Newyear[.]exe | Triage

Resubmissions

04/01/2023, 15:08

230104-sh7vmage72 1

04/01/2023, 14:56

230104-sbev9sbh4s 8

Sharing

Copy URL Twitter E-mail

General

Target

Newyear.exe
Size

216KB
MD5

0ef7b8cc3ae01610e71ac9de6e2416a5
SHA1

bc5428939a3bcc6e486f45a3bc054426ef2fd451
SHA256

af7c92df9c743a868fee18a974cd27910baeb06444096975be7a3fe2a4947906
SHA512

ff943342af1fc8708166457e7e69a6a6bd972fc1abb54c3e24a3a03dbf319b2b1390c265c125e541de4dc4fde5eb4a9fcc8339fe26ec004185ccba71ffa8dddb
SSDEEP

3072:EDwBYq7nk32jx/E2Fxo75DrcC5IFHkyCfMo1rJ56pUAasE26bGEKKRbaWVtUrLVk:awB3rNy2FqebCfMW56iPp2HcdUr

Score

N/A

Malware Config

Signatures

Files

Newyear.exe
.exe windows x86

b117038e27a1d580a777490edf5f8600

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetForegroundWindow
PostQuitMessage
GetWindow
GetWindowLongA
GetParent
FillRect
SetFocus
SendDlgItemMessageA
GetDlgItem
SetDlgItemTextA
GetDlgItemTextA
UnionRect
GetClassNameA
EqualRect
UpdateWindow
IsRectEmpty
GetUpdateRect
IsWindowVisible
EnumWindows
SetCursor
KillTimer
GetDesktopWindow
MessageBoxA
BeginPaint
SetClassWord
DefWindowProcA
EndDialog
GetClientRect
MoveWindow
DialogBoxParamA
LoadIconA
RegisterClassA
GetMessageA
TranslateMessage
DispatchMessageA
SetWindowPos
CreateWindowExA
IntersectRect
DestroyWindow
IsWindow
GetDC
ReleaseDC
CopyRect
SetRectEmpty
OffsetRect
SetRect
PostMessageA
SetWindowLongA
GetAsyncKeyState
DestroyCursor
GetCursorPos
EndPaint
LoadCursorA
InvalidateRect
PtInRect
SetTimer
GetWindowRect
FindWindowA

gdi32

BitBlt
CreateRectRgnIndirect
SetRectRgn
SelectClipRgn
CreateSolidBrush
DeleteObject
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
SelectPalette
GetObjectA
RealizePalette
SetMapMode
GetMapMode
SetBkColor
GetPixel
SetTextColor
CreateBitmap
TextOutA
GetTextExtentPoint32A
SetBkMode
GetStockObject
CreatePalette
CreateFontIndirectA
GetDeviceCaps
CreateDIBitmap
DeleteDC

winmm

mciSendCommandA

kernel32

VirtualFree
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
VirtualAlloc
HeapReAlloc
GetCPInfo
GetACP
GetOEMCP
HeapCreate
WriteFile
GetLastError
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GlobalFree
GlobalUnlock
GlobalLock
MulDiv
GetProcAddress
LoadLibraryA
HeapDestroy
GetEnvironmentStringsW
FindResourceA
GetTickCount
GlobalAlloc
WinExec
LocalFree
LocalUnlock
LocalLock
LocalAlloc
_lclose
GlobalReAlloc
OpenFile
GetTempFileNameA
GetTempPathA
MapViewOfFile
CreateFileMappingA
GetFileSize
CreateFileA
CloseHandle
UnmapViewOfFile
ReadFile
GetFileType
GetStdHandle
SetHandleCount
WideCharToMultiByte
GetEnvironmentStrings
SetFilePointer
FlushFileBuffers
GetModuleFileNameA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
TerminateProcess
UnhandledExceptionFilter
GetCurrentProcess
ExitProcess
HeapAlloc
HeapFree
GetStartupInfoA
GetVersion
GetCommandLineA
GetModuleHandleA
RtlUnwind
LoadResource
SizeofResource
FreeResource
LockResource
SetStdHandle
DeleteFileA
HeapSize
SetEndOfFile

comdlg32

GetSaveFileNameA

shell32

ShellExecuteA

Sections

.text
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

b117038e27a1d580a777490edf5f8600

Headers

File Characteristics

Imports

user32

gdi32

winmm

kernel32

comdlg32

shell32

Sections

.text Size: 76KB - Virtual size: 73KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 12KB - Virtual size: 15KB

.rsrc Size: 116KB - Virtual size: 113KB

.text
Size: 76KB - Virtual size: 73KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 12KB - Virtual size: 15KB

.rsrc
Size: 116KB - Virtual size: 113KB