Static task
static1
General
-
Target
uad_gui-windows-opengl.exe
-
Size
4.9MB
-
MD5
57ceb59bca0adbea2bbd8f8fdf913aab
-
SHA1
78cc9530906c45a40309a76dcaec309c9de2670d
-
SHA256
9f09adf91755131874a1c1149739fcb83ef3206bcf0398d47a0a0a611379bf9b
-
SHA512
114ef2966f828a8c6ebc00b953e0dcff1a307daa2a577b29cebd5d71ef4bd266fe55c9c0b27ddacfdd9be4f5c74bc8703a6f6ffc8e02d5ccd62c6189c8ab7e5d
-
SSDEEP
49152:CZO9WR3bEsY6QL3P2F0Lfr5hw6MaqVwZmfj8XqEGGscSvY31Jncs5i8WAeDb+z1L:C3CsY6I3P2SLfpowtXBGU3Tn75ip+/Dl
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource uad_gui-windows-opengl.exe
Files
-
uad_gui-windows-opengl.exe.exe windows x64
bf95b8e32423c9dce904819234368f40
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
opengl32
wglGetProcAddress
wglGetCurrentContext
wglGetCurrentDC
wglShareLists
wglCreateContext
wglMakeCurrent
wglDeleteContext
bcrypt
BCryptGenRandom
advapi32
SystemFunction036
dwmapi
DwmEnableBlurBehindWindow
gdi32
DeleteObject
CreateRectRgn
SwapBuffers
GetDeviceCaps
DescribePixelFormat
GetPixelFormat
ChoosePixelFormat
SetPixelFormat
kernel32
GetConsoleOutputCP
FlushFileBuffers
HeapSize
TerminateProcess
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
HeapFree
GetCurrentThreadId
ReleaseSRWLockExclusive
CloseHandle
GetModuleHandleW
GetLastError
LoadLibraryW
HeapAlloc
GetProcessHeap
HeapReAlloc
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
GetTimeZoneInformation
GlobalFree
GlobalUnlock
lstrlenW
AcquireSRWLockExclusive
SwitchToThread
FreeLibrary
GetProcAddress
SetThreadErrorMode
LoadLibraryExW
Sleep
GetModuleHandleA
GetSystemInfo
SleepConditionVariableSRW
WakeConditionVariable
WakeAllConditionVariable
GetCurrentThread
SetLastError
TryAcquireSRWLockExclusive
GetStdHandle
GetConsoleMode
WriteConsoleW
WaitForSingleObjectEx
LoadLibraryA
CreateMutexA
GetCurrentProcess
ReleaseMutex
GetEnvironmentVariableW
RtlLookupFunctionEntry
FormatMessageW
SetEnvironmentVariableW
GetModuleFileNameW
CreateFileW
GetFileInformationByHandle
DeviceIoControl
GetFullPathNameW
SetFilePointerEx
CreateDirectoryW
SetHandleInformation
GetEnvironmentStringsW
FreeEnvironmentStringsW
CompareStringOrdinal
GetSystemDirectoryW
GetWindowsDirectoryW
CreateProcessW
GetFileAttributesW
DuplicateHandle
GetCurrentProcessId
CreateNamedPipeW
CreateThread
SetThreadStackGuarantee
ReadFileEx
SleepEx
WriteFileEx
WaitForMultipleObjects
GetOverlappedResult
WaitForSingleObject
GetExitCodeProcess
CreateEventW
CancelIo
ReadFile
ExitProcess
QueryPerformanceFrequency
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCurrentDirectoryW
RtlCaptureContext
AcquireSRWLockShared
ReleaseSRWLockShared
MoveFileExW
DeleteFileW
GetCommandLineW
AddVectoredExceptionHandler
SetConsoleMode
GlobalLock
GlobalSize
WideCharToMultiByte
MultiByteToWideChar
GlobalAlloc
RtlVirtualUnwind
RtlUnwindEx
LCMapStringW
CompareStringW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
GetStringTypeW
GetFileType
SetStdHandle
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
RtlPcToFileHeader
GetCommandLineA
GetModuleHandleExW
WriteFile
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
EncodePointer
RaiseException
InitializeSListHead
ole32
RevokeDragDrop
CoUninitialize
OleInitialize
RegisterDragDrop
CoCreateInstance
CoTaskMemFree
CoInitializeEx
shell32
SHGetKnownFolderPath
DragQueryFileW
DragFinish
user32
SetForegroundWindow
IsProcessDPIAware
RegisterRawInputDevices
MonitorFromPoint
OpenClipboard
GetClipboardData
CloseClipboard
EmptyClipboard
SetClipboardData
DestroyIcon
RegisterWindowMessageA
GetKeyboardLayout
GetKeyState
SendInput
GetKeyboardState
GetMenu
AdjustWindowRectEx
SystemParametersInfoA
ShowWindow
SendMessageW
SetWindowLongW
GetActiveWindow
ShowCursor
GetClipCursor
ClipCursor
ChangeDisplaySettingsExW
SetWindowPlacement
ReleaseCapture
MapVirtualKeyW
RegisterTouchWindow
GetSystemMetrics
ToUnicodeEx
GetUpdateRect
PostThreadMessageW
PeekMessageW
GetMessageW
TranslateMessage
DispatchMessageW
MsgWaitForMultipleObjectsEx
PostMessageW
TrackMouseEvent
LoadCursorW
SetCursor
MonitorFromRect
MapVirtualKeyA
RedrawWindow
DestroyWindow
SetCapture
GetTouchInputInfo
ScreenToClient
CloseTouchInputHandle
DefWindowProcW
GetWindowLongW
SetWindowLongPtrW
GetClientRect
ClientToScreen
GetCursorPos
ValidateRect
GetRawInputData
GetWindowLongPtrW
SetWindowTextW
CreateWindowExW
RegisterClassExW
GetClassInfoExW
GetClassNameW
GetWindowPlacement
GetDC
InvalidateRgn
SetWindowPos
GetMonitorInfoW
MonitorFromWindow
uxtheme
SetWindowTheme
winmm
timeEndPeriod
timeGetDevCaps
timeBeginPeriod
ws2_32
recv
send
ioctlsocket
WSASend
WSARecv
setsockopt
bind
closesocket
WSASocketW
WSAGetLastError
getaddrinfo
WSACleanup
WSAStartup
select
connect
listen
getsockname
getpeername
accept
getsockopt
freeaddrinfo
Sections
.text Size: 2.4MB - Virtual size: 2.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2.3MB - Virtual size: 2.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 106KB - Virtual size: 106KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 26KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ