3f11bfe3e6ee7eae7e50dc7ef932c24ae5cb33f990bea801a1ffeeaec739a1e0

Sharing

Copy URL Twitter E-mail

General

Target

3f11bfe3e6ee7eae7e50dc7ef932c24ae5cb33f990bea801a1ffeeaec739a1e0
Size

6.9MB
MD5

807586862e3c90eeb939bcaf154e90a6
SHA1

88f2f4293c57915e8265b512cfb8e1d66591e480
SHA256

3f11bfe3e6ee7eae7e50dc7ef932c24ae5cb33f990bea801a1ffeeaec739a1e0
SHA512

d4ef31c7efa70649216d6c46b6d0f76e8bfa41b3fb974e8f6de1c36eb2182726d3d82e785cfbb036d7bd7151f9ce216ec8c2240b24ffa849bb29f34825e7e64f
SSDEEP

49152:K3qznczUlC9uQI3Ro1nnNVyZBwpJB90oZPpr1Ds+n2xYk6dHthB/cZTGU7yEETAI:XRlT3wnNsZ+vNln2xYtTCBslKO00ibS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f11bfe3e6ee7eae7e50dc7ef932c24ae5cb33f990bea801a1ffeeaec739a1e0

Files

3f11bfe3e6ee7eae7e50dc7ef932c24ae5cb33f990bea801a1ffeeaec739a1e0
.exe windows:6 windows x64 arch:x64

042da0d02915bab7706981d35af06053

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

C:\CI\j\workspace\core\vray_max_build\build\TOOLS\tools\vrimg2exr\vrimg2exr.pdb

Imports

kernel32

GetCommandLineW
GetDateFormatW
GetTimeFormatW
EnumSystemLocalesW
SetEnvironmentVariableA
GetOEMCP
WriteConsoleW
FindFirstFileExA
GetDriveTypeA
GetLogicalDriveStringsA
GetModuleHandleA
GetCommandLineA
Sleep
CreateFileW
FindClose
FindFirstFileW
FlushFileBuffers
GetFileSize
ReadFile
SetEndOfFile
SetFilePointer
WriteFile
CloseHandle
GetLastError
GetSystemInfo
SetEvent
ReleaseSemaphore
WaitForSingleObject
CreateEventA
CreateSemaphoreA
GetEnvironmentStringsW
FreeEnvironmentStringsW
DeleteFileW
FindNextFileW
GetFullPathNameA
OutputDebugStringW
LocalFree
FormatMessageW
MoveFileExW
MultiByteToWideChar
WideCharToMultiByte
RaiseException
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
TryEnterCriticalSection
DeleteCriticalSection
ResetEvent
GetCurrentProcess
GetCurrentThread
SetThreadPriority
GetThreadPriority
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetTickCount
GetProcAddress
GetProcessAffinityMask
SetThreadAffinityMask
GetActiveProcessorGroupCount
GetActiveProcessorCount
GetStdHandle
GetCurrentProcessId
GetModuleHandleExW
GetConsoleScreenBufferInfo
SwitchToThread
GetCurrentDirectoryW
QueryPerformanceCounter
QueryPerformanceFrequency
DebugBreak
FormatMessageA
SetErrorMode
ExitProcess
GetCurrentThreadId
GetExitCodeThread
OutputDebugStringA
GetEnvironmentVariableA
IsDebuggerPresent
TerminateProcess
GetVersionExW
GetModuleFileNameA
IsValidCodePage
GetCPInfo
CreateFileA
FindFirstFileA
GetFileAttributesA
GetFileTime
GetLongPathNameA
GetTempPathA
GetTempFileNameA
GetACP
GetLocaleInfoA
IsValidLocale
GetUserDefaultLCID
SetCurrentDirectoryA
GetFileType
CopyFileA
FindNextFileA
FreeLibrary
LoadLibraryA
CreateThread
WaitForMultipleObjects
IsBadReadPtr
IsBadStringPtrA
GetSystemTimeAsFileTime
ExpandEnvironmentStringsA
MulDiv
ReadConsoleOutputCharacterA
FillConsoleOutputCharacterA
SetConsoleCursorPosition
FreeConsole
AttachConsole
WriteConsoleA
SetLastError
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
HeapSize
GetProcessHeap
GlobalSize
DuplicateHandle
WaitForSingleObjectEx
EncodePointer
DecodePointer
CreateEventW
GetModuleHandleW
CompareStringW
LCMapStringW
GetLocaleInfoW
GetStringTypeW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
GetStartupInfoW
InitializeSListHead
CreateTimerQueue
SignalObjectAndWait
GetLogicalProcessorInformation
CreateTimerQueueTimer
ChangeTimerQueueTimer
DeleteTimerQueueTimer
GetNumaHighestNodeNumber
RegisterWaitForSingleObject
UnregisterWait
GetThreadTimes
FreeLibraryAndExitThread
GetModuleFileNameW
LoadLibraryExW
VirtualAlloc
VirtualProtect
VirtualFree
InterlockedPopEntrySList
InterlockedPushEntrySList
InterlockedFlushSList
QueryDepthSList
UnregisterWaitEx
LoadLibraryW
RtlPcToFileHeader
RtlUnwindEx
ExitThread
GetDriveTypeW
GetConsoleMode
ReadConsoleW
GetConsoleCP
SetFilePointerEx
SetStdHandle
GetTimeZoneInformation
HeapAlloc
HeapFree
HeapReAlloc

rpcrt4

RpcStringFreeA
UuidToStringA

msimg32

GradientFill
AlphaBlend

shlwapi

SHAutoComplete
AssocQueryStringA

advapi32

RegSetValueExA
RegEnumValueA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
GetUserNameA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

comctl32

ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_Copy
ImageList_BeginDrag
ImageList_EndDrag
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_SetDragCursorImage
ImageList_Remove
ImageList_Replace
ImageList_Draw
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Add
ord17
ord16
ImageList_Create
ImageList_Destroy
ImageList_GetImageCount

comdlg32

ChooseFontA
CommDlgExtendedError
GetSaveFileNameA
GetOpenFileNameA
PrintDlgA
PageSetupDlgA

gdi32

StartDocA
EndDoc
StartPage
EndPage
GetSystemPaletteEntries
CloseEnhMetaFile
CreateEnhMetaFileA
DeleteEnhMetaFile
GetEnhMetaFileA
GetEnhMetaFileHeader
PlayEnhMetaFile
CreateCompatibleBitmap
CreateBitmap
DeleteObject
GetObjectA
CreateFontIndirectA
GetDeviceCaps
GetOutlineTextMetricsA
SelectObject
GetTextMetricsA
CreateRectRgn
ExcludeClipRect
RealizePalette
SelectPalette
SetBrushOrgEx
GdiFlush
ExtCreateRegion
GetRegionData
OffsetRgn
SetBkColor
SetBkMode
SetTextColor
BitBlt
SetAbortProc
CreateCompatibleDC
DeleteDC
CreatePen
CreateSolidBrush
GetTextExtentPoint32A
StretchBlt
LineTo
MoveToEx
Arc
Ellipse
ExtFloodFill
GetBkColor
GetClipBox
GetObjectType
GetPixel
GetStockObject
MaskBlt
Pie
PolyPolygon
Rectangle
RoundRect
SelectClipRgn
ExtSelectClipRgn
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPixel
SetPolyFillMode
StretchDIBits
SetROP2
SetStretchBltMode
GetWorldTransform
SetWorldTransform
ModifyWorldTransform
ExtTextOutA
Polygon
Polyline
PolyBezier
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
ExtCreatePen
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
CreateHatchBrush
CreatePatternBrush
CreateDIBitmap
GetDIBits
CreateDIBSection
GetDIBColorTable
CombineRgn
EqualRgn
GetRgnBox
PtInRegion
RectInRegion
CreateRectRgnIndirect
GetCharABCWidthsA
GetTextExtentExPointA
CreateICA
EnumFontFamiliesExA
CreateDCA

ole32

ReleaseStgMedium
OleSetClipboard
RegisterDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CoTaskMemFree
CoLockObjectExternal
RevokeDragDrop
CoTaskMemAlloc
OleUninitialize
OleInitialize
OleGetClipboard
CoCreateInstance

oleaut32

VarBstrFromCy
SysStringLen
SysFreeString

shell32

SHGetMalloc
ExtractIconA
SHBrowseForFolderA
SHGetFileInfoA
ExtractIconExA
DragQueryFileA
SHGetFolderPathA
DragQueryPoint
SHGetPathFromIDListA
DragAcceptFiles
DragFinish

user32

ClientToScreen
ShowCursor
AdjustWindowRectEx
IsClipboardFormatAvailable
GetClipboardFormatNameA
RegisterClipboardFormatA
wsprintfA
TranslateMessage
DispatchMessageA
PeekMessageA
MessageBoxA
PostThreadMessageA
PostMessageA
RegisterClassA
CreateWindowExA
BringWindowToTop
SendMessageA
DefWindowProcA
UnregisterClassA
DestroyWindow
MsgWaitForMultipleObjects
SetTimer
KillTimer
SetCursor
LoadCursorA
DdeInitializeA
DdeUninitialize
DdeConnect
DdeDisconnect
DdePostAdvise
DdeNameService
DdeClientTransaction
DdeCreateDataHandle
DdeGetData
DdeFreeDataHandle
DdeGetLastError
DdeCreateStringHandleA
DdeQueryStringA
DdeFreeStringHandle
SetWindowPos
GetKeyState
keybd_event
GetSystemMetrics
SetWindowTextA
GetWindowTextLengthA
HideCaret
GetWindowLongA
SetWindowLongA
GetWindowLongPtrA
SetWindowLongPtrA
SystemParametersInfoA
RegisterWindowMessageA
SetMenu
GetWindowRect
LoadBitmapA
LoadIconA
LoadImageA
GetIconInfo
GetProcessDefaultLayout
GetDC
ReleaseDC
RegisterHotKey
UnregisterHotKey
GetMessagePos
GetMessageTime
PostQuitMessage
CallWindowProcA
IsWindow
ShowWindow
AnimateWindow
MoveWindow
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
IsRectEmpty
GetActiveWindow
GetFocus
GetAsyncKeyState
VkKeyScanA
MapVirtualKeyA
GetCapture
SetCapture
ReleaseCapture
EnableWindow
IsWindowEnabled
GetMenuItemCount
TrackPopupMenu
GetMenuItemInfoA
UpdateWindow
GetUpdateRgn
InvalidateRect
RedrawWindow
ScrollWindow
EnableScrollBar
GetClientRect
SetCursorPos
GetCursorPos
SetFocus
ScreenToClient
MapWindowPoints
WindowFromPoint
ChildWindowFromPointEx
GetSysColor
FillRect
InflateRect
PtInRect
GetParent
SetParent
GetWindow
SetWindowsHookExA
UnhookWindowsHookEx
CallNextHookEx
IsDialogMessageA
SetScrollInfo
GetScrollInfo
CreateDialogParamA
GetDlgItem
SetWindowRgn
SetLayeredWindowAttributes
FlashWindowEx
GetWindowPlacement
IsIconic
IsZoomed
CreateDialogIndirectParamA
DrawMenuBar
GetSystemMenu
EnableMenuItem
SetForegroundWindow
GetDesktopWindow
DrawTextA
DrawFocusRect
CreateIconIndirect
DrawStateA
SetRectEmpty
CopyRect
OffsetRect
DrawEdge
DrawFrameControl
GetMenuState
CheckMenuItem
GetSubMenu
GetMenuItemID
SetMenuItemInfoA
GetSysColorBrush
SetRect
CheckMenuRadioItem
CreateMenu
CreatePopupMenu
DestroyMenu
InsertMenuA
AppendMenuA
ModifyMenuA
RemoveMenu
SetMenuInfo
InsertMenuItemA
FindWindowExA
GetComboBoxInfo
ChildWindowFromPoint
GetDialogBaseUnits
UnionRect
DestroyCursor
GetWindowTextA
MessageBeep
GetClassNameA
DrawIconEx
CreateAcceleratorTableA
DestroyAcceleratorTable
TranslateAcceleratorA
GetDoubleClickTime
DestroyIcon
ChangeDisplaySettingsExA
EnumDisplaySettingsA
MonitorFromPoint
MonitorFromWindow
GetMonitorInfoA
EnumDisplayMonitors
GetMessageA
ValidateRect
GetWindowDC
BeginPaint
EndPaint
ValidateRgn

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

Sections

.text
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.3MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 167KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 648KB - Virtual size: 652KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

042da0d02915bab7706981d35af06053

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

rpcrt4

msimg32

shlwapi

advapi32

comctl32

comdlg32

gdi32

ole32

oleaut32

shell32

user32

winspool.drv

Sections

.text Size: 2.7MB - Virtual size: 2.7MB

.rdata Size: 2.0MB - Virtual size: 2.0MB

.data Size: 1.3MB - Virtual size: 1.5MB

.pdata Size: 167KB - Virtual size: 166KB

.rsrc Size: 4KB - Virtual size: 4KB

.reloc Size: 648KB - Virtual size: 652KB

.text
Size: 2.7MB - Virtual size: 2.7MB

.rdata
Size: 2.0MB - Virtual size: 2.0MB

.data
Size: 1.3MB - Virtual size: 1.5MB

.pdata
Size: 167KB - Virtual size: 166KB

.rsrc
Size: 4KB - Virtual size: 4KB

.reloc
Size: 648KB - Virtual size: 652KB