Static task
static1
General
-
Target
RPGVXAce.EXE
-
Size
6.5MB
-
MD5
f42e453f5eb575b6502d8c8b4a7084a5
-
SHA1
5ff4b01c62cbe378312f7aa2abfc68420b8c8eac
-
SHA256
14b37b93b238059773cb0614beaea18f3d0eb6d9b9b6a919cb46fc256051e1be
-
SHA512
a7be3a5e67d8be87cbc20226577fb440b34182caa945afd01b34b999c62dc6b9eb2779f46c6628bba481c0446a06abee993f299db8d1436815e739ace7abe823
-
SSDEEP
196608:uBkoqoaK+vv/v/vtENdr7hctpSFOI5Y3MsybDPsV5:u+oqof+vv/v/viNdr7h/P
Malware Config
Signatures
Files
-
RPGVXAce.EXE.exe windows x86
1fff382c75f34267e1856895cc35e58f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegCreateKeyW
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExW
RegDeleteKeyW
CryptDestroyHash
CryptGetHashParam
CryptHashData
CryptCreateHash
CryptReleaseContext
CryptGenRandom
CryptAcquireContextA
RegEnumValueW
RegEnumKeyExW
RegQueryInfoKeyW
RegQueryValueExW
RegEnumKeyW
RegOpenKeyW
RegQueryValueW
GetFileSecurityW
SetFileSecurityW
RegSetValueW
RegDeleteValueW
comctl32
_TrackMouseEvent
ImageList_AddMasked
ImageList_Draw
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_GetIcon
ImageList_DrawEx
ImageList_Create
ImageList_GetImageCount
comdlg32
GetFileTitleW
gdi32
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
LineTo
MoveToEx
SetTextAlign
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutW
Escape
SaveDC
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
SelectPalette
GetObjectType
CopyMetaFileW
GetDCOrgEx
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
LPtoDP
GetBkColor
SetViewportOrgEx
GetClipBox
GetFontData
GetGlyphOutlineW
ExtFloodFill
Ellipse
SetPixel
Rectangle
CreateHatchBrush
CreateBrushIndirect
CreateEllipticRgn
CreateDIBSection
GetWindowOrgEx
CreateRoundRectRgn
Polygon
CreateRectRgnIndirect
GetTextMetricsW
GetPixel
GetStockObject
DeleteDC
CreateSolidBrush
CreateBitmap
CreatePatternBrush
GetTextColor
CreatePolygonRgn
Polyline
EnumFontFamiliesW
GetTextCharsetInfo
CreateDIBitmap
RealizePalette
OffsetRgn
GetPaletteEntries
CreatePalette
FrameRgn
FillRgn
SetDIBColorTable
PtInRegion
GetBoundsRect
GetNearestPaletteIndex
GetSystemPaletteEntries
SetPaletteEntries
SetPixelV
EnumFontFamiliesExW
GdiFlush
GetViewportOrgEx
GetTextFaceW
UnrealizeObject
SelectObject
SetTextColor
PatBlt
DeleteObject
SetBkColor
ExtTextOutW
CreatePen
RoundRect
SetBrushOrgEx
GetTextExtentPoint32W
StretchBlt
CreateCompatibleDC
GetRgnBox
CreateCompatibleBitmap
GetObjectW
CreateFontIndirectW
AddFontResourceExW
GetDeviceCaps
CreateDCW
BitBlt
kernel32
SetEnvironmentVariableA
GetDriveTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetTimeZoneInformation
GetStringTypeW
GetStringTypeA
GetCurrentDirectoryA
PeekNamedPipe
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
CreateFileA
InitializeCriticalSectionAndSpinCount
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetSystemTimeAsFileTime
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
GetStartupInfoA
GetFileType
LockResource
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
HeapSize
HeapReAlloc
CreateThread
ExitThread
GetDriveTypeW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetConsoleMode
GetConsoleCP
RaiseException
ExitProcess
RtlUnwind
GetStartupInfoW
GetFileSizeEx
LocalFileTimeToFileTime
GetFileAttributesExW
GetSystemInfo
FindResourceExW
GetProfileIntW
ExpandEnvironmentStringsA
SearchPathW
GetDateFormatW
GetTimeFormatW
lstrcpyW
SetErrorMode
SystemTimeToFileTime
FileTimeToSystemTime
TlsFree
LocalReAlloc
TlsSetValue
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GlobalFlags
GlobalGetAtomNameW
lstrlen
GetDiskFreeSpaceW
GetFileTime
SetFileTime
GetShortPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiW
GetThreadLocale
GetStringTypeExW
MoveFileW
GlobalSize
FormatMessageW
LocalFree
GetModuleHandleA
GlobalFindAtomW
CompareStringW
LoadLibraryA
GetVersionExA
FreeResource
InterlockedDecrement
GetPrivateProfileIntW
lstrlenW
GetCurrentProcessId
GlobalAddAtomW
CreateEventW
SetEvent
SetThreadPriority
GlobalDeleteAtom
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmp
GetLocaleInfoW
LoadLibraryExW
CompareStringA
lstrcmpW
TlsAlloc
lstrcpynW
WaitForSingleObject
GetExitCodeProcess
CreateProcessW
CopyFileW
SetFileAttributesW
FindFirstFileW
FindNextFileW
FindClose
VirtualAlloc
SuspendThread
GetThreadContext
SetThreadContext
FlushInstructionCache
ResumeThread
VirtualProtect
InterlockedCompareExchange
VirtualQuery
GetCurrentThread
HeapFree
GetProcessHeap
HeapAlloc
GetVersion
GetFileInformationByHandle
FileTimeToLocalFileTime
FileTimeToDosDateTime
CreateFileW
GetFileSize
CloseHandle
FreeLibrary
GetCurrentThreadId
InterlockedIncrement
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetTempPathW
GetTempFileNameW
SetLastError
MulDiv
Sleep
GlobalAlloc
CreateMutexW
GlobalLock
GlobalUnlock
GlobalFree
GetCurrentDirectoryW
WritePrivateProfileStringW
SetCurrentDirectoryW
DeleteFileW
GetPrivateProfileStringW
CreateDirectoryW
GetLocalTime
GetModuleHandleW
GetProcAddress
GetCurrentProcess
MultiByteToWideChar
LoadResource
LockResource
SizeofResource
FindResourceW
WideCharToMultiByte
GetVersionExW
GetSystemDirectoryW
SleepEx
LoadLibraryW
InterlockedExchange
GetLastError
GetModuleFileNameW
IsDebuggerPresent
GetLongPathNameW
GetFullPathNameW
GetFileAttributesW
msimg32
GradientFill
oleaut32
LoadTypeLib
VarBstrFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysStringByteLen
SysAllocStringByteLen
SysFreeString
SysStringLen
SysAllocString
VarUdateFromDate
OleCreateFontIndirect
shell32
ShellExecuteW
ExtractIconW
DragQueryFileW
DragFinish
SHGetFileInfoW
SHGetMalloc
SHBrowseForFolderW
SHFileOperationW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
DragAcceptFiles
SHAppBarMessage
shlwapi
PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
ColorAdjustLuma
PathRemoveFileSpecW
user32
CheckDlgButton
IsWindowEnabled
ShowOwnedPopups
SetWindowsHookExW
CallNextHookEx
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
GetMenuState
PostQuitMessage
GetActiveWindow
SetActiveWindow
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
WaitForInputIdle
GetClassInfoW
DefWindowProcW
WindowFromPoint
FindWindowExW
AnimateWindow
GetNextDlgGroupItem
LoadCursorW
SetCursor
GetScrollBarInfo
LoadBitmapW
SetWindowRgn
IsRectEmpty
AdjustWindowRectEx
RegisterClassW
UnionRect
GetClassInfoExW
CreateWindowExW
GetMenuItemID
SetMenu
GetWindow
SetScrollRange
SetScrollPos
SetScrollInfo
GetScrollRange
GetScrollPos
SetWindowPos
EnableScrollBar
GetScrollInfo
ScreenToClient
GetMessagePos
KillTimer
GetSysColor
GetWindowLongW
SetWindowLongW
CallWindowProcW
GetWindowDC
SetFocus
GetWindowTextW
EqualRect
GetWindowTextLengthW
UnhookWindowsHookEx
EndDialog
GetNextDlgTabItem
DestroyWindow
CreateDialogIndirectParamW
GetWindowPlacement
SystemParametersInfoA
DrawEdge
GetSysColorBrush
GetClipboardData
OpenClipboard
SendDlgItemMessageW
SetDlgItemTextW
IsDlgButtonChecked
IsDialogMessageW
GetDlgCtrlID
ShowWindow
MoveWindow
TrackPopupMenu
ScrollWindow
UpdateWindow
MessageBoxW
ReleaseDC
GetSystemMetrics
GetDC
GetCapture
SetForegroundWindow
GetLastActivePopup
IsIconic
GetMenu
SetWindowPlacement
DeferWindowPos
GetMenuItemCount
InvalidateRect
GetDesktopWindow
SendMessageW
GetPropW
EnumWindows
MapWindowPoints
GetMessageTime
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
GetClassNameW
GetClassLongW
IsChild
WinHelpW
SendDlgItemMessageA
LoadIconW
RegisterClipboardFormatW
TabbedTextOutW
DrawTextExW
GrayStringW
BeginPaint
EndPaint
RemoveMenu
InsertMenuW
AppendMenuW
GetMenuStringW
CharUpperW
BringWindowToTop
CreatePopupMenu
InsertMenuItemW
DestroyMenu
ReuseDDElParam
UnpackDDElParam
DestroyCursor
GetMenuItemInfoW
DrawIcon
GetKeyNameTextW
MapVirtualKeyW
DestroyCursor
UnregisterClassW
GetSystemMenu
SetParent
LockWindowUpdate
GetComboBoxInfo
IsZoomed
wsprintfW
GetClientRect
IsWindow
RedrawWindow
SystemParametersInfoW
SetPropW
RemovePropW
GetFocus
IsWindowVisible
EnableWindow
IntersectRect
GetParent
SetRectEmpty
PostMessageW
DrawFocusRect
InflateRect
ReleaseCapture
SetCapture
LoadAcceleratorsW
TranslateAcceleratorW
EnableMenuItem
RegisterClipboardFormatW
GetSubMenu
GetWindowRect
LoadMenuW
FrameRect
GetDialogBaseUnits
SetMenuDefaultItem
GetKeyState
PtInRect
MsgWaitForMultipleObjects
DispatchMessageW
TranslateMessage
GetMessageW
PeekMessageW
DrawTextW
ClientToScreen
DeleteMenu
EmptyClipboard
SetClipboardData
CloseClipboard
IsClipboardFormatAvailable
FillRect
DrawFrameControl
SetWindowTextW
CopyRect
MessageBeep
ShowScrollBar
DestroyAcceleratorTable
DrawIconEx
IsMenu
GetIconInfo
CopyImage
DrawStateW
LoadImageW
SetClassLongW
GetMenuDefaultItem
GetDoubleClickTime
CopyIcon
CreateAcceleratorTableW
CopyAcceleratorTableW
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
CharUpperBuffW
SubtractRect
GetWindowRgn
IsCharLowerW
MapVirtualKeyExW
WaitMessage
PostThreadMessageW
SendNotifyMessageW
GetCaretPos
HideCaret
DefFrameProcW
DefMDIChildProcW
DrawMenuBar
TranslateMDISysAccel
MapDialogRect
CreateMenu
CountClipboardFormats
InvalidateRgn
CharNextW
SetWindowContextHelpId
GetDlgItem
GetUpdateRect
ValidateRect
GetCursorPos
SetCursorPos
OffsetRect
GetAsyncKeyState
CheckMenuItem
SetRect
SetTimer
wininet
InternetReadFile
InternetCloseHandle
InternetOpenUrlA
InternetOpenA
winmm
mmioSeek
mmioWrite
mmioRead
mmioFlush
mmioClose
mmioOpenW
PlaySoundW
timeGetTime
winspool.drv
OpenPrinterW
DocumentPropertiesW
ClosePrinter
gdiplus
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipDrawImageI
GdipDeleteGraphics
GdiplusStartup
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipCloneImage
GdipAlloc
GdipFree
GdipDisposeImage
GdiplusShutdown
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
ole32
CoCreateInstance
OleDuplicateData
CoTreatAsClass
StringFromCLSID
CoTaskMemAlloc
ReleaseStgMedium
CreateBindCtx
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CoDisconnectObject
CLSIDFromString
CoInitialize
CoUninitialize
CoTaskMemFree
CoRegisterMessageFilter
CoInitializeEx
CoRevokeClassObject
OleDraw
CreateStreamOnHGlobal
OleLockRunning
OleSetMenuDescriptor
CreateFileMoniker
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleSave
WriteClassStm
OleSaveToStream
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreate
OleLoad
StgOpenStorageOnILockBytes
GetHGlobalFromILockBytes
OleSetContainedObject
OleCreateFromFile
OleCreateLinkToFile
OleGetIconOfClass
CreateItemMoniker
CreateGenericComposite
CoGetClassObject
CLSIDFromProgID
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
oledlg
OleUIPasteSpecialW
OleUIInsertObjectW
OleUIObjectPropertiesW
OleUIBusyW
Sections
Size: 4.3MB - Virtual size: 4.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 860KB - Virtual size: 860KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 296KB - Virtual size: 296KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 356KB - Virtual size: 356KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.vxdata Size: 692KB - Virtual size: 692KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.mackt Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE