  D3DXCreateFontIndirectW

  D3DXCreateFontW

  D3DXCreateKeyframedAnimationSet

  D3DXCreateLine

  D3DXCreateMatrixStack

  D3DXCreateMesh

  D3DXCreateMeshFVF

  D3DXCreateNPatchMesh

  D3DXCreatePMeshFromStream

  D3DXCreatePRTBuffer

  D3DXCreatePRTBufferTex

  D3DXCreatePRTCompBuffer

  D3DXCreatePRTEngine

  D3DXCreatePatchMesh

  D3DXCreatePolygon

  D3DXCreateRenderToEnvMap

  D3DXCreateRenderToSurface

  D3DXCreateSPMesh

  D3DXCreateSkinInfo

  D3DXCreateSkinInfoFVF

  D3DXCreateSkinInfoFromBlendedMesh

  D3DXCreateSphere

  D3DXCreateSprite

  D3DXCreateTeapot

  D3DXCreateTextA

  D3DXCreateTextW

  D3DXCreateTexture

  D3DXCreateTextureFromFileA

  D3DXCreateTextureFromFileExA

  D3DXCreateTextureFromFileExW

  D3DXCreateTextureFromFileInMemory

  D3DXCreateTextureFromFileInMemoryEx

  D3DXCreateTextureFromFileW

  D3DXCreateTextureFromResourceA

  D3DXCreateTextureFromResourceExA

  D3DXCreateTextureFromResourceExW

  D3DXCreateTextureFromResourceW

  D3DXCreateTextureGutterHelper

  D3DXCreateTextureShader

  D3DXCreateTorus

  D3DXCreateVolumeTexture

  D3DXCreateVolumeTextureFromFileA

  D3DXCreateVolumeTextureFromFileExA

  D3DXCreateVolumeTextureFromFileExW

  D3DXCreateVolumeTextureFromFileInMemory

  D3DXCreateVolumeTextureFromFileInMemoryEx

  D3DXCreateVolumeTextureFromFileW

  D3DXCreateVolumeTextureFromResourceA

  D3DXCreateVolumeTextureFromResourceExA

  D3DXCreateVolumeTextureFromResourceExW

  D3DXCreateVolumeTextureFromResourceW

  D3DXDebugMute

  D3DXDeclaratorFromFVF

  D3DXDisassembleEffect

  D3DXDisassembleShader

  D3DXFVFFromDeclarator

  D3DXFileCreate

  D3DXFillCubeTexture

  D3DXFillCubeTextureTX

  D3DXFillTexture

  D3DXFillTextureTX

  D3DXFillVolumeTexture

  D3DXFillVolumeTextureTX

  D3DXFilterTexture

  D3DXFindShaderComment

  D3DXFloat16To32Array

  D3DXFloat32To16Array

  D3DXFrameAppendChild

  D3DXFrameCalculateBoundingSphere

  D3DXFrameDestroy

  D3DXFrameFind

  D3DXFrameNumNamedMatrices

  D3DXFrameRegisterNamedMatrices

  D3DXFresnelTerm

  D3DXGenerateOutputDecl

  D3DXGeneratePMesh

  D3DXGetDeclLength

  D3DXGetDeclVertexSize

  D3DXGetDriverLevel

  D3DXGetFVFVertexSize

  D3DXGetImageInfoFromFileA

  D3DXGetImageInfoFromFileInMemory

  D3DXGetImageInfoFromFileW

  D3DXGetImageInfoFromResourceA

  D3DXGetImageInfoFromResourceW

  D3DXGetPixelShaderProfile

  D3DXGetShaderConstantTable

  D3DXGetShaderConstantTableEx

  D3DXGetShaderInputSemantics

  D3DXGetShaderOutputSemantics

  D3DXGetShaderSamplers

  D3DXGetShaderSize

  D3DXGetShaderVersion

  D3DXGetVertexShaderProfile

  D3DXIntersect

  D3DXIntersectSubset

  D3DXIntersectTri

  D3DXLoadMeshFromXA

  D3DXLoadMeshFromXInMemory

  D3DXLoadMeshFromXResource

  D3DXLoadMeshFromXW

  D3DXLoadMeshFromXof

  D3DXLoadMeshHierarchyFromXA

  D3DXLoadMeshHierarchyFromXInMemory

  D3DXLoadMeshHierarchyFromXW

  D3DXLoadPRTBufferFromFileA

  D3DXLoadPRTBufferFromFileW

  D3DXLoadPRTCompBufferFromFileA

  D3DXLoadPRTCompBufferFromFileW

  D3DXLoadPatchMeshFromXof

  D3DXLoadSkinMeshFromXof

  D3DXLoadSurfaceFromFileA

  D3DXLoadSurfaceFromFileInMemory

  D3DXLoadSurfaceFromFileW

  D3DXLoadSurfaceFromMemory

  D3DXLoadSurfaceFromResourceA

  D3DXLoadSurfaceFromResourceW

  D3DXLoadSurfaceFromSurface

  D3DXLoadVolumeFromFileA

  D3DXLoadVolumeFromFileInMemory

  D3DXLoadVolumeFromFileW

  D3DXLoadVolumeFromMemory

  D3DXLoadVolumeFromResourceA

  D3DXLoadVolumeFromResourceW

  D3DXLoadVolumeFromVolume

  D3DXMatrixAffineTransformation

  D3DXMatrixAffineTransformation2D

  D3DXMatrixDecompose

  D3DXMatrixDeterminant

  D3DXMatrixInverse

  D3DXMatrixLookAtLH

  D3DXMatrixLookAtRH

  D3DXMatrixMultiply

  D3DXMatrixMultiplyTranspose

  D3DXMatrixOrthoLH

  D3DXMatrixOrthoOffCenterLH

  D3DXMatrixOrthoOffCenterRH

  D3DXMatrixOrthoRH

  D3DXMatrixPerspectiveFovLH

  D3DXMatrixPerspectiveFovRH

  D3DXMatrixPerspectiveLH

  D3DXMatrixPerspectiveOffCenterLH

  D3DXMatrixPerspectiveOffCenterRH

  D3DXMatrixPerspectiveRH

  D3DXMatrixReflect

  D3DXMatrixRotationAxis

  D3DXMatrixRotationQuaternion

  D3DXMatrixRotationX

  D3DXMatrixRotationY

  D3DXMatrixRotationYawPitchRoll

  D3DXMatrixRotationZ

  D3DXMatrixScaling

  D3DXMatrixShadow

  D3DXMatrixTransformation

  D3DXMatrixTransformation2D

  D3DXMatrixTranslation

  D3DXMatrixTranspose

  D3DXOptimizeFaces

  D3DXOptimizeVertices

  D3DXPlaneFromPointNormal

  D3DXPlaneFromPoints

  D3DXPlaneIntersectLine

  D3DXPlaneNormalize

  D3DXPlaneTransform

  D3DXPlaneTransformArray

  D3DXPreprocessShader

  D3DXPreprocessShaderFromFileA

  D3DXPreprocessShaderFromFileW

  D3DXPreprocessShaderFromResourceA

  D3DXPreprocessShaderFromResourceW

  D3DXQuaternionBaryCentric

  D3DXQuaternionExp

  D3DXQuaternionInverse

  D3DXQuaternionLn

  D3DXQuaternionMultiply

  D3DXQuaternionNormalize

  D3DXQuaternionRotationAxis

  D3DXQuaternionRotationMatrix

  D3DXQuaternionRotationYawPitchRoll

  D3DXQuaternionSlerp

  D3DXQuaternionSquad

  D3DXQuaternionSquadSetup

  D3DXQuaternionToAxisAngle

  D3DXRectPatchSize

  D3DXSHAdd

  D3DXSHDot

  D3DXSHEvalConeLight

  D3DXSHEvalDirection

  D3DXSHEvalDirectionalLight

  D3DXSHEvalHemisphereLight

  D3DXSHEvalSphericalLight

  D3DXSHMultiply2

  D3DXSHMultiply3

  D3DXSHMultiply4

  D3DXSHMultiply5

  D3DXSHMultiply6

  D3DXSHPRTCompSplitMeshSC

  D3DXSHPRTCompSuperCluster

  D3DXSHProjectCubeMap

  D3DXSHRotate

  D3DXSHRotateZ

  D3DXSHScale

  D3DXSaveMeshHierarchyToFileA

  D3DXSaveMeshHierarchyToFileW

  D3DXSaveMeshToXA

  D3DXSaveMeshToXW

  D3DXSavePRTBufferToFileA

  D3DXSavePRTBufferToFileW

  D3DXSavePRTCompBufferToFileA

  D3DXSavePRTCompBufferToFileW

  D3DXSaveSurfaceToFileA

  D3DXSaveSurfaceToFileInMemory

  D3DXSaveSurfaceToFileW

  D3DXSaveTextureToFileA

  D3DXSaveTextureToFileInMemory

  D3DXSaveTextureToFileW

  D3DXSaveVolumeToFileA

  D3DXSaveVolumeToFileInMemory

  D3DXSaveVolumeToFileW

  D3DXSimplifyMesh

  D3DXSphereBoundProbe

  D3DXSplitMesh

  D3DXTessellateNPatches

  D3DXTessellateRectPatch

  D3DXTessellateTriPatch

  D3DXTriPatchSize

  D3DXUVAtlasCreate

  D3DXUVAtlasPack

  D3DXUVAtlasPartition

  D3DXValidMesh

  D3DXValidPatchMesh

  D3DXVec2BaryCentric

  D3DXVec2CatmullRom

  D3DXVec2Hermite

  D3DXVec2Normalize

  D3DXVec2Transform

  D3DXVec2TransformArray

  D3DXVec2TransformCoord

  D3DXVec2TransformCoordArray

  D3DXVec2TransformNormal

  D3DXVec2TransformNormalArray

  D3DXVec3BaryCentric

  D3DXVec3CatmullRom

  D3DXVec3Hermite

  D3DXVec3Normalize

  D3DXVec3Project

  D3DXVec3ProjectArray

  D3DXVec3Transform

  D3DXVec3TransformArray

  D3DXVec3TransformCoord

  D3DXVec3TransformCoordArray

  D3DXVec3TransformNormal

  D3DXVec3TransformNormalArray

  D3DXVec3Unproject

  D3DXVec3UnprojectArray

  D3DXVec4BaryCentric

  D3DXVec4CatmullRom

  D3DXVec4Cross

  D3DXVec4Hermite

  D3DXVec4Normalize

  D3DXVec4Transform

  D3DXVec4TransformArray

  D3DXWeldVertices

  Sections

  .text

  Size: 2.2MB - Virtual size: 2.2MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .data

  Size: 57KB - Virtual size: 148KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .pdata

  Size: 39KB - Virtual size: 38KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1024B - Virtual size: 928B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 13KB - Virtual size: 12KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• XWorm-v5-Remote-Access-Tool-main/Krypton.Toolkit.dll

  .dll windows:4 windows x86 arch:x86

  dae02f32a21e03ce65412f6e56942daa

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  IMAGE_FILE_DLL

  PDB Paths

  S:\Development\Krypton\Standard-Toolkit\Source\Krypton Components\Krypton.Toolkit\obj\Release\net48\Krypton.Toolkit.pdb

  Imports

  mscoree

  _CorDllMain

  Sections

  .text

  Size: 4.3MB - Virtual size: 4.3MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 12KB - Virtual size: 12KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• XWorm-v5-Remote-Access-Tool-main/LICENSE
• XWorm-v5-Remote-Access-Tool-main/Mono.Cecil.dll

  .dll windows:4 windows x86 arch:x86

  dae02f32a21e03ce65412f6e56942daa

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DLL

  PDB Paths

  c:\Users\Max\Desktop\lib\cecil-master\obj\net_4_0_Release\Mono.Cecil.pdb

  Imports

  mscoree

  _CorDllMain

  Sections

  .text

  Size: 275KB - Virtual size: 275KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1024B - Virtual size: 824B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• XWorm-v5-Remote-Access-Tool-main/Mono.Nat.dll

  .dll windows:4 windows x86 arch:x86

  dae02f32a21e03ce65412f6e56942daa

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  IMAGE_FILE_DLL

  Imports

  mscoree

  _CorDllMain

  Sections

  .text

  Size: 37KB - Virtual size: 37KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1KB - Virtual size: 1KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• XWorm-v5-Remote-Access-Tool-main/README.md
• XWorm-v5-Remote-Access-Tool-main/VMProtectSDK64.lib
• XWorm-v5-Remote-Access-Tool-main/Vestris.ResourceLib.dll

  .dll windows:4 windows x86 arch:x86

  dae02f32a21e03ce65412f6e56942daa

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_NO_SEH

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  IMAGE_FILE_DLL

  Imports

  mscoree

  _CorDllMain

  Sections

  .text

  Size: 74KB - Virtual size: 73KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rsrc

  Size: 1024B - Virtual size: 1000B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 512B - Virtual size: 12B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ

• XWorm-v5-Remote-Access-Tool-main/XWorm.config

  .xml
• XWorm-v5-Remote-Access-Tool-main/XWorm.exe

  .exe windows:4 windows x86 arch:x86

  eca0c30b65294d02a6c6180a6b323b58

  
  

  Headers

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LINE_NUMS_STRIPPED

  IMAGE_FILE_LOCAL_SYMS_STRIPPED

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  VirtualProtect

  HeapSize

  GetStringTypeW

  GetStringTypeA

  GetLocaleInfoA

  GetSystemTimeAsFileTime

  GetCurrentProcessId

  GetTickCount

  QueryPerformanceCounter

  LCMapStringW

  LCMapStringA

  InterlockedExchange

  RtlUnwind

  HeapReAlloc

  VirtualAlloc

  InitializeCriticalSection

  LoadLibraryA

  GetCPInfo

  GetSystemInfo

  GetACP

  EnterCriticalSection

  LeaveCriticalSection

  VirtualFree

  DeleteCriticalSection

  GetFileType

  SetHandleCount

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  GetEnvironmentStrings

  FreeEnvironmentStringsA

  UnhandledExceptionFilter

  GetModuleFileNameA

  GetStdHandle

  WriteFile

  TerminateProcess

  TlsGetValue

  TlsSetValue

  TlsFree

  GetLastError

  GetCurrentThreadId

  SetLastError

  TlsAlloc

  GetProcAddress

  HeapCreate

  VirtualQuery

  WaitForSingleObject

  HeapDestroy

  CreateEventW

  ExitProcess

  WideCharToMultiByte

  OutputDebugStringW

  CreateFileW

  ReadFile

  CloseHandle

  GetCurrentProcess

  MultiByteToWideChar

  GetModuleHandleW

  InterlockedIncrement

  GetModuleFileNameW

  lstrlenW

  HeapFree

  OutputDebugStringA

  MulDiv

  GetProcessHeap

  HeapAlloc

  GetOEMCP

  GetVersionExA

  GetCommandLineA

  GetStartupInfoA

  GetModuleHandleA

  user32

  GetClassInfoW

  FrameRect

  CharUpperBuffW

  IsIconic

  EnableWindow

  DrawIcon

  DeleteMenu

  SetTimer

  CreateAcceleratorTableW

  GetSystemMenu

  DrawMenuBar

  SetMenuItemInfoW

  GetWindowTextW

  GetDCEx

  RegisterClassW

  GetMenuItemInfoW

  SetScrollPos

  FillRect

  GetSystemMetrics

  GetDC

  MsgWaitForMultipleObjectsEx

  EndMenu

  DestroyCursor

  IsZoomed

  GetCursor

  GetScrollPos

  DispatchMessageW

  DefFrameProcW

  DestroyMenu

  ReleaseDC

  IsDialogMessageW

  GetScrollRange

  DefMDIChildProcW

  GetMenuStringW

  PeekMessageW

  CopyImage

  ShowCaret

  LoadIconW

  DrawFocusRect

  LoadBitmapW

  GetDlgCtrlID

  LoadStringW

  GetClassInfoExW

  DestroyIcon

  ShowWindow

  EndPaint

  PostMessageW

  CreateWindowExW

  BeginPaint

  LoadCursorW

  GetClientRect

  InsertMenuW

  CreateIcon

  DestroyWindow

  KillTimer

  GetScrollInfo

  CreateMenu

  advapi32

  RegCloseKey

  RegOpenKeyExW

  RegQueryValueExW

  gdi32

  Pie

  AngleArc

  Polygon

  CreateSolidBrush

  RectVisible

  CreateICW

  CreatePalette

  PolyBezierTo

  RoundRect

  RestoreDC

  GetWindowOrgEx

  CreateCompatibleBitmap

  MoveToEx

  GetTextMetricsW

  GetStockObject

  SetTextColor

  SetAbortProc

  SetBkMode

  StretchBlt

  CreateDCW

  GetDeviceCaps

  SetRectRgn

  GetEnhMetaFileHeader

  ole32

  OleInitialize

  CoUninitialize

  OleUninitialize

  CoTaskMemFree

  CoTaskMemAlloc

  IsEqualGUID

  CoInitialize

  CoCreateInstance

  oleaut32

  VariantChangeType

  SafeArrayPutElement

  VariantCopy

  VariantClear

  SafeArrayGetElement

  SafeArrayGetUBound

  SysFreeString

  GetErrorInfo

  VariantInit

  SafeArrayPtrOfIndex

  SysAllocStringLen

  SafeArrayGetLBound

  SafeArrayAccessData

  VariantCopyInd

  SysReAllocStringLen

  SafeArrayCreate

  SafeArrayUnaccessData

  version

  VerQueryValueW

  GetFileVersionInfoSizeW

  GetFileVersionInfoW

  winspool.drv

  EnumPrintersW

  ord203

  OpenPrinterW

  ClosePrinter

  DocumentPropertiesW

  Sections

  .text

  Size: 124KB - Virtual size: 120KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 324KB - Virtual size: 322KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 4KB - Virtual size: 5KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

• XWorm-v5-Remote-Access-Tool-main/imgui.ini