VG Player_TC[.]exe

Resubmissions

22/07/2023, 21:29

230722-1b5qpacf3s 3

22/07/2023, 20:38

230722-zew3aace3s 3

Sharing

Copy URL Twitter E-mail

General

Target

VG Player_TC.exe
Size

2.1MB
MD5

2b235010aab953b5240e89b25532b0e2
SHA1

505f2f6ecb32c963ed4c1ebf7a8ad2173c18fdfd
SHA256

cc30472c09ac9c0dadbb365c77ca3ebf967e2cfd4fb67879c97af904cc8693c1
SHA512

db911329da84e469eb9f6e3bd72046db839a136dbcb29b1fef271feceb83f782d14cf4791af96bd8b7967cf29a54881ed553b186d74a95244167703dd17bdeb2
SSDEEP

49152:cAjScyxhkmimemqwX5XSKXout4PJC5FvptPu827pTE27pTS:cEykmimemAut4U5FRt12JE2JS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
VG Player_TC.exe

Files

VG Player_TC.exe
.exe windows x86

b97983346f5e96e5a1647f0b97b938f8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetDriveTypeA
GetStdHandle
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
HeapCreate
HeapDestroy
VirtualFree
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapSize
OutputDebugStringA
ExitProcess
ExitThread
RaiseException
GetStartupInfoA
GetProcessHeap
GetCommandLineA
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapReAlloc
GetSystemTimeAsFileTime
RtlUnwind
GetDateFormatA
GetTimeFormatA
HeapFree
HeapAlloc
LocalFileTimeToFileTime
SetErrorMode
GetOEMCP
GetCPInfo
InterlockedIncrement
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GetDiskFreeSpaceA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
SystemTimeToFileTime
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetThreadLocale
MoveFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
InterlockedDecrement
GetModuleFileNameW
SuspendThread
ResumeThread
GetCurrentProcessId
GlobalAlloc
FormatMessageA
LocalFree
MulDiv
GlobalLock
GlobalUnlock
GlobalFree
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetVersionExA
GetTimeZoneInformation
FreeResource
FindClose
DeleteFileA
FindFirstFileA
ResetEvent
InterlockedExchange
GetVersion
CompareStringA
lstrcmpiA
MultiByteToWideChar
GetStringTypeExA
CompareStringW
Sleep
FreeLibrary
GetModuleFileNameA
ReadFile
WriteFile
SetFilePointer
CreateFileA
GetLogicalDriveStringsA
SizeofResource
WideCharToMultiByte
GetCurrentDirectoryA
LockResource
LoadResource
FindResourceA
GetTickCount
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetLastError
SetLastError
CreateEventA
CreateSemaphoreA
ReleaseMutex
WaitForSingleObject
ReleaseSemaphore
WaitForMultipleObjects
CloseHandle
SetEvent
SetThreadPriority
CreateThread
CreateMutexA
lstrcpyA
lstrcmpA
lstrlenA
DeleteCriticalSection
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection

user32

MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
CharNextA
SetWindowRgn
DrawIcon
FindWindowA
UnregisterClassA
SetParent
DeleteMenu
IsRectEmpty
GetSysColorBrush
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
SetCursorPos
SetCapture
GetMenuItemInfoA
WindowFromPoint
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetMessageA
TranslateMessage
ValidateRect
UnpackDDElParam
ReuseDDElParam
DestroyMenu
GetWindowThreadProcessId
ReleaseCapture
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
SetRectEmpty
BringWindowToTop
SetMenu
TranslateAcceleratorA
GetMenuStringA
AppendMenuA
InsertMenuA
RemoveMenu
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetMenuState
EnableMenuItem
CheckMenuItem
GetDesktopWindow
CreateDialogIndirectParamA
IsWindowEnabled
GetNextDlgTabItem
EndDialog
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
GetScrollRange
SetForegroundWindow
ShowScrollBar
GetMenu
GetMenuItemID
GetMenuItemCount
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
DefWindowProcA
CallWindowProcA
SetWindowPos
CreateMenu
PostThreadMessageA
GetTabbedTextExtentA
GetDCEx
LockWindowUpdate
IntersectRect
SystemParametersInfoA
RegisterClipboardFormatA
ModifyMenuA
IsIconic
GetWindow
InflateRect
PtInRect
DestroyCursor
GetSysColor
DrawStateA
GetParent
InvalidateRect
CopyRect
UpdateWindow
ClientToScreen
GetWindowPlacement
SetRect
SetCursor
LoadCursorA
wsprintfA
PeekMessageA
CharUpperA
GetCursorPos
IsWindowVisible
OffsetRect
GetSubMenu
LoadMenuA
GetActiveWindow
MessageBoxA
SetWindowLongA
GetWindowLongA
DestroyIcon
ReleaseDC
GetDC
IsWindow
PostMessageA
KillTimer
SetTimer
SendMessageA
RedrawWindow
LoadBitmapA
GetDlgCtrlID
GetClientRect
GetWindowRect
GetScrollPos
SetScrollPos
SetScrollRange
GetSystemMetrics
FillRect
EnableWindow

gdi32

ExtSelectClipRgn
CreatePatternBrush
GetStockObject
GetTextExtentPoint32A
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
SetAbortProc
AbortDoc
GetViewportOrgEx
Rectangle
CreateEllipticRgn
LPtoDP
Ellipse
GetBkColor
GetTextColor
GetRgnBox
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceA
GetWindowOrgEx
GetCurrentPositionEx
SetStretchBltMode
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutA
RectVisible
PtVisible
GetPixel
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SetTextAlign
IntersectClipRect
SetROP2
SetPolyFillMode
RestoreDC
GetCharWidthA
TextOutA
SaveDC
CreateDCA
CreateRectRgnIndirect
SetBkColor
GetClipBox
CreateCompatibleBitmap
GetBitmapBits
CreateBitmap
CreateFontIndirectA
EnumFontFamiliesExA
GetDIBits
EndPage
EndDoc
StartPage
StartDocA
GetDeviceCaps
PatBlt
StretchDIBits
CreateDIBitmap
GdiFlush
DeleteDC
StretchBlt
CreateSolidBrush
BitBlt
GetObjectA
CreateCompatibleDC
MoveToEx
SelectObject
CreatePen
SetMapMode
SetBkMode
GetTextMetricsA
LineTo
DeleteObject
SetTextColor

msimg32

TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA
GetJobA

advapi32

RegDeleteKeyA
RegSetValueExA
RegDeleteValueA
RegCloseKey
RegSetValueA
RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegEnumKeyA
RegCreateKeyExA

shell32

DragFinish
DragQueryFileA
ExtractIconA
SHGetFileInfoA

comctl32

InitCommonControlsEx

shlwapi

PathIsUNCA
PathFindExtensionA
PathStripToRootA
PathFindFileNameA

oledlg

ord8

ole32

OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject

oleaut32

SysFreeString
SysAllocString
OleCreateFontIndirect
SafeArrayDestroy
VariantCopy
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear

ddraw

DirectDrawCreateEx

msvfw32

DrawDibOpen
DrawDibDraw
DrawDibClose

avifil32

AVIMakeCompressedStream
AVIStreamSetFormat
AVIFileExit
AVIFileInit
AVIStreamWrite
AVIFileRelease
AVIStreamRelease
AVIFileOpenA
AVIFileCreateStreamA
AVISaveOptions

winmm

waveOutWrite
waveOutPrepareHeader
waveInUnprepareHeader
waveInReset
waveInClose
waveOutUnprepareHeader
waveOutReset
waveOutSetVolume
waveOutClose
waveOutOpen
waveInGetNumDevs
waveOutGetNumDevs
waveInAddBuffer
waveInStart
waveInPrepareHeader

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rodata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 521KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 864KB - Virtual size: 862KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

b97983346f5e96e5a1647f0b97b938f8

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

ddraw

msvfw32

avifil32

winmm

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.rodata Size: 12KB - Virtual size: 10KB

.rdata Size: 192KB - Virtual size: 191KB

.data Size: 48KB - Virtual size: 521KB

.rsrc Size: 864KB - Virtual size: 862KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.rodata
Size: 12KB - Virtual size: 10KB

.rdata
Size: 192KB - Virtual size: 191KB

.data
Size: 48KB - Virtual size: 521KB

.rsrc
Size: 864KB - Virtual size: 862KB