General

Malware Config

Signatures

Files

• T0919022001 - MARVA SAC PERU.exe

  .exe windows x86

  357427636e0c2ecb69f910cb096310b7

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

  IMAGE_DLLCHARACTERISTICS_NX_COMPAT

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  GetDateFormatW

  InterlockedIncrement

  CompareFileTime

  SystemTimeToFileTime

  GetTempFileNameW

  FileTimeToSystemTime

  DeleteFileW

  VirtualProtect

  VirtualAlloc

  Sleep

  SetEndOfFile

  CreateFileW

  SetStdHandle

  SetEnvironmentVariableW

  SetEnvironmentVariableA

  FreeEnvironmentStringsW

  GetEnvironmentStringsW

  GetCommandLineW

  GetCommandLineA

  GetOEMCP

  GetLocaleInfoW

  FindNextFileW

  lstrcmpW

  FindFirstFileExW

  FindFirstFileExA

  FindClose

  GetTimeZoneInformation

  SetFilePointerEx

  ReadConsoleW

  ReadFile

  GetConsoleMode

  GetConsoleCP

  FlushFileBuffers

  GetProcessHeap

  HeapQueryInformation

  HeapSize

  HeapReAlloc

  HeapFree

  GetFileAttributesExW

  CreateProcessW

  CreateProcessA

  GetLocalTime

  MultiByteToWideChar

  InterlockedDecrement

  GetLastError

  GlobalFindAtomW

  MulDiv

  GlobalSize

  GlobalLock

  GlobalUnlock

  IsValidCodePage

  GlobalAlloc

  ResetEvent

  CreateEventW

  CreateThread

  WaitForSingleObject

  CloseHandle

  SetEvent

  GetSystemTime

  GetModuleHandleW

  FindResourceExW

  FindResourceW

  GetExitCodeProcess

  EnumSystemLocalesW

  GetUserDefaultLCID

  IsValidLocale

  GetModuleHandleA

  SetUnhandledExceptionFilter

  OutputDebugStringA

  GetStartupInfoA

  WideCharToMultiByte

  FindNextFileA

  lstrlenA

  LCMapStringW

  CompareStringW

  VirtualQuery

  GetTimeFormatW

  GetCurrentThread

  SetConsoleCtrlHandler

  WaitForSingleObjectEx

  WriteConsoleW

  OutputDebugStringW

  GetFileType

  GetACP

  ExitProcess

  WriteFile

  FormatMessageA

  EnterCriticalSection

  LeaveCriticalSection

  InitializeCriticalSectionEx

  DeleteCriticalSection

  EncodePointer

  DecodePointer

  LocalFree

  LCMapStringEx

  GetLocaleInfoEx

  GetStringTypeW

  CompareStringEx

  GetCPInfo

  UnhandledExceptionFilter

  GetCurrentProcess

  TerminateProcess

  IsProcessorFeaturePresent

  QueryPerformanceCounter

  GetCurrentProcessId

  GetCurrentThreadId

  GetSystemTimeAsFileTime

  InitializeSListHead

  IsDebuggerPresent

  GetStartupInfoW

  RtlUnwind

  RaiseException

  InterlockedPushEntrySList

  InterlockedFlushSList

  SetLastError

  InitializeCriticalSectionAndSpinCount

  TlsAlloc

  TlsGetValue

  TlsSetValue

  TlsFree

  FreeLibrary

  GetProcAddress

  LoadLibraryExW

  GetModuleFileNameA

  GetModuleFileNameW

  GetModuleHandleExW

  HeapAlloc

  HeapValidate

  GetSystemInfo

  GetStdHandle

  user32

  MonitorFromRect

  LoadAcceleratorsW

  IsClipboardFormatAvailable

  DefWindowProcW

  IsDlgButtonChecked

  MoveWindow

  GetDlgItemInt

  SetDlgItemInt

  CopyRect

  IntersectRect

  EnumDisplayMonitors

  MapWindowPoints

  MessageBoxA

  SetWindowTextW

  LoadStringW

  SetFocus

  EnableWindow

  GetWindowTextW

  GetWindowTextLengthW

  GetClassNameW

  IsDialogMessageW

  GetKeyState

  SetCursor

  LoadCursorW

  SendMessageW

  SetWindowPos

  GetWindowRect

  GetDlgItem

  EqualRect

  gdi32

  SetBkColor

  GetStockObject

  SetBkMode

  SetTextColor

  CreatePatternBrush

  SelectObject

  GetRgnBox

  GetDeviceCaps

  CreateCompatibleDC

  CreateFontIndirectW

  advapi32

  EventUnregister

  OpenServiceW

  QueryServiceConfigW

  CloseServiceHandle

  RegCreateKeyExW

  RegCloseKey

  EventWrite

  EventRegister

  OpenSCManagerW

  ole32

  CoUninitialize

  CoCreateInstance

  CoInitialize

  comctl32

  ImageList_Add

  ImageList_Create

  CreatePropertySheetPageW

  PropertySheetW

  ImageList_SetBkColor

  ImageList_Destroy

  gdiplus

  GdipCreateSolidFill

  GdipDeletePen

  GdipDeleteGraphics

  GdipDisposeImage

  GdipSetPageUnit

  GdipCreateBitmapFromScan0

  rpcrt4

  UuidToStringW

  RpcStringFreeW

  UuidCreate

  uxtheme

  IsThemeActive

  Sections

  .text

  Size: 855KB - Virtual size: 855KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 196KB - Virtual size: 196KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 357KB - Virtual size: 362KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 512B - Virtual size: 480B

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .reloc

  Size: 33KB - Virtual size: 33KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_DISCARDABLE

  IMAGE_SCN_MEM_READ