manli3080gallardo[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

manli3080gallardo.rar
Size

6.6MB
MD5

6cae00c036cfe40caebd241bd0230087
SHA1

f15ba642c50cf704bed768dadc45c769915266c7
SHA256

fae062e024492d57c274193e7592d3a1d323b3afa3a6f1a806c507de6aa88e80
SHA512

0b3ad2aaafe4c7a79705f6d7c23aaf2f92ab1d10ef75b9c5781af9de146b152bd53ac070e0f263fbd665fbafce246229e93b351dfdf728b589bff27f20fa6ea5
SSDEEP

196608:ObciJgl7ZEIAU35cxGCuDqtFbciJgl7ZEIAUCDsuDqtL:kkl7ZEIAU3yxA0Bkl7ZEIAU6f0L

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/N613-00 RTX3090/Manli N613 RTX3090 M3478.exe
unpack001/N613-00 RTX3090/Manli N613 RTX3090 M3481 Gallardo.exe

Files

manli3080gallardo.rar
.rar
N613-00 RTX3090/Manli N613 RTX3090 M3478.exe
.exe windows:5 windows x64

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetConsoleWindow
GetModuleHandleA
GetCurrentDirectoryA
GetTempPathA
VirtualQuery
LocalAlloc
DeviceIoControl
CreateFileA
GetSystemDirectoryA
GetSystemFirmwareTable
GetSystemPowerStatus
CreateMutexA
SetConsoleTitleA
DeleteFileA
CopyFileA
GlobalUnlock
GetFileAttributesA
GetModuleFileNameA
GetLocalTime
GetCurrentProcess
CloseHandle
GlobalAlloc
GlobalLock
WaitForSingleObject
ReleaseMutex
GetSystemTime
SystemTimeToFileTime
LoadLibraryW
GlobalMemoryStatus
VerSetConditionMask
VerifyVersionInfoW
GetFullPathNameW
GetFileAttributesW
GlobalFree
FlushConsoleInputBuffer
QueryPerformanceCounter
FormatMessageA
LocalFree
QueryPerformanceFrequency
CreateEventA
SetConsoleCtrlHandler
RtlVirtualUnwind
GetStdHandle
GetFileType
WriteFile
MultiByteToWideChar
GetVersion
GetModuleHandleW
GetProcAddress
GetLastError
SetFileAttributesA
GetCurrentThreadId
GetSystemDirectoryW
LoadLibraryExW
GetProcessHeap
SetEndOfFile
CreateProcessA
GetExitCodeProcess
CreateFileW
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetFullPathNameA
SetStdHandle
InitializeCriticalSectionAndSpinCount
LoadLibraryA
FreeLibrary
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FlushFileBuffers
SetFilePointer
ReadFile
GetConsoleCP
GetStartupInfoA
SetHandleCount
HeapCreate
WideCharToMultiByte
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlLookupFunctionEntry
RtlUnwindEx
RaiseException
RtlPcToFileHeader
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlCaptureContext
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
HeapAlloc
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
HeapFree
GetTimeZoneInformation
GetCommandLineA
ExitProcess
HeapReAlloc
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
LCMapStringA
LCMapStringW
GetCPInfo
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
SetLastError
FlsAlloc
HeapSize
GetACP
GetOEMCP
IsValidCodePage
HeapSetInformation

user32

DrawMenuBar
DeleteMenu
GetSystemMenu
SetWindowPos
ShowWindow
SetWindowLongA
GetSystemMetrics
MessageBoxA
FindWindowA
ChangeDisplaySettingsExA
EnumDisplayDevicesA
EnumDisplaySettingsA
ExitWindowsEx
MessageBoxW
GetProcessWindowStation
GetUserObjectInformationW
InsertMenuItemA

advapi32

StartServiceA
DeleteService
CloseServiceHandle
OpenServiceA
CreateServiceA
OpenSCManagerA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegisterEventSourceW
ReportEventW
DeregisterEventSource
ControlService

setupapi

CM_Get_Device_IDA
SetupDiGetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
SetupDiGetDeviceRegistryPropertyA
CM_Reenumerate_DevNode
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
CM_Get_DevNode_Status
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

ws2_32

WSAGetLastError
setsockopt
socket
htonl
htons
closesocket
shutdown
recv
WSASetLastError
send
ntohs
getservbyname
getsockopt
gethostbyname
WSAStartup
ioctlsocket
connect

winmm

waveOutWrite
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveOutUnprepareHeader

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11.1MB - Virtual size: 11.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
N613-00 RTX3090/Manli N613 RTX3090 M3481 Gallardo.exe
.exe windows:5 windows x64

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetConsoleWindow
GetModuleHandleA
GetCurrentDirectoryA
GetTempPathA
VirtualQuery
LocalAlloc
DeviceIoControl
CreateFileA
GetSystemDirectoryA
GetSystemFirmwareTable
GetSystemPowerStatus
CreateMutexA
SetConsoleTitleA
DeleteFileA
CopyFileA
GlobalUnlock
GetFileAttributesA
GetModuleFileNameA
GetLocalTime
GetCurrentProcess
CloseHandle
GlobalAlloc
GlobalLock
WaitForSingleObject
ReleaseMutex
GetSystemTime
SystemTimeToFileTime
LoadLibraryW
GlobalMemoryStatus
VerSetConditionMask
VerifyVersionInfoW
GetFullPathNameW
GetFileAttributesW
GlobalFree
FlushConsoleInputBuffer
QueryPerformanceCounter
FormatMessageA
LocalFree
QueryPerformanceFrequency
CreateEventA
SetConsoleCtrlHandler
RtlVirtualUnwind
GetStdHandle
GetFileType
WriteFile
MultiByteToWideChar
GetVersion
GetModuleHandleW
GetProcAddress
GetLastError
SetFileAttributesA
GetCurrentThreadId
GetSystemDirectoryW
LoadLibraryExW
GetProcessHeap
SetEndOfFile
CreateProcessA
GetExitCodeProcess
CreateFileW
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetFullPathNameA
SetStdHandle
InitializeCriticalSectionAndSpinCount
LoadLibraryA
FreeLibrary
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FlushFileBuffers
SetFilePointer
ReadFile
GetConsoleCP
GetStartupInfoA
SetHandleCount
HeapCreate
WideCharToMultiByte
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlLookupFunctionEntry
RtlUnwindEx
RaiseException
RtlPcToFileHeader
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlCaptureContext
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
HeapAlloc
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
HeapFree
GetTimeZoneInformation
GetCommandLineA
ExitProcess
HeapReAlloc
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
LCMapStringA
LCMapStringW
GetCPInfo
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
SetLastError
FlsAlloc
HeapSize
GetACP
GetOEMCP
IsValidCodePage
HeapSetInformation

user32

DrawMenuBar
DeleteMenu
GetSystemMenu
SetWindowPos
ShowWindow
SetWindowLongA
GetSystemMetrics
MessageBoxA
FindWindowA
ChangeDisplaySettingsExA
EnumDisplayDevicesA
EnumDisplaySettingsA
ExitWindowsEx
MessageBoxW
GetProcessWindowStation
GetUserObjectInformationW
InsertMenuItemA

advapi32

StartServiceA
DeleteService
CloseServiceHandle
OpenServiceA
CreateServiceA
OpenSCManagerA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegisterEventSourceW
ReportEventW
DeregisterEventSource
ControlService

setupapi

CM_Get_Device_IDA
SetupDiGetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
SetupDiGetDeviceRegistryPropertyA
CM_Reenumerate_DevNode
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
CM_Get_DevNode_Status
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

ws2_32

WSAGetLastError
setsockopt
socket
htonl
htons
closesocket
shutdown
recv
WSASetLastError
send
ntohs
getservbyname
getsockopt
gethostbyname
WSAStartup
ioctlsocket
connect

winmm

waveOutWrite
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveOutUnprepareHeader

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11.1MB - Virtual size: 11.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

setupapi

ws2_32

winmm

Sections

.text Size: 6.3MB - Virtual size: 6.3MB

.rdata Size: 1.3MB - Virtual size: 1.3MB

.data Size: 11.1MB - Virtual size: 11.3MB

.pdata Size: 292KB - Virtual size: 292KB

.rsrc Size: 512B - Virtual size: 448B

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

setupapi

ws2_32

winmm

Sections

.text Size: 6.3MB - Virtual size: 6.3MB

.rdata Size: 1.3MB - Virtual size: 1.3MB

.data Size: 11.1MB - Virtual size: 11.3MB

.pdata Size: 292KB - Virtual size: 292KB

.rsrc Size: 512B - Virtual size: 448B

.text
Size: 6.3MB - Virtual size: 6.3MB

.rdata
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 11.1MB - Virtual size: 11.3MB

.pdata
Size: 292KB - Virtual size: 292KB

.rsrc
Size: 512B - Virtual size: 448B

.text
Size: 6.3MB - Virtual size: 6.3MB

.rdata
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 11.1MB - Virtual size: 11.3MB

.pdata
Size: 292KB - Virtual size: 292KB

.rsrc
Size: 512B - Virtual size: 448B