soul[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

soul.exe
Size

2.7MB
MD5

4952d372a7c738073a2b3bc7849ff1a6
SHA1

475101d9563351b2dac8206e5a7ab65f838a060d
SHA256

c95fde9bee391da320bf8f2646b864c034d94b6619d569cc75b9b4ab71950bb5
SHA512

0d80807665788b10a2701421f10b2fb2baad358e1dfb3123dd0ba88fc29a7f75e489c5bbd137fc5bf43a71cfa8586e8fc94d7f42527f0757e7fa525a883c6128
SSDEEP

49152:WmBD0Jy+lx1TpCl4Hx5RkgB1Ke6UFW1cAi+FdTFA4kcgKx:F8XTpBjRBV+FJFA4ka

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
soul.exe

Files

soul.exe
.exe windows:4 windows x86 arch:x86

cf062c59c145831833830b6ecf5248d2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree

ws2_32

inet_ntoa

ndsound

_DXSetSoundVolume@4

dinput8

DirectInput8Create

roleview

RoleViewCreate

graphic

?ShowString@CMyBitmap@@SAXHHKPBD0HH@Z

gamedata

RoleDataQueryEx

role3d

Simple3DObjCreate

graphicdata

GameDataSetDestroy

wininet

InternetOpenUrlA

chat

ChaterInfoMgrQuery

assist

?CreateMonitorManager@@YAXXZ

imm32

ImmSetCompositionWindow

tqpackage

?TqFGetVersion@@YAJXZ

mfc42

ord5277

msvcrt

_adjust_fdiv

user32

EnumChildWindows

gdi32

CreateRectRgn

advapi32

AllocateAndInitializeSid

shell32

ShellExecuteA

ole32

CreateStreamOnHGlobal

olepro32

ord251

oleaut32

VariantClear

msvcp60

?append@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@ABV12@II@Z

winmm

timeGetTime

Sections

.text
Size: 1.3MB - Virtual size: 6.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.test
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_MEM_EXECUTE

Sharing

General

Malware Config

Signatures

Files

cf062c59c145831833830b6ecf5248d2

Headers

File Characteristics

Imports

kernel32

ws2_32

ndsound

dinput8

roleview

graphic

gamedata

role3d

graphicdata

wininet

chat

assist

imm32

tqpackage

mfc42

msvcrt

user32

gdi32

advapi32

shell32

ole32

olepro32

oleaut32

msvcp60

winmm

Sections

.text Size: 1.3MB - Virtual size: 6.4MB

.rsrc Size: 25KB - Virtual size: 28KB

.test Size: 1.4MB - Virtual size: 1.4MB

.text
Size: 1.3MB - Virtual size: 6.4MB

.rsrc
Size: 25KB - Virtual size: 28KB

.test
Size: 1.4MB - Virtual size: 1.4MB