General

Malware Config

Signatures

Files

• a969b652028c0955e8416bcaf485fdcc8bafad05694fc69853e4a090f01b3eb5

  .exe windows:5 windows x86 arch:x86

  bbf1cae9b9d4ca590958cbe0f87d754b

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  VirtualAlloc

  VirtualQuery

  HeapSize

  GetStdHandle

  InitializeCriticalSectionAndSpinCount

  GetACP

  IsValidCodePage

  HeapCreate

  VirtualFree

  LCMapStringA

  LCMapStringW

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FreeEnvironmentStringsW

  GetStartupInfoA

  SetHandleCount

  QueryPerformanceCounter

  GetConsoleCP

  GetConsoleMode

  GetStringTypeA

  GetStringTypeW

  SetStdHandle

  WriteConsoleA

  GetConsoleOutputCP

  WriteConsoleW

  GetCommandLineA

  GetSystemTimeAsFileTime

  RtlUnwind

  SetUnhandledExceptionFilter

  FindResourceA

  UnhandledExceptionFilter

  TerminateProcess

  ExitProcess

  Sleep

  GetOEMCP

  GetCPInfo

  GetLocaleInfoA

  GlobalFindAtomA

  GlobalDeleteAtom

  lstrcmpW

  GetVersionExA

  GlobalAddAtomA

  GetCurrentProcess

  FlushFileBuffers

  SetFilePointer

  WriteFile

  IsDebuggerPresent

  HeapReAlloc

  LoadLibraryA

  GetCurrentThreadId

  GlobalFlags

  InterlockedIncrement

  GetModuleHandleW

  CompareStringA

  GetCurrentProcessId

  TlsFree

  DeleteCriticalSection

  LocalReAlloc

  TlsSetValue

  TlsAlloc

  InitializeCriticalSection

  GlobalHandle

  GlobalReAlloc

  EnterCriticalSection

  TlsGetValue

  LeaveCriticalSection

  LocalAlloc

  lstrcmpA

  GlobalGetAtomNameA

  FreeLibrary

  InterlockedDecrement

  GlobalFree

  GlobalAlloc

  GlobalLock

  GlobalUnlock

  SetLastError

  LocalFree

  GetVersion

  GetUserDefaultUILanguage

  GetFileTime

  CreateToolhelp32Snapshot

  GetCurrentDirectoryA

  EnumSystemGeoID

  GetModuleHandleA

  DeviceIoControl

  GetFileType

  LocalLock

  GetProcAddress

  GetLastError

  SetCurrentDirectoryA

  MultiByteToWideChar

  MulDiv

  GetConsoleWindow

  CreateEventA

  SetCommConfig

  LoadLibraryW

  GetPriorityClass

  FormatMessageA

  GetProcessHeap

  WaitForSingleObject

  HeapFree

  GetLogicalDriveStringsW

  HeapAlloc

  lstrlenA

  CreateFileA

  DeleteFileA

  CloseHandle

  GetModuleFileNameA

  LockResource

  CopyFileA

  RaiseException

  SizeofResource

  WideCharToMultiByte

  GetTickCount

  CreateProcessW

  LoadResource

  GetEnvironmentStringsW

  user32

  SetMenuItemBitmaps

  GetMenuCheckMarkDimensions

  LoadBitmapA

  ModifyMenuA

  CheckMenuItem

  RegisterWindowMessageA

  WinHelpA

  GetCapture

  GetClassLongA

  SetPropA

  GetPropA

  RemovePropA

  GetForegroundWindow

  GetTopWindow

  DestroyWindow

  GetMessageTime

  GetMessagePos

  MapWindowPoints

  SetMenu

  PostMessageA

  GetClassInfoExA

  GetClassInfoA

  AdjustWindowRectEx

  CopyRect

  GetMenu

  IsIconic

  GetWindowPlacement

  GrayStringA

  DrawTextExA

  SetWindowsHookExA

  CallNextHookEx

  DispatchMessageA

  GetKeyState

  PeekMessageA

  ValidateRect

  GetFocus

  ClientToScreen

  GetDlgCtrlID

  PtInRect

  GetLastActivePopup

  IsWindowEnabled

  EnableWindow

  UnhookWindowsHookEx

  GetMenuState

  GetMenuItemID

  GetMenuItemCount

  GetSubMenu

  EndPaint

  GetClassNameA

  SetWindowRgn

  SetTimer

  HideCaret

  GetWindowRect

  PostQuitMessage

  SendDlgItemMessageA

  DrawTextA

  SetForegroundWindow

  LoadStringA

  IsClipboardFormatAvailable

  GetParent

  LoadIconA

  FindWindowExA

  GetClientRect

  SetFocus

  SendMessageA

  BeginPaint

  GetClassInfoW

  CreateIconIndirect

  GetIconInfo

  GetDC

  ShowCursor

  GetWindowWord

  GetWindowTextA

  TrackPopupMenuEx

  RegisterClipboardFormatA

  SetRect

  CreateIcon

  SetWindowLongA

  MessageBoxA

  GetWindowLongA

  CreateWindowExA

  ReleaseDC

  EnableMenuItem

  GetDlgItem

  DefWindowProcA

  GetDesktopWindow

  GetSysColor

  SetWindowPos

  GetCursorPos

  ShowWindow

  CreatePopupMenu

  GetSysColorBrush

  IsWindow

  SystemParametersInfoA

  RegisterClassW

  GetSystemMetrics

  InsertMenuA

  SetWindowTextA

  UpdateWindow

  CallWindowProcA

  DestroyMenu

  FindWindowA

  LoadCursorA

  GetWindowThreadProcessId

  RegisterClassA

  GetWindow

  TabbedTextOutA

  gdi32

  SetViewportExtEx

  OffsetViewportOrgEx

  SetViewportOrgEx

  Escape

  ExtTextOutA

  RectVisible

  PtVisible

  ScaleWindowExtEx

  SetWindowExtEx

  ScaleViewportExtEx

  TextOutA

  RestoreDC

  SaveDC

  BeginPath

  GetBitmapBits

  MoveToEx

  BitBlt

  Arc

  SelectClipPath

  AnimatePalette

  GetTextExtentPoint32A

  SetTextColor

  CreateHatchBrush

  DeleteDC

  CreateFontA

  GetDeviceCaps

  CreateFontIndirectA

  SetBkColor

  AngleArc

  CreateBitmap

  SetBkMode

  DeleteObject

  SelectObject

  CreateCompatibleDC

  CombineRgn

  SetMapMode

  EndPath

  CreateRectRgn

  CreatePen

  GetTextMetricsA

  ArcTo

  RoundRect

  SetTextAlign

  GetObjectA

  GetStockObject

  CreateSolidBrush

  GetClipBox

  winspool.drv

  OpenPrinterA

  DocumentPropertiesA

  ClosePrinter

  advapi32

  CryptHashData

  CryptSetHashParam

  RegCloseKey

  CryptDestroyHash

  CryptDestroyKey

  CryptCreateHash

  RegOpenKeyExA

  CryptAcquireContextA

  CryptReleaseContext

  RegQueryValueExA

  CryptDeriveKey

  CryptGetHashParam

  comctl32

  ImageList_Create

  ImageList_ReplaceIcon

  ImageList_BeginDrag

  ImageList_GetDragImage

  ImageList_Merge

  ImageList_Destroy

  ImageList_SetDragCursorImage

  ole32

  CoUninitialize

  StgCreateDocfileOnILockBytes

  CoTaskMemFree

  CoInitialize

  OleCreateFromFile

  StgCreateDocfile

  CreateILockBytesOnHGlobal

  OleSetContainedObject

  StringFromGUID2

  CLSIDFromProgID

  oleaut32

  SysAllocString

  VariantInit

  GetActiveObject

  VariantChangeType

  VariantClear

  wininet

  DeleteUrlCacheEntry

  FtpSetCurrentDirectoryA

  version

  VerQueryValueA

  GetFileVersionInfoW

  GetFileVersionInfoSizeW

  urlmon

  URLDownloadToFileA

  ws2_32

  WSAStartup

  WSACleanup

  WSAStringToAddressW

  netapi32

  NetAuditClear

  NetShareGetInfo

  msi

  ord79

  avifil32

  AVISaveOptions

  winscard

  SCardEstablishContext

  SCardListReadersA

  winmm

  mmioDescend

  mmioClose

  iphlpapi

  GetInterfaceInfo

  pdh

  PdhCollectQueryData

  PdhBrowseCountersA

  opengl32

  glMatrixMode

  glViewport

  glDrawPixels

  glLoadIdentity

  glAccum

  oleacc

  CreateStdAccessibleObject

  LresultFromObject

  setupapi

  CM_Add_Range

  CM_Add_Res_Des

  snmpapi

  SnmpUtilMemAlloc

  SnmpUtilMemFree

  Sections

  .text

  Size: 172KB - Virtual size: 171KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 39KB - Virtual size: 38KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 14KB - Virtual size: 28KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 370KB - Virtual size: 369KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ