KeyMagic2[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

KeyMagic2.exe
Size

769KB
MD5

549f1e08ad1bfa5334051a21c17198d5
SHA1

040f9665804a6ca5bcd4efdf25fe66f851ca3bc9
SHA256

0747b91f6a43308d5636b9d1e5cb1ffcd03a96872a8b8be2ad571f85bbcd96ed
SHA512

96d41364bfe4aca7489581031a462683aacae2ba1c28e2443cc75f632ec6ba04d6c49ef869c2b804c6e585b41de8e00ad04a0cac0fb16a88637f6cb35ba75aae
SSDEEP

24576:lQA/g9PX65n3AOCU8hEtyhSOIrYD5W7yJDfC+W5o:GBMGlfC+W5o

Score

N/A

Malware Config

Signatures

Files

KeyMagic2.exe
.exe windows x64

ed4c780e4243d01acb5c6ed715bb4883

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

comctl32

InitCommonControlsEx
ImageList_GetIcon
ImageList_Add
ImageList_Create
ImageList_Destroy

kernel32

CreateFileW
SetStdHandle
FindNextFileW
FindFirstFileExW
FindClose
GetCommandLineW
GetCommandLineA
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
GetConsoleCP
FlushFileBuffers
ReadConsoleW
GetConsoleMode
SetFilePointerEx
GetFileType
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetTimeFormatW
WriteConsoleW
GetACP
WriteFile
GetStdHandle
ExitProcess
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
VirtualQuery
VirtualProtect
VirtualAlloc
GetSystemInfo
ReadFile
LoadLibraryExW
FreeLibrary
RtlUnwindEx
RtlPcToFileHeader
InitializeSListHead
GetCurrentThreadId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
WaitForSingleObjectEx
ResetEvent
SetEndOfFile
WaitForSingleObject
CopyFileW
DeleteFileW
lstrcpynW
OutputDebugStringW
GetModuleFileNameW
CreateMutexW
OpenMutexW
GetProcessHeap
HeapSize
HeapReAlloc
HeapFree
HeapAlloc
LeaveCriticalSection
EnterCriticalSection
MulDiv
GetModuleHandleW
GetDateFormatW
CreateDirectoryW
GetCurrentProcessId
WriteProcessMemory
CreateProcessW
GetEnvironmentVariableA
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
DecodePointer
GetLastError
RaiseException
MultiByteToWideChar
GetStringTypeW
EncodePointer
WideCharToMultiByte
SetLastError
SetEvent
CloseHandle
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
CreateEventW
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetCPInfo
GetLocaleInfoW
LCMapStringW
CompareStringW
GetProcAddress
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc

user32

LoadAcceleratorsW
GetMessageW
TranslateAcceleratorW
TranslateMessage
DispatchMessageW
LoadIconW
UpdateWindow
SendMessageW
MessageBoxW
CallNextHookEx
MapVirtualKeyExW
ToUnicodeEx
SendInput
SetWindowsHookExW
MapVirtualKeyW
LoadStringW
GetWindowLongPtrW
SetWindowLongPtrW
DefWindowProcW
LoadCursorW
RegisterClassExW
CreateWindowExW
MoveWindow
GetDC
DrawTextExW
MonitorFromPoint
GetMonitorInfoW
SetWindowTextW
GetClientRect
GetDlgItem
SetWindowPos
ShowWindow
FindWindowW
ReleaseDC
SetTimer
DestroyWindow
IsDlgButtonChecked
EnableWindow
CheckDlgButton
EndDialog
PostQuitMessage
EndPaint
BeginPaint
GetMenuState
GetWindowRect
DialogBoxParamW
GetSystemMetrics
LoadImageW
GetMenu
CheckMenuItem
TrackPopupMenu
SetForegroundWindow
GetCursorPos
AppendMenuW
InsertMenuItemW
CreatePopupMenu
MapWindowPoints
UpdateLayeredWindow

gdi32

AddFontResourceExW
SetDIBColorTable
CreateDIBSection
DeleteDC
SetTextColor
RoundRect
Rectangle
CreateSolidBrush
CreatePen
CreateCompatibleBitmap
GetTextExtentPoint32W
SelectObject
CreateFontIndirectW
GetDeviceCaps
SetBkMode
CreateCompatibleDC
GetObjectW
DeleteObject
GetStockObject

comdlg32

GetOpenFileNameW

advapi32

SystemFunction036
AdjustTokenPrivileges
RegOpenKeyExW
RegQueryValueExW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
LookupPrivilegeValueW

shell32

ShellExecuteW
ShellExecuteExW
SHGetFolderPathW
Shell_NotifyIconW

shlwapi

StrCpyW
PathRemoveFileSpecW
PathAppendW
PathFileExistsW
ord12

gdiplus

GdipFree
GdipAlloc
GdipDisposeImage
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipDrawImageI
GdipCloneImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdiplusStartup
GdiplusShutdown

winhttp

WinHttpConnect
WinHttpOpen
WinHttpSendRequest
WinHttpOpenRequest
WinHttpCloseHandle
WinHttpReadData
WinHttpQueryDataAvailable
WinHttpReceiveResponse

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

Sections

.text
Size: 511KB - Virtual size: 510KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ed4c780e4243d01acb5c6ed715bb4883

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

shlwapi

gdiplus

winhttp

version

Sections

.text Size: 511KB - Virtual size: 510KB

.rdata Size: 162KB - Virtual size: 161KB

.data Size: 10KB - Virtual size: 17KB

.pdata Size: 23KB - Virtual size: 23KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 56KB - Virtual size: 56KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 511KB - Virtual size: 510KB

.rdata
Size: 162KB - Virtual size: 161KB

.data
Size: 10KB - Virtual size: 17KB

.pdata
Size: 23KB - Virtual size: 23KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 56KB - Virtual size: 56KB

.reloc
Size: 5KB - Virtual size: 4KB