bitsdojo_window_api
Static task
static1
1 signatures
General
-
Target
reboot_launcher.exe
-
Size
131KB
-
MD5
6373a1b24e3af14a45554ce84b1734a7
-
SHA1
7ae5157e92347678f1dfc8d96fb8fa9256e89dfa
-
SHA256
9e737764c3f68841c331d5c28e6983df13e39fdec87076f30440e06d404086bb
-
SHA512
102c822f0701b61c87d7867256c47b966f7034d22b336b74dc399d4941f48712292450d62fb2603a139149b17a7fdf1505e01dd18ff3a3b032576b3f1f7417df
-
SSDEEP
3072:ypXW1kEx32ODnjbqV3dhK6d6hyg5rgzgMjkExRKmkN3xI7T4++2PwE:yNCkinDnEdhK6d6hyg5rgzgMjkKW3w4m
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource reboot_launcher.exe
Files
-
reboot_launcher.exe.exe windows:6 windows x64 arch:x64
a51dbf0127b15bb9053451110d3da12f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
app_links_plugin
SendAppLink
AppLinksPluginCApiRegisterWithRegistrar
flutter_acrylic_plugin
FlutterAcrylicPluginRegisterWithRegistrar
screen_retriever_plugin
ScreenRetrieverPluginRegisterWithRegistrar
system_theme_plugin
SystemThemePluginRegisterWithRegistrar
url_launcher_windows_plugin
UrlLauncherWindowsRegisterWithRegistrar
window_manager_plugin
WindowManagerPluginRegisterWithRegistrar
windows_taskbar_plugin
WindowsTaskbarPluginRegisterWithRegistrar
flutter_windows
FlutterDesktopViewControllerCreate
FlutterDesktopViewControllerDestroy
FlutterDesktopViewControllerGetView
FlutterDesktopViewControllerHandleTopLevelWindowProc
FlutterDesktopMessengerSend
FlutterDesktopMessengerSendWithReply
FlutterDesktopMessengerSendResponse
FlutterDesktopMessengerSetCallback
FlutterDesktopMessengerAddRef
FlutterDesktopEngineGetMessenger
FlutterDesktopEngineGetPluginRegistrar
FlutterDesktopEngineReloadSystemFonts
FlutterDesktopMessengerIsAvailable
FlutterDesktopMessengerLock
FlutterDesktopMessengerUnlock
FlutterDesktopTextureRegistrarRegisterExternalTexture
FlutterDesktopTextureRegistrarUnregisterExternalTexture
FlutterDesktopTextureRegistrarMarkExternalTextureFrameAvailable
FlutterDesktopPluginRegistrarSetDestructionHandler
FlutterDesktopPluginRegistrarGetView
FlutterDesktopPluginRegistrarGetMessenger
FlutterDesktopRegistrarGetTextureRegistrar
FlutterDesktopMessengerRelease
FlutterDesktopEngineDestroy
FlutterDesktopEngineCreate
FlutterDesktopGetDpiForMonitor
FlutterDesktopResyncOutputStreams
FlutterDesktopViewGetHWND
dwmapi
DwmExtendFrameIntoClientArea
comctl32
ord413
ord410
kernel32
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
CreateEventW
WaitForSingleObjectEx
ResetEvent
SetEvent
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
GetSystemTimeAsFileTime
EnterCriticalSection
GetCurrentThreadId
GetProcessHeap
HeapFree
LoadLibraryA
GetProcAddress
GetModuleHandleW
FreeLibrary
AllocConsole
WideCharToMultiByte
LocalFree
GetCommandLineW
AttachConsole
CreateMutexW
InitializeSListHead
GetLastError
CloseHandle
IsDebuggerPresent
LeaveCriticalSection
GetStartupInfoW
user32
MonitorFromWindow
UnhookWindowsHookEx
IsZoomed
GetMonitorInfoW
GetSystemMetrics
SetPropW
SetWindowTextW
GetCursorPos
ScreenToClient
ReleaseCapture
SetWindowsHookExW
GetMessageW
TranslateMessage
DispatchMessageW
ShowWindow
SetWindowPos
GetWindowPlacement
SetForegroundWindow
FindWindowW
DefWindowProcW
PostQuitMessage
RegisterClassW
UnregisterClassW
CreateWindowExW
DestroyWindow
MoveWindow
SetFocus
GetClientRect
GetWindowLongPtrW
SetWindowLongPtrW
SetParent
LoadCursorW
LoadIconW
MonitorFromPoint
SendMessageW
shell32
CommandLineToArgvW
ole32
CoUninitialize
CoInitializeEx
msvcp140
?sync_with_stdio@ios_base@std@@SA_N_N@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@H@Z
?cerr@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?put@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@D@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV01@P6AAEAV01@AEAV01@@Z@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?widen@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADD@Z
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?_Xbad_function_call@std@@YAXXZ
?_Raise_handler@std@@3P6AXAEBVexception@stdext@@@ZEA
?_Xlength_error@std@@YAXPEBD@Z
vcruntime140_1
__CxxFrameHandler4
vcruntime140
memcpy
memmove
memset
__std_terminate
__C_specific_handler
__current_exception_context
__std_type_info_compare
__current_exception
__std_exception_destroy
_CxxThrowException
__std_exception_copy
memcmp
api-ms-win-crt-runtime-l1-1-0
_initterm
_get_wide_winmain_command_line
exit
_configure_wide_argv
_exit
_set_app_type
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_seh_filter_exe
_initialize_onexit_table
_register_onexit_function
_crt_atexit
terminate
_initterm_e
_invoke_watson
_invalid_parameter_noinfo_noreturn
_initialize_wide_environment
api-ms-win-crt-stdio-l1-1-0
_fileno
_dup2
_set_fmode
freopen_s
__acrt_iob_func
__p__commode
api-ms-win-crt-math-l1-1-0
ceil
__setusermatherr
api-ms-win-crt-heap-l1-1-0
free
_set_new_mode
malloc
_callnewh
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
Exports
Exports
Sections
.text Size: 57KB - Virtual size: 56KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 41KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 420B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ