N612-00 RTX3080[.]rar

Sharing

Copy URL Twitter E-mail

General

Target

N612-00 RTX3080.rar
Size

9.9MB
MD5

85987c199e1264fb33489b6ac6586441
SHA1

3294c9f69ff8d5726440bee70b38ee688932293f
SHA256

bd7114e899f1feb9f41f7ae1aec89358fa96a0feb5b3a0e8367e4a07629b0492
SHA512

57d6e425554ed06b539fd3b3ceca3ab4faeaecbc49e4642e459b810130973b0bf22db9a2a99225b106bb0b2c2fde3573a150380ac461746103de3f5c41f14ae5
SSDEEP

196608:GbciJgl7ZEIAUyuDqtbbciJgl7ZEIAUVuDqtkbciJgl7ZEIAUmcK/uDqtu:skl7ZEIAU90Pkl7ZEIAUM0akl7ZEIAUT

Score

3^/10

Malware Config

Signatures

Unsigned PE 3 IoCs

Checks for missing Authenticode signature.

resource
unpack001/N612-00 RTX3080/Manli N612 RTX3080 M3478.exe
unpack001/N612-00 RTX3080/Manli N612 RTX3080 M3481 led.exe
unpack001/N612-00 RTX3080/Manli N612 RTX3080 M3486 Gallardo led.exe

Files

N612-00 RTX3080.rar
.rar
N612-00 RTX3080/Manli N612 RTX3080 M3478.exe
.exe windows:5 windows x64

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetConsoleWindow
GetModuleHandleA
GetCurrentDirectoryA
GetTempPathA
VirtualQuery
LocalAlloc
DeviceIoControl
CreateFileA
GetSystemDirectoryA
GetSystemFirmwareTable
GetSystemPowerStatus
CreateMutexA
SetConsoleTitleA
DeleteFileA
CopyFileA
GlobalUnlock
GetFileAttributesA
GetModuleFileNameA
GetLocalTime
GetCurrentProcess
CloseHandle
GlobalAlloc
GlobalLock
WaitForSingleObject
ReleaseMutex
GetSystemTime
SystemTimeToFileTime
LoadLibraryW
GlobalMemoryStatus
VerSetConditionMask
VerifyVersionInfoW
GetFullPathNameW
GetFileAttributesW
GlobalFree
FlushConsoleInputBuffer
QueryPerformanceCounter
FormatMessageA
LocalFree
QueryPerformanceFrequency
CreateEventA
SetConsoleCtrlHandler
RtlVirtualUnwind
GetStdHandle
GetFileType
WriteFile
MultiByteToWideChar
GetVersion
GetModuleHandleW
GetProcAddress
GetLastError
SetFileAttributesA
GetCurrentThreadId
GetSystemDirectoryW
LoadLibraryExW
GetProcessHeap
SetEndOfFile
CreateProcessA
GetExitCodeProcess
CreateFileW
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetFullPathNameA
SetStdHandle
InitializeCriticalSectionAndSpinCount
LoadLibraryA
FreeLibrary
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FlushFileBuffers
SetFilePointer
ReadFile
GetConsoleCP
GetStartupInfoA
SetHandleCount
HeapCreate
WideCharToMultiByte
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlLookupFunctionEntry
RtlUnwindEx
RaiseException
RtlPcToFileHeader
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlCaptureContext
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
HeapAlloc
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
HeapFree
GetTimeZoneInformation
GetCommandLineA
ExitProcess
HeapReAlloc
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
LCMapStringA
LCMapStringW
GetCPInfo
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
SetLastError
FlsAlloc
HeapSize
GetACP
GetOEMCP
IsValidCodePage
HeapSetInformation

user32

DrawMenuBar
DeleteMenu
GetSystemMenu
SetWindowPos
ShowWindow
SetWindowLongA
GetSystemMetrics
MessageBoxA
FindWindowA
ChangeDisplaySettingsExA
EnumDisplayDevicesA
EnumDisplaySettingsA
ExitWindowsEx
MessageBoxW
GetProcessWindowStation
GetUserObjectInformationW
InsertMenuItemA

advapi32

StartServiceA
DeleteService
CloseServiceHandle
OpenServiceA
CreateServiceA
OpenSCManagerA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegisterEventSourceW
ReportEventW
DeregisterEventSource
ControlService

setupapi

CM_Get_Device_IDA
SetupDiGetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
SetupDiGetDeviceRegistryPropertyA
CM_Reenumerate_DevNode
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
CM_Get_DevNode_Status
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

ws2_32

WSAGetLastError
setsockopt
socket
htonl
htons
closesocket
shutdown
recv
WSASetLastError
send
ntohs
getservbyname
getsockopt
gethostbyname
WSAStartup
ioctlsocket
connect

winmm

waveOutWrite
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveOutUnprepareHeader

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11.1MB - Virtual size: 11.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
N612-00 RTX3080/Manli N612 RTX3080 M3481 led.exe
.exe windows:5 windows x64

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetConsoleWindow
GetModuleHandleA
GetCurrentDirectoryA
GetTempPathA
VirtualQuery
LocalAlloc
DeviceIoControl
CreateFileA
GetSystemDirectoryA
GetSystemFirmwareTable
GetSystemPowerStatus
CreateMutexA
SetConsoleTitleA
DeleteFileA
CopyFileA
GlobalUnlock
GetFileAttributesA
GetModuleFileNameA
GetLocalTime
GetCurrentProcess
CloseHandle
GlobalAlloc
GlobalLock
WaitForSingleObject
ReleaseMutex
GetSystemTime
SystemTimeToFileTime
LoadLibraryW
GlobalMemoryStatus
VerSetConditionMask
VerifyVersionInfoW
GetFullPathNameW
GetFileAttributesW
GlobalFree
FlushConsoleInputBuffer
QueryPerformanceCounter
FormatMessageA
LocalFree
QueryPerformanceFrequency
CreateEventA
SetConsoleCtrlHandler
RtlVirtualUnwind
GetStdHandle
GetFileType
WriteFile
MultiByteToWideChar
GetVersion
GetModuleHandleW
GetProcAddress
GetLastError
SetFileAttributesA
GetCurrentThreadId
GetSystemDirectoryW
LoadLibraryExW
GetProcessHeap
SetEndOfFile
CreateProcessA
GetExitCodeProcess
CreateFileW
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetFullPathNameA
SetStdHandle
InitializeCriticalSectionAndSpinCount
LoadLibraryA
FreeLibrary
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FlushFileBuffers
SetFilePointer
ReadFile
GetConsoleCP
GetStartupInfoA
SetHandleCount
HeapCreate
WideCharToMultiByte
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlLookupFunctionEntry
RtlUnwindEx
RaiseException
RtlPcToFileHeader
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlCaptureContext
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
HeapAlloc
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
HeapFree
GetTimeZoneInformation
GetCommandLineA
ExitProcess
HeapReAlloc
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
LCMapStringA
LCMapStringW
GetCPInfo
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
SetLastError
FlsAlloc
HeapSize
GetACP
GetOEMCP
IsValidCodePage
HeapSetInformation

user32

DrawMenuBar
DeleteMenu
GetSystemMenu
SetWindowPos
ShowWindow
SetWindowLongA
GetSystemMetrics
MessageBoxA
FindWindowA
ChangeDisplaySettingsExA
EnumDisplayDevicesA
EnumDisplaySettingsA
ExitWindowsEx
MessageBoxW
GetProcessWindowStation
GetUserObjectInformationW
InsertMenuItemA

advapi32

StartServiceA
DeleteService
CloseServiceHandle
OpenServiceA
CreateServiceA
OpenSCManagerA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegisterEventSourceW
ReportEventW
DeregisterEventSource
ControlService

setupapi

CM_Get_Device_IDA
SetupDiGetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
SetupDiGetDeviceRegistryPropertyA
CM_Reenumerate_DevNode
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
CM_Get_DevNode_Status
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

ws2_32

WSAGetLastError
setsockopt
socket
htonl
htons
closesocket
shutdown
recv
WSASetLastError
send
ntohs
getservbyname
getsockopt
gethostbyname
WSAStartup
ioctlsocket
connect

winmm

waveOutWrite
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveOutUnprepareHeader

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11.1MB - Virtual size: 11.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
N612-00 RTX3080/Manli N612 RTX3080 M3486 Gallardo led.exe
.exe windows:5 windows x64

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

kernel32

GetConsoleWindow
GetModuleHandleA
GetCurrentDirectoryA
GetTempPathA
VirtualQuery
LocalAlloc
DeviceIoControl
CreateFileA
GetSystemDirectoryA
GetSystemFirmwareTable
GetSystemPowerStatus
CreateMutexA
SetConsoleTitleA
DeleteFileA
CopyFileA
GlobalUnlock
GetFileAttributesA
GetModuleFileNameA
GetLocalTime
GetCurrentProcess
CloseHandle
GlobalAlloc
GlobalLock
WaitForSingleObject
ReleaseMutex
GetSystemTime
SystemTimeToFileTime
LoadLibraryW
GlobalMemoryStatus
VerSetConditionMask
VerifyVersionInfoW
GetFullPathNameW
GetFileAttributesW
GlobalFree
FlushConsoleInputBuffer
QueryPerformanceCounter
FormatMessageA
LocalFree
QueryPerformanceFrequency
CreateEventA
SetConsoleCtrlHandler
RtlVirtualUnwind
GetStdHandle
GetFileType
WriteFile
MultiByteToWideChar
GetVersion
GetModuleHandleW
GetProcAddress
GetLastError
SetFileAttributesA
GetCurrentThreadId
GetSystemDirectoryW
LoadLibraryExW
GetProcessHeap
SetEndOfFile
CreateProcessA
GetExitCodeProcess
CreateFileW
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetLocaleInfoW
GetStringTypeW
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetFullPathNameA
SetStdHandle
InitializeCriticalSectionAndSpinCount
LoadLibraryA
FreeLibrary
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
FlushFileBuffers
SetFilePointer
ReadFile
GetConsoleCP
GetStartupInfoA
SetHandleCount
HeapCreate
WideCharToMultiByte
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlLookupFunctionEntry
RtlUnwindEx
RaiseException
RtlPcToFileHeader
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlCaptureContext
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
HeapAlloc
GetDateFormatA
GetTimeFormatA
GetSystemTimeAsFileTime
HeapFree
GetTimeZoneInformation
GetCommandLineA
ExitProcess
HeapReAlloc
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
LCMapStringA
LCMapStringW
GetCPInfo
EncodePointer
DecodePointer
FlsGetValue
FlsSetValue
FlsFree
SetLastError
FlsAlloc
HeapSize
GetACP
GetOEMCP
IsValidCodePage
HeapSetInformation

user32

DrawMenuBar
DeleteMenu
GetSystemMenu
SetWindowPos
ShowWindow
SetWindowLongA
GetSystemMetrics
MessageBoxA
FindWindowA
ChangeDisplaySettingsExA
EnumDisplayDevicesA
EnumDisplaySettingsA
ExitWindowsEx
MessageBoxW
GetProcessWindowStation
GetUserObjectInformationW
InsertMenuItemA

advapi32

StartServiceA
DeleteService
CloseServiceHandle
OpenServiceA
CreateServiceA
OpenSCManagerA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegisterEventSourceW
ReportEventW
DeregisterEventSource
ControlService

setupapi

CM_Get_Device_IDA
SetupDiGetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiSetClassInstallParamsA
SetupDiGetDeviceRegistryPropertyA
CM_Reenumerate_DevNode
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiEnumDeviceInfo
CM_Get_DevNode_Status
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA

ws2_32

WSAGetLastError
setsockopt
socket
htonl
htons
closesocket
shutdown
recv
WSASetLastError
send
ntohs
getservbyname
getsockopt
gethostbyname
WSAStartup
ioctlsocket
connect

winmm

waveOutWrite
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveOutUnprepareHeader

Sections

.text
Size: 6.3MB - Virtual size: 6.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11.1MB - Virtual size: 11.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 292KB - Virtual size: 292KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

setupapi

ws2_32

winmm

Sections

.text Size: 6.3MB - Virtual size: 6.3MB

.rdata Size: 1.3MB - Virtual size: 1.3MB

.data Size: 11.1MB - Virtual size: 11.3MB

.pdata Size: 292KB - Virtual size: 292KB

.rsrc Size: 512B - Virtual size: 448B

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

setupapi

ws2_32

winmm

Sections

.text Size: 6.3MB - Virtual size: 6.3MB

.rdata Size: 1.3MB - Virtual size: 1.3MB

.data Size: 11.1MB - Virtual size: 11.3MB

.pdata Size: 292KB - Virtual size: 292KB

.rsrc Size: 512B - Virtual size: 448B

bc2f3aa239d20835eb6c5ad13a931f52

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

setupapi

ws2_32

winmm

Sections

.text Size: 6.3MB - Virtual size: 6.3MB

.rdata Size: 1.3MB - Virtual size: 1.3MB

.data Size: 11.1MB - Virtual size: 11.3MB

.pdata Size: 292KB - Virtual size: 292KB

.rsrc Size: 512B - Virtual size: 448B

.text
Size: 6.3MB - Virtual size: 6.3MB

.rdata
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 11.1MB - Virtual size: 11.3MB

.pdata
Size: 292KB - Virtual size: 292KB

.rsrc
Size: 512B - Virtual size: 448B

.text
Size: 6.3MB - Virtual size: 6.3MB

.rdata
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 11.1MB - Virtual size: 11.3MB

.pdata
Size: 292KB - Virtual size: 292KB

.rsrc
Size: 512B - Virtual size: 448B

.text
Size: 6.3MB - Virtual size: 6.3MB

.rdata
Size: 1.3MB - Virtual size: 1.3MB

.data
Size: 11.1MB - Virtual size: 11.3MB

.pdata
Size: 292KB - Virtual size: 292KB

.rsrc
Size: 512B - Virtual size: 448B