Aseprite[.]exe

Resubmissions

31-03-2023 21:16

230331-z4sq6ade43 1

31-03-2023 14:34

230331-rxnjvsdh8x 1

Sharing

Copy URL

Twitter E-mail

General

Target

Aseprite.exe
Size

5.6MB
MD5

cf7a98ff971ccf52d301d7a5bfeeb469
SHA1

e50bd0c4f754b26e98cc37d380de372ec2c6bf59
SHA256

fe48483ed05985fb571993d276aedb1709a40b17665491a965971ca376262b09
SHA512

65ca40f933da6edee8e701e8a5dff3b921d5b62d04ddb89c7ddc1ee28113a77432e6958fde24ee3d45adae08afe7ab82ededb20b88d9df05b4eac8086c6d243e
SSDEEP

49152:4wrlRLSVJ/l14enrlK+yKJ3Bm1u28axzMAX8jZaMrjWqPkT6rYnu2r/23P:3Z4D1rlKqJ8R/voGu

Score

1^/10

Malware Config

Signatures

Files

Aseprite.exe
.exe windows x86

57206f9936f6a997e9877e021bb7c22a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OutputDebugStringW
GetVersionExW
FreeLibrary
LoadLibraryW
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
Sleep
GetSystemTimeAsFileTime
IsProcessorFeaturePresent
IsDebuggerPresent
DecodePointer
EncodePointer
ExpandEnvironmentStringsA
GetTickCount
SetLastError
SleepEx
lstrlenA
GetModuleHandleA
GetTempPathA
WaitForMultipleObjects
GetProcAddress
SetThreadPriority
CreateEventW
SetEvent
GetLogicalDrives
FormatMessageA
GetVersion
GetCurrentThread
DuplicateHandle
OutputDebugStringA
DebugBreak
GetCommandLineW
FormatMessageW
LocalFree
QueryPerformanceFrequency
QueryPerformanceCounter
DeleteCriticalSection
TryEnterCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetLocalTime
OpenProcess
GetExitCodeProcess
WideCharToMultiByte
MultiByteToWideChar
ResumeThread
CreateThread
WaitForSingleObject
GetLastError
MoveFileW
GetModuleFileNameW
GetTempPathW
SetFileAttributesW
RemoveDirectoryW
GetFullPathNameW
GetFileAttributesExW
GetFileAttributesW
FindNextFileW
FindFirstFileW
FindClose
DeleteFileW
CreateDirectoryW
GetCurrentDirectoryW
AllocConsole
AttachConsole
FreeConsole
GetFileType
GetStdHandle
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
SetUnhandledExceptionFilter
CloseHandle
CreateFileW
GetModuleHandleW
SystemTimeToFileTime
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
GetSystemTime
ExitProcess

user32

CallWindowProcW
ShowWindow
GetCapture
SetCapture
ReleaseCapture
GetSystemMetrics
SetScrollPos
GetScrollPos
GetClientRect
GetCursorPos
ScreenToClient
MapWindowPoints
GetWindowLongW
SetWindowLongW
SetScrollInfo
SetWindowPos
GetSystemMenu
EnableMenuItem
GetDC
ReleaseDC
RedrawWindow
SetWindowTextW
GetWindowRect
GetClassLongW
SetClassLongW
RegisterWindowMessageW
GetMessageW
DispatchMessageW
SendMessageW
PostMessageW
DefWindowProcW
MessageBoxW
RegisterClassW
CreateWindowExW
DestroyWindow
MoveWindow
IsIconic
GetActiveWindow
UpdateWindow
SetForegroundWindow
BeginPaint
EndPaint
OpenClipboard
LoadCursorW
LoadIconW
SystemParametersInfoW
AdjustWindowRect
GetKeyboardState
ToUnicode
MessageBoxA
SetCursorPos
SetCursor
GetForegroundWindow
InvalidateRect
ClientToScreen
DestroyIcon
CreateIconIndirect
CloseClipboard
SetClipboardData
GetClipboardData
RegisterClipboardFormatW
EmptyClipboard
IsClipboardFormatAvailable
PostQuitMessage
GetAsyncKeyState

ole32

CoInitialize
CoUninitialize
CoCreateInstance

shlwapi

StrRetToBufW

ws2_32

connect
bind
send
recv
WSAGetLastError
closesocket
WSACleanup
getpeername
getsockopt
htons
select
ntohs
setsockopt
__WSAFDIsSet
gethostbyname
WSAStartup
getsockname
socket
WSASetLastError
ioctlsocket

shell32

ShellExecuteExW
DragFinish
DragQueryFileW
SHGetFolderPathW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc

msvcp120

??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAH@Z
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AA_N@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAI@Z
?write@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@PBD_J@Z
?seekp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@V?$fpos@H@2@@Z
?tellp@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE?AV?$fpos@H@2@XZ
?read@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PAD_J@Z
?_Swap_all@_Container_base0@std@@QAEXAAU12@@Z
??5?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV01@AAN@Z
?_Sync@ios_base@std@@0_NA
?get@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEHXZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@G@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@K@Z
?_Xbad_alloc@std@@YAXXZ
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
?_Syserror_map@std@@YAPBDH@Z
?_Winerror_map@std@@YAPBDH@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Orphan_all@_Container_base0@std@@QAEXXZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Ios_base_dtor@ios_base@std@@CAXPAV12@@Z
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?_BADOFF@std@@3_JB
??_7ios_base@std@@6B@
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@I@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
??0_Lockit@std@@QAE@H@Z
??1_Lockit@std@@QAE@XZ
??Bid@locale@std@@QAEIXZ
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?always_noconv@codecvt_base@std@@QBE_NXZ
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?clear@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@N@Z
??_D?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?_Fiopen@std@@YAPAU_iobuf@@PB_WHH@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QBEDD@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@D@Z
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
?uncaught_exception@std@@YA_NXZ

msvcr120

?name@type_info@@QBEPBDPAU__type_info_node@@@Z
getc
isdigit
feof
fgets
vsprintf_s
??_V@YAXPAX@Z
_mbsicmp
floor
_dsign
_dtest
fprintf
sscanf
_snprintf
free
malloc
realloc
_CIfmod
_libm_sse2_acos_precise
_libm_sse2_asin_precise
_libm_sse2_exp_precise
_libm_sse2_log_precise
_libm_sse2_pow_precise
_libm_sse2_tan_precise
ceil
strchr
strpbrk
toupper
isspace
_libm_sse2_log10_precise
freopen
_wstat64i32
??0exception@std@@QAE@XZ
strtoul
calloc
_strdup
_wfopen
?_wopen@@YAHPB_WHH@Z
atof
getenv
strerror
abort
clock
qsort
iswctype
_stat64i32
_findclose
__RTtypeid
_findnext64i32
_wunlink
_wfindfirst64i32
_wfindnext64i32
_wopen
_getdcwd
_getdrive
_wgetdcwd
tmpnam
_beginthread
strncat
tmpfile
strncpy
_fdopen
_close
_setmode
_open
frexp
modf
_gmtime64
strrchr
strstr
atol
strtoll
isxdigit
isalpha
isalnum
__sys_nerr
fopen_s
sscanf_s
_vsnprintf_s
atoi
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
_XcptFilter
__crtGetShowWindowMode
_amsg_exit
__getmainargs
__set_app_type
_exit
_cexit
_ismbblead
_configthreadlocale
__setusermatherr
_initterm_e
_initterm
_acmdln
_fmode
_commode
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
_vsnprintf
?terminate@@YAXXZ
__clean_type_info_names_internal
_except1
_except_handler4_common
__crtSetUnhandledExceptionFilter
_invoke_watson
_controlfp_s
_libm_sse2_sqrt_precise
_libm_sse2_sin_precise
_libm_sse2_cos_precise
tolower
__CxxLongjmpUnwind
longjmp
_lseek
ftell
fseek
fread
ferror
strncmp
_wgetenv
_libm_sse2_atan_precise
_CIatan2
rand
div
_errno
exit
strtok
memset
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@ABV01@@Z
??0bad_cast@std@@QAE@PBD@Z
_unlock_file
_lock_file
ungetc
setvbuf
fwrite
_fseeki64
fsetpos
fputc
fgetpos
fgetc
memcpy_s
sprintf
vsprintf
fputs
__iob_func
memchr
vfprintf
fopen
fflush
fclose
?what@exception@std@@UBEPBDXZ
??1exception@std@@UAE@XZ
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBD@Z
__RTDynamicCast
printf
strtol
strtod
memcpy
__CxxFrameHandler3
_CxxThrowException
_time64
memmove
srand
_hypot
??3@YAXPAX@Z
??2@YAPAXI@Z
_purecall
_findfirst64i32
_stricmp
_unlink
_dup
_read
_setjmp3
_write

gdi32

DeleteObject
DeleteDC
SetPixel
GetSystemPaletteEntries
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
BitBlt
SelectObject
StretchDIBits
GetObjectW
GetDeviceCaps
StretchBlt
SetPaletteEntries
SelectPalette
RealizePalette
GetPaletteEntries
GetDIBits
CreatePalette
CreateDIBitmap

comdlg32

CommDlgExtendedError
GetOpenFileNameW
GetSaveFileNameW

winmm

timeGetTime

comctl32

_TrackMouseEvent

dbghelp

MiniDumpWriteDump

Sections

.text
Size: 4.7MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 642KB - Virtual size: 641KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 86KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 190KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

57206f9936f6a997e9877e021bb7c22a

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

ole32

shlwapi

ws2_32

shell32

msvcp120

msvcr120

gdi32

comdlg32

winmm

comctl32

dbghelp

Sections

.text Size: 4.7MB - Virtual size: 4.7MB

.rdata Size: 642KB - Virtual size: 641KB

.data Size: 86KB - Virtual size: 149KB

.idata Size: 18KB - Virtual size: 17KB

.tls Size: 1KB - Virtual size: 1KB

.rsrc Size: 22KB - Virtual size: 21KB

.reloc Size: 190KB - Virtual size: 189KB

.text
Size: 4.7MB - Virtual size: 4.7MB

.rdata
Size: 642KB - Virtual size: 641KB

.data
Size: 86KB - Virtual size: 149KB

.idata
Size: 18KB - Virtual size: 17KB

.tls
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 22KB - Virtual size: 21KB

.reloc
Size: 190KB - Virtual size: 189KB