fabric-installer-0[.]10[.]2[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

fabric-installer-0.10.2.exe
Size

455KB
MD5

542f292400579a171ac5bc10385d178c
SHA1

1154d2f36ecfbd0a57c4b08c61b7c27d00402e94
SHA256

da1f033a16381a3888c30846f6a91e2e663ca165add5c09e8f3cbd0d189a3284
SHA512

d3ba3c674ac99f4f3e62db74cc189e78dd2291938d20d7733fcf6a61351f38e33b2e6f5d4c0a9115800ec24e155edd667d70d05a6a3c80720fc354817f123fbc
SSDEEP

6144:OijIf0fdXQr3fXV8Dd73lOkoJ3tj0XpSYLLkOqSwVEPKIXnuerqh4syabpAyRo:OatADfXV2x/SfOhPKu0fu

Score

1^/10

Malware Config

Signatures

Files

fabric-installer-0.10.2.exe
.exe windows x86

9cc1bacc33b0c0cbf937714a341d05a3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapSize
LCMapStringW
GetLastError
LoadLibraryA
GetProcAddress
FreeLibrary
GetProcessHeap
HeapFree
CompareStringW
HeapAlloc
WaitForSingleObject
FormatMessageW
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeCriticalSection
LeaveCriticalSection
FreeEnvironmentStringsW
FindClose
ReleaseMutex
ReleaseSRWLockShared
CompareStringOrdinal
TlsSetValue
GetCurrentProcess
GetCurrentThread
RtlCaptureContext
SetLastError
GetCurrentDirectoryW
GetEnvironmentStringsW
GetEnvironmentVariableW
SetEnvironmentVariableW
GetConsoleOutputCP
GetCommandLineW
WriteFile
FlushFileBuffers
DuplicateHandle
SetFilePointerEx
EnterCriticalSection
GetStringTypeW
GetFileType
SetStdHandle
WideCharToMultiByte
MultiByteToWideChar
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindFirstFileExW
GetCommandLineA
GetStdHandle
GetExitCodeProcess
TerminateProcess
GetCurrentProcessId
TryEnterCriticalSection
GetModuleHandleExW
QueryPerformanceCounter
GetSystemTimeAsFileTime
TlsAlloc
HeapReAlloc
AcquireSRWLockShared
AddVectoredExceptionHandler
SetThreadStackGuarantee
WaitForSingleObjectEx
CreateMutexA
TlsGetValue
LoadLibraryExW
TlsFree
InitializeCriticalSectionAndSpinCount
EncodePointer
FindNextFileW
CreateFileW
GetFileInformationByHandle
DeviceIoControl
DeleteCriticalSection
RaiseException
RtlUnwind
IsProcessorFeaturePresent
GetModuleHandleW
GetModuleFileNameW
ExitProcess
CreateProcessW
CreateNamedPipeW
GetModuleHandleA
GetConsoleMode
WriteConsoleW
GetStartupInfoW
CloseHandle
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
InitializeSListHead
GetCurrentThreadId
DecodePointer

advapi32

RegGetValueW
SystemFunction036

user32

MessageBoxW

shell32

ShellExecuteW

ws2_32

WSACleanup

Sections

.text
Size: 199KB - Virtual size: 198KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9cc1bacc33b0c0cbf937714a341d05a3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

user32

shell32

ws2_32

Sections

.text Size: 199KB - Virtual size: 198KB

.rdata Size: 49KB - Virtual size: 48KB

.data Size: 2KB - Virtual size: 5KB

.rsrc Size: 23KB - Virtual size: 23KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 199KB - Virtual size: 198KB

.rdata
Size: 49KB - Virtual size: 48KB

.data
Size: 2KB - Virtual size: 5KB

.rsrc
Size: 23KB - Virtual size: 23KB

.reloc
Size: 9KB - Virtual size: 9KB