Static task
static1
General
-
Target
Boshy.zip
-
Size
128.9MB
-
MD5
bb7e3ca1ec115f67ce0f85129c2bcbf4
-
SHA1
fe0ea30a9356db8723076ab4e2b6ee7000e8e425
-
SHA256
0831ee0bd97e79959693778e79eb319cf15fd0bfcfae3a0951e3140c67866043
-
SHA512
8b1c882662811487a830e735d9ae91ccf89c8a872a37395ebd989158b0686178646e26e0a9b4214fdf58f43cddb09b1aad96db790c19c60224a07f4564dcd28e
-
SSDEEP
3145728:ZSzSxhWs/NpILS24bD2MPPz7xbCH95lq/lFh4NEnOw41XNWG:ZSWhWW0S24byMP1Cnlq/J4NEnmd
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack001/IWBTB/I Wanna Be The Boshy.exe
Files
-
Boshy.zip.zip
-
IWBTB/Custom/About custom characters.txt
-
IWBTB/Custom/template_128x128.png.png
-
IWBTB/Custom/template_128x256.png.png
-
IWBTB/I Wanna Be The Boshy.exe.exe windows x86
89ce6f379f7ac7e358dc4fb54941c9c7
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GlobalDeleteAtom
GetStartupInfoA
GetModuleHandleA
GlobalAddAtomA
RaiseException
InterlockedExchange
LocalAlloc
GetTempFileNameA
GetVersion
GetVersionExA
lstrcpynA
lstrcpyA
lstrcmpA
lstrcatA
lstrlenA
GlobalFree
GetTempPathA
GetCurrentDirectoryA
GetSystemTime
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
SetErrorMode
GlobalAlloc
GlobalLock
GlobalUnlock
GetExitCodeProcess
GetCommandLineA
SetCurrentDirectoryA
Sleep
CreateDirectoryA
CloseHandle
SetFilePointer
GetProcAddress
WriteFile
ReadFile
GetLastError
CreateFileA
GetCurrentThreadId
RemoveDirectoryA
GetModuleFileNameA
FreeLibrary
LoadLibraryA
user32
PostQuitMessage
IntersectRect
DrawFocusRect
SetRect
InvertRect
GetMenuItemID
GetMenuStringA
ModifyMenuA
DefMDIChildProcA
IsIconic
GetUpdateRect
FillRect
SetDlgItemTextA
EndPaint
PtInRect
GetDlgItem
MapVirtualKeyA
GetInputState
GetDlgItemTextA
SendDlgItemMessageA
EndDialog
SystemParametersInfoA
DestroyMenu
LoadMenuIndirectA
GetMenuItemCount
SetWindowPlacement
GetWindowPlacement
GetFocus
RemovePropA
CallWindowProcA
SetPropA
GetPropA
UnionRect
CreateWindowExA
SetScrollRange
SetScrollPos
DestroyWindow
GetParent
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
GetSysColor
DispatchMessageA
TranslateMessage
TranslateMDISysAccel
DrawEdge
DrawTextA
DrawMenuBar
GetTabbedTextExtentA
SetFocus
GetDesktopWindow
GetMessageA
PeekMessageA
MsgWaitForMultipleObjects
ReleaseDC
CreateIconIndirect
GetDC
RedrawWindow
SetWindowLongA
UpdateWindow
LoadStringA
MessageBoxA
DialogBoxParamA
GetTopWindow
GetClassNameA
GetWindow
LoadIconA
RegisterClassA
LoadImageA
RegisterClassExA
OemToCharA
GetAsyncKeyState
GetActiveWindow
ShowCursor
SetCapture
ReleaseCapture
GetKeyState
GetWindowRect
MapWindowPoints
GetSystemMetrics
IsWindowVisible
LockWindowUpdate
SendMessageA
GetWindowLongA
AdjustWindowRectEx
IsZoomed
SetWindowPos
GetClientRect
SetWindowTextA
IsDialogMessageA
SetTimer
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
IsClipboardFormatAvailable
wsprintfA
ShowWindow
PostMessageA
CheckMenuItem
EnableMenuItem
GetMenu
InvalidateRect
ClientToScreen
SetCursorPos
GetKeyboardState
GetCursorPos
ScreenToClient
CopyRect
UnhookWindowsHookEx
KillTimer
SetWindowsHookExA
CallNextHookEx
DestroyIcon
GetMenuState
DeleteMenu
GetSubMenu
BeginPaint
gdi32
LPtoDP
TextOutA
SetPolyFillMode
Polygon
CreateHatchBrush
DPtoLP
SetTextAlign
GetNearestPaletteIndex
SetBkColor
SetROP2
GetTextMetricsA
GetCharWidthA
GetTextExtentPointA
CreateRectRgn
GetClipRgn
ExcludeClipRect
SelectClipRgn
SetTextColor
SetBkMode
GetStockObject
CreateSolidBrush
CreatePen
Rectangle
SelectObject
MoveToEx
LineTo
GetObjectA
CreateFontIndirectA
SelectPalette
RealizePalette
GetDeviceCaps
CreatePalette
CreateBitmap
CreateCompatibleBitmap
SetDIBits
DeleteObject
comdlg32
GetSaveFileNameA
GetOpenFileNameA
shell32
DragAcceptFiles
ShellExecuteExA
DragQueryFileA
comctl32
ord17
winmm
timeEndPeriod
timeBeginPeriod
joyGetPosEx
joyGetDevCapsA
timeGetTime
msvcrt
modf
toupper
_stricmp
strncpy
_errno
_rmdir
strrchr
strchr
strncat
_chdir
_mkdir
_ltoa
sprintf
_fcvt
_gcvt
__CxxFrameHandler
realloc
calloc
memmove
??2@YAPAXI@Z
remove
??3@YAXPAX@Z
_ftol
free
malloc
atof
ceil
floor
_CIasin
_CIacos
strstr
_CIfmod
_CIpow
_chdrive
_splitpath
_findnext
_findfirst
_heapmin
_msize
isspace
tolower
isdigit
isalpha
_makepath
_strnicmp
isalnum
_strupr
__dllonexit
_onexit
_exit
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
__setusermatherr
_strlwr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_findclose
Sections
.text Size: 328KB - Virtual size: 325KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 300KB - Virtual size: 296KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
-
IWBTB/Music.txt