Vistro[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

Vistro.exe
Size

3.1MB
MD5

30249cdbbe8ebcb57123dc3a10682203
SHA1

d6fc6b2ce02a4b9460fa196696885033db78bddb
SHA256

eac9c0e0205e0cb4daae86963bc69b21ebf7a3837183226620cd411778f64f54
SHA512

714fe08163bcd3f74d0e9dd83313fbbf071e92b31278769ca20b8cc4e525dcab6be1dee67b167be03ea34adee8d58679899a8d7244d9b712ce3cfbf3fd8e699d
SSDEEP

6144:ri333v9l4IF0A7W9J5Iud1+3p9fGHH0Y5dR5lR8PNaA:ov9l4IF0nH1R524

Score

1^/10

Malware Config

Signatures

Files

Vistro.exe
.exe windows x86

115a1884d82c0d7121d156b3db06ad35

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

crtdll

memset
memcpy
printf
strncmp
strcpy
strlen
strncpy
cos
sin
strcat
fopen
fseek
fclose
strcmp
memmove

user32

wsprintfA
SetWindowLongA
SetClassLongA
InvalidateRect
GetWindowLongA
SetLayeredWindowAttributes
ShowWindow
GetSystemMetrics
GetDC
ReleaseDC
EnumDisplaySettingsA
SendMessageA
GetAsyncKeyState
wvsprintfA
GetDesktopWindow
FillRect
LoadCursorA
LoadIconA
RegisterClassA
GetSysColor
GetWindow
SetActiveWindow
DestroyWindow
UnregisterClassA
DestroyAcceleratorTable
GetClientRect
GetMenu
AdjustWindowRect
GetActiveWindow
GetWindowRect
CreateWindowExA
SetWindowPos
PeekMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
GetClassNameA
PostMessageA
GetParent
DefWindowProcA
EnableWindow
SetFocus
IsWindowEnabled
IsWindowVisible
GetFocus
IsChild
EnumChildWindows
GetKeyState
CreateAcceleratorTableA
SetCursorPos
LoadImageA
SetCursor
SystemParametersInfoA
SetCapture
GetCursorPos
MapWindowPoints
ReleaseCapture
MoveWindow
ShowCursor
OffsetRect
SetRect
CallWindowProcA
ClientToScreen
GetPropA
SetPropA
SetWindowTextA
BeginPaint
EndPaint
RegisterClassExA
DestroyIcon
CreateIconFromResourceEx
CreateIconFromResource
GetIconInfo
DrawIconEx

gdi32

StretchBlt
CreatePatternBrush
GetPixel
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetDeviceCaps
CreateCompatibleBitmap
GetStockObject
GetObjectA
GetDIBits
DeleteObject
CreateBrushIndirect
Rectangle
GetObjectType
CreateDCA
SetDIBits
SetStretchBltMode
SetBrushOrgEx
CreateSolidBrush
CreatePen
SetTextAlign
SetTextColor
SetPixelV
SelectPalette
RealizePalette
StretchDIBits
MoveToEx
LineTo
Ellipse
SetROP2
SetBkMode

winmm

waveOutOpen
waveOutPrepareHeader
waveOutWrite
waveOutReset
waveOutUnprepareHeader
waveOutClose
waveOutGetPosition

oleaut32

OleLoadPicture

ole32

CreateStreamOnHGlobal
CoInitialize
CoUninitialize

imagehlp

MakeSureDirectoryPathExists

kernel32

GetModuleHandleA
GetCommandLineA
ExitProcess
HeapCreate
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
GetModuleFileNameA
GetTempPathA
HeapDestroy
HeapAlloc
FindResourceA
SizeofResource
LoadResource
CreateFileA
ReadFile
SetFilePointer
CloseHandle
CreateThread
SetThreadPriority
WaitForSingleObject
Sleep
HeapReAlloc
FreeLibrary
GetProcAddress
LoadLibraryA
IsBadReadPtr
HeapFree
GetCurrentProcess
WriteProcessMemory
GlobalReAlloc
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
GetSystemInfo
GetFileSize
QueryPerformanceFrequency
QueryPerformanceCounter
GetTickCount
WriteFile
FindFirstFileA
SetFileAttributesA
DeleteFileA
FindNextFileA
FindClose
RemoveDirectoryA

shell32

ShellExecuteExA

Sections

.text
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2.9MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.flat
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

115a1884d82c0d7121d156b3db06ad35

Headers

File Characteristics

Imports

crtdll

user32

gdi32

winmm

oleaut32

ole32

imagehlp

kernel32

shell32

Sections

.text Size: 153KB - Virtual size: 152KB

.data Size: 2.9MB - Virtual size: 3.3MB

.flat Size: 1KB - Virtual size: 1KB

.text
Size: 153KB - Virtual size: 152KB

.data
Size: 2.9MB - Virtual size: 3.3MB

.flat
Size: 1KB - Virtual size: 1KB