AgPmDestroySourceConnection
AgPmEventEnabled
AgPmEventLoggingEnabled
AgPmSubmitEvent
NxCreateCoreSDK
Static task
static1
General
-
Target
Slendytubbies 64bit.exe
-
Size
10.2MB
-
MD5
84483b6254b479a0543575f8006bd9c1
-
SHA1
172e007fa90ebc5fcfff319706145d08ec424444
-
SHA256
be381c19f0fcfe7aeb21842aee7262338910e9f3b8a77592c4fc06c1e20db7aa
-
SHA512
303d249628527be10655998541f7cb71155ffa37095cc4bcf363ee06eb592bb8f48ecd90c8c74c90b90780c178ce48362d0cd02231d3fa174c181da921180b31
-
SSDEEP
196608:QGLelK6q4n9LF2zMVVU9dmrREkvYljr852:QGC+u9LF2zMVVU9dmrWkvEr8
Score
1/10
Malware Config
Signatures
Files
-
Slendytubbies 64bit.exe.exe windows x64
19a502941c519605162d4cfa81dabcca
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
kernel32
GlobalMemoryStatusEx
GetUserDefaultLangID
GetTempPathW
GetComputerNameW
SetThreadAffinityMask
GetCurrentThread
GetProcessAffinityMask
GetCurrentProcess
SetUnhandledExceptionFilter
OutputDebugStringA
SetLastError
ReadProcessMemory
GetEnvironmentVariableA
GetFileAttributesA
GetModuleFileNameA
GetCurrentDirectoryA
ResumeThread
GetThreadContext
SuspendThread
RtlCaptureContext
ResetEvent
GetTickCount
CopyFileW
MoveFileExW
GetCurrentProcessId
FileTimeToDosDateTime
FileTimeToLocalFileTime
lstrlenA
GetFileTime
VirtualQuery
GlobalMemoryStatus
GetSystemTimeAsFileTime
CreateProcessW
IsDebuggerPresent
SetErrorMode
WritePrivateProfileStringW
HeapValidate
TerminateThread
WriteFile
GetProcessHeap
GetConsoleOutputCP
WriteConsoleA
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetLocaleInfoW
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FlushFileBuffers
GetConsoleMode
GetConsoleCP
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileAttributesW
IsValidCodePage
GetOEMCP
GetACP
HeapSize
HeapCreate
HeapSetInformation
FlsAlloc
FlsFree
FlsSetValue
FlsGetValue
DecodePointer
EncodePointer
GetCPInfo
LCMapStringW
LCMapStringA
GetTimeZoneInformation
DebugBreak
WriteConsoleW
GetVersionExA
GetDriveTypeA
GetFileInformationByHandle
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
DuplicateHandle
ExitThread
RtlVirtualUnwind
TerminateProcess
ExitProcess
UnhandledExceptionFilter
SetConsoleCtrlHandler
RtlPcToFileHeader
RtlUnwindEx
RtlLookupFunctionEntry
HeapFree
HeapReAlloc
HeapAlloc
GetSystemDirectoryA
OpenEventA
VirtualAlloc
VirtualFree
UnmapViewOfFile
CreateFileA
CreateFileMappingA
MapViewOfFile
lstrcmpiA
GetFullPathNameA
GetStdHandle
GetFileType
WaitForMultipleObjects
PeekNamedPipe
CreateSemaphoreW
CreateMutexW
GetModuleHandleW
SignalObjectAndWait
GetThreadLocale
ExpandEnvironmentStringsA
CreateEventW
GetOverlappedResult
CancelIo
lstrlenW
SetFileAttributesW
GetFileSize
GetLastError
ReadFile
CreateFileW
SetEndOfFile
SetFilePointer
GetCurrentThreadId
SleepEx
CreateThread
SetThreadPriority
RaiseException
ReleaseMutex
WaitForSingleObject
CreateMutexA
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
SetEvent
CreateEventA
QueryPerformanceFrequency
QueryPerformanceCounter
FormatMessageA
LocalFree
GetFullPathNameW
ReleaseSemaphore
WaitForSingleObjectEx
Sleep
CloseHandle
CreateSemaphoreA
LoadLibraryW
LoadLibraryA
GetProcAddress
FreeLibrary
WideCharToMultiByte
CreateDirectoryW
MultiByteToWideChar
GetCommandLineW
lstrcpynW
lstrcpyA
lstrcpynA
GetModuleFileNameW
FileTimeToSystemTime
GetSystemInfo
TlsSetValue
TlsGetValue
TlsFree
GlobalAlloc
GlobalLock
GlobalUnlock
FindFirstFileW
FindNextFileW
RemoveDirectoryW
DeleteFileW
FindFirstFileA
FindClose
SetHandleCount
TlsAlloc
HeapWalk
user32
CloseClipboard
EmptyClipboard
OpenClipboard
GetClipboardData
IsClipboardFormatAvailable
SetCapture
ReleaseCapture
RegisterDeviceNotificationW
SetClipboardData
MessageBoxW
ClientToScreen
WindowFromPoint
GetCursorPos
DefWindowProcW
DestroyWindow
ReleaseDC
GetDC
CreateWindowExW
ScreenToClient
GetAsyncKeyState
GetKeyState
SystemParametersInfoW
IsWindowVisible
UnregisterDeviceNotification
SetDlgItemTextW
wvsprintfA
MonitorFromWindow
EnumDisplayDevicesA
GetCaretBlinkTime
wsprintfA
RegisterRawInputDevices
GetRawInputData
GetRawInputDeviceList
GetRawInputDeviceInfoW
SendMessageTimeoutA
EnumWindows
SendMessageA
SetForegroundWindow
ShowWindow
IsIconic
RegisterWindowMessageA
GetUserObjectInformationA
GetThreadDesktop
GetParent
GetWindowRect
GetWindowLongA
SetWindowPos
GetClientRect
GetWindowLongPtrA
PeekMessageA
GetMessageA
DispatchMessageA
ValidateRect
LoadImageA
DialogBoxParamA
IsDlgButtonChecked
CheckDlgButton
CreateDialogParamW
EnableWindow
PeekMessageW
IsDialogMessageW
TranslateMessage
DispatchMessageW
MsgWaitForMultipleObjects
SetWindowTextW
RegisterClassW
PostQuitMessage
SetWindowLongPtrW
GetWindowLongPtrW
SetFocus
SetCursorPos
ClipCursor
ShowCursor
GetFocus
LoadCursorA
RegisterClassExW
DialogBoxParamW
EndDialog
LoadIconA
SendDlgItemMessageW
SetDlgItemTextA
CreateDialogParamA
MessageBoxA
CopyRect
OffsetRect
GetAncestor
UnregisterClassW
GetDesktopWindow
EnumDisplaySettingsA
SetWindowLongA
AdjustWindowRectEx
GetSystemMetrics
ChangeDisplaySettingsA
GetDlgItem
SetWindowLongPtrA
gdi32
SwapBuffers
GetObjectA
GetDeviceCaps
ChoosePixelFormat
SetPixelFormat
GetObjectW
GetGlyphOutlineW
AddFontMemResourceEx
CreateCompatibleDC
GetFontUnicodeRanges
SetBkMode
SetTextAlign
SetTextColor
CreateFontIndirectW
SelectObject
GetTextFaceW
EnumFontFamiliesExW
DeleteDC
DeleteObject
RemoveFontMemResourceEx
advapi32
CryptReleaseContext
CryptDestroyHash
CryptGetHashParam
CryptImportKey
CryptVerifySignatureA
CryptDestroyKey
RegDeleteValueA
GetUserNameA
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
CryptAcquireContextA
CryptCreateHash
CryptHashData
shell32
SHGetFolderPathW
ShellExecuteW
CommandLineToArgvW
ole32
CoTaskMemFree
CoTaskMemAlloc
CoSetProxyBlanket
StringFromGUID2
CoCreateGuid
CoInitialize
CoUninitialize
CoCreateInstance
version
VerQueryValueA
GetFileVersionInfoW
GetFileVersionInfoSizeW
GetFileVersionInfoA
GetFileVersionInfoSizeA
opengl32
glTexEnvf
glTexEnvi
glAlphaFunc
glBlendFunc
glDisable
glColorMask
glPolygonOffset
glCullFace
glDepthMask
glDepthFunc
glStencilMask
glStencilOp
glStencilFunc
glIsEnabled
glClear
glClearStencil
glClearDepth
glClearColor
glFrontFace
glLoadMatrixf
glMatrixMode
glMultMatrixf
glGetFloatv
glColorMaterial
glLightModeli
glMaterialf
glMaterialfv
glColor4fv
glViewport
glScissor
glTexEnvfv
glBindTexture
glDisableClientState
glTexGeni
glLightfv
glLightf
glLightModelfv
glFogfv
glFogf
glFogi
glDeleteTextures
glFinish
glVertex3f
glNormal3f
glColor4f
glTexCoord3f
glBegin
glEnd
glReadPixels
glLoadIdentity
glLightModelf
glHint
glTexParameteri
wglDeleteContext
glGenTextures
glTexImage2D
glDrawArrays
glReadBuffer
glDrawBuffer
glCopyTexSubImage2D
glPixelStorei
glTexSubImage2D
glIsTexture
wglCreateContext
glEnableClientState
glColorPointer
glVertexPointer
glNormalPointer
glTexCoordPointer
glDrawElements
glGetString
wglShareLists
glGetError
wglGetProcAddress
wglMakeCurrent
wglGetCurrentDC
wglGetCurrentContext
glEnable
glTexGenfv
glGetIntegerv
winmm
waveOutReset
waveOutGetPosition
waveInAddBuffer
waveInPrepareHeader
waveInUnprepareHeader
waveInGetDevCapsA
waveInGetDevCapsW
waveInStart
waveOutWrite
waveInClose
waveInGetNumDevs
waveInReset
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutOpen
waveOutClose
waveOutGetNumDevs
waveOutGetDevCapsW
timeBeginPeriod
timeEndPeriod
timeGetTime
waveInOpen
waveOutGetDevCapsA
ws2_32
inet_ntoa
getaddrinfo
freeaddrinfo
WSACleanup
closesocket
getsockname
connect
htons
WSAGetLastError
socket
WSAStartup
inet_addr
htonl
gethostname
shlwapi
SHDeleteKeyA
PathIsDirectoryW
PathFileExistsW
oleaut32
SysStringLen
SysAllocString
VariantChangeType
VariantClear
SysFreeString
VariantInit
imm32
ImmGetContext
ImmAssociateContext
ImmAssociateContextEx
ImmGetConversionStatus
ImmGetCompositionStringW
ImmSetOpenStatus
ImmReleaseContext
ImmSetCompositionStringW
dnsapi
DnsQuery_A
DnsFree
iphlpapi
GetIpAddrTable
hid
HidP_GetData
HidD_GetPreparsedData
HidD_GetProductString
HidP_GetCaps
HidP_GetButtonCaps
HidP_GetValueCaps
HidP_MaxDataListLength
HidD_FreePreparsedData
HidD_GetHidGuid
wsock32
WSAAsyncGetHostByName
WSACancelAsyncRequest
gethostbyname
gethostbyaddr
inet_ntoa
select
__WSAFDIsSet
listen
accept
recvfrom
sendto
WSASetLastError
setsockopt
getpeername
bind
ntohs
send
recv
getsockopt
msacm32
acmStreamSize
acmStreamPrepareHeader
acmStreamConvert
acmStreamUnprepareHeader
acmFormatSuggest
acmStreamOpen
Exports
Exports
Sections
.text Size: 7.8MB - Virtual size: 7.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 169KB - Virtual size: 762KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 426KB - Virtual size: 426KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.trace Size: 27KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 348KB - Virtual size: 347KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ