Static task
static1
General
-
Target
FireStorm.exe
-
Size
30.1MB
-
MD5
486dd28623094446010ed56138980453
-
SHA1
66b8b2d2c3a29b90b3aee365d501e77056857295
-
SHA256
277919d9d7d70fe0dfc7153a14da3a56116cb0e0be13977c39c1a1e95404679f
-
SHA512
44d6d535aaf48bf7691998211e84c63b41de974c743c087bd3a98917b21e600d902ecc9a5b8221b1a91c81a2609525fedcd2da2f02945caf593ce4a419fb49e0
-
SSDEEP
98304:dqmmENaDL0FOBfKglhjydfVogUS65zjG8S65zjGKMYgkC:TWirxVopS65zjG8S65zjG
Malware Config
Signatures
Files
-
FireStorm.exe.exe windows x86
ac5a0b96f87c989ac24dc02c9b70f715
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
CreateFileA
SetEnvironmentVariableA
ExpandEnvironmentStringsW
VerSetConditionMask
VerifyVersionInfoW
LoadLibraryExW
GetSystemDirectoryW
GetDriveTypeA
GetCurrentDirectoryA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
LCMapStringA
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
QueryPerformanceCounter
VirtualFree
HeapCreate
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
GetFileType
SetStdHandle
HeapSize
HeapReAlloc
RtlUnwind
RaiseException
ExitProcess
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateThread
ExitThread
HeapFree
HeapAlloc
GetStartupInfoW
FindResourceExW
VirtualProtect
GetProfileIntW
GetTickCount
SearchPathW
GetTempPathW
GetTempFileNameW
lstrcpyW
GetCurrentDirectoryW
GetFileTime
GetFileSizeEx
GetFileAttributesW
SetErrorMode
GlobalGetAtomNameW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
InterlockedIncrement
GlobalFlags
GetPrivateProfileIntW
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
InterlockedExchange
SuspendThread
ResumeThread
SetThreadPriority
CreateFileW
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
InterlockedDecrement
lstrlenA
lstrcmpA
FindFirstFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileW
FindClose
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
LoadLibraryA
lstrcmpW
GetModuleHandleW
GetVersionExA
CopyFileW
GlobalSize
FormatMessageW
LocalFree
GetCurrentProcessId
MulDiv
GetModuleHandleA
SetLastError
FreeResource
TerminateProcess
SetEvent
WideCharToMultiByte
lstrlenW
CreateEventW
CloseHandle
OpenProcess
FreeLibrary
GetProcAddress
LoadLibraryW
GlobalUnlock
WaitForSingleObject
DeleteFileW
SetCurrentDirectoryW
MultiByteToWideChar
lstrcpynW
InitializeCriticalSectionAndSpinCount
CreateMutexW
GetLastError
GetPrivateProfileStringW
WritePrivateProfileStringW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetCurrentProcess
Sleep
GlobalLock
GlobalAlloc
GetModuleFileNameW
LoadResource
LockResource
SizeofResource
FindResourceW
GlobalFree
user32
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
ShowScrollBar
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
DefWindowProcW
CallWindowProcW
GetMenu
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetScrollPos
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetNextDlgTabItem
EndDialog
GetWindowTextLengthW
GetWindowTextW
GetFocus
SetWindowPos
SetFocus
ShowWindow
MoveWindow
GetDlgCtrlID
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageW
GetDlgItem
CheckDlgButton
GetWindow
GetMenuState
GetMenuStringW
GetMessagePos
GetMenuItemID
InsertMenuW
GetMenuItemCount
IsZoomed
GetLastActivePopup
IsWindowEnabled
MessageBoxW
EndPaint
BeginPaint
ClientToScreen
FillRect
LockWindowUpdate
SetScrollPos
SetCursor
UpdateWindow
RedrawWindow
GetSysColor
wsprintfW
GetWindowThreadProcessId
MessageBeep
TranslateMessage
MapDialogRect
GetMessageW
PeekMessageW
GetClientRect
GetDC
SetCapture
ReleaseCapture
EnableWindow
GetSubMenu
LoadMenuW
SetForegroundWindow
PostThreadMessageW
KillTimer
DrawIcon
GetSystemMetrics
IsIconic
SetTimer
LoadIconW
WindowFromPoint
ReleaseDC
IsWindowVisible
ExitWindowsEx
GetCapture
GetWindowDC
IsWindow
WindowFromDC
LoadImageW
GetMessageTime
UnhookWindowsHookEx
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
DispatchMessageW
GetForegroundWindow
RemovePropW
GetPropW
SetPropW
GetClassLongW
CallNextHookEx
SetWindowsHookExW
IsChild
GetClassNameW
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetKeyState
LoadBitmapW
DrawFocusRect
CopyRect
EqualRect
InvalidateRect
SetWindowRgn
WinHelpW
SendDlgItemMessageA
RegisterWindowMessageW
InflateRect
CharUpperW
AppendMenuW
ValidateRect
GetWindowLongW
SetWindowLongW
GetCursorPos
ScreenToClient
PtInRect
GetParent
SetWindowContextHelpId
ShowOwnedPopups
GetMenuItemInfoW
DestroyMenu
CloseClipboard
GetKeyNameTextW
MapVirtualKeyW
GetSysColorBrush
LoadCursorW
UnregisterClassW
WaitMessage
DeleteMenu
SetRectEmpty
CopyAcceleratorTableW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
GetAsyncKeyState
DestroyAcceleratorTable
LoadAcceleratorsW
CreateAcceleratorTableW
NotifyWinEvent
CreatePopupMenu
SetParent
SetClassLongW
GetSystemMenu
IsMenu
IsRectEmpty
BringWindowToTop
EnumChildWindows
RegisterClipboardFormatW
DrawStateW
OpenClipboard
CopyImage
DestroyIcon
SystemParametersInfoW
PostQuitMessage
PostMessageW
SendMessageW
SetRect
GetWindowRect
SetClipboardData
DestroyCursor
GetWindowRgn
CreateMenu
GetDoubleClickTime
GetIconInfo
SubtractRect
CopyIcon
CharUpperBuffW
GetUpdateRect
FrameRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
IsClipboardFormatAvailable
MapVirtualKeyExW
IsCharLowerW
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
SetCursorPos
DrawFrameControl
DrawEdge
DrawIconEx
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
GetNextDlgGroupItem
InvalidateRgn
CharNextW
EmptyClipboard
RemoveMenu
gdi32
RestoreDC
SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetTextColor
SetMapMode
GetClipBox
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
SelectPalette
GetObjectType
GetDeviceCaps
CreateHatchBrush
CopyMetaFileW
SaveDC
CreateRectRgnIndirect
SetRectRgn
GetMapMode
PatBlt
DPtoLP
GetTextExtentPoint32W
GetTextMetricsW
OffsetRgn
GetRgnBox
EnumFontFamiliesW
GetTextCharsetInfo
GetTextColor
SetDIBColorTable
GetDIBits
RealizePalette
SetPixel
CreateDIBSection
CreatePolygonRgn
Polyline
Polygon
Rectangle
RoundRect
CreatePalette
GetPaletteEntries
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
LPtoDP
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
CreatePatternBrush
CreatePen
CreateFontIndirectW
CreateSolidBrush
Ellipse
SetDIBitsToDevice
CreateDIBitmap
PtInRegion
CreateEllipticRgn
StretchBlt
GetBkColor
GetStockObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateBitmap
SelectClipRgn
CreateRoundRectRgn
DeleteObject
CombineRgn
CreateRectRgn
GetPixel
SelectObject
GetObjectW
BitBlt
CreateCompatibleBitmap
GetDCOrgEx
CreateCompatibleDC
msimg32
TransparentBlt
AlphaBlend
comdlg32
GetFileTitleW
winspool.drv
DocumentPropertiesW
ClosePrinter
OpenPrinterW
advapi32
RegQueryValueW
LookupPrivilegeValueW
AdjustTokenPrivileges
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyW
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegOpenKeyW
RegEnumKeyExW
OpenProcessToken
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
shell32
SHBrowseForFolderW
ShellExecuteExW
ShellExecuteW
SHGetFileInfoW
SHAppBarMessage
DragQueryFileW
DragFinish
Shell_NotifyIconW
SHGetPathFromIDListW
comctl32
_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize
shlwapi
PathIsUNCW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathRemoveFileSpecW
oledlg
OleUIBusyW
ole32
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleTranslateAccelerator
CoInitializeEx
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleGetClipboard
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleLockRunning
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
CoCreateInstance
CoInitialize
CoUninitialize
CreateStreamOnHGlobal
IsAccelerator
oleaut32
SysAllocString
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysFreeString
SysStringLen
SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
OleCreateFontIndirect
gdiplus
GdipCloneImage
GdipCreateBitmapFromFile
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetSmoothingMode
GdipSetInterpolationMode
GdipGetImageWidth
GdipGetImageHeight
GdipMeasureString
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipDrawString
GdiplusStartup
GdipAlloc
GdipCreateStringFormat
GdipDeleteStringFormat
GdipCreatePen2
GdipDeletePen
GdipDeleteFont
GdipDrawImageRectI
GdipSetStringFormatFlags
GdipDrawArcI
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateImageAttributes
GdipDisposeImageAttributes
GdipSetImageAttributesColorMatrix
GdipDrawImageRectRect
GdipCreateLineBrushFromRectI
GdipDrawCurve
GdipSetSolidFillColor
GdipFillEllipseI
GdipSetPenDashStyle
GdipDrawRectangleI
GdipFillEllipse
GdipNewPrivateFontCollection
GdipDeletePrivateFontCollection
GdipPrivateAddFontFile
GdipGetFontCollectionFamilyCount
GdipDeleteFontFamily
GdipCloneFontFamily
GdipGetFontCollectionFamilyList
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipCreateFontFamilyFromName
GdipFillRectangleI
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromScan0
GdipDisposeImage
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipDrawImageI
GdipFree
GdiplusShutdown
GdipBitmapLockBits
imm32
ImmReleaseContext
ImmGetContext
ImmGetOpenStatus
d3d9
Direct3DCreate9
psapi
GetModuleFileNameExW
libeay32
ord223
ord227
ord3783
ord2656
ord266
ord3067
ord2660
ord276
ord2996
ord2894
ord3782
ord1070
ord4245
ord400
ord4430
ord4164
ord281
ord4119
ord279
ord484
ord283
ord66
ord2081
ord1882
ord246
ws2_32
shutdown
sendto
recvfrom
htons
send
recv
accept
setsockopt
listen
bind
socket
getpeername
closesocket
WSASocketW
freeaddrinfo
inet_ntop
getaddrinfo
WSAGetLastError
gethostname
WSAStartup
WSAIoctl
iphlpapi
SendARP
winmm
PlaySoundW
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 339KB - Virtual size: 339KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 516KB - Virtual size: 550KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 27.5MB - Virtual size: 27.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 250KB - Virtual size: 249KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ