Static task
static1
Behavioral task
behavioral1
Sample
cdrom.exe
Resource
win7-20230831-en
windows7-x64
Behavioral task
behavioral2
Sample
cdrom.exe
Resource
win10v2004-20230915-en
windows10-2004-x64
General
-
Target
cdrom.exe
-
Size
4.3MB
-
MD5
c6a4a253e55ed9e02e09fdfbb8df6e4e
-
SHA1
ba1a1c590519198c17c81ef9d1910fd67a856fa5
-
SHA256
8d45601a7eacf6cdad87da5a19c1866da9400e612e991c0f2452b6e70ae6bac2
-
SHA512
1d4689cb93461de5da5f134f8db8cb2526b6068a8c9bf0fd1cc791592e4f00b893c73b2be496fa77735b3c62d8c55e034464ba6fd89b298b6c79a1619b760a31
-
SSDEEP
98304:nwVBMr8gjGdHwrbc3Br0B+Qg12W98NAuWpDEI:nw4YqUHYBNkuWpDEI
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource cdrom.exe
Files
-
cdrom.exe.exe windows:5 windows x86
2cb60b76a645db0818849c93c432ffa4
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
msacm32
acmMetrics
acmDriverEnum
acmDriverOpen
acmDriverClose
acmDriverDetailsW
acmFormatEnumW
acmStreamOpen
acmStreamClose
acmStreamConvert
acmStreamPrepareHeader
acmStreamUnprepareHeader
acmGetVersion
winmm
mciSendCommandW
mciGetErrorStringW
mixerGetNumDevs
PlaySoundW
mixerGetDevCapsW
mixerOpen
mixerClose
mixerGetLineInfoW
waveOutUnprepareHeader
waveOutPrepareHeader
waveInReset
waveInStart
waveInAddBuffer
waveInUnprepareHeader
waveInPrepareHeader
waveInClose
waveInOpen
waveInGetDevCapsW
waveInGetNumDevs
waveOutGetPosition
waveOutReset
waveOutClose
waveOutOpen
mixerGetLineControlsW
mixerGetControlDetailsW
mixerSetControlDetails
waveOutWrite
wsock32
WSASetLastError
gethostname
gethostbyname
setsockopt
inet_ntoa
WSAGetLastError
kernel32
CompareStringA
GetFileAttributesW
GetFileTime
GetTempFileNameW
SetFileTime
ReplaceFileW
SystemTimeToFileTime
GetUserDefaultLCID
GlobalReAlloc
GlobalGetAtomNameW
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
LocalReAlloc
GetAtomNameW
GlobalFlags
GetLocaleInfoW
GetSystemDefaultUILanguage
UnlockFile
GetFileAttributesExW
GetFileSizeEx
LocalFileTimeToFileTime
SetFileAttributesW
SetErrorMode
GetCurrentDirectoryW
FindResourceExW
VerSetConditionMask
VerifyVersionInfoW
GetProfileIntW
SearchPathW
LocalLock
LocalUnlock
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
WaitForSingleObjectEx
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
lstrcmpA
SetFilePointer
SetEndOfFile
LockFile
GetFullPathNameW
GetFileSize
CreateFileW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FileTimeToLocalFileTime
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryA
LoadLibraryExW
GetModuleHandleA
FreeResource
EncodePointer
OutputDebugStringA
CreateMutexW
ReleaseMutex
SuspendThread
SetThreadPriority
GetCurrentThreadId
CreateEventW
MulDiv
GlobalSize
GetCurrentThread
SetLastError
FormatMessageW
LoadLibraryExA
GetModuleHandleW
VirtualQuery
VirtualProtect
GetSystemInfo
FlushFileBuffers
GetThreadLocale
QueryPerformanceCounter
MoveFileW
CreateDirectoryW
GetDiskFreeSpaceW
GetShortPathNameW
RaiseException
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
DecodePointer
GetComputerNameW
CreateSemaphoreW
ReleaseSemaphore
LocalFree
LocalAlloc
ResumeThread
GetVolumeInformationW
GetDriveTypeW
lstrcpynW
SetThreadLocale
FindNextFileW
FindFirstFileW
FindClose
WaitForMultipleObjects
GetProcAddress
LoadLibraryW
lstrlenW
lstrcatW
lstrcpyW
WinExec
GetVersionExW
GetSystemDirectoryW
MultiByteToWideChar
GlobalFree
GlobalUnlock
GlobalHandle
QueryPerformanceFrequency
CopyFileW
DeleteFileW
GetTempPathW
GetVersion
SetConsoleTitleW
GetConsoleTitleW
FreeConsole
AllocConsole
GetStdHandle
GetExitCodeProcess
GetCurrentProcessId
CreatePipe
DuplicateHandle
ReadFile
GetWindowsDirectoryW
WritePrivateProfileStringW
CreateProcessW
GetModuleFileNameW
GetTickCount
CloseHandle
GetCurrentProcess
GlobalLock
GlobalAlloc
InterlockedDecrement
InterlockedIncrement
WideCharToMultiByte
FindResourceW
SizeofResource
LoadResource
LockResource
GetPrivateProfileStringW
FreeLibrary
ResetEvent
GetPrivateProfileIntW
OutputDebugStringW
Sleep
WaitForSingleObject
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetLastError
TerminateThread
GetStringTypeExW
WriteFile
lstrcmpiW
GetCPInfo
SwitchToThread
LCMapStringW
GetStringTypeW
RtlUnwind
InterlockedPushEntrySList
InterlockedFlushSList
GetCommandLineA
GetCommandLineW
GetFullPathNameA
SetEnvironmentVariableA
SetEnvironmentVariableW
SetCurrentDirectoryA
SetCurrentDirectoryW
GetCurrentDirectoryA
GetFileType
GetModuleFileNameA
GetModuleHandleExW
WriteConsoleW
GetACP
ExitProcess
CreateThread
ExitThread
FreeLibraryAndExitThread
VirtualAlloc
SetStdHandle
HeapQueryInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetTimeZoneInformation
GetDateFormatW
GetTimeFormatW
FreeEnvironmentStringsW
IsValidLocale
EnumSystemLocalesW
SetConsoleCtrlHandler
IsValidCodePage
GetOEMCP
FindFirstFileExA
FindFirstFileExW
FindNextFileA
GetEnvironmentStringsW
GetUserDefaultUILanguage
user32
EndDialog
CreateDialogIndirectParamW
SetWindowTextW
ScrollWindowEx
IsWindowEnabled
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MoveWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
EqualRect
CopyRect
MapWindowPoints
MessageBoxW
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
ScrollWindow
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
GetFocus
SetRectEmpty
SendDlgItemMessageA
UnhookWindowsHookEx
MsgWaitForMultipleObjectsEx
CallNextHookEx
SetWindowsHookExW
ValidateRect
GetActiveWindow
GetMessageW
GetMenuState
GetMenuStringW
EnableScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
DestroyIcon
LoadIconW
OffsetRect
IsWindowVisible
RedrawWindow
GrayStringW
DrawTextW
UnregisterClassW
DrawTextExW
GetIconInfo
GetSysColorBrush
PeekMessageW
DispatchMessageW
TranslateMessage
LoadBitmapW
IsDialogMessageW
ChildWindowFromPoint
TabbedTextOutW
DrawEdge
RemoveMenu
AppendMenuW
InsertMenuW
CheckMenuItem
CreatePopupMenu
GetDlgCtrlID
SetWindowPos
GetWindow
ModifyMenuW
GetMenuItemCount
GetMenuItemID
CopyIcon
DestroyCursor
LoadCursorW
PtInRect
GetSysColor
SetCursor
ReleaseDC
GetDC
ReleaseCapture
SetCapture
ScreenToClient
InvalidateRect
GetNextDlgTabItem
GetDesktopWindow
GetWindowThreadProcessId
GetMenuItemInfoW
SystemParametersInfoW
SetRect
DrawIcon
SetWindowRgn
GetDlgItem
InflateRect
FillRect
GetWindowLongW
IsWindow
MessageBeep
FindWindowW
ShowWindow
GetParent
GetCursorPos
GetSubMenu
LoadMenuW
KillTimer
SetTimer
GetKeyState
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
GetKeyNameTextW
MapVirtualKeyW
WaitMessage
GetWindowDC
ClientToScreen
CharUpperW
GetSystemMetrics
PostQuitMessage
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
IsRectEmpty
GetTabbedTextExtentW
GetWindowRgn
WindowFromDC
CreateMenu
ExitWindowsEx
wsprintfW
FindWindowExW
UpdateWindow
GetWindowRect
GetClientRect
EnableWindow
PostMessageW
SendMessageW
InSendMessage
MonitorFromRect
SendNotifyMessageW
SubtractRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
EnumChildWindows
GetUpdateRect
IsClipboardFormatAvailable
GetAsyncKeyState
IsZoomed
WindowFromPoint
BringWindowToTop
LoadAcceleratorsW
TranslateAcceleratorW
InsertMenuItemW
IntersectRect
LoadImageW
GetMenuBarInfo
UnpackDDElParam
ReuseDDElParam
SetParent
MonitorFromPoint
GetSystemMenu
DeleteMenu
TrackMouseEvent
RealChildWindowFromPoint
CopyImage
GetDialogBaseUnits
CharNextW
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
UnionRect
GetDCEx
LockWindowUpdate
DrawFocusRect
DrawIconEx
HideCaret
InvertRect
NotifyWinEvent
GetMenuDefaultItem
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongW
DrawStateW
DrawFrameControl
SetCursorPos
FrameRect
RegisterClipboardFormatW
UpdateLayeredWindow
GetComboBoxInfo
PostThreadMessageW
DestroyMenu
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
SetMenuDefaultItem
GetDoubleClickTime
CharUpperBuffW
gdi32
SetBkColor
SetTextColor
CreateRectRgnIndirect
PatBlt
CreateDIBPatternBrushPt
CreateHatchBrush
CreatePen
CreatePatternBrush
ExcludeClipRect
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocW
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
DeleteDC
ScaleViewportExtEx
ScaleWindowExtEx
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
DPtoLP
CreateEllipticRgn
Ellipse
CreateDIBSection
LPtoDP
GetBkColor
GetCharWidthW
CombineRgn
GetMapMode
SetRectRgn
GetTextColor
GetRgnBox
EnumFontFamiliesExW
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetDIBits
SetPixel
StretchBlt
SetDIBColorTable
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
OffsetRgn
GetCurrentObject
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
CloseMetaFile
CreateMetaFileW
DeleteMetaFile
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextFaceW
CreateDCW
CopyMetaFileW
CreateBitmap
ExtTextOutW
TextOutW
RectVisible
PtVisible
Escape
CreateRectRgn
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
DeleteObject
Rectangle
GetDeviceCaps
GetTextMetricsW
CreateFontW
GetTextExtentPoint32W
CreateFontIndirectW
CreateSolidBrush
RealizePalette
GetStockObject
SetStretchBltMode
StretchDIBits
SetDIBitsToDevice
SelectPalette
OffsetWindowOrgEx
GetObjectW
CreatePalette
msimg32
TransparentBlt
AlphaBlend
winspool.drv
OpenPrinterW
DocumentPropertiesW
ClosePrinter
GetJobW
advapi32
RegDeleteKeyW
AdjustTokenPrivileges
LookupPrivilegeValueW
RegCloseKey
RegOpenKeyExW
RegQueryValueW
RegCreateKeyExW
RegEnumKeyExW
RegEnumValueW
SetFileSecurityW
GetFileSecurityW
RegEnumKeyW
RegDeleteValueW
OpenProcessToken
RegSetValueW
RegSetValueExW
RegQueryValueExW
RegQueryInfoKeyW
shell32
ShellExecuteW
DragQueryFileW
DragFinish
DragAcceptFiles
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFolderPathW
SHGetFileInfoW
ShellExecuteExW
SHAppBarMessage
SHGetDesktopFolder
SHGetSpecialFolderLocation
ExtractIconW
SHAddToRecentDocs
comctl32
ImageList_AddMasked
ord8
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_Draw
ImageList_GetImageInfo
ImageList_Remove
ImageList_GetIcon
shlwapi
PathAppendW
PathFileExistsW
PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW
UrlUnescapeW
PathRemoveFileSpecW
StrFormatKBSizeW
uxtheme
GetThemeColor
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetThemeSysColor
DrawThemeText
GetWindowTheme
GetCurrentThemeName
ole32
CLSIDFromString
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
ReadClassStg
WriteClassStg
CoTreatAsClass
CreateBindCtx
WriteFmtUserTypeStg
ReadFmtUserTypeStg
OleDuplicateData
ReleaseStgMedium
OleRegGetUserType
SetConvertStg
CoUninitialize
CoCreateGuid
CoCreateInstance
CoInitialize
CLSIDFromProgID
PropVariantCopy
CoInitializeEx
StringFromGUID2
CoDisconnectObject
CoGetClassObject
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleRun
CoFreeUnusedLibraries
OleInitialize
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
CoLockObjectExternal
CoRegisterMessageFilter
RevokeDragDrop
CoRegisterClassObject
CoRevokeClassObject
OleQueryCreateFromData
OleQueryLinkFromData
CoGetMalloc
OleIsRunning
GetRunningObjectTable
CreateOleAdviseHolder
CreateDataAdviseHolder
OleGetIconOfClass
OleSetContainedObject
OleSaveToStream
OleSave
OleLoad
OleCreateFromFile
OleCreateLinkToFile
OleCreateStaticFromData
OleCreateLinkFromData
OleCreateFromData
OleCreate
CreateItemMoniker
CreateGenericComposite
GetHGlobalFromILockBytes
WriteClassStm
OleRegEnumVerbs
OleRegGetMiscStatus
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateFileMoniker
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
OleLockRunning
OleSetMenuDescriptor
RegisterDragDrop
OleUninitialize
oleaut32
VarBstrFromDec
VarBstrFromDate
VarBstrFromCy
VarCyFromStr
VarDateFromStr
VariantCopy
SafeArrayPtrOfIndex
SafeArrayCopy
SafeArrayPutElement
SafeArrayGetElement
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayUnlock
SafeArrayLock
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
OleCreateFontIndirect
SafeArrayDestroy
SafeArrayDestroyData
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
VarDecFromStr
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysReAllocStringLen
RegisterTypeLi
LoadRegTypeLi
LoadTypeLi
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysStringByteLen
SysFreeString
SafeArrayRedim
SafeArrayAllocDescriptor
oledlg
OleUIBusyW
ws2_32
ntohs
recv
recvfrom
select
send
sendto
socket
WSAStartup
WSACleanup
inet_addr
inet_ntoa
htons
htonl
getsockname
getpeername
accept
bind
closesocket
WSAAsyncSelect
connect
version
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
gdiplus
GdipCreateBitmapFromFile
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipCreateBitmapFromStream
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipFree
GdipAlloc
GdiplusShutdown
GdipGetImagePaletteSize
GdiplusStartup
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageI
GdipDisposeImage
GdipGetImagePalette
GdipGetImageGraphicsContext
oleacc
LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow
wininet
InternetSetFilePointer
InternetReadFile
InternetQueryOptionW
InternetCrackUrlW
InternetCanonicalizeUrlW
InternetOpenW
InternetCloseHandle
InternetConnectW
InternetWriteFile
InternetQueryDataAvailable
InternetFindNextFileW
InternetSetOptionW
InternetGetLastResponseInfoW
InternetOpenUrlW
FtpFindFirstFileW
FtpGetFileW
FtpPutFileW
FtpDeleteFileW
FtpRenameFileW
FtpOpenFileW
FtpCreateDirectoryW
FtpRemoveDirectoryW
FtpSetCurrentDirectoryW
FtpGetCurrentDirectoryW
FtpCommandW
GopherCreateLocatorW
GopherFindFirstFileW
InternetSetStatusCallbackW
GopherOpenFileW
InternetErrorDlg
InternetGetCookieW
InternetSetCookieW
HttpQueryInfoW
HttpEndRequestW
HttpSendRequestExW
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
GopherGetAttributeW
imm32
ImmGetContext
ImmReleaseContext
ImmGetOpenStatus
Sections
.text Size: 3.2MB - Virtual size: 3.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 825KB - Virtual size: 824KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 75KB - Virtual size: 482KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 287KB - Virtual size: 287KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ