Static task
static1
General
-
Target
Krypton_Booster_Aim.exe
-
Size
403KB
-
MD5
5c2cda5a78d7e41f5784c2a8143c41f8
-
SHA1
50bcb4d790788e74566bab879483a9ccd49de00f
-
SHA256
83254452050fc970435b7bd766eea01d96ce9923f24aa1bf2284b165cc2ee185
-
SHA512
cc615b0600deed663c5662f5741a5a66e30a36f531679cefefea54105b85d631ba2408236284370d6d9b1df3366b38b5ecdd45bcab305c248d6400c8d504216c
-
SSDEEP
6144:mI2DOUFOQP5hShIgcTbXPybWFdzdG8V0MNUnnxxclyd1+4g:N2VFOk59lXPxd5GCO/cqg
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Krypton_Booster_Aim.exe
Files
-
Krypton_Booster_Aim.exe.exe windows:6 windows x64 arch:x64
eb191b07e5b136bc2f46834d694db463
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
xinput1_3
ord2
opencv_world452
?useOpenCL@ocl@cv@@YA_NXZ
?haveOpenCL@ocl@cv@@YA_NXZ
?getCudaEnabledDeviceCount@cuda@cv@@YAHXZ
?NMSBoxes@dnn4_v20210301@dnn@cv@@YAXAEBV?$vector@V?$Rect_@H@cv@@V?$allocator@V?$Rect_@H@cv@@@std@@@std@@AEBV?$vector@MV?$allocator@M@std@@@5@MMAEAV?$vector@HV?$allocator@H@std@@@5@MH@Z
?blobFromImage@dnn4_v20210301@dnn@cv@@YAXAEBV_InputArray@3@AEBV_OutputArray@3@NAEBV?$Size_@H@3@AEBV?$Scalar_@N@3@_N4H@Z
?readNetFromDarknet@dnn4_v20210301@dnn@cv@@YA?AVNet@123@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@0@Z
?getUnconnectedOutLayers@Net@dnn4_v20210301@dnn@cv@@QEBA?AV?$vector@HV?$allocator@H@std@@@std@@XZ
?setInput@Net@dnn4_v20210301@dnn@cv@@QEAAXAEBV_InputArray@4@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@NAEBV?$Scalar_@N@4@@Z
?setPreferableTarget@Net@dnn4_v20210301@dnn@cv@@QEAAXH@Z
?setPreferableBackend@Net@dnn4_v20210301@dnn@cv@@QEAAXH@Z
?forward@Net@dnn4_v20210301@dnn@cv@@QEAAXAEBV_OutputArray@4@AEBV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@@Z
?getLayerNames@Net@dnn4_v20210301@dnn@cv@@QEBA?AV?$vector@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@V?$allocator@V?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@@2@@std@@XZ
??1Net@dnn4_v20210301@dnn@cv@@QEAA@XZ
??0Net@dnn4_v20210301@dnn@cv@@QEAA@XZ
?minMaxLoc@cv@@YAXAEBV_InputArray@1@PEAN1PEAV?$Point_@H@1@20@Z
??4Mat@cv@@QEAAAEAV01@$$QEAV01@@Z
??1Mat@cv@@QEAA@XZ
??0Mat@cv@@QEAA@AEBV01@AEBVRange@1@1@Z
??0Mat@cv@@QEAA@HHHPEAX_K@Z
??0Mat@cv@@QEAA@AEBV01@@Z
??0Mat@cv@@QEAA@XZ
?noArray@cv@@YAAEBV_InputOutputArray@1@XZ
?setUseOpenCL@ocl@cv@@YAX_N@Z
kernel32
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
DeleteCriticalSection
GlobalAlloc
GlobalUnlock
GlobalLock
GlobalFree
MultiByteToWideChar
WideCharToMultiByte
QueryPerformanceCounter
QueryPerformanceFrequency
UnhandledExceptionFilter
GetProcAddress
LoadLibraryA
VirtualAlloc
GetStdHandle
GetLastError
GetCurrentProcess
GetCurrentProcessId
CreateThread
SetConsoleTextAttribute
GetConsoleWindow
K32GetModuleFileNameExA
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetModuleHandleW
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
OutputDebugStringW
FreeLibrary
InitializeCriticalSectionEx
user32
GetWindow
GetClassNameA
FindWindowA
GetDesktopWindow
SetWindowLongA
MessageBoxA
GetWindowRect
GetWindowTextA
SetWindowTextA
GetWindowDC
SetForegroundWindow
UpdateWindow
GetSystemMetrics
SendInput
SetFocus
SetWindowPos
LoadIconA
ShowWindow
DestroyWindow
CreateWindowExA
RegisterClassExA
UnregisterClassA
PostQuitMessage
DefWindowProcA
PeekMessageA
DispatchMessageA
GetAsyncKeyState
LoadCursorA
ScreenToClient
ClientToScreen
GetCursorPos
SetCursor
SetCursorPos
GetClientRect
GetForegroundWindow
ReleaseCapture
SetCapture
GetCapture
IsChild
TrackMouseEvent
EmptyClipboard
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
TranslateMessage
gdi32
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
GetDIBits
DeleteDC
DeleteObject
imm32
ImmSetCompositionWindow
ImmReleaseContext
ImmGetContext
dwmapi
DwmExtendFrameIntoClientArea
msvcp140
?tie@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_ostream@DU?$char_traits@D@std@@@2@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QEAAXH_N@Z
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAA_JPEBD_J@Z
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QEAAHD@Z
?width@ios_base@std@@QEAA_J_J@Z
?width@ios_base@std@@QEBA_JXZ
?flags@ios_base@std@@QEBAHXZ
?good@ios_base@std@@QEBA_NXZ
?uncaught_exceptions@std@@YAHXZ
?fill@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBADXZ
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAXXZ
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QEAAAEAV12@XZ
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
?_Xlength_error@std@@YAXPEBD@Z
_Xtime_get_ticks
_Query_perf_counter
_Query_perf_frequency
_Thrd_sleep
?rdbuf@?$basic_ios@DU?$char_traits@D@std@@@std@@QEBAPEAV?$basic_streambuf@DU?$char_traits@D@std@@@2@XZ
d3d9
Direct3DCreate9Ex
vcruntime140
__std_exception_destroy
__std_terminate
strstr
__current_exception_context
memchr
memcpy
memmove
memset
memcmp
__std_exception_copy
__current_exception
_CxxThrowException
__C_specific_handler
vcruntime140_1
__CxxFrameHandler4
api-ms-win-crt-heap-l1-1-0
malloc
free
_callnewh
_set_new_mode
api-ms-win-crt-utility-l1-1-0
qsort
rand
api-ms-win-crt-string-l1-1-0
strcpy_s
strncpy
strcmp
api-ms-win-crt-stdio-l1-1-0
__stdio_common_vsprintf_s
__acrt_iob_func
_wfopen
fclose
fflush
_set_fmode
fread
fseek
__stdio_common_vsscanf
__stdio_common_vsprintf
fwrite
ftell
__p__commode
api-ms-win-crt-math-l1-1-0
__setusermatherr
powf
fmodf
pow
logf
acosf
sin
log
api-ms-win-crt-convert-l1-1-0
atof
api-ms-win-crt-runtime-l1-1-0
__p___argc
__p___argv
_exit
_initterm_e
_initterm
_get_initial_narrow_environment
_invalid_parameter_noinfo_noreturn
exit
system
_set_app_type
_register_thread_local_exe_atexit_callback
terminate
_configure_narrow_argv
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
_crt_atexit
_cexit
_c_exit
_seh_filter_exe
api-ms-win-crt-filesystem-l1-1-0
_stat64i32
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
Sections
.text Size: 313KB - Virtual size: 313KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 56KB - Virtual size: 55KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 860B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ