986d11d5f16c57d74d62d433f386d14637e17937fdb449419ea9be0fd5645d1a

Sharing

Copy URL

Twitter E-mail

General

Target

986d11d5f16c57d74d62d433f386d14637e17937fdb449419ea9be0fd5645d1a
Size

525KB
MD5

bbe1dc2f31042e0dbbd5339fb68327fb
SHA1

78685bcc7bd0a1da53fa7cc1de06ae713470400e
SHA256

986d11d5f16c57d74d62d433f386d14637e17937fdb449419ea9be0fd5645d1a
SHA512

3e8357091ce37620d5cb472e41ee9fab6f3e7e75a4591cb624f290018fcb360d0032209e0a22d3f7ad7d69521a8572de21240f7eb74a9446b3392773e454308a
SSDEEP

12288:Q09Q4ha2Zu33pl9aiMu09uHFbXiD0p/dq:7nu/9ai9lFXp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
986d11d5f16c57d74d62d433f386d14637e17937fdb449419ea9be0fd5645d1a

Files

986d11d5f16c57d74d62d433f386d14637e17937fdb449419ea9be0fd5645d1a
.dll windows:6 windows x86 arch:x86

fd7d3c90118c7de49bddb6bce8483daf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\Users\Adrian\Documents\Visual Studio 2022\Projects\foo_uie_lyrics3\Win32\Release\foo_uie_lyrics3.pdb

Imports

shared

_GetInfiniteWaitEvent@0
_uFormatSystemErrorMessage@8
_uAppendMenu@16
??1uCallStackTracker@@QAE@XZ
_uReplaceStringAdd@32
_stricmp_utf8_ex@16
_uPrintCrashInfo_OnEvent@8
_uBugCheck@0
??0uCallStackTracker@@QAE@PBD@Z

kernel32

FormatMessageW
FlushInstructionCache
IsProcessorFeaturePresent
VirtualAlloc
VirtualFree
LoadLibraryExA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
InitializeCriticalSectionAndSpinCount
WaitForSingleObjectEx
QueryPerformanceCounter
GetCurrentProcessId
GetCPInfoExW
GetModuleHandleW
GetCurrentProcess
LeaveCriticalSection
GetSystemTimeAsFileTime
GetThreadPriority
SetThreadPriority
ResumeThread
GetProcAddress
OutputDebugStringW
GetCurrentThread
MultiByteToWideChar
GlobalLock
GetVersionExW
WideCharToMultiByte
RaiseException
GetCurrentThreadId
SetLastError
GetProcessHeap
DecodePointer
HeapAlloc
InitializeCriticalSectionEx
HeapFree
Sleep
CloseHandle
WaitForSingleObject
GetTickCount
FindNextFileW
EnumSystemCodePagesW
GetACP
FindFirstFileW
FindClose
GetLastError
DeleteTimerQueueTimer
CreateTimerQueueTimer
LocalFree
DeleteCriticalSection
IsDebuggerPresent
EnterCriticalSection
GlobalUnlock
CreateEventW
SetEvent
ResetEvent
InterlockedPopEntrySList
FreeLibrary
LoadLibraryW
GlobalAlloc
EncodePointer
InitializeSListHead
InitializeCriticalSection
InterlockedPushEntrySList

user32

ClientToScreen
ScreenToClient
GetDesktopWindow
GetSysColor
SetDlgItemTextW
GetDlgItem
SendMessageW
SetFocus
SetWindowRgn
DestroyWindow
EnableWindow
EndDialog
SendDlgItemMessageW
PostMessageW
CreateDialogParamW
GetParent
SetWindowLongW
GetWindowLongW
FillRect
GetAncestor
IsIconic
IsWindowVisible
IsWindowEnabled
GetCursorPos
EmptyClipboard
DestroyMenu
TrackPopupMenu
AppendMenuW
RegisterClipboardFormatW
SetClipboardData
CreateMenu
CreatePopupMenu
ReleaseCapture
SetCapture
RedrawWindow
DialogBoxIndirectParamW
CreateDialogIndirectParamW
InflateRect
CopyRect
ReleaseDC
GetClassNameW
GetDC
RegisterClassW
GetClassInfoW
SetWindowTextW
CallWindowProcW
CloseClipboard
OpenClipboard
MapDialogRect
GetWindowTextW
CreateWindowExW
DefWindowProcW
CharLowerW
CheckMenuRadioItem
GetKeyState
LoadCursorW
GetClassInfoExW
MapWindowPoints
SystemParametersInfoW
RegisterClassExW
SetLayeredWindowAttributes
GetWindowRect
KillTimer
SetTimer
SetParent
SetWindowPos
UnregisterClassW
GetClientRect
ShowWindow
DialogBoxParamW
GetDlgItemInt
GetAsyncKeyState
GetActiveWindow
MessageBoxW

gdi32

LPtoDP
GetTextMetricsW
GetTextColor
SetTextColor
CreateRectRgn
SetBkMode
SetTextAlign
CreateSolidBrush
GetTextExtentPoint32W
DeleteDC
ExtTextOutW
GetObjectW
GetStockObject
GdiAlphaBlend
BitBlt
DeleteObject
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontIndirectW

comdlg32

ChooseColorW
GetOpenFileNameW
GetSaveFileNameW
ChooseFontW

shell32

SHGetMalloc
ord25
SHGetPathFromIDListW
SHOpenFolderAndSelectItems
SHParseDisplayName
ord165
ShellExecuteW
CommandLineToArgvW
SHBindToParent
SHBrowseForFolderW

ole32

CreateStreamOnHGlobal
ReleaseStgMedium

msvcp140

?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
??0?$basic_iostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@@Z
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
??1?$basic_iostream@DU?$char_traits@D@std@@@std@@UAE@XZ
?_Xbad_function_call@std@@YAXXZ
?__ExceptionPtrCreate@@YAXPAX@Z
?__ExceptionPtrDestroy@@YAXPAX@Z
?__ExceptionPtrToBool@@YA_NPBX@Z
?__ExceptionPtrAssign@@YAXPAXPBX@Z
?__ExceptionPtrCopy@@YAXPAXPBX@Z
?__ExceptionPtrCurrentException@@YAXPAX@Z
?__ExceptionPtrRethrow@@YAXPBX@Z
_Thrd_hardware_concurrency
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?uncaught_exception@std@@YA_NXZ
?_Xlength_error@std@@YAXPBD@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Xout_of_range@std@@YAXPBD@Z

wininet

InternetOpenW
InternetSetOptionW
InternetConnectW
HttpOpenRequestW
InternetCloseHandle
InternetReadFile
HttpSendRequestW
HttpQueryInfoA
HttpQueryInfoW

gdiplus

GdiplusStartup
GdiplusShutdown
GdipAlloc
GdipFree
GdipCreateBitmapFromFileICM
GdipCloneImage
GdipDisposeImage
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromStream
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipGraphicsClear
GdipDrawImageRectI
GdipDrawImageRectRectI
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipSetInterpolationMode

shlwapi

PathIsDirectoryW
StrCmpLogicalW
PathMatchSpecW
PathCanonicalizeW

msimg32

GradientFill

vcruntime140

_except_handler4_common
__current_exception_context
__current_exception
wcschr
memmove
memset
memcpy
_CxxThrowException
strchr
wcsrchr
wcsstr
_purecall
__std_exception_destroy
__std_exception_copy
__std_terminate
__CxxFrameHandler3
memcmp
__std_type_info_destroy_list

api-ms-win-crt-runtime-l1-1-0

_invalid_parameter_noinfo_noreturn
_beginthreadex
_crt_atexit
_cexit
terminate
_initterm
_initterm_e
_register_onexit_function
_seh_filter_dll
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_execute_onexit_table

api-ms-win-crt-heap-l1-1-0

_expand
malloc
free
_callnewh
_recalloc
realloc

api-ms-win-crt-convert-l1-1-0

wcstol
_ultow
wcstoul

api-ms-win-crt-string-l1-1-0

_wcsicmp
_strnicmp
wcsncmp
_wcsnicmp

api-ms-win-crt-stdio-l1-1-0

fwrite
__stdio_common_vswprintf_s
fseek
fread
fflush

api-ms-win-crt-math-l1-1-0

floor
_libm_sse2_pow_precise
_CIpow

api-ms-win-crt-utility-l1-1-0

srand
rand

Exports

Exports

foobar2000_get_interface

Sections

.text
Size: 360KB - Virtual size: 360KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fd7d3c90118c7de49bddb6bce8483daf

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

shared

kernel32

user32

gdi32

comdlg32

shell32

ole32

msvcp140

wininet

gdiplus

shlwapi

msimg32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-utility-l1-1-0

Exports

Exports

Sections

.text Size: 360KB - Virtual size: 360KB

.rdata Size: 117KB - Virtual size: 117KB

.data Size: 4KB - Virtual size: 23KB

.rsrc Size: 13KB - Virtual size: 13KB

.reloc Size: 29KB - Virtual size: 28KB

.text
Size: 360KB - Virtual size: 360KB

.rdata
Size: 117KB - Virtual size: 117KB

.data
Size: 4KB - Virtual size: 23KB

.rsrc
Size: 13KB - Virtual size: 13KB

.reloc
Size: 29KB - Virtual size: 28KB