zig-app-template[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

zig-app-template.exe
Size

1.0MB
MD5

3223d8aeb80cd47fcc2a79a37a4b8664
SHA1

8ec20d838f6de086622ffc6699f3fd9c879a495e
SHA256

eb9557073e91b29afb78e99cf6fab3f272a5ab26a75f9705384a07a6b883e41f
SHA512

2fbe08357d9e892084514fed11d2c226ebd0cf46339186a0ba8f0e87fd21fd711e7aac0998c088ed383e765c0fb387287ec91d393103babffe03ad0cf2720d41
SSDEEP

24576:48CTa5s9rJ0eP8/ReStz2W2kDtrjrG58wv5+/RTXU:ftsNJ0C85eStz2W2kDtrjrG58d/d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
zig-app-template.exe

Files

zig-app-template.exe
.exe windows x64

77afeacbc154ca0dacf8e336db964a4b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

AcquireSRWLockExclusive
AddVectoredExceptionHandler
CreateToolhelp32Snapshot
DeleteCriticalSection
EnterCriticalSection
ExitProcess
FormatMessageW
GetConsoleMode
GetConsoleScreenBufferInfo
GetCurrentThreadId
GetFileSizeEx
GetFullPathNameW
GetLastError
GetModuleHandleA
GetProcAddress
GetStartupInfoA
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
Module32First
Module32Next
MultiByteToWideChar
QueryPerformanceCounter
QueryPerformanceFrequency
ReadFile
ReleaseSRWLockExclusive
RemoveVectoredExceptionHandler
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
SetConsoleTextAttribute
SetFilePointerEx
SetUnhandledExceptionFilter
Sleep
TlsGetValue
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
WideCharToMultiByte
WriteFile
__C_specific_handler

msvcrt

___lc_codepage_func
___mb_cur_max_func
__getmainargs
__initenv
__iob_func
__set_app_type
__setusermatherr
_acmdln
_amsg_exit
_cexit
_commode
_errno
_filelengthi64
_fileno
_fmode
_initterm
_lock
_onexit
_unlock
abort
calloc
exit
fclose
feof
ferror
fflush
fgetpos
fopen
fprintf
fputc
fread
free
fseek
fsetpos
ftell
fwrite
getc
islower
isspace
isupper
isxdigit
localeconv
malloc
realloc
signal
strcmp
strerror
strlen
strncmp
strncpy
strstr
strtol
strtoul
tolower
ungetc
vfprintf
wcslen

ntdll

NtClose
NtCreateFile
NtLockFile
NtQueryInformationFile
NtQueryVolumeInformationFile
RtlEqualUnicodeString
RtlWaitOnAddress

user32

AdjustWindowRectEx
ClientToScreen
ClipCursor
CloseTouchInputHandle
CreateWindowExA
DefWindowProcA
DestroyWindow
DispatchMessageA
GetActiveWindow
GetClientRect
GetCursorPos
GetDC
GetKeyState
GetMessageTime
GetTouchInputInfo
LoadCursorA
LoadCursorW
MapVirtualKeyW
MessageBoxA
PeekMessageA
PeekMessageW
PostQuitMessage
PtInRect
RegisterClassExA
RegisterRawInputDevices
ReleaseDC
ScreenToClient
SetCursor
SetCursorPos
SetProcessDpiAwarenessContext
SetWindowPos
ShowWindow
TranslateMessage
UpdateWindow
WindowFromPoint

gdi32

ChoosePixelFormat
SetPixelFormat
SwapBuffers

opengl32

wglCreateContext
wglDeleteContext
wglGetProcAddress
wglMakeCurrent

Sections

.text
Size: 746KB - Virtual size: 746KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 281KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.buildid
Size: 512B - Virtual size: 142B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 632B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

77afeacbc154ca0dacf8e336db964a4b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

ntdll

user32

gdi32

opengl32

Sections

.text Size: 746KB - Virtual size: 746KB

.rdata Size: 281KB - Virtual size: 281KB

.buildid Size: 512B - Virtual size: 142B

.data Size: 1024B - Virtual size: 12KB

.pdata Size: 22KB - Virtual size: 22KB

.tls Size: 512B - Virtual size: 24B

.reloc Size: 1024B - Virtual size: 632B

.text
Size: 746KB - Virtual size: 746KB

.rdata
Size: 281KB - Virtual size: 281KB

.buildid
Size: 512B - Virtual size: 142B

.data
Size: 1024B - Virtual size: 12KB

.pdata
Size: 22KB - Virtual size: 22KB

.tls
Size: 512B - Virtual size: 24B

.reloc
Size: 1024B - Virtual size: 632B