2024-06-11_9487672a86b518a5917ee8aeecd0bb1e_megazord

Sharing

Copy URL Twitter E-mail

General

Target

2024-06-11_9487672a86b518a5917ee8aeecd0bb1e_megazord
Size

9.9MB
MD5

9487672a86b518a5917ee8aeecd0bb1e
SHA1

eba2ab8bbdac8eeeaba343ff67ba1abfe707fb9d
SHA256

b035e84a5e203c06300b294c6d96be4d55bdf19ca15d3dbcdd731e2b069820e3
SHA512

9c6faec3492f0071aaf8985a32a6413ec35e4630138e65d92c2336b2b7978428c2fe1ca99f342e1ab8c78526f1a43f4ecaac362ec7fc30b1c9f6f6a67212db73
SSDEEP

98304:DPID9y2ZTRvTyZL5rbzNYQvpFehv9bjAXmrW0m22W2oCUnHShECmOBbPWp/OVsRl:rIDQWG0llHX8sbPmo+COyE3X4J

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2024-06-11_9487672a86b518a5917ee8aeecd0bb1e_megazord

Files

2024-06-11_9487672a86b518a5917ee8aeecd0bb1e_megazord
.exe windows:6 windows x64 arch:x64

c1d9cecccca4a53cc52f702354897393

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\Users\futomi\Desktop\tauri-apps\fGadget Calendar Lite\fgadget-calendar-lite\src-tauri\target\release\deps\fgadget_calendar_lite.pdb

Imports

kernel32

RaiseException
TryAcquireSRWLockExclusive
FormatMessageW
SleepConditionVariableSRW
RtlPcToFileHeader
WaitForSingleObject
GetUserDefaultUILanguage
LCIDToLocaleName
LoadLibraryW
CloseHandle
GetCurrentThreadId
TlsAlloc
HeapAlloc
LoadLibraryA
GetModuleHandleW
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
EncodePointer
IsProcessorFeaturePresent
RtlUnwindEx
HeapFree
GetProcessHeap
CreateMutexA
WaitForSingleObjectEx
GetTempPathW
DeleteCriticalSection
GetCurrentThread
CreateThread
WriteConsoleW
MultiByteToWideChar
GetFullPathNameW
ExitProcess
GetLastError
FreeLibrary
SetUnhandledExceptionFilter
GetProcAddress
GetFinalPathNameByHandleW
FindFirstFileW
CreateDirectoryW
GetFileInformationByHandleEx
CreateFileW
FindClose
GetFileAttributesW
GetModuleFileNameW
OutputDebugStringA
OutputDebugStringW
TlsGetValue
InitializeCriticalSectionAndSpinCount
TlsSetValue
GetSystemTimeAsFileTime
LoadLibraryExW
ReleaseSRWLockExclusive
GetEnvironmentVariableW
GetSystemInfo
Sleep
GetModuleHandleA
lstrlenW
GetFileInformationByHandle
GetConsoleMode
ReleaseMutex
ReleaseSRWLockShared
AddVectoredExceptionHandler
SetThreadStackGuarantee
SwitchToThread
CreateWaitableTimerExW
SetWaitableTimer
QueryPerformanceCounter
RtlCaptureContext
RtlVirtualUnwind
RtlLookupFunctionEntry
SetLastError
GetCurrentDirectoryW
SetEnvironmentVariableW
GetCurrentProcess
AcquireSRWLockExclusive
AcquireSRWLockShared
GetCommandLineW
SetFileInformationByHandle
SetFilePointerEx
HeapReAlloc
QueryPerformanceFrequency
WakeConditionVariable
WakeAllConditionVariable
TerminateProcess
GetCurrentProcessId
GetStdHandle
TlsFree

comctl32

RemoveWindowSubclass
DefSubclassProc
TaskDialogIndirect
SetWindowSubclass

user32

GetKeyboardLayout
GetSystemMenu
SetWindowLongW
SetWindowDisplayAffinity
GetWindowTextW
GetWindowTextLengthW
CreateAcceleratorTableW
GetCursorPos
MonitorFromWindow
SetWindowTextW
IsProcessDPIAware
GetMonitorInfoW
SystemParametersInfoA
GetWindowLongPtrW
IsWindowVisible
ClipCursor
GetClipCursor
ShowCursor
AdjustWindowRectEx
GetMenu
GetWindowRect
MonitorFromPoint
EnumDisplayMonitors
DestroyIcon
SetForegroundWindow
CreateIcon
SendMessageW
SetWindowPos
RegisterClassW
CreateWindowExW
IsWindow
ToUnicodeEx
TrackMouseEvent
ShowWindow
ReleaseCapture
DestroyAcceleratorTable
CreateMenu
CheckMenuItem
SetMenuItemInfoW
SetCursor
SetMenu
EnableMenuItem
IsIconic
GetActiveWindow
PostMessageW
MonitorFromRect
LoadCursorW
ClientToScreen
VkKeyScanW
MapVirtualKeyExW
GetKeyState
GetAsyncKeyState
GetKeyboardState
GetRawInputData
SetCapture
SetWindowLongPtrW
MsgWaitForMultipleObjectsEx
RegisterRawInputDevices
RegisterClassExW
RegisterWindowMessageA
GetClientRect
EnumChildWindows
GetWindowLongW
GetTouchInputInfo
ScreenToClient
CloseTouchInputHandle
GetMessageA
GetUpdateRect
PeekMessageW
PostThreadMessageW
ValidateRect
DispatchMessageA
DestroyWindow
GetDC
SetMenuItemBitmaps
AppendMenuW
PostQuitMessage
DestroyMenu
TrackPopupMenu
CreatePopupMenu
SetWindowPlacement
GetWindowPlacement
ChangeDisplaySettingsExW
DefWindowProcW
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
GetAncestor
GetMessageW
MapVirtualKeyW
RedrawWindow
SendInput
RegisterTouchWindow
GetSystemMetrics
InvalidateRgn
SetCursorPos
GetForegroundWindow
FlashWindowEx

ole32

RevokeDragDrop
CoCreateInstance
CoUninitialize
CoInitializeEx
CoTaskMemFree
OleInitialize
RegisterDragDrop
CreateStreamOnHGlobal
CoTaskMemAlloc

shell32

DragFinish
DragQueryFileW
SHGetKnownFolderPath
ShellExecuteW
Shell_NotifyIconW
Shell_NotifyIconGetRect
SHAppBarMessage

gdi32

GetDeviceCaps
DeleteObject
CreateDIBSection
CreateRectRgn
CreateCompatibleDC

dwmapi

DwmEnableBlurBehindWindow

advapi32

RegGetValueW
EventUnregister
EventWriteTransfer
EventSetInformation
EventRegister
SystemFunction036
RegCloseKey
RegOpenKeyExW
RegSetValueExW
RegQueryValueExW
RegDeleteValueW

oleaut32

SetErrorInfo
GetErrorInfo
SysStringLen
SysFreeString

uxtheme

SetWindowTheme

bcrypt

BCryptGenRandom

ntdll

RtlNtStatusToDosError
NtReadFile
NtWriteFile

api-ms-win-crt-math-l1-1-0

truncf
roundf
round
floorf
ceil
floor
__setusermatherr
pow
powf
sinf
trunc
exp2f
expf
ceilf

api-ms-win-crt-string-l1-1-0

wcsncmp
_wcsicmp
strcpy_s
wcslen

api-ms-win-crt-convert-l1-1-0

wcstol
_ultow_s

api-ms-win-crt-runtime-l1-1-0

abort
_get_initial_narrow_environment
_crt_atexit
_register_onexit_function
_initialize_onexit_table
_set_app_type
_configure_narrow_argv
_initialize_narrow_environment
_register_thread_local_exe_atexit_callback
_c_exit
_cexit
__p___argv
__p___argc
_seh_filter_exe
_exit
exit
_initterm_e
_initterm
terminate

api-ms-win-crt-stdio-l1-1-0

_set_fmode
__p__commode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-heap-l1-1-0

_callnewh
free
calloc
_set_new_mode
malloc

Sections

.text
Size: 5.4MB - Virtual size: 5.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4.2MB - Virtual size: 4.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 244KB - Virtual size: 243KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1d9cecccca4a53cc52f702354897393

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

comctl32

user32

ole32

shell32

gdi32

dwmapi

advapi32

oleaut32

uxtheme

bcrypt

ntdll

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-heap-l1-1-0

Sections

.text Size: 5.4MB - Virtual size: 5.4MB

.rdata Size: 4.2MB - Virtual size: 4.2MB

.data Size: 1KB - Virtual size: 13KB

.pdata Size: 244KB - Virtual size: 243KB

_RDATA Size: 512B - Virtual size: 500B

.rsrc Size: 30KB - Virtual size: 29KB

.reloc Size: 42KB - Virtual size: 42KB

.text
Size: 5.4MB - Virtual size: 5.4MB

.rdata
Size: 4.2MB - Virtual size: 4.2MB

.data
Size: 1KB - Virtual size: 13KB

.pdata
Size: 244KB - Virtual size: 243KB

_RDATA
Size: 512B - Virtual size: 500B

.rsrc
Size: 30KB - Virtual size: 29KB

.reloc
Size: 42KB - Virtual size: 42KB