main[.]exe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

main.exe
Size

520KB
MD5

dc418fa54ace1bdb0a7ac609ba2058c3
SHA1

6409fe87be6395e82dccf60fdecf7b65b5c6e922
SHA256

6610115d8d41cc6bfe1704dbe288caf5cf8035c83df7d28903ca84ad593f5259
SHA512

818de8f40e4daa8ac4c10b1fc3353860473ccaeeee89df5247a927013662773b7bff2d5935f43ff6ddb4a78a5a1e5b649a4bb0b67b8f9c250ad80183f3492391
SSDEEP

12288:cIuTfPWvQdfn0+TdHOADvtI/gtTKhXvNx+5qQ/rRL02B44anLPHyAc9gIEYenHUm:cIuTHWvQdfn0+RHOADvtI/gtTqx+5qQ4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
main.exe

Files

main.exe
.exe windows:4 windows x86 arch:x86

8b4a9e2727a27e0c62ee7009caf60184

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

libgcc_s_dw2-1

_Unwind_Resume
__deregister_frame_info
__register_frame_info
__udivdi3
__umoddi3

kernel32

DeleteCriticalSection
EnterCriticalSection
FreeLibrary
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetLastError
GetModuleHandleA
GetModuleHandleW
GetProcAddress
GetStartupInfoA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
IsDBCSLeadByteEx
LeaveCriticalSection
LoadLibraryA
MultiByteToWideChar
QueryPerformanceCounter
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TlsGetValue
UnhandledExceptionFilter
VirtualProtect
VirtualQuery
WideCharToMultiByte

msvcrt

___mb_cur_max_func
__getmainargs
__initenv
__lconv_init
__p__acmdln
__p__fmode
__set_app_type
__setusermatherr
_amsg_exit
_cexit
_errno
_initterm
_iob
_onexit
abort
atoi
calloc
exit
fprintf
fputc
free
fwrite
getenv
localeconv
malloc
memcpy
rand
setlocale
signal
strchr
strerror
strlen
strncmp
vfprintf
wcslen

user32

MessageBoxA

libstdc++-6

_ZNKSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE4sizeEv
_ZNKSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE5c_strEv
_ZNKSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE7_M_dataEv
_ZNSaIcEC1Ev
_ZNSaIcED1Ev
_ZNSaIcED2Ev
_ZNSt6localeC1Ev
_ZNSt6localeD1Ev
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE10_M_disposeEv
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE11_M_capacityEj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE12_Alloc_hiderC1EPcRKS3_
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE13_M_local_dataEv
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE13_M_set_lengthEj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE13_S_copy_charsEPcS5_S5_
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE6appendEPKc
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE6appendEPKcj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE6appendERKS4_
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE6insertEjPKc
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE7_M_dataEPc
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE7reserveEj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEE9_M_createERjj
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEC1EOS4_
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEC1EPKcRKS3_
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEC1Ev
_ZNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEED1Ev
_ZNSt8ios_base4InitC1Ev
_ZNSt8ios_base4InitD1Ev
_ZSt17__throw_bad_allocv
_ZSt19__throw_logic_errorPKc
_ZSt20__throw_length_errorPKc
_ZTVN10__cxxabiv117__class_type_infoE
_ZdlPv
_Znwj
__cxa_begin_catch
__cxa_call_unexpected
__cxa_end_catch
__cxa_pure_virtual
__cxa_rethrow
__gxx_personality_v0

sfml-graphics-2

_ZN2sf12RenderStates7DefaultE
_ZN2sf12RenderTarget4drawERKNS_8DrawableERKNS_12RenderStatesE
_ZN2sf12RenderTarget5clearERKNS_5ColorE
_ZN2sf12RenderWindowC1ENS_9VideoModeERKNS_6StringEjRKNS_15ContextSettingsE
_ZN2sf12RenderWindowD1Ev
_ZN2sf13Transformable11setPositionERKNS_7Vector2IfEE
_ZN2sf13Transformable11setPositionEff
_ZN2sf13Transformable4moveEff
_ZN2sf13Transformable8setScaleEff
_ZN2sf13Transformable9setOriginEff
_ZN2sf13TransformableD2Ev
_ZN2sf4Font12loadFromFileERKNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEE
_ZN2sf4FontC1Ev
_ZN2sf4FontD1Ev
_ZN2sf4Text12setFillColorERKNS_5ColorE
_ZN2sf4Text16setCharacterSizeEj
_ZN2sf4Text7setFontERKNS_4FontE
_ZN2sf4Text9setStringERKNS_6StringE
_ZN2sf4TextC1Ev
_ZN2sf5Color5BlackE
_ZN2sf5Color5WhiteE
_ZN2sf6Sprite10setTextureERKNS_7TextureEb
_ZN2sf6SpriteC1Ev
_ZN2sf7Texture12loadFromFileERKNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEERKNS_4RectIiEE
_ZN2sf7TextureC1Ev
_ZN2sf7TextureD1Ev
_ZNK2sf12RenderWindow7getSizeEv
_ZNK2sf13Transformable11getPositionEv
_ZNK2sf13Transformable8getScaleEv
_ZNK2sf4Text15getGlobalBoundsEv
_ZNK2sf6Sprite15getGlobalBoundsEv
_ZNK2sf7Texture7getSizeEv
_ZTVN2sf11VertexArrayE
_ZTVN2sf13TransformableE
_ZTVN2sf4TextE
_ZTVN2sf6SpriteE
_ZTVN2sf8DrawableE

sfml-system-2

_ZN2sf5Clock7restartEv
_ZN2sf5ClockC1Ev
_ZN2sf6StringC1EPKcRKSt6locale
_ZN2sf6StringC1ERKNSt7__cxx1112basic_stringIcSt11char_traitsIcESaIcEEERKSt6locale
_ZNK2sf4Time9asSecondsEv

sfml-window-2

_ZN2sf6Window17setFramerateLimitEj
_ZN2sf6Window5closeEv
_ZN2sf6Window7displayEv
_ZN2sf6Window9pollEventERNS_5EventE
_ZN2sf8Keyboard12isKeyPressedENS0_3KeyE
_ZN2sf9VideoModeC1Ejjj
_ZNK2sf6Window6isOpenEv
_ZNK2sf6Window8hasFocusEv

Sections

.text
Size: 46KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 100B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

/14
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/29
Size: 321KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/41
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/55
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/67
Size: 512B - Virtual size: 56B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/80
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

/91
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8b4a9e2727a27e0c62ee7009caf60184

Headers

File Characteristics

Imports

libgcc_s_dw2-1

kernel32

msvcrt

user32

libstdc++-6

sfml-graphics-2

sfml-system-2

sfml-window-2

Sections

.text Size: 46KB - Virtual size: 46KB

.data Size: 512B - Virtual size: 100B

.rdata Size: 2KB - Virtual size: 2KB

/4 Size: 16KB - Virtual size: 15KB

.bss Size: - Virtual size: 3KB

.idata Size: 7KB - Virtual size: 6KB

.CRT Size: 512B - Virtual size: 52B

.tls Size: 512B - Virtual size: 8B

/14 Size: 1KB - Virtual size: 1KB

/29 Size: 321KB - Virtual size: 320KB

/41 Size: 5KB - Virtual size: 4KB

/55 Size: 8KB - Virtual size: 8KB

/67 Size: 512B - Virtual size: 56B

/80 Size: 6KB - Virtual size: 5KB

/91 Size: 1KB - Virtual size: 1KB

.text
Size: 46KB - Virtual size: 46KB

.data
Size: 512B - Virtual size: 100B

.rdata
Size: 2KB - Virtual size: 2KB

/4
Size: 16KB - Virtual size: 15KB

.bss
Size: - Virtual size: 3KB

.idata
Size: 7KB - Virtual size: 6KB

.CRT
Size: 512B - Virtual size: 52B

.tls
Size: 512B - Virtual size: 8B

/14
Size: 1KB - Virtual size: 1KB

/29
Size: 321KB - Virtual size: 320KB

/41
Size: 5KB - Virtual size: 4KB

/55
Size: 8KB - Virtual size: 8KB

/67
Size: 512B - Virtual size: 56B

/80
Size: 6KB - Virtual size: 5KB

/91
Size: 1KB - Virtual size: 1KB