Static task
static1
General
-
Target
Club Valentine.exe
-
Size
4.6MB
-
MD5
e59f8e25bc54c561aa69c9a65dbb6789
-
SHA1
4abbccf3c83ae6bf58c3f3cd726b466711d8534a
-
SHA256
d87a7bbfd401c018d7633097f84584d5441bf1a7678318df27d7378fef3c3532
-
SHA512
06ef6f158d97663c5b140cc49e8c6f5c64693906fd0885103c8fb5a8bf609bef167c5642fb39cd8e52a68ee82b1fca6b43968de33ffb0204e34bff8e236bc973
-
SSDEEP
98304:IHmQMYRrLLZuSyijPj0zR+agxStizWbKZDvOOFbPdmuY4HMcKOJjw:iLLZuSyijPj0zR+agxStipZjjFJ34Os
Malware Config
Signatures
Files
-
Club Valentine.exe.exe windows x86
6102803851b6f0b884c17d5efc2f1856
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
Imports
wininet
InternetConnectA
InternetCloseHandle
InternetOpenA
InternetCanonicalizeUrlA
InternetReadFile
InternetWriteFile
HttpOpenRequestA
HttpSendRequestA
HttpEndRequestW
HttpQueryInfoA
InternetGetConnectedState
InternetCrackUrlA
dxgi
CreateDXGIFactory1
d3d11
D3D11CreateDevice
dbghelp
SymFromAddr
MiniDumpWriteDump
SymInitialize
winmm
waveInUnprepareHeader
mciGetErrorStringA
joyGetPosEx
joyGetPos
joyGetDevCapsA
timeGetTime
waveInGetNumDevs
waveInGetDevCapsW
waveInOpen
waveInClose
waveInPrepareHeader
waveInAddBuffer
waveInStart
waveInStop
waveInReset
mciSendStringA
ws2_32
accept
select
getpeername
__WSAFDIsSet
bind
WSACleanup
htons
htonl
closesocket
connect
ioctlsocket
getsockopt
inet_addr
WSAStartup
inet_ntoa
listen
recv
recvfrom
send
sendto
setsockopt
shutdown
socket
gethostname
ntohs
freeaddrinfo
getaddrinfo
WSAAddressToStringA
WSAGetLastError
ntohl
gdiplus
GdiplusStartup
GdiplusShutdown
comctl32
InitCommonControlsEx
version
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
kernel32
FindNextFileA
FindFirstFileExA
HeapReAlloc
GetTimeZoneInformation
MoveFileExW
GetFullPathNameA
SetCurrentDirectoryW
SetFilePointerEx
SetStdHandle
ReadConsoleW
GetConsoleMode
GetConsoleCP
FlushFileBuffers
EnumSystemLocalesW
IsValidLocale
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
DecodePointer
EncodePointer
GetStringTypeW
GetACP
WriteFile
GetStdHandle
GetModuleFileNameA
GetTempPathW
FindFirstFileExW
ReadFile
SetFileAttributesW
GetFileAttributesExW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
GetDriveTypeW
GetModuleHandleExW
HeapWalk
HeapValidate
SetLastError
RtlUnwind
LoadLibraryExW
InterlockedFlushSList
InterlockedPushEntrySList
VirtualQuery
GetProcessHeap
HeapFree
HeapAlloc
InitializeSListHead
GetSystemTimeAsFileTime
RaiseException
GetStartupInfoW
IsDebuggerPresent
TerminateProcess
UnhandledExceptionFilter
IsProcessorFeaturePresent
IsValidCodePage
GetOEMCP
InitializeCriticalSectionAndSpinCount
RtlCaptureStackBackTrace
GetCPInfo
GetCommandLineA
GetProcAddress
LoadLibraryW
GetEnvironmentStringsW
MultiByteToWideChar
GetConsoleWindow
GetLastError
GetCurrentDirectoryW
DeleteFileW
GetFullPathNameW
CloseHandle
CreateThread
GetExitCodeThread
GetModuleHandleW
LocalFree
FormatMessageW
Sleep
SetCurrentDirectoryA
GetCurrentDirectoryA
FreeLibrary
GetEnvironmentVariableW
CreateDirectoryW
FindClose
FindFirstFileW
FindNextFileW
GetFileAttributesW
RemoveDirectoryW
GetExitCodeProcess
CreateProcessW
QueryPerformanceCounter
QueryPerformanceFrequency
WaitForSingleObject
SetWaitableTimer
GetTickCount
CreateWaitableTimerW
GetCurrentProcess
GetCurrentThread
SetThreadPriority
SetPriorityClass
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalMemoryStatusEx
GetSystemInfo
GetVersionExW
GetLocaleInfoW
GetUserDefaultLCID
ExitProcess
lstrlenA
GetCommandLineW
ExpandEnvironmentStringsW
CreateFileW
SetUnhandledExceptionFilter
SetErrorMode
GetCurrentProcessId
GetCurrentThreadId
GetModuleFileNameW
MoveFileA
IsBadWritePtr
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
ExitThread
LoadLibraryA
SetEvent
WaitForSingleObjectEx
CreateEventW
FreeEnvironmentStringsW
SetEnvironmentVariableA
SetEnvironmentVariableW
SetConsoleCtrlHandler
OutputDebugStringA
OutputDebugStringW
WriteConsoleW
SetEndOfFile
WideCharToMultiByte
HeapSize
user32
SetCapture
ReleaseCapture
GetSystemMetrics
SetForegroundWindow
GetClientRect
GetWindowRect
AdjustWindowRectEx
SetCursor
CallNextHookEx
LoadCursorW
LoadImageW
CreateDialogParamW
DialogBoxParamW
EndDialog
GetDlgItem
SetDlgItemTextW
GetDlgItemTextW
DrawTextW
GetDC
ReleaseDC
SetWindowTextW
ScreenToClient
MoveWindow
SetCursorPos
ClientToScreen
MapWindowPoints
GetCursorPos
wsprintfW
GetActiveWindow
GetMessageW
TranslateMessage
GetKeyState
GetAsyncKeyState
keybd_event
OpenClipboard
CloseClipboard
SetClipboardData
GetClipboardData
EmptyClipboard
IsClipboardFormatAvailable
GetFocus
SetWindowTextA
MessageBoxA
SetDlgItemTextA
PeekMessageW
IsDialogMessageW
SetProcessDPIAware
GetForegroundWindow
PostThreadMessageW
UpdateWindow
SetWindowLongW
ChangeDisplaySettingsW
EnumDisplaySettingsW
ShowWindow
DestroyWindow
CreateWindowExW
RegisterClassExW
DefWindowProcW
PostMessageW
SendMessageW
MessageBoxW
GetRawInputDeviceList
GetRawInputDeviceInfoA
SetFocus
BringWindowToTop
DispatchMessageW
SetWindowPos
gdi32
GetDeviceCaps
SelectObject
CreateFontA
DeleteObject
comdlg32
GetSaveFileNameW
GetOpenFileNameW
advapi32
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
shell32
SHGetFolderPathW
SHGetSpecialFolderPathA
ShellExecuteW
dwmapi
DwmGetCompositionTimingInfo
Sections
.text Size: 2.9MB - Virtual size: 2.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 973KB - Virtual size: 973KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 558KB - Virtual size: 3.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.mydata Size: 512B - Virtual size: 8B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.gfids Size: 512B - Virtual size: 372B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 186KB - Virtual size: 186KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ