Static task
static1
General
-
Target
Sonic.exe
-
Size
4.1MB
-
MD5
8d9d48dfcf34b6f18059e7e0bbe8b711
-
SHA1
9c13da89e8012323956a8421f63e659bd16bd537
-
SHA256
c3c47d29edb41124c0ac8a26b439bb244e3aa2b19d654229d9fed98d90814a65
-
SHA512
dab58aff5f482ce1fecf8c723ea62667e7edd2e0630baf88081644ece7851b416a0214647079dc05afdb7532cf41180223c4baea2effe4802bbeee29ae96381e
-
SSDEEP
98304:adJs125HE+aeuGLRWQwchf4gaIrThOUIzFw5HhMt:adC1D7nMR7/QUFHh
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Sonic.exe
Files
-
Sonic.exe.exe windows x86
8c649b0298c9c2b90926128d69044ac5
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
d3dx9_43
D3DXCreateTexture
D3DXGetShaderConstantTable
D3DXMatrixRotationY
D3DXMatrixRotationX
D3DXMatrixRotationZ
D3DXMatrixRotationAxis
D3DXMatrixScaling
D3DXMatrixTranslation
D3DXMatrixPerspectiveFovRH
D3DXMatrixOrthoOffCenterRH
D3DXMatrixInverse
D3DXMatrixMultiply
D3DXMatrixTranspose
D3DXCreateCubeTextureFromFileInMemoryEx
D3DXCompileShader
D3DXGetImageInfoFromFileInMemory
D3DXMatrixRotationQuaternion
D3DXCreateVolumeTextureFromFileInMemoryEx
D3DXCreateTextureFromFileInMemoryEx
steam_api
SteamAPI_Init
SteamNetworking
SteamMatchmaking
SteamAPI_UnregisterCallback
SteamAPI_RegisterCallback
SteamAPI_RegisterCallResult
SteamAPI_UnregisterCallResult
SteamUserStats
SteamUser
SteamAPI_RunCallbacks
SteamFriends
SteamAPI_Shutdown
SteamUtils
SteamApps
kernel32
GetCurrentProcessId
GetTickCount
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetStartupInfoA
InterlockedCompareExchange
InterlockedExchange
MulDiv
LocalAlloc
LocalLock
LocalFree
GetCurrentDirectoryA
CreateMutexA
GetLastError
CloseHandle
OutputDebugStringA
GetCurrentThreadId
GetModuleFileNameA
GetThreadPriority
GetCurrentThread
RaiseException
WaitForSingleObject
GetProcessAffinityMask
GetCurrentProcess
GetSystemTimeAsFileTime
SetThreadPriority
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
ResetEvent
SetEvent
CreateEventA
GetFileAttributesA
DeleteFileA
MoveFileA
FlushFileBuffers
CreateDirectoryA
GetFileSize
SetFilePointer
ReadFile
WriteFile
SetEndOfFile
CreateFileA
LocalUnlock
GetModuleFileNameW
GlobalAlloc
GlobalLock
GlobalUnlock
GetVersionExA
ExitThread
TryEnterCriticalSection
ResumeThread
CreateThread
QueryPerformanceFrequency
QueryPerformanceCounter
InterlockedDecrement
InterlockedIncrement
GetModuleHandleA
Sleep
user32
KillTimer
FillRect
GetSysColor
SetTimer
GetActiveWindow
MoveWindow
EndPaint
SetWindowTextW
GetLastActivePopup
MessageBoxW
MessageBeep
MessageBoxA
SystemParametersInfoA
GetSystemMetrics
DrawTextW
LoadIconW
CreateDialogIndirectParamW
IsDialogMessageA
WaitMessage
SendMessageA
EnableWindow
GetSystemMenu
EnableMenuItem
CheckDlgButton
SetFocus
SetForegroundWindow
GetWindowRect
GetWindowLongA
SetWindowLongA
GetClientRect
SetWindowPos
ShowCursor
ShowWindow
UpdateWindow
PostQuitMessage
TranslateMessage
PeekMessageA
DispatchMessageA
IsWindowVisible
DestroyWindow
ToAscii
GetKeyboardState
ScreenToClient
GetCursorPos
TrackMouseEvent
SetCapture
ReleaseCapture
AdjustWindowRectEx
CreateWindowExA
GetClassInfoExA
UnregisterClassA
IsWindow
DefWindowProcA
RegisterClassExA
LoadCursorA
LoadIconA
RegisterClassA
SetRect
WinHelpA
DrawIcon
BeginPaint
DestroyIcon
LoadStringW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClassNameA
GetWindow
GetDlgItem
GetWindowTextA
GetAsyncKeyState
GetDialogBaseUnits
RedrawWindow
GetWindowTextW
GetParent
ole32
CoInitializeEx
CoUninitialize
msvcp90
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
msvcr90
ceil
sprintf
strncmp
free
atoi
malloc
div
ldiv
strncpy_s
strcat_s
strcpy_s
memcpy_s
??0exception@std@@QAE@XZ
fopen_s
fwrite
fclose
memmove_s
fgetpos
fread
_snprintf
srand
_CIacos
floor
_CIsqrt
vsprintf
modf
memset
memcpy
_CIlog
_CIcos
_CIfmod
_CIsin
__CxxFrameHandler3
_CIpow
_CItan
_CIatan2
_beginthreadex
vsprintf_s
sscanf_s
strcmp
qsort
cos
sqrt
strlen
strnlen
strtol
strstr
_aligned_offset_malloc
_aligned_free
strncpy
_filelength
_fileno
ftell
fprintf
_vsnprintf_s
memmove
isspace
tolower
isalpha
isalnum
strchr
strrchr
wcsrchr
_stricmp
_itow
wcsncpy
_swprintf
wcstok
_unlock
__dllonexit
_encode_pointer
_lock
_onexit
_CxxThrowException
?terminate@@YAXXZ
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
_ismbblead
exit
_acmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler4_common
_crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_controlfp_s
rand
_purecall
??0exception@std@@QAE@ABQBD@Z
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABV01@@Z
_invalid_parameter_noinfo
fread_s
_CIatan
_CIasin
??1exception@std@@UAE@XZ
fseek
sprintf_s
_decode_pointer
shlwapi
PathFileExistsA
d3d9
Direct3DCreate9
dinput8
DirectInput8Create
xinput1_3
ord2
ord3
dsound
ord11
winmm
timeSetEvent
timeGetTime
timeKillEvent
gdi32
CreateFontIndirectA
GetTextExtentPoint32W
GetTextExtentPoint32A
CreateDCA
SelectObject
DeleteDC
CreateSolidBrush
SetBkColor
SetTextColor
DeleteObject
advapi32
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
shell32
DragAcceptFiles
DragFinish
DragQueryFileA
Sections
.text Size: 2.9MB - Virtual size: 2.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 417KB - Virtual size: 416KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 196KB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 512B - Virtual size: 181B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 400KB - Virtual size: 399KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 219KB - Virtual size: 219KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ