ruffle-nightly-2023_08_20-windows-x86_64[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

ruffle-nightly-2023_08_20-windows-x86_64.zip
Size

8.3MB
MD5

b8e8a4ce13d84c69de3362eb04cfb476
SHA1

be0fed736f96e66750dd3a174f3e32f40a2eb3c5
SHA256

a0c6223587f2bd591e081e32d051a53cfdda7c718bf06a984adb26c4cf9bafd9
SHA512

eab4986c89e81e9792fa988b8c40393f596dd20c7684daca09239412351f5770a7b6c66c0092baec28c97f06d3b52f4e55d8baafbcebb07c179824b22f3fee86
SSDEEP

196608:LidmoAKb68YWMves/V8BQlntANCFWBWMDuJqjIZmAHn:Li3AKb680vx/V8ibFW0L9QAH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/ruffle.exe

Files

ruffle-nightly-2023_08_20-windows-x86_64.zip
.zip
LICENSE.md
README.md
ruffle.exe
.exe windows x64

7b829d2dda3d057fe0424473c2e2c0ab

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

shlwapi

AssocQueryStringW

ws2_32

WSASocketW
getpeername
ioctlsocket
freeaddrinfo
getaddrinfo
recv
listen
htonl
getsockname
connect
bind
accept
select
__WSAFDIsSet
socket
htons
WSAIoctl
setsockopt
WSACleanup
WSAStartup
WSASetLastError
ntohs
WSAGetLastError
WSACreateEvent
WSACloseEvent
send
getsockopt
closesocket

crypt32

CertFreeCertificateChain
CertGetCertificateChain
CertFreeCertificateChainEngine
CertCreateCertificateChainEngine
CryptQueryObject
CertGetNameStringA
CertFindExtension
CryptDecodeObjectEx
CertFindCertificateInStore
CertGetEnhancedKeyUsage
CertCloseStore
CryptStringToBinaryA
CertFreeCertificateContext
CertDuplicateCertificateContext
CertEnumCertificatesInStore
CertAddCertificateContextToStore
PFXImportCertStore
CertOpenStore

kernel32

GetCommandLineA
CloseHandle
SetEvent
WriteFile
FreeLibraryAndExitThread
ExitThread
FlsAlloc
FlsGetValue
FlsSetValue
FileTimeToSystemTime
PeekNamedPipe
GetDriveTypeW
RtlUnwind
AttachConsole
RtlPcToFileHeader
TlsFree
GetCurrentThreadId
TlsAlloc
InitializeCriticalSectionAndSpinCount
RaiseException
CreateEventA
GetModuleHandleA
GetProcAddress
GetACP
GetOEMCP
GetSystemInfo
EncodePointer
lstrlenW
CreateFileMappingW
MapViewOfFile
GetCurrentProcess
DuplicateHandle
UnmapViewOfFile
VirtualProtect
FlushFileBuffers
GetUserDefaultLocaleName
FormatMessageW
GetLastError
GetCPInfo
Sleep
RtlUnwindEx
GetStartupInfoW
GlobalLock
GlobalSize
GlobalUnlock
IsDebuggerPresent
FlsFree
GetDateFormatW
InitializeSListHead
GlobalAlloc
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
GlobalFree
WideCharToMultiByte
MultiByteToWideChar
UnhandledExceptionFilter
GetTimeFormatW
RtlVirtualUnwind
CompareStringW
GetConsoleOutputCP
LCMapStringW
GetSystemTimeAsFileTime
TlsSetValue
GetModuleHandleW
GetStringTypeW
TlsGetValue
CreateThread
SetLastError
QueryPerformanceCounter
GetTickCount
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
QueryPerformanceFrequency
GetSystemDirectoryA
FreeLibrary
LoadLibraryA
MoveFileExA
WaitForSingleObjectEx
GetFileAttributesExW
GetTimeZoneInformation
FreeConsole
TryAcquireSRWLockExclusive
ReleaseSRWLockExclusive
ReleaseSRWLockShared
AcquireSRWLockShared
GetEnvironmentVariableA
SleepEx
VerSetConditionMask
VerifyVersionInfoW
CreateFileA
GetFileSizeEx
ReadFile
PostQueuedCompletionStatus
CreateIoCompletionPort
SetFileCompletionNotificationModes
GetQueuedCompletionStatusEx
SetHandleInformation
GetCurrentProcessId
SleepConditionVariableSRW
WaitForMultipleObjectsEx
WriteConsoleW
GetFileAttributesW
GetProcessHeap
HeapAlloc
HeapFree
WaitForSingleObject
CreateProcessW
GetWindowsDirectoryW
GetSystemDirectoryW
ReadFileEx
CreateNamedPipeW
GetFullPathNameW
ExitProcess
GetFinalPathNameByHandleW
DeleteFileW
FindFirstFileW
CreateDirectoryW
SetStdHandle
CreateFileW
FindNextFileW
HeapReAlloc
WakeConditionVariable
WakeAllConditionVariable
TerminateProcess
GetExitCodeProcess
WriteFileEx
SetFilePointerEx
GetCommandLineW
AcquireSRWLockExclusive
SetEnvironmentVariableW
GetEnvironmentVariableW
GetEnvironmentStringsW
GetCurrentDirectoryW
SwitchToThread
SetThreadStackGuarantee
CompareStringOrdinal
FindClose
FreeEnvironmentStringsW
GetFileInformationByHandleEx
GetFileType
SetEndOfFile
OutputDebugStringW
FindFirstFileExW
ReadConsoleW
GetStdHandle
GetFileInformationByHandle
TzSpecificLocalTimeToSystemTime
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
RemoveVectoredExceptionHandler
AddVectoredExceptionHandler
LoadLibraryExW
IsValidCodePage
GetModuleHandleExW
GetModuleFileNameW
SetThreadErrorMode
GetCurrentThread
RtlCaptureContext
RtlLookupFunctionEntry
ReleaseMutex
CreateMutexA
GetConsoleScreenBufferInfo
SetConsoleTextAttribute
GetConsoleMode
SetConsoleMode
HeapSize

user32

GetClipCursor
ShowCursor
GetWindowRect
ClientToScreen
GetRawInputData
ReleaseCapture
SetCapture
PostMessageW
MsgWaitForMultipleObjectsEx
PeekMessageW
RegisterWindowMessageA
RegisterRawInputDevices
TranslateMessage
GetClientRect
EnumDisplayMonitors
SetWindowTextW
SendMessageW
SetWindowLongW
GetActiveWindow
RedrawWindow
GetSystemMenu
EnableMenuItem
GetWindowLongW
DispatchMessageW
SendInput
AdjustWindowRectEx
IsProcessDPIAware
RegisterClipboardFormatW
ClipCursor
CreateIcon
SystemParametersInfoA
SetForegroundWindow
GetWindowLongPtrW
SetWindowLongPtrW
ValidateRect
GetKeyState
MapVirtualKeyW
CloseClipboard
SetClipboardData
EmptyClipboard
GetDC
GetClipboardData
IsClipboardFormatAvailable
OpenClipboard
GetKeyboardState
ShowWindow
SetWindowPlacement
GetWindowPlacement
ChangeDisplaySettingsExW
GetMessageW
MapVirtualKeyA
CreateWindowExW
RegisterClassExW
InvalidateRgn
SetWindowDisplayAffinity
GetKeyboardLayout
ToUnicodeEx
RegisterTouchWindow
GetSystemMetrics
SetWindowPos
GetMonitorInfoW
MonitorFromWindow
GetCursorPos
CloseTouchInputHandle
GetTouchInputInfo
SetCursor
LoadCursorW
TrackMouseEvent
MonitorFromRect
DestroyWindow
GetMenu
ScreenToClient
MessageBoxW
GetUpdateRect
DefWindowProcW
PostThreadMessageW
DestroyIcon

ole32

CoInitializeEx
CoTaskMemFree
RevokeDragDrop
CoCreateInstance
RegisterDragDrop
OleInitialize
CoUninitialize

gdi32

DeleteObject
GetDeviceCaps
CreateRectRgn

dwmapi

DwmEnableBlurBehindWindow

advapi32

CryptDestroyHash
CryptHashData
CryptCreateHash
CryptGetHashParam
CryptReleaseContext
CryptAcquireContextA
SystemFunction036
RegQueryValueExW
RegOpenKeyExW

shell32

SHGetKnownFolderPath
DragFinish
SHCreateItemFromParsingName
DragQueryFileW

bcrypt

BCryptGenRandom

oleaut32

SysStringLen
SysFreeString
GetErrorInfo

winmm

timeEndPeriod
timeBeginPeriod
timeGetDevCaps

uxtheme

SetWindowTheme

imm32

ImmGetContext
ImmGetCompositionStringW
ImmAssociateContextEx
ImmReleaseContext
ImmSetCandidateWindow

d3dcompiler_47

D3DCompile

ntdll

NtReadFile
NtWriteFile
RtlNtStatusToDosError

Sections

.text
Size: 15.3MB - Virtual size: 15.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4.7MB - Virtual size: 4.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 253KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 119KB - Virtual size: 119KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7b829d2dda3d057fe0424473c2e2c0ab

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

ws2_32

crypt32

kernel32

user32

ole32

gdi32

dwmapi

advapi32

shell32

bcrypt

oleaut32

winmm

uxtheme

imm32

d3dcompiler_47

ntdll

Sections

.text Size: 15.3MB - Virtual size: 15.3MB

.rdata Size: 4.7MB - Virtual size: 4.7MB

.data Size: 17KB - Virtual size: 60KB

.pdata Size: 253KB - Virtual size: 253KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 8KB - Virtual size: 7KB

.reloc Size: 119KB - Virtual size: 119KB

.text
Size: 15.3MB - Virtual size: 15.3MB

.rdata
Size: 4.7MB - Virtual size: 4.7MB

.data
Size: 17KB - Virtual size: 60KB

.pdata
Size: 253KB - Virtual size: 253KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 8KB - Virtual size: 7KB

.reloc
Size: 119KB - Virtual size: 119KB