d:\Develop\NSystem2\branches\その花びらにくちづけを_あなたと恋人つなぎ\Release\NSystem.pdb
Static task
static1
1 signatures
General
-
Target
HANABIRA3.EXE
-
Size
1.7MB
-
MD5
65394041edc36494bd028e58eb7e89be
-
SHA1
23d1f8ab8d66f6fac16f00b3357a8f70c06c77ff
-
SHA256
5f6aafa02068eacab8293a44108458a7022e4870af7212e3e054f01f9763a659
-
SHA512
ce93d4f092ce2da6f2add00ceb3664f59f6e1346b9ef822c3f4d788d3b0a16d3d468aa6d076fdcb21d6c7e83b9e7fd529aee69c3858de920a31aa9b675eb668e
-
SSDEEP
49152:hfv+9uV3QYW6KbwWVQmmoCrx1D9UJfNiR+2EG:VCuV
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource HANABIRA3.EXE
Files
-
HANABIRA3.EXE.exe windows:4 windows x86 arch:x86
b0537be47fec17c1062cc9e532fa77a4
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
winmm
timeSetEvent
timeEndPeriod
timeBeginPeriod
timeKillEvent
timeGetTime
imm32
ImmAssociateContext
ImmGetDefaultIMEWnd
dsound
ord1
kernel32
InterlockedExchange
GetACP
GetLocaleInfoA
RaiseException
InitializeCriticalSection
DeleteCriticalSection
DeleteAtom
GetCurrentProcessId
AddAtomA
WaitForSingleObject
GetLastError
SetFilePointer
GetExitCodeThread
SetEvent
ResetEvent
ResumeThread
SetThreadPriority
CreateThread
CreateEventA
MultiByteToWideChar
GetFileSize
lstrcmpiA
lstrcatA
EnterCriticalSection
LeaveCriticalSection
WideCharToMultiByte
WaitForMultipleObjects
GetCurrentThreadId
MulDiv
InterlockedIncrement
InterlockedDecrement
ReleaseSemaphore
GetSystemInfo
VirtualFree
FindClose
CreateSemaphoreA
VirtualAlloc
GetModuleFileNameA
GetModuleHandleA
GetThreadPriority
GetCurrentThread
GetTickCount
GetStdHandle
SetUnhandledExceptionFilter
HeapSize
TerminateProcess
IsBadWritePtr
lstrlenA
HeapDestroy
VirtualQuery
LCMapStringW
LCMapStringA
GetCPInfo
GetOEMCP
GetSystemTimeAsFileTime
QueryPerformanceCounter
HeapReAlloc
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapFree
ExitProcess
RtlUnwind
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
UnhandledExceptionFilter
GetEnvironmentStringsW
SetHandleCount
GetFileType
FlushFileBuffers
IsBadReadPtr
IsBadCodePtr
VirtualProtect
GetStringTypeA
GetStringTypeW
SetStdHandle
OpenMutexA
CreateMutexA
GetCurrentDirectoryA
GetLocalTime
GetVersionExA
lstrcpyA
LoadLibraryA
Sleep
GetTempFileNameA
CreateFileA
WriteFile
CloseHandle
DeleteFileA
FreeLibrary
ReadFile
WritePrivateProfileStringA
GetPrivateProfileStringA
GlobalAlloc
lstrcmpA
GlobalReAlloc
GlobalFree
FileTimeToLocalFileTime
FileTimeToSystemTime
GetProcAddress
CreateDirectoryA
HeapCreate
FindFirstFileA
GetCurrentProcess
user32
GetClientRect
GetAsyncKeyState
GetCursorPos
ScreenToClient
DrawTextA
RegisterClassExA
CreateWindowExA
LoadIconA
CallWindowProcA
PostThreadMessageA
GetSystemMetrics
BringWindowToTop
PeekMessageA
TranslateMessage
DispatchMessageA
GetDesktopWindow
GetQueueStatus
EnumDisplaySettingsA
MessageBoxA
SetWindowLongA
AdjustWindowRectEx
IsWindow
ChangeDisplaySettingsA
SetWindowPlacement
EnumWindows
GetCursor
RegisterWindowMessageA
DefWindowProcA
LoadCursorA
GetDC
ReleaseDC
MsgWaitForMultipleObjects
BeginPaint
EndPaint
IsIconic
DestroyMenu
PostQuitMessage
GetWindowLongA
UpdateWindow
GetWindowRect
ShowWindow
DestroyWindow
FindWindowA
GetWindow
GetClassNameA
SetWindowPos
IsWindowEnabled
IsWindowVisible
GetWindowPlacement
SetCursor
wsprintfA
SendMessageA
PostMessageA
LoadCursorFromFileA
gdi32
CreateFontA
GetGlyphOutlineA
DeleteDC
SetTextColor
CreateDIBSection
StretchBlt
SelectObject
SelectClipRgn
GetRegionData
SetBkMode
CreateCompatibleDC
CombineRgn
DeleteObject
GetRgnBox
BitBlt
GetTextMetricsA
CreateRectRgn
GetStockObject
advapi32
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
shell32
SHAppBarMessage
ole32
CoTaskMemFree
CoFreeUnusedLibraries
CoTaskMemAlloc
CoCreateInstance
CoInitializeEx
CoUninitialize
CoInitialize
Sections
.text Size: 476KB - Virtual size: 475KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 80KB - Virtual size: 77KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1.2MB - Virtual size: 3.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ