?hide_taskbar_icon@@YAXPEAUGLFWwindow@@@Z
Static task
static1
1 signatures
General
-
Target
Synap.sh0p-mX75L.exe
-
Size
15.8MB
-
MD5
40bbc21a3fcdb8492537d527c73ac05d
-
SHA1
ab25280900d4ef6bae03ba9ba0d4a7149beafcfd
-
SHA256
25c7786f5e09a416d82bd181e021e8845fc2ad1808b876ce902d778f26b7b108
-
SHA512
a7a9e41d06b325ac5833cb21839bc8044da94ebd1f83da665d4a0274b1866855cb5d532e8bdd016fba68e77588ef71e1c09c5122037d4b05e3a8af6099f60228
-
SSDEEP
393216:1xU8yywrkDJkCVWafPw26PQw9lPW3GKYPWGiaw8EF9:4vyJlkS93QPQvGKY4Fb
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Synap.sh0p-mX75L.exe
Files
-
Synap.sh0p-mX75L.exe.exe windows:6 windows x64 arch:x64
77fb6fc9f7d7d153472ba44f8d6ae56f
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
opengl32
glEnable
kernel32
VerSetConditionMask
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress
user32
SetClipboardData
gdi32
GetDeviceGammaRamp
advapi32
RegSetValueExW
shell32
DragAcceptFiles
ole32
CoInitialize
urlmon
URLDownloadToFileW
imm32
ImmReleaseContext
msvcp140
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UEAAXXZ
ntdll
RtlLookupFunctionEntry
normaliz
IdnToAscii
wldap32
ord33
shlwapi
PathFindFileNameW
rpcrt4
UuidToStringA
psapi
GetModuleInformation
vcruntime140_1
__CxxFrameHandler4
vcruntime140
__C_specific_handler
api-ms-win-crt-stdio-l1-1-0
fsetpos
api-ms-win-crt-string-l1-1-0
strcspn
api-ms-win-crt-utility-l1-1-0
srand
api-ms-win-crt-heap-l1-1-0
_callnewh
api-ms-win-crt-convert-l1-1-0
atof
api-ms-win-crt-runtime-l1-1-0
_get_initial_wide_environment
api-ms-win-crt-time-l1-1-0
_localtime64_s
api-ms-win-crt-filesystem-l1-1-0
rename
api-ms-win-crt-math-l1-1-0
acosf
api-ms-win-crt-environment-l1-1-0
getenv
api-ms-win-crt-locale-l1-1-0
___lc_codepage_func
crypt32
CertEnumCertificatesInStore
ws2_32
gethostname
Exports
Exports
Sections
.text Size: - Virtual size: 913KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 442KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 439KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: - Virtual size: 39KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.g[[ Size: - Virtual size: 10.0MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.d~% Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.)3N Size: 15.8MB - Virtual size: 15.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 292B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ