sugo2[.]exe | Triage

Resubmissions

04/05/2023, 16:31

230504-t1pmfadg47 3

Sharing

Copy URL Twitter E-mail

General

Target

sugo2.exe
Size

708KB
MD5

20fd329c2816f0a903ffef67f0521e8a
SHA1

13d738c8685f83ae76cc64aee29db831acddf4ff
SHA256

c58ecec61f562800d29389b43745114ee56c3c616911a46c7f472c71ae7f0090
SHA512

74679a7240d9a84f216f0d56b34c16b640750aee50665dce5c46c189980f2c33555e56b8517a6cd369067407291b979ec303edbcd84bb64200d9a08c0bee99de
SSDEEP

6144:e9xnV1zhndKGpN04WepN1ehXoxG5LdTBtpe4jFsRAsedPua+EBseZ43edRVFt9ND:W5zVd/Q4WWyEUUIFeUsedba3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
sugo2.exe

Files

sugo2.exe
.exe windows x86

3329e5dea1261f468100a4434b39bd51

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
GlobalMemoryStatus
GetCurrentProcessId
GetFileSize
SetEnvironmentVariableA
CompareStringW
CompareStringA
GetTimeZoneInformation
SetEndOfFile
LoadLibraryA
GetOEMCP
GetACP
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
FreeLibrary
CreateFileA
GetCPInfo
FlushFileBuffers
SetStdHandle
VirtualAlloc
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
WriteFile
SetFileAttributesA
GetLocalTime
GetModuleHandleA
GetModuleFileNameA
CreateMutexA
WaitForSingleObject
ReleaseMutex
GetTickCount
Sleep
GetVersionExA
SetFilePointer
GetVersion
GetCurrentDirectoryA
SetCurrentDirectoryA
MultiByteToWideChar
GetFileAttributesA
FreeEnvironmentStringsA
GetSystemTime
ReadFile
CloseHandle
HeapSize
HeapReAlloc
UnhandledExceptionFilter
GetCurrentProcess
lstrlenA
RtlUnwind
RaiseException
GetLastError
ResumeThread
CreateThread
TlsSetValue
TlsGetValue
ExitThread
GetStartupInfoA
GetCommandLineA
ExitProcess
GetCurrentThreadId
TlsAlloc
SetLastError
HeapFree
HeapAlloc
GetProcAddress
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetUnhandledExceptionFilter
InterlockedDecrement
InterlockedIncrement
TerminateProcess

user32

AdjustWindowRect
SetMenu
LoadMenuA
DestroyMenu
MessageBoxA
PostQuitMessage
SetCapture
ReleaseCapture
DefWindowProcA
FindWindowA
LoadIconA
LoadCursorA
RegisterClassExA
ShowWindow
UpdateWindow
PeekMessageA
TranslateMessage
DispatchMessageA
BeginPaint
EndPaint
SetFocus
PostMessageA
SetCursorPos
ChangeDisplaySettingsA
GetWindowLongA
SetWindowLongA
MoveWindow
DrawMenuBar
GetDC
ReleaseDC
GetDlgItem
GetWindowTextA
EndDialog
SetWindowTextA
GetCursorPos
ScreenToClient
SetRect
CreateWindowExA
SetScrollInfo
DestroyWindow
SendMessageA
InvalidateRect
DialogBoxParamA
ClientToScreen
GetSubMenu
TrackPopupMenu
GetUserObjectInformationW
GetProcessWindowStation
GetDesktopWindow
SetMenuItemInfoA
wsprintfA

gdi32

EnumFontFamiliesExA
GetGlyphOutlineA
GetTextMetricsA
GetCharABCWidthsA
GetDeviceCaps
BitBlt
DeleteDC
CreateCompatibleDC
GdiFlush
CreateDIBSection
TextOutA
DeleteObject
CreateFontA
SelectObject
SetTextColor
SetBkMode
GetStockObject

comdlg32

GetSaveFileNameA

advapi32

ReportEventA
DeregisterEventSource
RegisterEventSourceA

winmm

timeBeginPeriod
timeGetDevCaps
timeGetTime

dsound

ord1

Sections

.text
Size: 480KB - Virtual size: 479KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 176KB - Virtual size: 219KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

3329e5dea1261f468100a4434b39bd51

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

winmm

dsound

Sections

.text Size: 480KB - Virtual size: 479KB

.rdata Size: 40KB - Virtual size: 36KB

.data Size: 176KB - Virtual size: 219KB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 480KB - Virtual size: 479KB

.rdata
Size: 40KB - Virtual size: 36KB

.data
Size: 176KB - Virtual size: 219KB

.rsrc
Size: 8KB - Virtual size: 4KB