Static task
static1
General
-
Target
speed.exe
-
Size
6.9MB
-
MD5
2788db37bb35ee52716810c47d550172
-
SHA1
c9c02d0abde4eda996407ea0a1802ff2f1dea077
-
SHA256
2cf8bdbf8095fa9e10ea552695404ae9c95b5b0367a7c830520c65a57896220a
-
SHA512
a9dd0de153df003ac82fe3d5c41d8ddf2e691445af20efae2882a73b64f60e9419417994bc9bf18751f16055363e95c038fb2c1b7536453ca83ca50fd88dce40
-
SSDEEP
98304:F0kycCHVfUazxqdFq6ykXsHFLekQVg/p5nE4Ceo4Gz93xr1Ppyy7MKkSJxQBnG3n:FhGdzgdKtFOVSDnxCWsJxQNyz
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource speed.exe
Files
-
speed.exe.exe windows x86
b5556b514e2edec977ada7eb2d8e5d59
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
GetProcAddress
GlobalAlloc
GlobalFree
ExitProcess
advapi32
RegCreateKeyA
gdi32
CreateCompatibleDC
user32
MessageBoxA
version
GetFileVersionInfoA
d3d9
Direct3DCreate9
d3dx9_26
D3DXMatrixMultiply
dinput8
DirectInput8Create
shfolder
SHGetFolderPathA
shell32
ShellExecuteA
dsound
ord6
winmm
waveOutGetDevCapsA
tapi32
lineGetDevCaps
netapi32
Netbios
ws2_32
shutdown
Sections
.text Size: 4.6MB - Virtual size: 4.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 360KB - Virtual size: 357KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 144KB - Virtual size: 883KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 452KB - Virtual size: 449KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Size: 260KB - Virtual size: 259KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
stxt774 Size: 12KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
stxt371 Size: 16KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE