F:\mw\Speed\PC\CDMWCollectors\NfsMWCollectorsRelease.pdb
Static task
static1
1 signatures
General
-
Target
speed.exe
-
Size
5.7MB
-
MD5
8d1d88dba3b0cdbaf45751ea2f671607
-
SHA1
f5586d5950a7cdc4ed773d0021184d5d1608a41c
-
SHA256
0c5675a08cd71fd6d31ca87e992a915054bd8b80d268bff0561d7ecc2067e342
-
SHA512
dab861c41c963069e706cd1fd49a7e3f9fc2987d431a516260883162c9ac27a4784a9f1af85076751d4a6b2b2a6be7cb22df4c8cbea9f5c985d9d9e1c3849647
-
SSDEEP
98304:F3AmIHzLwNuccUa7k9c59PnpoZ4Ds40KlNNF8jCwz:F3RITeuccUL9EPnpo+L0kA
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource speed.exe
Files
-
speed.exe.exe windows:4 windows x86 arch:x86
c08ad863d5294c684e8689c881780e5c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
GetPriorityClass
GetCurrentThread
GetCurrentProcess
GetLongPathNameA
SetErrorMode
CloseHandle
Process32Next
Process32First
CreateToolhelp32Snapshot
CreateDirectoryA
GetModuleHandleA
FreeLibrary
GetProcAddress
LoadLibraryA
InterlockedIncrement
InterlockedDecrement
GetTickCount
IsDebuggerPresent
RemoveDirectoryA
GetFullPathNameA
SetCurrentDirectoryA
GetDiskFreeSpaceA
FileTimeToLocalFileTime
FileTimeToSystemTime
ExitThread
GetThreadPriority
GetProcessAffinityMask
SetPriorityClass
SetThreadPriority
SetProcessAffinityMask
Sleep
GetVersionExA
GetLogicalDrives
GetDriveTypeA
GlobalMemoryStatusEx
ResumeThread
SuspendThread
DeleteFileA
MultiByteToWideChar
FindFirstFileA
FindNextFileA
FindClose
FatalAppExitA
DebugBreak
SetupComm
SetCommTimeouts
GetCommConfig
SetCommConfig
GetCommState
SetCommState
PurgeComm
WaitForMultipleObjects
SetCommMask
GetOverlappedResult
WaitCommEvent
GetProcessHeap
QueueUserAPC
SetThreadAffinityMask
ReleaseSemaphore
CreateSemaphoreA
ReleaseMutex
CreateMutexA
CreateThread
GlobalFree
GlobalAlloc
GetDiskFreeSpaceExA
GetFileSize
MoveFileA
GetCurrentDirectoryA
ResetEvent
QueryPerformanceCounter
QueryPerformanceFrequency
CreateProcessA
GetLastError
IsBadReadPtr
OutputDebugStringA
CreateEventA
SetEvent
CreateWaitableTimerA
GetSystemTime
GetCommandLineA
RtlUnwind
RaiseException
IsBadWritePtr
HeapValidate
EnterCriticalSection
LeaveCriticalSection
TerminateProcess
ExitProcess
GetTimeZoneInformation
GetSystemTimeAsFileTime
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
DeleteCriticalSection
TlsAlloc
GetCurrentThreadId
TlsFree
TlsSetValue
TlsGetValue
SetLastError
HeapDestroy
HeapCreate
HeapFree
VirtualFree
WriteFile
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
HeapAlloc
HeapReAlloc
VirtualAlloc
GetCPInfo
CompareStringA
CompareStringW
ReadFile
SetConsoleCtrlHandler
GetACP
GetOEMCP
InitializeCriticalSection
VirtualQuery
InterlockedExchange
IsBadCodePtr
GetTimeFormatA
GetDateFormatA
GetStringTypeA
GetStringTypeW
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
VirtualProtect
GetSystemInfo
SetFilePointer
GetCurrentProcessId
FlushFileBuffers
SetStdHandle
CreateFileA
SetEndOfFile
GetLocaleInfoW
SetEnvironmentVariableA
DuplicateHandle
TerminateThread
SleepEx
GetExitCodeThread
SetWaitableTimer
WaitForSingleObject
SystemTimeToFileTime
d3d9
Direct3DCreate9
d3dx9_26
D3DXMatrixMultiply
D3DXVec4Transform
D3DXVec3Transform
D3DXMatrixInverse
D3DXCreateEffectFromResourceA
D3DXCreateEffectPool
D3DXMatrixOrthoLH
D3DXMatrixPerspectiveLH
D3DXMatrixTranslation
D3DXVec3TransformCoordArray
D3DXVec3Normalize
D3DXVec3TransformNormal
D3DXMatrixTranspose
dinput8
DirectInput8Create
user32
SetWindowPos
SetWindowLongA
BeginPaint
EndPaint
PostMessageA
IsIconic
PostQuitMessage
SetCapture
ReleaseCapture
DefWindowProcA
wvsprintfA
GetCursorPos
PeekMessageA
ShowCursor
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
MapVirtualKeyExA
GetKeyboardLayout
GetDesktopWindow
GetForegroundWindow
wsprintfA
PostThreadMessageA
SendInput
LoadIconA
LoadCursorA
RegisterClassExA
GetWindowRect
GetClientRect
MapVirtualKeyA
ToUnicode
MessageBoxA
AdjustWindowRect
CreateWindowExA
UpdateWindow
SetCursor
SetFocus
SetForegroundWindow
ShowWindow
DestroyWindow
advapi32
RegCreateKeyA
RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegOpenKeyA
shfolder
SHGetFolderPathA
shell32
ShellExecuteA
dsound
ord6
ord1
winmm
waveOutGetDevCapsA
waveOutGetNumDevs
waveOutWrite
waveOutGetPosition
waveOutSetVolume
waveInStart
waveInAddBuffer
waveInGetPosition
timeEndPeriod
timeGetTime
timeBeginPeriod
waveOutReset
waveOutOpen
waveOutClose
waveInStop
waveInGetNumDevs
waveInGetDevCapsA
waveInReset
waveInOpen
waveInClose
waveInUnprepareHeader
waveOutUnprepareHeader
waveInPrepareHeader
waveOutPrepareHeader
gdi32
ExtTextOutA
BitBlt
GetPixel
DeleteObject
DeleteDC
SetBkMode
SetBkColor
SetTextColor
CreateFontA
CreateBitmap
SelectObject
CreateCompatibleDC
tapi32
lineGetDevCaps
lineShutdown
lineInitialize
lineAnswer
lineMakeCall
lineGetID
lineClose
lineNegotiateAPIVersion
lineOpen
netapi32
Netbios
ws2_32
shutdown
WSASetEvent
bind
connect
listen
accept
sendto
send
recv
recvfrom
select
getpeername
getsockname
gethostbyname
gethostname
WSAIoctl
WSACleanup
getsockopt
WSAGetLastError
WSACreateEvent
setsockopt
socket
WSACloseEvent
ioctlsocket
WSARecv
WSARecvFrom
closesocket
WSAStartup
WSAGetOverlappedResult
WSAWaitForMultipleEvents
WSAResetEvent
Sections
.text Size: 4.6MB - Virtual size: 4.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 360KB - Virtual size: 357KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 144KB - Virtual size: 883KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 352KB - Virtual size: 348KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
Size: 260KB - Virtual size: 259KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ