stress-reducer-desktop-destroyer[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

stress-reducer-desktop-destroyer.exe
Size

1.2MB
MD5

8abef55829fd0a826822f153d6f9cc66
SHA1

74438ff81b4348d5c96ef4a4a83dedac99cb32ed
SHA256

bdb0ab60e058dc1a70fc6a0f38996609d656ca8c605172077d8d19a4ef6ef337
SHA512

227d85ce1b603a4fa1b82562110793e0aa8ae20a31cb4941761dabe1c37f3ca08b3e458b995e5575d19d185a4d9b570d8d0c0c867892906a82979c246ad23a95
SSDEEP

12288:VhWN3RGZrPV/LuS7zkk2IDFG4ACLZL9Fh6LtNkjOQbbXHwM/b25QGE3zJUuEZZfQ:VhWxRGRiKXv/bGQGE3FUTf32suLg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
stress-reducer-desktop-destroyer.exe

Files

stress-reducer-desktop-destroyer.exe
.exe windows:4 windows x86 arch:x86

Password: infected

523c6d6a3f1a7621f24aa2b5099d7b17

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
GetModuleHandleA
GetVersionExA
GetVersion
ExitProcess
GetExitCodeProcess
WaitForSingleObject
GetWindowsDirectoryA
SetCurrentDirectoryA
CreateProcessA
CreateDirectoryA
SetConsoleTitleA
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
VirtualAlloc
VirtualFree
AllocConsole
GetDiskFreeSpaceA
GetUserDefaultLangID
GetACP
SetVolumeLabelA
SetEndOfFile
SetLocalTime
WritePrivateProfileStringA
RemoveDirectoryA
FindClose
GetVolumeInformationA
GetLogicalDrives
FindFirstFileA
CopyFileA
MoveFileA
GlobalFree
FileTimeToSystemTime
LocalFileTimeToFileTime
SystemTimeToFileTime
FileTimeToLocalFileTime
GetDriveTypeA
QueryPerformanceCounter
QueryPerformanceFrequency
FindNextFileA
GetPrivateProfileStringA
GetLocalTime
GetModuleFileNameA
GetCommandLineA
FindResourceA
SizeofResource
LoadResource
LockResource
FreeLibrary
LoadLibraryA
SetFilePointer
SetFileAttributesA
GetFileAttributesA
SetFileTime
ReadFile
GetFileSize
MultiByteToWideChar
GetStdHandle
lstrlenW
CompareStringA
GetCurrentDirectoryA
GetTempPathA
GetTempFileNameA
FreeConsole
GetFullPathNameA
WideCharToMultiByte
DeleteFileA
WriteFile
CreateFileA
CloseHandle
RaiseException
lstrlenA

user32

GetCursorPos
PostQuitMessage
DefWindowProcA
MessageBoxA
UpdateWindow
FillRect
InvalidateRect
EnableWindow
SetScrollInfo
DestroyWindow
CharToOemBuffA
OemToCharBuffA
IsIconic
EndPaint
BeginPaint
SetKeyboardState
GetKeyboardState
PeekMessageA
DispatchMessageA
TranslateMessage
IsDialogMessageA
GetMessageA
KillTimer
SetTimer
SetWindowPlacement
GetWindowPlacement
SetCursor
SetCursorPos
LoadIconA
SetScrollPos
EnumDisplaySettingsA
GetSysColor
DrawTextA
LoadCursorA
RegisterClassA
CreateWindowExA
SetWindowLongA
SetFocus
GetFocus
GetClassNameA
GetWindowRect
SystemParametersInfoA
SetWindowPos
SetForegroundWindow
GetForegroundWindow
GetSystemMetrics
GetDC
ReleaseDC
GetDlgItem
SetWindowTextA
GetWindowTextLengthA
GetWindowTextA
CharLowerA
CharUpperA
CreateCursor
DestroyIcon
DestroyCursor
IsWindow
GetWindow
GetWindowLongA
SendMessageA
RegisterWindowMessageA
ScreenToClient
GetKeyState
GetAsyncKeyState
ClientToScreen
IsZoomed
MoveWindow
GetClientRect
EndDialog
ShowCursor
DialogBoxParamA
ShowWindow
AdjustWindowRectEx
ChangeDisplaySettingsA

gdi32

DeleteObject
RealizePalette
SelectPalette
GetDeviceCaps
CreatePalette
CreateSolidBrush
GetStockObject
SetBkColor
SetTextColor
StretchDIBits
SetStretchBltMode
CreateFontA
DeleteDC
GetDIBits
TextOutA
GetTextExtentPoint32A
SelectObject
CreateCompatibleDC
CreateBitmap
BitBlt
CreateCompatibleBitmap
CreateDCA
EndDoc
EndPage
StartPage
StartDocA
EnumFontFamiliesA

msacm32

acmFormatSuggest
acmStreamOpen
acmStreamSize
acmStreamPrepareHeader
acmStreamConvert
acmStreamUnprepareHeader
acmStreamClose

winmm

waveOutRestart
waveOutWrite
waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
joyGetDevCapsA
mciSendCommandA
waveOutPause
waveOutGetPosition
waveOutOpen
joyGetPos
waveOutClose
timeGetTime

comdlg32

GetSaveFileNameA
FindTextA
GetOpenFileNameA
PrintDlgA

comctl32

ord6
ord17

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

shell32

ExtractIconA

Sections

.text
Size: 200KB - Virtual size: 199KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.petprg
Size: 1017KB - Virtual size: 1016KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

Password: infected

523c6d6a3f1a7621f24aa2b5099d7b17

Headers

File Characteristics

Imports

kernel32

user32

gdi32

msacm32

winmm

comdlg32

comctl32

advapi32

shell32

Sections

.text Size: 200KB - Virtual size: 199KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 4KB - Virtual size: 6KB

.rsrc Size: 32KB - Virtual size: 31KB

.petprg Size: 1017KB - Virtual size: 1016KB

.text
Size: 200KB - Virtual size: 199KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 4KB - Virtual size: 6KB

.rsrc
Size: 32KB - Virtual size: 31KB

.petprg
Size: 1017KB - Virtual size: 1016KB