skillful_chiller[.]exe

Resubmissions

15/10/2022, 00:38

221015-azelasfaal 1

15/10/2022, 00:16

221015-akhpeaehhl 1

15/10/2022, 00:02

221015-abx3qsehgj 1

Sharing

Copy URL Twitter E-mail

General

Target

skillful_chiller.exe
Size

206KB
MD5

56178a745bdbbb498fc26734e3468d46
SHA1

507dc54730ef0ae3094f03adbd5db0000019a509
SHA256

1c73834a7572c4d545682fe477d9ad20f317114209bda15da1b9e7272181d481
SHA512

04d47b1901401ef36a9bcd18b2ec2fd934ac33baf39ddc852be20453138393b2393852820d3d663c3b158717d4a4281bd3739d1db3572d89daac675f3796c6f2
SSDEEP

3072:qPi8trAE1YJUM9CIO6iTrQ5g9HE2qtZK3OuWJXCXYKr:qPi6kqM4jTrQ5g9HctxCXY4

Score

N/A

Malware Config

Signatures

Files

skillful_chiller.exe
.exe windows x64

b89997f3bb96756c951489f701384fac

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

sdkdll

SetKeyCallBack
EnableKeyInterrupt
IsDevicePlug

kernel32

UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
CloseHandle
ReleaseMutex
ReleaseSRWLockShared
GetLastError
AddVectoredExceptionHandler
SetThreadStackGuarantee
GetCurrentThread
SetLastError
GetCurrentProcess
RtlCaptureContext
GetProcAddress
RtlLookupFunctionEntry
GetCurrentDirectoryW
GetEnvironmentVariableW
GetStdHandle
GetCurrentProcessId
SetHandleInformation
WaitForSingleObject
QueryPerformanceCounter
TryAcquireSRWLockExclusive
GetSystemTimeAsFileTime
HeapAlloc
GetProcessHeap
HeapFree
HeapReAlloc
AcquireSRWLockShared
WaitForSingleObjectEx
LoadLibraryA
CreateMutexA
GetModuleHandleW
FormatMessageW
IsProcessorFeaturePresent
TlsGetValue
TlsSetValue
GetModuleHandleA
GetConsoleMode
WriteConsoleW
InitializeSListHead
GetCurrentThreadId

ws2_32

WSACleanup
connect
WSASocketW
send
WSAGetLastError
WSAStartup
bind
closesocket

vcruntime140

__current_exception_context
__current_exception
__C_specific_handler
_CxxThrowException
memcmp
memmove
memset
memcpy
__CxxFrameHandler3

api-ms-win-crt-runtime-l1-1-0

__p___argv
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
__p___argc
_initterm
_seh_filter_exe
_initterm_e
_initialize_onexit_table
_register_onexit_function
_crt_atexit
terminate
_get_initial_narrow_environment
_exit
_configure_narrow_argv
exit
_initialize_narrow_environment
_set_app_type

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode

Sections

.text
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 776B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1012B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

b89997f3bb96756c951489f701384fac

Headers

DLL Characteristics

File Characteristics

Imports

sdkdll

kernel32

ws2_32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-heap-l1-1-0

Sections

.text Size: 150KB - Virtual size: 150KB

.rdata Size: 43KB - Virtual size: 43KB

.data Size: 512B - Virtual size: 776B

.pdata Size: 10KB - Virtual size: 9KB

.reloc Size: 1024B - Virtual size: 1012B

.text
Size: 150KB - Virtual size: 150KB

.rdata
Size: 43KB - Virtual size: 43KB

.data
Size: 512B - Virtual size: 776B

.pdata
Size: 10KB - Virtual size: 9KB

.reloc
Size: 1024B - Virtual size: 1012B