Static task
static1
General
-
Target
RMX7.exe
-
Size
4.0MB
-
MD5
d14889f27bffbadfae1d370d7dc40cc4
-
SHA1
25bdbf40ba2f26147bb5654ed3d6be9c45eacf7c
-
SHA256
261a14e6e55810de4faf962127e62b6f9516dde34df6ce6f03bdf6b86b32d7fa
-
SHA512
54878f847ef90abd1227a89b12f4185bf7f3369b4ac1f128a7e3311191cfb9c4f8d080627db7490ac0288224a900c24bb941bc95eb572a12f39e41fe069e8af8
-
SSDEEP
49152:EWCY4LZ6w2IsZ75L4HbvYol6haqGxO0npJJjTjKjCa:EWiU46hapx5Jjyj9
Malware Config
Signatures
Files
-
RMX7.exe.exe windows x86
e9041e256646dcd59f67c1bdff1e7164
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
dsound
ord11
dinput8
DirectInput8Create
d3d8
Direct3DCreate8
winmm
timeEndPeriod
timeBeginPeriod
timeKillEvent
mmioClose
mmioOpenA
mmioAscend
mmioRead
mmioDescend
mmioGetInfo
mmioSeek
mmioSetInfo
mmioAdvance
timeGetTime
timeSetEvent
kernel32
HeapCreate
HeapDestroy
CloseHandle
CreateEventA
ResetEvent
WaitForSingleObject
SetEvent
SetThreadPriority
CreateThread
GetCurrentThreadId
TerminateThread
SuspendThread
ResumeThread
CreateSemaphoreA
ReleaseSemaphore
OutputDebugStringA
LocalFree
FormatMessageA
CreateFileA
SetFilePointer
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetCurrentDirectoryA
GetCurrentDirectoryA
GetDiskFreeSpaceA
GetTickCount
GetDriveTypeA
lstrcatA
lstrcpyA
GetModuleHandleA
MulDiv
Sleep
QueryPerformanceCounter
QueryPerformanceFrequency
MultiByteToWideChar
WideCharToMultiByte
GetLastError
LocalReAlloc
LocalAlloc
GetFileSize
ReadFile
WriteFile
IsBadWritePtr
InterlockedExchange
GetVersionExA
GetACP
GetLocaleInfoA
GetThreadLocale
lstrlenA
GetCurrentProcessId
IsProcessorFeaturePresent
LoadLibraryA
GetProcAddress
MapViewOfFile
CreateFileMappingA
CreateFileW
UnmapViewOfFile
HeapFree
InterlockedIncrement
InterlockedDecrement
GetSystemInfo
VirtualFree
GetCurrentProcess
VirtualAlloc
FreeLibrary
GetThreadPriority
GetCurrentThread
VirtualQuery
VirtualProtect
SetEndOfFile
GetStdHandle
SetHandleCount
SetStdHandle
HeapSize
GetModuleFileNameA
GetSystemTimeAsFileTime
RaiseException
TlsGetValue
TlsSetValue
TlsFree
SetLastError
TlsAlloc
GetCommandLineA
GetStartupInfoA
HeapReAlloc
TerminateProcess
HeapAlloc
SetEnvironmentVariableA
CreateDirectoryA
DeleteFileA
GetFileType
FlushFileBuffers
ExitProcess
RtlUnwind
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetOEMCP
LCMapStringA
LCMapStringW
WaitForMultipleObjects
user32
GetQueueStatus
PostThreadMessageA
DrawTextA
ClientToScreen
GetSystemMetrics
MsgWaitForMultipleObjects
GetIconInfo
GetDC
ReleaseDC
LoadAcceleratorsA
PeekMessageA
GetMessageA
wvsprintfA
TranslateMessage
DispatchMessageA
wsprintfA
GetClientRect
GetWindowRect
GetWindowLongA
CreateWindowExA
AdjustWindowRect
SetRect
RegisterClassA
LoadCursorA
LoadIconA
RegisterWindowMessageA
TranslateAcceleratorA
MessageBoxA
ShowWindow
FindWindowA
DefWindowProcA
SetWindowLongA
SetWindowPos
GetClassLongA
ClipCursor
SetCursor
GetCursorPos
ScreenToClient
LoadMenuA
TrackPopupMenuEx
SendMessageA
GetMenu
DestroyMenu
DestroyWindow
PostQuitMessage
GetSubMenu
gdi32
SetTextColor
SelectObject
CreateFontA
GetDeviceCaps
SetBkColor
CreateDIBSection
CreateCompatibleDC
GetDIBits
GetObjectA
SetTextAlign
GetTextExtentPoint32A
ExtTextOutA
DeleteObject
DeleteDC
SetMapMode
GetStockObject
advapi32
RegQueryValueExA
RegOpenKeyA
RegCloseKey
ole32
GetRunningObjectTable
CoCreateInstance
CoFreeUnusedLibraries
CoTaskMemFree
CoTaskMemAlloc
CreateItemMoniker
CoUninitialize
CoInitialize
Sections
.text Size: 3.1MB - Virtual size: 3.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 100KB - Virtual size: 98KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 776KB - Virtual size: 13.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data1 Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 20KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ