Prototype[.]exe

Resubmissions

23/02/2024, 16:28

240223-ty2h8aeb4z 3

23/02/2024, 16:25

240223-tw7mfsea9v 4

Sharing

Copy URL Twitter E-mail

General

Target

Prototype.exe
Size

60KB
MD5

10a12afbe079e8b1163950e40e6bcfe8
SHA1

c9d9bf226f71eaa9671fad3737797b75dc112582
SHA256

397793f08c56df9b01660ab52685d0771c0b903042a4965ded48bee92fdbae80
SHA512

6ba724fde84d2dabe6bdeed8de273a56dbad0fb92299a09b9b6b71818d28028dc43c04592052cc0636b08bef4b1d55d8561ca525c71681a86ecb6c1e56b831dc
SSDEEP

768:P9V5EckqoPPCNilcHflEaBUTWg/Ma8hlPOpRey6zwRcyCWs:FV59kPPCNiWxqWg09hlGpRec1s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
Prototype.exe

Files

Prototype.exe
.exe windows:4 windows x64 arch:x64

8d7f19cc9d6b16dc6822de1df5845575

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

BuildExplicitAccessWithNameW
SetEntriesInAclW
SetSecurityInfo

kernel32

CloseHandle
CreateMutexA
CreateThread
CreateToolhelp32Snapshot
DeleteCriticalSection
EnterCriticalSection
GetCurrentProcess
GetLastError
GetModuleFileNameW
GetStdHandle
InitializeCriticalSection
K32GetProcessImageFileNameA
LeaveCriticalSection
LocalAlloc
LocalFree
OpenProcess
Process32FirstW
Process32NextW
ReleaseMutex
SetConsoleTextAttribute
SetUnhandledExceptionFilter
Sleep
TlsGetValue
VirtualProtect
VirtualQuery
WaitForSingleObject
__C_specific_handler
lstrcmpA

msvcrt

__getmainargs
__initenv
__iob_func
__set_app_type
__setusermatherr
_amsg_exit
_cexit
_commode
_fmode
_initterm
free
memcmp
memcpy
_onexit
abort
calloc
exit
fprintf
fwrite
malloc
signal
strlen
strncmp
system
vfprintf

shell32

ShellExecuteA
ShellExecuteW

user32

MessageBoxA

libgcc_s_seh-1

_Unwind_Resume

libstdc++-6

_ZNKSt5ctypeIcE13_M_widen_initEv
_ZNSo3putEc
_ZNSo5flushEv
_ZNSo9_M_insertImEERSoT_
_ZSt16__ostream_insertIcSt11char_traitsIcEERSt13basic_ostreamIT_T0_ES6_PKS3_x
_ZSt16__throw_bad_castv
_ZSt19__throw_logic_errorPKc
_ZSt3cin
_ZSt4cout
_ZStrsIcSt11char_traitsIcESaIcEERSt13basic_istreamIT_T0_ES7_RNSt7__cxx1112basic_stringIS4_S5_T1_EE
_ZdlPvy
_Znwy
__gxx_personality_seh0

Sections

.text
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pdata
Size: 1024B - Virtual size: 732B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.xdata
Size: 1024B - Virtual size: 848B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 352B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 96B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

8d7f19cc9d6b16dc6822de1df5845575

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

kernel32

msvcrt

shell32

user32

libgcc_s_seh-1

libstdc++-6

Sections

.text Size: 11KB - Virtual size: 10KB

.data Size: 512B - Virtual size: 208B

.rdata Size: 3KB - Virtual size: 2KB

.pdata Size: 1024B - Virtual size: 732B

.xdata Size: 1024B - Virtual size: 848B

.bss Size: - Virtual size: 352B

.idata Size: 3KB - Virtual size: 3KB

.CRT Size: 512B - Virtual size: 96B

.tls Size: 512B - Virtual size: 16B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 136B

.text
Size: 11KB - Virtual size: 10KB

.data
Size: 512B - Virtual size: 208B

.rdata
Size: 3KB - Virtual size: 2KB

.pdata
Size: 1024B - Virtual size: 732B

.xdata
Size: 1024B - Virtual size: 848B

.bss
Size: - Virtual size: 352B

.idata
Size: 3KB - Virtual size: 3KB

.CRT
Size: 512B - Virtual size: 96B

.tls
Size: 512B - Virtual size: 16B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 136B