Setup[.]exe | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

Setup.exe
Size

2.4MB
MD5

991711852831d127fe3239e9d2653fbe
SHA1

74d9afa5816622bf0e6b306bd69773523fbd0712
SHA256

11cba394b9d865919df1ea8d709bcebe88905cc1d9890b92671e325e165f771a
SHA512

4338f9789ff052c309e55566cb7733e660e19adfef816fd32188558d063ad3ee1ad3243d6d9ec68e52a94cd87166f914cc8b312c910f06f6d2fd753caae81b02
SSDEEP

49152:6ifG/bu+0GRo2MvsdFELYiYsfvOw03Zt81f1dNIv2TCxJ:EfK2YmOLLYsfvOwMZt81f1dNIO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Setup.exe

Files

Setup.exe
.exe windows:6 windows x86 arch:x86

290f2b4cbf9f6a3b60d55c4dd3eb47fc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\2020\Windows\ASUS\PCE-AX58BT_EW-7122PBX\Src\Setup\Release\Setup.pdb

Imports

kernel32

GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
VirtualQuery
VirtualAlloc
GetSystemInfo
HeapQueryInformation
ExitProcess
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
RtlUnwind
OutputDebugStringW
GetACP
GetStringTypeW
LCMapStringW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
Sleep
SearchPathW
GetProfileIntW
GetTempPathW
GetTempFileNameW
GetTickCount
VerifyVersionInfoW
VerSetConditionMask
FindResourceExW
GetWindowsDirectoryW
SetErrorMode
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
GetCurrentDirectoryW
lstrcpyW
VirtualProtect
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
CompareStringW
GlobalFlags
LocalReAlloc
LocalAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
FileTimeToSystemTime
GlobalGetAtomNameW
GetThreadLocale
lstrcmpiW
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcmpA
GetVersionExW
GetCurrentThread
ResumeThread
SuspendThread
SetThreadPriority
CreateEventW
SetEvent
GetCurrentProcessId
InitializeCriticalSectionAndSpinCount
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
GetModuleHandleA
SizeofResource
OutputDebugStringA
SetLastError
CopyFileW
FormatMessageW
LocalFree
GlobalSize
WideCharToMultiByte
GlobalReAlloc
FreeResource
FreeLibrary
LoadLibraryW
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
MulDiv
GetPrivateProfileStringW
GetLocaleInfoW
GetProcessHeap
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
GetModuleFileNameW
HeapFree
GetCurrentProcess
GetProcAddress
GetModuleHandleW
CreateMutexW
InitializeCriticalSectionEx
GetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
CloseHandle
WaitForSingleObject
CreateProcessW
GetStartupInfoW
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
GetCommandLineW
WriteConsoleW

user32

DeleteMenu
ReleaseCapture
SetCapture
WaitMessage
IntersectRect
DestroyIcon
TrackMouseEvent
GetAsyncKeyState
CopyImage
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
RealChildWindowFromPoint
GetSysColorBrush
MapVirtualKeyW
GetKeyNameTextW
CharUpperW
WindowFromPoint
ShowOwnedPopups
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
GetCursorPos
TranslateMessage
GetMessageW
GetWindowThreadProcessId
ClientToScreen
GetWindowDC
SendDlgItemMessageA
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetTimer
EqualRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
EmptyClipboard
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
SetFocus
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DrawStateW
DrawEdge
DrawFrameControl
EnableWindow
GetWindowRect
InvalidateRect
GetClientRect
FillRect
SetWindowPos
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
LoadMenuW
GetDesktopWindow
CharNextW
CopyAcceleratorTableW
InvalidateRgn
IsRectEmpty
GetNextDlgGroupItem
MessageBeep
CreatePopupMenu
GetMenuDefaultItem
DrawFocusRect
DrawIconEx
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
SetActiveWindow
IsWindowEnabled
GetActiveWindow
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongW
SetWindowRgn
OpenClipboard
CloseClipboard
PtInRect
SetClipboardData
SendMessageW
RedrawWindow
MessageBoxW
KillTimer
LoadImageW
LoadIconW
IsIconic
GetSystemMetrics
DrawIcon
SetParent
ReleaseDC
UnregisterClassW
GetDC
GetSysColor
GetWindowLongW
SetWindowLongW
GetParent
SetCursor
LoadCursorW
IsWindowVisible
SetRect
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
IsWindow
SetRectEmpty
InflateRect
IsCharLowerW
CopyRect
OffsetRect
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetNextDlgTabItem
IsZoomed
GetSystemMenu
BringWindowToTop
SetCursorPos
CopyIcon
FrameRect
LoadAcceleratorsW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
RegisterClipboardFormatW
UnionRect
UpdateLayeredWindow
MonitorFromPoint
GetComboBoxInfo
PostThreadMessageW
GetKeyboardLayout
DestroyCursor
GetWindowRgn
CreateMenu
SubtractRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
GetUpdateRect
IsClipboardFormatAvailable
CharUpperBuffW
ModifyMenuW
GetDoubleClickTime
SetMenuDefaultItem
LockWindowUpdate
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
UpdateWindow

gdi32

RoundRect
CreateDIBSection
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CopyMetaFileW
CreateDCW
SetBkColor
SetTextColor
CreateBitmap
CreateHatchBrush
CreatePen
CreatePatternBrush
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
BitBlt
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
GetTextMetricsW
GetMapMode
SetRectRgn
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
SetDIBColorTable
Ellipse
CreatePolygonRgn
Polygon
Polyline
LPtoDP
Rectangle
OffsetRgn
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
CreateCompatibleBitmap
GetCurrentObject
CreateFontIndirectW
GetDeviceCaps
GetStockObject
CreateSolidBrush
CombineRgn
CreateRoundRectRgn
CreateEllipticRgn
CreateRectRgn
GetTextExtentPoint32W
AddFontResourceW
GetObjectW
DeleteObject
CreateCompatibleDC
GetDIBColorTable
StretchBlt
SelectObject
SetWindowExtEx
IntersectClipRect
DeleteDC

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegDeleteValueW
RegCreateKeyW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyW
RegCloseKey
RegSetValueExW

shell32

DragFinish
FindExecutableW
ShellExecuteExW
SHGetFileInfoW
SHGetPathFromIDListW
SHAppBarMessage
SHBrowseForFolderW
ShellExecuteW
DragQueryFileW
SHGetDesktopFolder
SHGetSpecialFolderLocation

comctl32

InitCommonControlsEx
_TrackMouseEvent

shlwapi

PathFindFileNameW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathFindExtensionW
PathRemoveFileSpecW

uxtheme

GetCurrentThemeName
GetThemeSysColor
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
IsAppThemed
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemePartSize

ole32

OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CoInitializeEx
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitialize
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
CoCreateGuid

oleaut32

SysAllocString
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantChangeType
VariantCopy
VarBstrFromDate
LoadTypeLi
OleCreateFontIndirect
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
OleLoadPicture

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipDrawImageI
GdipDrawImageRectI
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipSetTextRenderingHint
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipDrawImageRectRect
GdipGetImageBounds
GdipCreateBitmapFromStream
GdipSetPathFillMode
GdipDrawString
GdipSetStringFormatLineAlign
GdipSetStringFormatAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdiplusShutdown
GdiplusStartup
GdipResetPath
GdipAddPathRectangleI
GdipClosePathFigure
GdipAddPathEllipseI
GdipAddPathArcI
GdipCreatePen1
GdipDeletePen
GdipSetPenMode
GdipDrawEllipse
GdipGetSmoothingMode
GdipSetSmoothingMode
GdipSetClipRectI
GdipCreateSolidFill
GdipDeleteBrush
GdipFree
GdipAlloc
GdipCloneBrush
GdipFillRectangleI
GdipResetClip
GdipDrawLineI
GdipGetPageUnit
GdipSetPageUnit
GdipCreatePath
GdipDeletePath
GdipDrawPath
GdipFillPath
GdipCreateRegionHrgn
GdipDeleteRegion
GdipSetClipRegion
GdipCreateRegion
GdipDisposeImage
GdipCloneImage
GdipCreateRegionRectI
GdipSetEmpty
GdipCombineRegionRegion
GdipCreateLineBrushFromRectI
GdipSetLinePresetBlend
GdipSetLineWrapMode
GdipCreatePathGradientFromPath
GdipSetPathGradientCenterPointI
GdipSetPathGradientSurroundColorsWithCount
GdipGetPathGradientPointCount
GdipSetPathGradientCenterColor
GdipCreateRegionPath
GdipCloneRegion
GdipFillEllipseI
GdipCreateBitmapFromScan0
GdipDeleteFont
GdipDeleteGraphics
GdipTranslateRegionI
GdipDrawImageRectRectI
GdipGetImageWidth
GdipGetImageHeight
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipAddPathPolygonI
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipGetImageGraphicsContext

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 336KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 106KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 337KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 125KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

290f2b4cbf9f6a3b60d55c4dd3eb47fc

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 336KB - Virtual size: 335KB

.data Size: 23KB - Virtual size: 52KB

.gfids Size: 106KB - Virtual size: 106KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 337KB - Virtual size: 336KB

.reloc Size: 125KB - Virtual size: 125KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 336KB - Virtual size: 335KB

.data
Size: 23KB - Virtual size: 52KB

.gfids
Size: 106KB - Virtual size: 106KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 337KB - Virtual size: 336KB

.reloc
Size: 125KB - Virtual size: 125KB