ALVR Dashboard[.]exe

Resubmissions

17/06/2024, 12:24

240617-pk572avbrq 3

17/06/2024, 12:21

240617-pjkvpszgmd 3

Sharing

Copy URL Twitter E-mail

General

Target

ALVR Dashboard.exe
Size

17.2MB
MD5

57a5dd124a4bfc4462255d452da9f1d9
SHA1

056cbce87d3efdff5b67bfc9e3796a30e442bf75
SHA256

9292c85ba7692f62dfe3057f979896889d259bae31e2e1b807f330421309d7f4
SHA512

f49c13ea5f59b7679be9797824572a437038596cbda1fd5b7eeeb4c85e7471a81d79420a839e06e3b082f0dcdca004c250ec9405b0853686bae37db9828956e5
SSDEEP

98304:oFsOvAhsPKfCd3UuVdPDS7ShHVZgp4gDsHfzgibovKRB+bgkFavwefyu:abv3EqdPm+JPgpRDsrgEBMFa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ALVR Dashboard.exe

Files

ALVR Dashboard.exe
.exe windows:6 windows x64 arch:x64

1318ba2948234dd4d5feade5a136c0e3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

alvr_dashboard.pdb

Imports

api-ms-win-core-synch-l1-2-0

WaitOnAddress
WakeByAddressAll
WakeByAddressSingle

bcryptprimitives

ProcessPrng

kernel32

SetEnvironmentVariableW
GetLastError
GetSystemTimePreciseAsFileTime
GetTimeZoneInformationForYear
SetLastError
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
UnhandledExceptionFilter
GetExitCodeProcess
WaitForMultipleObjects
GetProcAddress
SetUnhandledExceptionFilter
GetCurrentThreadId
HeapReAlloc
SwitchToThread
GetOverlappedResult
lstrlenW
SetThreadStackGuarantee
QueryPerformanceCounter
GlobalUnlock
CloseHandle
WaitForSingleObject
IsProcessorFeaturePresent
GlobalFree
HeapFree
GetConsoleScreenBufferInfo
K32GetPerformanceInfo
GlobalMemoryStatusEx
OpenProcess
GetSystemInfo
LocalFree
VirtualQueryEx
ReadProcessMemory
SetConsoleTextAttribute
SetConsoleMode
GetProcessIoCounters
MultiByteToWideChar
GlobalAlloc
GlobalLock
GetSystemTimes
GetProcessTimes
GetFileType
GetProcessHeap
HeapAlloc
ExitProcess
ReadFile
CancelIo
CreateEventW
WriteFileEx
SleepEx
ReadFileEx
AddVectoredExceptionHandler
LoadLibraryExA
CreateThread
CreateNamedPipeW
GlobalSize
LoadLibraryW
DeleteProcThreadAttributeList
UpdateProcThreadAttribute
InitializeProcThreadAttributeList
DuplicateHandle
GetFileAttributesW
SetThreadErrorMode
LoadLibraryExW
FreeLibrary
Sleep
GetModuleHandleA
GetConsoleMode
GetStdHandle
GetCurrentThread
CreateProcessW
GetWindowsDirectoryW
WriteConsoleW
CreateWaitableTimerExW
SetWaitableTimer
QueryPerformanceFrequency
GetModuleHandleW
FormatMessageW
GetCurrentDirectoryW
WaitForSingleObjectEx
LoadLibraryA
GetCurrentProcess
GetCurrentProcessId
CreateMutexA
ReleaseMutex
RtlCaptureContext
RtlVirtualUnwind
RtlLookupFunctionEntry
GetEnvironmentVariableW
GetTempPathW
GetModuleFileNameW
CreateFileW
SetFileInformationByHandle
GetFileInformationByHandle
GetFileInformationByHandleEx
GetSystemDirectoryW
GetFullPathNameW
CreateDirectoryW
FindFirstFileW
FindClose
CompareStringOrdinal
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleInformation
TerminateProcess

oleaut32

GetErrorInfo
SafeArrayCreateVector
SetErrorInfo
SysStringLen
SysFreeString
SysAllocStringLen
SafeArrayPutElement

uiautomationcore

UiaRaiseAutomationEvent
UiaHostProviderFromHwnd
UiaLookupId
UiaRaiseAutomationPropertyChangedEvent
UiaReturnRawElementProvider
UiaGetReservedNotSupportedValue

user32

CreateIconFromResourceEx
SetWindowPlacement
MapVirtualKeyExW
GetKeyboardLayout
ToUnicodeEx
ShowWindow
GetSystemMenu
EnableMenuItem
SetWindowLongW
GetWindowLongW
AdjustWindowRectEx
GetClipCursor
ClipCursor
ShowCursor
SetPropW
EmptyClipboard
SystemParametersInfoA
SetForegroundWindow
RegisterWindowMessageA
ChangeDisplaySettingsExW
SetClipboardData
CloseClipboard
RegisterRawInputDevices
DefWindowProcW
ClientToScreen
GetWindowRect
GetWindowTextLengthW
IsProcessDPIAware
GetWindowTextW
GetKeyboardState
GetAsyncKeyState
SendInput
SetCursorPos
SetWindowTextW
GetForegroundWindow
CreateIcon
DestroyIcon
MonitorFromPoint
RegisterClassExW
RegisterTouchWindow
SetWindowDisplayAffinity
MapVirtualKeyW
ValidateRect
GetRawInputData
DispatchMessageW
TranslateMessage
KillTimer
SetTimer
PeekMessageW
GetMessageW
GetKeyState
MonitorFromWindow
GetCursorPos
CloseTouchInputHandle
ScreenToClient
GetTouchInputInfo
RedrawWindow
TrackMouseEvent
ReleaseCapture
SetCapture
MonitorFromRect
GetWindowPlacement
SetCursor
LoadCursorW
DestroyWindow
GetMenu
IsClipboardFormatAvailable
InvalidateRgn
SetWindowPos
GetClipboardData
GetMonitorInfoW
EnumDisplayMonitors
PostMessageW
GetDC
GetWindowLongPtrW
IsIconic
GetClientRect
SendMessageW
GetSystemMetrics
GetActiveWindow
ReleaseDC
GetClassNameW
GetClassInfoExW
FlashWindowEx
GetPropW
OpenClipboard
CallWindowProcW
CreateWindowExW
SetWindowLongPtrW
RemovePropW

ws2_32

WSAGetLastError
recv
getpeername
getsockname
WSADuplicateSocketW
WSACleanup
closesocket
getaddrinfo
send
WSASocketW
WSASend
WSARecv
setsockopt
ioctlsocket
WSAStartup
freeaddrinfo
getsockopt
connect
select

ole32

PropVariantClear
CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitializeEx
OleInitialize
RevokeDragDrop
RegisterDragDrop

shell32

ShellExecuteExW
CommandLineToArgvW
DragQueryFileW
DragFinish
SHGetKnownFolderPath

gdi32

ChoosePixelFormat
SwapBuffers
DescribePixelFormat
CreateRectRgn
DeleteObject
GetDeviceCaps
SetPixelFormat

opengl32

wglCreateContext
wglShareLists
wglGetProcAddress
wglGetCurrentContext
wglGetCurrentDC
wglDeleteContext
wglMakeCurrent

imm32

ImmSetCandidateWindow
ImmGetCompositionStringW
ImmSetCompositionWindow
ImmReleaseContext
ImmAssociateContextEx
ImmGetContext

dwmapi

DwmEnableBlurBehindWindow

shlwapi

AssocQueryStringW

bcrypt

BCryptGenRandom

advapi32

GetTokenInformation
CopySid
GetLengthSid
IsValidSid
SystemFunction036
OpenProcessToken

ntdll

NtQueryInformationProcess
RtlGetVersion
NtQuerySystemInformation
NtWriteFile
RtlNtStatusToDosError
NtReadFile

psapi

GetProcessMemoryInfo
GetModuleFileNameExW

pdh

PdhCollectQueryData
PdhGetFormattedCounterValue
PdhCloseQuery
PdhRemoveCounter
PdhOpenQueryA
PdhAddEnglishCounterW

powrprof

CallNtPowerInformation

uxtheme

SetWindowTheme

vcruntime140

memset
__current_exception_context
__current_exception
__C_specific_handler
_CxxThrowException
memcmp
memmove
memcpy
__CxxFrameHandler3

api-ms-win-crt-math-l1-1-0

cbrtf
roundf
floor
floorf
ceilf
round
sinf
expf
_hypotf
ceil
atan2f
powf
pow
cosf
trunc
log10
sin
cos
exp2f
acosf
__setusermatherr

api-ms-win-crt-string-l1-1-0

strlen
wcslen

api-ms-win-crt-runtime-l1-1-0

_register_onexit_function
terminate
_register_thread_local_exe_atexit_callback
_cexit
_initialize_onexit_table
_crt_atexit
__p___argv
__p___argc
_seh_filter_exe
_exit
exit
_initterm_e
_initterm
_get_initial_narrow_environment
_initialize_narrow_environment
_configure_narrow_argv
_c_exit
_set_app_type

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode

Sections

.text
Size: 12.9MB - Virtual size: 12.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3.9MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 298KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

1318ba2948234dd4d5feade5a136c0e3

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

api-ms-win-core-synch-l1-2-0

bcryptprimitives

kernel32

oleaut32

uiautomationcore

user32

ws2_32

ole32

shell32

gdi32

opengl32

imm32

dwmapi

shlwapi

bcrypt

advapi32

ntdll

psapi

pdh

powrprof

uxtheme

vcruntime140

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-heap-l1-1-0

Sections

.text Size: 12.9MB - Virtual size: 12.9MB

.rdata Size: 3.9MB - Virtual size: 3.8MB

.data Size: 5KB - Virtual size: 6KB

.pdata Size: 298KB - Virtual size: 297KB

.rsrc Size: 82KB - Virtual size: 81KB

.reloc Size: 26KB - Virtual size: 26KB

.text
Size: 12.9MB - Virtual size: 12.9MB

.rdata
Size: 3.9MB - Virtual size: 3.8MB

.data
Size: 5KB - Virtual size: 6KB

.pdata
Size: 298KB - Virtual size: 297KB

.rsrc
Size: 82KB - Virtual size: 81KB

.reloc
Size: 26KB - Virtual size: 26KB