D:\Visual C++\ウゴツールUnicode2\Release\ウゴツール.pdb
Static task
static1
1 signatures
General
-
Target
Ugotool.exe
-
Size
414KB
-
MD5
67a6db52433bd1e3d55f1273db9ca1ac
-
SHA1
cdaa74db9f2e7af823efa41d8b48ed32ef91237c
-
SHA256
cbad8f39f567a9267802e038edf05d7a19580ad9acba1f38e085e9cd013a1018
-
SHA512
3c4938f6bb3615cb735328703b2bfe3a172b370c7a4009e7db3e3c28b90fb4147f40b6476da6bcbe1e538a923c31de68bf26c3f518c3ab09fbd06e8f3a80fac6
-
SSDEEP
12288:nvweWN/BIHd2H76wOtST18TXnwkUJCO96WuvtHIzhq:nvVwOtI1mnwxJV96lwM
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Ugotool.exe
Files
-
Ugotool.exe.exe windows:6 windows x86 arch:x86
fd2f733d03d423b2417bc8e9ec945296
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
winmm
timeBeginPeriod
timeEndPeriod
timeGetTime
comctl32
CreateStatusWindowW
CreateToolbarEx
ord17
kernel32
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
OutputDebugStringW
DecodePointer
SetFilePointerEx
GetFileSizeEx
GetConsoleOutputCP
ReadConsoleW
DeleteCriticalSection
ReadFile
FreeEnvironmentStringsW
GetCurrentThread
HeapAlloc
HeapFree
GetModuleHandleExW
ExitProcess
WriteFile
GetStdHandle
RaiseException
EncodePointer
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
RtlUnwind
InterlockedFlushSList
SetEnvironmentVariableW
SetStdHandle
GetStringTypeW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetProcessHeap
SetConsoleCtrlHandler
CreateFileW
FlushFileBuffers
WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameW
CreateMutexW
GetFileType
ReleaseMutex
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
WriteConsoleW
GetLastError
HeapSize
HeapReAlloc
SetEndOfFile
GetConsoleMode
InterlockedPushEntrySList
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
GetProcAddress
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
IsProcessorFeaturePresent
CloseHandle
InitializeCriticalSectionAndSpinCount
SetEvent
ResetEvent
user32
TranslateMessage
DispatchMessageW
DefWindowProcW
SendMessageW
GetMessageW
wsprintfW
LoadAcceleratorsW
PostQuitMessage
LoadIconW
LoadCursorW
FindWindowW
SetWindowLongW
FillRect
ClipCursor
ScreenToClient
ClientToScreen
GetCursorPos
SetCursor
MessageBoxW
AdjustWindowRect
GetWindowRect
GetClientRect
SetWindowTextW
InvalidateRect
ReleaseDC
GetDC
SetForegroundWindow
UpdateWindow
TranslateAcceleratorW
CallWindowProcW
EnableWindow
KillTimer
SetTimer
GetAsyncKeyState
GetFocus
SetFocus
CharLowerBuffW
SendDlgItemMessageW
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
GetDlgItem
EndDialog
DialogBoxParamW
GetWindowPlacement
SetWindowPos
ShowWindow
CreateWindowExW
RegisterClassW
PeekMessageW
gdi32
TextOutW
MoveToEx
SetTextColor
StretchBlt
SetBkMode
SelectObject
Rectangle
LineTo
GetTextExtentPoint32W
GetStockObject
GetDIBits
Ellipse
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
CreateFontW
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
comdlg32
GetSaveFileNameW
GetOpenFileNameW
GetFileTitleW
advapi32
RegSetValueExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
shell32
DragFinish
ShellExecuteW
DragQueryFileW
imgctl
ord12
ord18
ord47
ord5
ord1
ord22
ord61
Sections
.text Size: 317KB - Virtual size: 317KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 62KB - Virtual size: 61KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ