General

Malware Config

Signatures

Files

• 5fb9f0ece3558f94b7f62ea595bab16ea7805233ad7328f92844a7845072fd69

  .exe windows:5 windows x86 arch:x86

  fbcabc2cb5fb172efb6e50b0640ebe49

  
  

  Headers

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_LARGE_ADDRESS_AWARE

  IMAGE_FILE_32BIT_MACHINE

  PDB Paths

  D:\notepad2\notepad2\build\bin\Release\Win32\Notepad2.pdb

  Imports

  comctl32

  InitCommonControlsEx

  ord8

  ImageList_Destroy

  ImageList_Create

  ImageList_ReplaceIcon

  ImageList_AddMasked

  ord412

  ord410

  CreateStatusWindowW

  ord413

  shlwapi

  StrRetToBufW

  PathCombineW

  StrCmpLogicalW

  UrlUnescapeW

  PathMatchSpecW

  StrStrW

  PathFindExtensionW

  PathUnquoteSpacesW

  PathIsUNCW

  StrTrimW

  SHAutoComplete

  StrStrIW

  PathRemoveFileSpecW

  PathFindFileNameW

  PathQuoteSpacesW

  StrChrW

  PathRenameExtensionW

  PathIsDirectoryW

  PathRemoveExtensionW

  PathCompactPathExW

  PathStripToRootW

  PathGetDriveNumberW

  PathCommonPrefixW

  PathCanonicalizeW

  PathIsRootW

  PathUnExpandEnvStringsW

  PathIsPrefixW

  PathRelativePathToW

  StrDupW

  StrStrIA

  StrDupA

  UrlEscapeW

  StrTrimA

  PathAppendW

  StrCatBuffW

  StrFormatByteSizeW

  PathIsRelativeW

  StrRChrW

  imm32

  ImmEscapeW

  ImmGetCompositionStringW

  ImmSetCompositionWindow

  ImmSetCompositionFontW

  ImmReleaseContext

  ImmSetCompositionStringW

  ImmNotifyIME

  ImmGetContext

  ImmSetCandidateWindow

  uxtheme

  GetThemeSysFont

  IsAppThemed

  CloseThemeData

  OpenThemeData

  SetWindowTheme

  kernel32

  MulDiv

  LoadLibraryExW

  Sleep

  GlobalSize

  GlobalAlloc

  GlobalLock

  LCMapStringW

  WideCharToMultiByte

  GetTickCount

  GlobalUnlock

  HeapFree

  lstrlenW

  GetLocaleInfoW

  lstrcatW

  GetLocalTime

  GetTimeFormatW

  GetDateFormatW

  WritePrivateProfileStringW

  lstrcpynW

  GetPrivateProfileIntW

  GetModuleFileNameW

  GetFileAttributesW

  GetVersionExW

  FormatMessageW

  GlobalFree

  CreateThread

  HeapAlloc

  GetCurrentDirectoryW

  SetEvent

  lstrcpyW

  CompareStringW

  ReadFile

  GetFileSizeEx

  IsDBCSLeadByteEx

  GetFullPathNameW

  WriteFile

  SetEndOfFile

  LocalAlloc

  CreateFileW

  GetACP

  HeapSize

  GetPrivateProfileStringW

  GetTimeZoneInformation

  GetLastError

  GlobalMemoryStatusEx

  FreeLibrary

  IsValidCodePage

  SizeofResource

  InterlockedExchange

  GetCurrentProcess

  ExpandEnvironmentStringsW

  GetPrivateProfileSectionW

  GetPrivateProfileSectionNamesW

  FreeResource

  GetFileInformationByHandle

  LockResource

  HeapReAlloc

  ResetEvent

  LoadResource

  FindResourceW

  GetWindowsDirectoryW

  WritePrivateProfileSectionW

  GetCommandLineW

  GetLongPathNameW

  SetErrorMode

  FindFirstChangeNotificationW

  GetVersion

  SetFileAttributesW

  GetFileAttributesExW

  FindCloseChangeNotification

  DeleteFileW

  FindNextChangeNotification

  SetCurrentDirectoryW

  GetCurrentProcessId

  GetProcessHeap

  CreateProcessW

  GetSystemTimeAsFileTime

  GetSystemTime

  CreateEventW

  QueueUserWorkItem

  SetThreadPriority

  GetNativeSystemInfo

  CloseHandle

  WaitForSingleObject

  CreateWaitableTimerW

  SetWaitableTimer

  IsProcessorFeaturePresent

  IsDebuggerPresent

  UnhandledExceptionFilter

  SetUnhandledExceptionFilter

  GetStartupInfoW

  GetCurrentThreadId

  QueryPerformanceCounter

  GetModuleHandleW

  GetProcAddress

  QueryPerformanceFrequency

  MultiByteToWideChar

  InterlockedCompareExchange

  LeaveCriticalSection

  InitializeCriticalSectionAndSpinCount

  EnterCriticalSection

  DeleteCriticalSection

  SwitchToThread

  GetOEMCP

  GetCurrentThread

  InitializeSListHead

  TerminateProcess

  RtlUnwind

  RaiseException

  SetLastError

  EncodePointer

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  ExitProcess

  GetModuleHandleExW

  GetStdHandle

  GetStringTypeW

  GetFileType

  FindClose

  FindFirstFileExW

  FindNextFileW

  GetCPInfo

  GetCommandLineA

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  SetStdHandle

  FlushFileBuffers

  GetConsoleCP

  GetConsoleMode

  SetFilePointerEx

  WriteConsoleW

  LocalFree

  DecodePointer

  user32

  GetMenu

  FindWindowExW

  GetWindow

  GetMenuState

  GetSystemMenu

  DeferWindowPos

  DrawAnimatedRects

  IsIconic

  RegisterWindowMessageW

  EnableMenuItem

  PostQuitMessage

  IsZoomed

  CheckMenuItem

  TrackPopupMenuEx

  FindWindowW

  TranslateAcceleratorW

  IntersectRect

  EnumWindows

  SetMenu

  GetForegroundWindow

  SetMenuDefaultItem

  CountClipboardFormats

  SetWindowPlacement

  ChangeClipboardChain

  DestroyIcon

  IsDialogMessageW

  OffsetRect

  IsWindow

  GetSubMenu

  LoadAcceleratorsW

  GetWindowPlacement

  ShowOwnedPopups

  SetClipboardViewer

  EqualRect

  IsWindowVisible

  CheckMenuRadioItem

  MapVirtualKeyW

  ShowWindowAsync

  LoadMenuW

  GetMessageW

  GetMessagePos

  GetMenuItemInfoW

  SetActiveWindow

  SetCaretPos

  OpenClipboard

  SetTimer

  GetKeyboardLayoutNameW

  GetDlgCtrlID

  CloseClipboard

  EmptyClipboard

  IsChild

  CreateCaret

  ValidateRect

  TrackMouseEvent

  DispatchMessageW

  GetMessageTime

  SetFocus

  GetClipboardData

  DestroyCaret

  SetClipboardData

  IsClipboardFormatAvailable

  GetCaretBlinkTime

  ShowCaret

  KillTimer

  PtInRect

  GetWindowLongW

  DefWindowProcW

  AdjustWindowRectEx

  MonitorFromPoint

  GetWindowRect

  DestroyWindow

  InflateRect

  GetDC

  SetWindowPos

  CopyImage

  MonitorFromRect

  MonitorFromWindow

  FillRect

  CreateWindowExW

  GetIconInfo

  SendMessageW

  GetSystemMetrics

  UnregisterClassW

  RegisterClassExW

  DestroyCursor

  TrackPopupMenu

  ShowWindow

  DrawTextA

  GetMonitorInfoW

  CreateIconIndirect

  ClientToScreen

  MapWindowPoints

  GetDoubleClickTime

  FrameRect

  GetSysColor

  DestroyMenu

  LoadCursorW

  SetCapture

  SetCursor

  SetWindowLongW

  GetClientRect

  DrawTextW

  SystemParametersInfoW

  GetParent

  ReleaseCapture

  InvalidateRect

  ReleaseDC

  GetCursorPos

  BeginPaint

  EndPaint

  RedrawWindow

  PeekMessageW

  DialogBoxIndirectParamW

  SetLayeredWindowAttributes

  GetMenuStringW

  TranslateMessage

  GetClassNameW

  InsertMenuW

  SetRect

  CreateDialogIndirectParamW

  SetForegroundWindow

  GetNextDlgTabItem

  IsCharLowerW

  CharUpperW

  CharLowerW

  GetFocus

  GetCapture

  GetComboBoxInfo

  ChildWindowFromPoint

  IsCharUpperW

  GetWindowTextW

  GetWindowTextLengthW

  CheckRadioButton

  GetPropW

  MessageBoxExW

  EndDialog

  RemovePropW

  SetWindowTextW

  MessageBeep

  GetActiveWindow

  BeginDeferWindowPos

  wvsprintfW

  SetDlgItemTextW

  GetDlgItemTextW

  MessageBoxIndirectW

  IsWindowEnabled

  IsDlgButtonChecked

  IsCharAlphaNumericW

  SetPropW

  LoadIconW

  EndDeferWindowPos

  GetDlgItemInt

  CheckDlgButton

  GetSysColorBrush

  SetDlgItemInt

  LoadImageW

  EnableWindow

  LoadStringW

  SendDlgItemMessageW

  wsprintfW

  GetDlgItem

  UpdateWindow

  MsgWaitForMultipleObjects

  SetScrollInfo

  RegisterClipboardFormatW

  GetKeyState

  GetUpdateRgn

  PostMessageW

  HideCaret

  ScreenToClient

  NotifyWinEvent

  GetKeyboardLayout

  GetScrollInfo

  SetCursorPos

  gdi32

  DeleteDC

  CreatePatternBrush

  GetTextMetricsW

  GetDeviceCaps

  GetTextExtentExPointA

  Polyline

  GetStockObject

  StretchBlt

  GdiAlphaBlend

  GetTextExtentExPointW

  MoveToEx

  GetTextExtentPoint32A

  CreateDIBSection

  SelectObject

  ExtTextOutA

  GetTextExtentPoint32W

  CreateCompatibleBitmap

  BitBlt

  CombineRgn

  CreateBitmap

  CreateRectRgn

  CreateRectRgnIndirect

  EndPage

  DPtoLP

  StartDocW

  CreateFontW

  EndDoc

  StartPage

  TranslateCharsetInfo

  SetMapMode

  EnumFontFamiliesExW

  SetTextColor

  SetBkMode

  LineTo

  CreatePen

  ExtCreatePen

  GetObjectW

  SaveDC

  SetBkColor

  Ellipse

  RestoreDC

  DeleteObject

  CreateSolidBrush

  CreateFontIndirectW

  SetTextAlign

  RoundRect

  ExtTextOutW

  Polygon

  CreateCompatibleDC

  IntersectClipRect

  comdlg32

  ChooseFontW

  GetSaveFileNameW

  GetOpenFileNameW

  PageSetupDlgW

  PrintDlgW

  ChooseColorW

  advapi32

  RegDeleteKeyW

  RegOpenKeyExW

  RegCreateKeyExW

  RegCloseKey

  IsTextUnicode

  GetTokenInformation

  RegQueryValueExW

  OpenProcessToken

  RegSetValueExW

  RegDeleteValueW

  shell32

  SHBrowseForFolderW

  ShellExecuteExW

  SHGetPathFromIDListW

  SHGetDataFromIDListW

  SHGetDesktopFolder

  ord180

  SHGetFileInfoW

  SHOpenFolderAndSelectItems

  SHGetFolderPathW

  ord190

  Shell_NotifyIconW

  SHCreateDirectoryExW

  DragAcceptFiles

  SHAddToRecentDocs

  DragQueryFileW

  ShellExecuteW

  DragFinish

  SHAppBarMessage

  ole32

  OleUninitialize

  CoCreateGuid

  OleInitialize

  CoTaskMemFree

  RevokeDragDrop

  RegisterDragDrop

  DoDragDrop

  ReleaseStgMedium

  CLSIDFromProgID

  CoCreateInstance

  CoTaskMemAlloc

  oleaut32

  SysAllocStringLen

  SysFreeString

  Sections

  .text

  Size: 1.1MB - Virtual size: 1.1MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 641KB - Virtual size: 640KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 46KB - Virtual size: 130KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 106KB - Virtual size: 105KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 55KB - Virtual size: 55KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ