FuzzBoobs DE P1 1[.]1[.]2[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

FuzzBoobs DE P1 1.1.2.exe
Size

243.1MB
MD5

36bd8983acd0345533a0536a9a62531a
SHA1

c63dfcc493faa758f428b9a1ad19fa93e3b94078
SHA256

db5da10bf2551030c61d259575228612b9e7bb9448f9bfc62162f1772862eda7
SHA512

ff4b75e8e251bbffdb9acf3bb25dd1706d714acae3a6af31464bbddfc799582180b02c17b873ab1f8ca99c3f64fca1459853f46a9f29f0785cb746890a9c267b
SSDEEP

1572864:PRQv6yyXxdfnVgXAqRn+RplK0izBnEcFLV:pQCyE3gwq6izBnEUV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
FuzzBoobs DE P1 1.1.2.exe

Files

FuzzBoobs DE P1 1.1.2.exe
.exe windows:6 windows x64 arch:x64

dbae4fae154059377d5312caa1fadd99

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

winmm

timeBeginPeriod
timeEndPeriod
midiInGetNumDevs
midiInGetDevCapsA
midiInGetErrorTextA
midiInOpen
midiInClose
midiInStart
midiInStop
midiInGetID

kernel32

LoadLibraryW
GlobalSize
GlobalUnlock
GlobalLock
PowerCreateRequest
PowerSetRequest
PowerClearRequest
SetThreadPriority
LCIDToLocaleName
GetLocaleInfoEx
LoadLibraryA
GetLocaleInfoW
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
HeapSize
SetLastError
SetPriorityClass
GetCurrentThreadId
CompareStringOrdinal
WriteConsoleW
GetFullPathNameW
SetFilePointerEx
GetFileSizeEx
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
HeapReAlloc
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
LCMapStringW
CompareStringW
GetCommandLineA
WriteFile
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileInformationByHandle
GetDriveTypeW
MoveFileExW
RemoveDirectoryW
FreeLibraryAndExitThread
ExitThread
CreateThread
GetModuleHandleExW
ExitProcess
GetFileType
SetStdHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
RtlUnwind
RtlUnwindEx
RaiseException
InterlockedPushEntrySList
RtlPcToFileHeader
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetStringTypeW
LCMapStringEx
DecodePointer
EncodePointer
GetModuleHandleW
InitOnceComplete
InitOnceBeginInitialize
AcquireSRWLockShared
ReleaseSRWLockShared
SleepConditionVariableSRW
SleepConditionVariableCS
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
GetNativeSystemInfo
OutputDebugStringA
K32GetPerformanceInfo
SetConsoleCtrlHandler
ReadConsoleW
SetConsoleMode
AttachConsole
GetUserDefaultUILanguage
MultiByteToWideChar
GetTimeZoneInformation
SystemTimeToFileTime
FormatMessageW
LoadLibraryExW
GetProcAddress
GetModuleHandleA
GetModuleFileNameW
FreeLibrary
GetLocalTime
GetSystemTimeAsFileTime
GetSystemTime
OpenProcess
CreateProcessW
GetExitCodeProcess
GetExitCodeThread
WaitForSingleObjectEx
TryEnterCriticalSection
InitializeCriticalSectionEx
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
TerminateProcess
GetCurrentProcessId
GetCurrentProcess
Sleep
WaitForSingleObject
QueryPerformanceFrequency
QueryPerformanceCounter
CreatePipe
GetLastError
SetHandleInformation
CloseHandle
ReadFile
InitializeSRWLock
GetCurrentThread
SetEndOfFile
FreeEnvironmentStringsW
FindFirstFileW
FindClose
CompareFileTime
SetEnvironmentVariableW
GetEnvironmentVariableW
GetStdHandle
WideCharToMultiByte
LocalFree
GlobalAlloc
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
GetCommandLineW
GetACP
FindNextFileW
HeapAlloc
HeapFree
GetProcessHeap
GetTickCount64
SetCurrentDirectoryW
GetCurrentDirectoryW
CreateDirectoryW
CreateFileW
DeleteFileW
FindFirstFileExW
GetDiskFreeSpaceExA
GetFileAttributesW
GetLogicalDrives
GetTempFileNameW
GetVolumeInformationW
ReplaceFileW
SetFileAttributesW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection

ole32

PropVariantClear
CoUninitialize
CoTaskMemFree
CoCreateInstance
CoInitializeEx

oleaut32

SysFreeString
VariantInit
SysAllocString

user32

ActivateKeyboardLayout
MessageBoxW
GetKeyboardLayoutList
ToUnicodeEx
GetKeyboardLayout
GetRawInputDeviceList
GetRawInputDeviceInfoA
RegisterRawInputDevices
GetRawInputData
EnumDisplayMonitors
GetMonitorInfoW
GetMonitorInfoA
MonitorFromWindow
SystemParametersInfoA
EnumDisplaySettingsW
CreateIconIndirect
CreateIconFromResource
DestroyIcon
LoadIconA
LoadCursorA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
SetWindowLongPtrA
GetWindowLongPtrA
OffsetRect
FillRect
ClipCursor
WindowFromPoint
ScreenToClient
ClientToScreen
SetCaretPos
DestroyCaret
CreateCaret
GetCursorPos
SetCursor
SetCursorPos
AdjustWindowRectEx
GetWindowRect
GetClientRect
SetWindowTextW
SetWindowRgn
GetUpdateRect
ReleaseDC
GetWindowDC
GetDCEx
GetDC
AllowSetForegroundWindow
SetForegroundWindow
GetForegroundWindow
GetSystemMetrics
KillTimer
SetTimer
ReleaseCapture
SetCapture
MapVirtualKeyExA
MapVirtualKeyA
RegisterTouchWindow
CloseTouchInputHandle
GetTouchInputInfo
GetKeyState
SetFocus
IsClipboardFormatAvailable
EmptyClipboard
RegisterClipboardFormatA
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
IsZoomed
IsIconic
IsWindowVisible
SetWindowPos
MoveWindow
FlashWindowEx
ShowWindow
DestroyWindow
IsWindow
CreateWindowExW
RegisterClassExW
CallWindowProcW
DefWindowProcW
SendMessageW
SendMessageA
GetMessageExtraInfo
PeekMessageW
DispatchMessageW
TranslateMessage
TrackMouseEvent

gdi32

CreateCompatibleDC
CreateBitmap
BitBlt
CreateCompatibleBitmap
CreatePen
CreateRectRgn
SwapBuffers
SetPixelFormat
ChoosePixelFormat
CreatePolygonRgn
CreateDIBSection
SelectObject
Rectangle
GetTextExtentPoint32W
GetStockObject
GetPixel
GetDIBits
GetDeviceCaps
DeleteObject
DeleteDC
CreateSolidBrush

shell32

ShellExecuteW
SHFileOperationW
SHGetKnownFolderPath
CommandLineToArgvW
DragQueryFileW
SHCreateItemFromParsingName
DragAcceptFiles

advapi32

GetCurrentHwProfileA
RegCloseKey
RegOpenKeyExW
RegQueryValueExW

dinput8

DirectInput8Create

imm32

ImmReleaseContext
ImmAssociateContext
ImmGetCompositionStringW
ImmSetCompositionWindow
ImmSetCandidateWindow
ImmGetContext

bcrypt

BCryptGenRandom

crypt32

CryptBinaryToStringA
CertCloseStore
CertEnumCertificatesInStore
CertGetCertificateContextProperty
CertOpenSystemStoreA

avrt

AvSetMmThreadCharacteristicsW
AvSetMmThreadPriority

dwmapi

DwmGetWindowAttribute
DwmSetWindowAttribute
DwmEnableBlurBehindWindow

dwrite

DWriteCreateFactory

iphlpapi

GetAdaptersAddresses
GetBestInterfaceEx

wsock32

WSAStartup
WSACleanup
listen
recvfrom
htonl
htons
ntohl
ntohs
closesocket
getsockname
send
bind
ioctlsocket
sendto
setsockopt
inet_ntoa
WSAGetLastError
connect
recv
select
__WSAFDIsSet
accept
socket

ws2_32

inet_pton
WSAConnect
getnameinfo
getaddrinfo
freeaddrinfo

ntdll

NtQueryInformationFile

Exports

Exports

AmdPowerXpressRequestHighPerformance
NvOptimusEnablement

Sections

.text
Size: 32.8MB - Virtual size: 32.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9.6MB - Virtual size: 9.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 777KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

pck
Size: 198.4MB - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 1024B - Virtual size: 548B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 247KB - Virtual size: 247KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dbae4fae154059377d5312caa1fadd99

Headers

DLL Characteristics

File Characteristics

Imports

winmm

kernel32

ole32

oleaut32

user32

gdi32

shell32

advapi32

dinput8

imm32

bcrypt

crypt32

avrt

dwmapi

dwrite

iphlpapi

wsock32

ws2_32

ntdll

Exports

Exports

Sections

.text Size: 32.8MB - Virtual size: 32.8MB

.rdata Size: 9.6MB - Virtual size: 9.6MB

.data Size: 777KB - Virtual size: 2.4MB

.pdata Size: 1.1MB - Virtual size: 1.1MB

pck Size: 198.4MB - Virtual size: 8B

_RDATA Size: 1024B - Virtual size: 548B

.rsrc Size: 71KB - Virtual size: 71KB

.reloc Size: 247KB - Virtual size: 247KB

.text
Size: 32.8MB - Virtual size: 32.8MB

.rdata
Size: 9.6MB - Virtual size: 9.6MB

.data
Size: 777KB - Virtual size: 2.4MB

.pdata
Size: 1.1MB - Virtual size: 1.1MB

pck
Size: 198.4MB - Virtual size: 8B

_RDATA
Size: 1024B - Virtual size: 548B

.rsrc
Size: 71KB - Virtual size: 71KB

.reloc
Size: 247KB - Virtual size: 247KB