virussign[.]com_e6f050d97d88612993b5385edfaef250[.]vir

Sharing

Copy URL Twitter E-mail

General

Target

virussign.com_e6f050d97d88612993b5385edfaef250.vir
Size

2.7MB
MD5

e6f050d97d88612993b5385edfaef250
SHA1

ecba9b257b6b077349dc216031a9d577530f1dd0
SHA256

a366ada09421796c62f0acc6973cc864d48b9d2b0e6fed84980977e9ebac0afc
SHA512

99b7685330aaca71aa0a2d36e746a678fc86d92c6f6f6b39736fea7a374196cc53f2e88952a73afca63f600b75ec91f6964590b3fcc19cd55ac66692ba9167f5
SSDEEP

49152:vAE4HUs2ePSrdNVLmhrWgAFmXrqP8w4q0N3b9PBDibyMeddZwlJkebGovqHzhN:ITHUsayLcbyMeddAKebGEqV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
virussign.com_e6f050d97d88612993b5385edfaef250.vir

Files

virussign.com_e6f050d97d88612993b5385edfaef250.vir
.exe windows:6 windows x64 arch:x64

56827936dc325c49d2be0fb89a2e75b8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\Richie\Documents\Projects\Soundworks\devPD2\SW_Standalone\x64\Release\SoundworksStandalone.pdb

Imports

winmm

midiInAddBuffer
midiInGetNumDevs
midiInStop
midiInGetDevCapsA
midiInClose
timeGetTime
timeGetDevCaps
timeEndPeriod
timeBeginPeriod
midiInUnprepareHeader
midiInStart
midiInPrepareHeader
midiInReset
midiInOpen
PlaySoundA

kernel32

GetCurrentDirectoryA
DeleteFileA
CreateFileA
FindFirstFileA
FlushFileBuffers
GetFileSize
GetFullPathNameA
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
WriteFile
GetVolumeInformationA
DuplicateHandle
lstrcmpiA
GetTempPathA
FindResourceExW
GetWindowsDirectoryA
SearchPathA
GetTickCount64
GetProfileIntA
GetFileAttributesA
SetErrorMode
FileTimeToLocalFileTime
GetFileAttributesExA
GetFileSizeEx
GetFileTime
CompareStringW
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
GetTempFileNameA
VirtualProtect
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
SleepConditionVariableSRW
IsDebuggerPresent
GetStartupInfoW
GetSystemTimeAsFileTime
InitializeSListHead
LCMapStringEx
GetStringTypeW
LCMapStringW
IsValidLocale
EnumSystemLocalesW
SetFilePointerEx
GetConsoleOutputCP
CreateDirectoryW
GetTimeZoneInformation
FindFirstFileExW
RtlPcToFileHeader
RtlUnwindEx
RaiseException
OutputDebugStringW
GetACP
GetCPInfo
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
WriteConsoleW
GetOEMCP
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
VerifyVersionInfoA
lstrcpyA
VerSetConditionMask
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
GetModuleFileNameA
GetCurrentProcessId
CopyFileA
MulDiv
GlobalSize
GlobalLock
GlobalUnlock
CompareStringA
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
FindResourceA
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleExW
GetModuleHandleW
GetModuleFileNameW
GetSystemDirectoryW
SetLastError
EncodePointer
OutputDebugStringA
SetPriorityClass
CreateMutexA
GetProcessHeap
DecodePointer
HeapAlloc
FindResourceW
LoadResource
HeapReAlloc
LockResource
HeapSize
InitializeCriticalSectionEx
HeapFree
SizeofResource
GlobalFree
GlobalAlloc
GetCurrentThreadId
ResumeThread
CreateFileW
GetPriorityClass
GetThreadPriority
GetCurrentThread
GetModuleHandleA
SignalObjectAndWait
WaitForMultipleObjects
GetCurrentProcess
QueryPerformanceCounter
QueryPerformanceFrequency
GetVersionExA
LocalAlloc
SetThreadPriority
CreateEventA
FormatMessageA
LocalFree
ResetEvent
CloseHandle
SetEvent
GetLastError
WaitForSingleObject
DeleteCriticalSection
Sleep
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
FreeLibrary
GetProcAddress
LoadLibraryA
WideCharToMultiByte
FindClose
FindNextFileW
RtlUnwind
MultiByteToWideChar
OpenFile
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
CreateThread
ExitThread
FreeLibraryAndExitThread
GetSystemInfo
VirtualAlloc
VirtualQuery
GetCommandLineA
GetCommandLineW
HeapQueryInformation
SetStdHandle
ExitProcess
GetStdHandle
GetConsoleMode
ReadConsoleW
GetCurrentDirectoryW
GetFullPathNameW
FlsAlloc
FlsGetValue
FlsSetValue
FlsFree
GetUserDefaultLCID

ole32

OleDuplicateData
ReleaseStgMedium
CoCreateGuid
CoDisconnectObject
DoDragDrop
CreateStreamOnHGlobal
OleLockRunning
CoTaskMemAlloc
CoInitializeEx
CoGetInterfaceAndReleaseStream
CoMarshalInterThreadInterfaceInStream
CoTaskMemFree
PropVariantClear
CLSIDFromString
CoCreateInstance
CoUninitialize
CoInitialize
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop

user32

SetCapture
ReleaseCapture
LoadMenuW
GetSystemMenu
DeleteMenu
SetWindowRgn
MessageBeep
IntersectRect
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetMenuDefaultItem
IsRectEmpty
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
DestroyIcon
LoadImageW
WaitMessage
DrawEdge
DrawFrameControl
DrawFocusRect
DrawIconEx
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
MapVirtualKeyA
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetCursorPos
SetRect
SetParent
BringWindowToTop
LockWindowUpdate
SetClassLongPtrA
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
LoadImageA
RegisterClipboardFormatA
CharUpperBuffA
ModifyMenuA
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
CopyIcon
FrameRect
PostThreadMessageA
GetNextDlgGroupItem
GetIconInfo
HideCaret
InvertRect
GetKeyNameTextA
GetDoubleClickTime
IsCharLowerA
MapVirtualKeyExA
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
IsClipboardFormatAvailable
GetUpdateRect
SubtractRect
CreateMenu
DestroyCursor
GetComboBoxInfo
GetWindowRgn
CharUpperA
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
MessageBoxA
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
GetFocus
SetFocus
GetDlgCtrlID
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
IsWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetMessagePos
PeekMessageA
DispatchMessageA
RegisterWindowMessageA
LoadBitmapW
GetClassNameA
FillRect
InvalidateRect
UpdateWindow
DrawStateA
GetKeyState
GetWindowRect
GetSystemMetrics
DrawIcon
GetAsyncKeyState
SetTimer
LoadIconW
GetClientRect
KillTimer
IsIconic
SendMessageA
UnregisterClassA
EnableWindow
GetDesktopWindow
PostQuitMessage
CharLowerBuffA
IsZoomed
TrackMouseEvent
MapDialogRect
RealChildWindowFromPoint
CopyImage
InflateRect
GetMenuItemInfoA
DestroyMenu
EnumDisplayMonitors
SystemParametersInfoA
LoadCursorW
LoadCursorA
GetSysColorBrush
SetLayeredWindowAttributes
WindowFromPoint
SetCursor
ShowOwnedPopups
TranslateMessage
GetMessageA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
GetWindowThreadProcessId
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
RemoveMenu
AppendMenuA
InsertMenuA
GetMenuState
GetMenuStringA
OffsetRect
SetRectEmpty
ClientToScreen
GetCursorPos
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
IsWindowEnabled
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetWindow
GetLastActivePopup
GetTopWindow
GetParent
GetClassLongPtrA
EnableMenuItem
GetClassLongA
SetWindowLongPtrA
GetWindowLongPtrA
SetWindowLongA
GetWindowLongA
PtInRect
EqualRect
GetDlgItem

gdi32

GetObjectA
SetBkColor
SetTextColor
CopyMetaFileA
CreateDCA
GetDeviceCaps
BitBlt
CreateBitmap
CreateCompatibleDC
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
GetStockObject
MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateCompatibleBitmap
CreateDIBitmap
CreateFontIndirectA
CreateRectRgnIndirect
DeleteObject
EnumFontFamiliesA
GetTextCharsetInfo
GetTextMetricsA
GetTextExtentPoint32A
CreateRoundRectRgn
CreateDIBSection
CombineRgn
PatBlt
SetRectRgn
DPtoLP
CreateEllipticRgn
Ellipse
GetBkColor
GetTextColor
CreatePolygonRgn
SetTextAlign
DeleteDC
Polygon
Polyline
EnumFontFamiliesExA
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
GetRgnBox
OffsetRgn
Rectangle
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
LPtoDP
RoundRect
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetWindowOrgEx
GetViewportOrgEx
SetPixelV
GetTextFaceA
CreateSolidBrush

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegSetValueExA
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyA
RegCloseKey
RegEnumKeyA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA

shell32

SHGetKnownFolderPath
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHBrowseForFolderA
SHGetDesktopFolder
DragFinish
DragQueryFileA
SHAppBarMessage
ShellExecuteA
SHGetFileInfoA
SHGetFolderPathW

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionA
PathStripToRootA
StrFormatKBSizeA
PathRemoveFileSpecW
PathIsUNCA
PathFindFileNameA

uxtheme

IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemeSysColor
GetThemePartSize
IsAppThemed
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeText
DrawThemeParentBackground

oleaut32

VariantClear
SysAllocStringByteLen
SysStringLen
SysAllocString
SysFreeString
VariantInit
VariantChangeType
LoadTypeLi
VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen

gdiplus

GdipFree
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDrawImageRectI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdipAlloc
GdiplusStartup

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 565KB - Virtual size: 565KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 93KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56827936dc325c49d2be0fb89a2e75b8

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

winmm

kernel32

ole32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

oleaut32

gdiplus

oleacc

imm32

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 565KB - Virtual size: 565KB

.data Size: 31KB - Virtual size: 68KB

.pdata Size: 93KB - Virtual size: 93KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 41KB - Virtual size: 41KB

.reloc Size: 60KB - Virtual size: 59KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 565KB - Virtual size: 565KB

.data
Size: 31KB - Virtual size: 68KB

.pdata
Size: 93KB - Virtual size: 93KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 41KB - Virtual size: 41KB

.reloc
Size: 60KB - Virtual size: 59KB