Static task
static1
General
-
Target
SetupInstall.exe
-
Size
7.4MB
-
MD5
3f4cd0e88059406debf276fbd72c234c
-
SHA1
b02e165e67322d8c252a14cdb5fe60dfb34bc1d3
-
SHA256
fe4a28b49dc094a63f7cefc9644b65bc17873fe181bcf63dac24967bc8b8698d
-
SHA512
a6fcbde7fef950931f972ef2087b158bc017261b778e5d880bdc6ff032efe2280aaf6a7373e467369ca2c22f4f2efb0b692eed5bd32a3872dc88d2f64a103392
-
SSDEEP
196608:N8018DWgku575VlAgL4mB/CICIFT/H9VvI:+018DWzu57XigUmoICIFTv9
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource SetupInstall.exe
Files
-
SetupInstall.exe.exe windows:5 windows x86
0bc04e7bf5bcdf3e4ee90b22371cc4c6
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetErrorMode
GetTickCount
GetFileAttributesW
GetFileSizeEx
GetFileTime
GetStartupInfoW
ExitProcess
HeapAlloc
HeapFree
HeapReAlloc
RtlUnwind
RaiseException
HeapSize
VirtualProtect
VirtualAlloc
VirtualQuery
SetUnhandledExceptionFilter
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetFullPathNameW
UnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetConsoleCP
GetConsoleMode
GetTimeZoneInformation
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetCurrentDirectoryA
GetDriveTypeA
GetProcessHeap
CreateFileA
SetEnvironmentVariableA
GetVolumeInformationW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GetThreadLocale
lstrlenA
GlobalFindAtomW
CompareStringW
LoadLibraryA
GetVersionExA
GlobalAddAtomW
GetModuleHandleA
WritePrivateProfileStringW
InterlockedDecrement
GlobalDeleteAtom
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
lstrcmpW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileW
GetCurrentProcessId
SetLastError
FormatMessageW
LocalFree
lstrlenW
MulDiv
FreeResource
WriteFile
CreateFileW
TerminateThread
ResumeThread
GetCurrentThread
SetThreadPriority
GetCurrentProcess
SetPriorityClass
lstrcatW
lstrcpyW
GetEnvironmentVariableW
CreateMutexW
GetVersionExW
GetSystemInfo
GetModuleHandleW
GetCurrentThreadId
GetLocalTime
GetExitCodeThread
CreateThread
Sleep
RemoveDirectoryW
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessW
GetLastError
GetPrivateProfileIntW
FreeLibrary
GetProcAddress
LoadLibraryW
DeleteFileW
GetModuleFileNameW
MultiByteToWideChar
CopyFileW
SetFileAttributesW
CreateDirectoryW
FindClose
FindFirstFileW
WideCharToMultiByte
GetPrivateProfileStringW
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
FindResourceW
LoadResource
LockResource
TerminateProcess
SizeofResource
user32
PostThreadMessageW
GetNextDlgGroupItem
InvalidateRgn
SetRect
IsRectEmpty
CopyAcceleratorTableW
CharNextW
SetCapture
LoadCursorW
GetSysColorBrush
RegisterWindowMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetMenu
SetForegroundWindow
UpdateWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
PtInRect
DefWindowProcW
CallWindowProcW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowTextW
SetFocus
ShowWindow
MoveWindow
GetDlgCtrlID
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageW
DestroyMenu
CopyRect
SetCursor
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
IsWindowVisible
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
EnableMenuItem
CheckMenuItem
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
RegisterClipboardFormatW
IsWindow
GetDlgItem
CharUpperW
UnregisterClassW
GetMenu
MessageBeep
GetNextDlgTabItem
EndDialog
UnhookWindowsHookEx
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
PostQuitMessage
PostMessageW
GetWindowThreadProcessId
GetParent
GetLastActivePopup
IsWindowEnabled
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
EnableWindow
InvalidateRect
ReleaseCapture
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
ReleaseDC
SetWindowLongW
GetWindowLongW
GetWindowRect
GetDC
SetWindowRgn
AppendMenuW
GetSystemMenu
LoadIconW
SendMessageW
MessageBoxW
gdi32
CreateBitmap
GetStockObject
PtVisible
GetBkColor
ExtSelectClipRgn
CreateRectRgnIndirect
GetRgnBox
GetMapMode
GetWindowExtEx
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutW
TextOutW
GetTextColor
CreateRoundRectRgn
GetViewportExtEx
GetObjectW
GetClipBox
SetMapMode
SetTextColor
SetBkColor
RestoreDC
SaveDC
GetDeviceCaps
DeleteDC
DeleteObject
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
RectVisible
comdlg32
GetFileTitleW
winspool.drv
ClosePrinter
DocumentPropertiesW
OpenPrinterW
advapi32
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegQueryValueExW
AllocateAndInitializeSid
RegDeleteKeyW
RegSetValueExW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
FreeSid
CheckTokenMembership
shell32
ShellExecuteExW
SHGetSpecialFolderPathW
comctl32
InitCommonControlsEx
shlwapi
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFileExistsW
oledlg
OleUIBusyW
ole32
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleFlushClipboard
CoRegisterMessageFilter
CreateStreamOnHGlobal
CoTaskMemFree
CoInitializeEx
CoTaskMemAlloc
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
OleIsCurrentClipboard
oleaut32
SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen
gdiplus
GdipAlloc
GdipGetImageHeight
GdipGetImageWidth
GdipDeleteFont
GdipCreateFont
GdipDeleteFontFamily
GdipGetGenericFontFamilySansSerif
GdipCreateFontFamilyFromName
GdipDrawImageRectI
GdipDrawString
GdipReleaseDC
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdiplusShutdown
GdiplusStartup
GdipCloneImage
GdipLoadImageFromStream
GdipFillPath
GdipSetSmoothingMode
GdipAddPathArc
GdipAddPathLine
GdipDeletePath
GdipCreatePath
GdipDisposeImage
GdipCreateSolidFill
GdipCloneBrush
GdipDeleteBrush
GdipFree
version
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
Sections
.text Size: 255KB - Virtual size: 255KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 68KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 11KB - Virtual size: 34KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 7.0MB - Virtual size: 7.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 54KB - Virtual size: 53KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ