FlashPlayer.pdb
Static task
static1
1 signatures
General
-
Target
exe.exe
-
Size
30.2MB
-
MD5
63b6168ee88e22fa40e842cfd3696abe
-
SHA1
b9faec4720a24663e13aa866adb714d75058bc82
-
SHA256
57d183516731ca746a8e7338f5f2ca2b20e2a26dafa89797d004e865294ac57d
-
SHA512
d5f1755b00aac86d11ce6a989164e65fc77b1b4005a4895a261a684f2318e669ad0cdd3ac67ad9754613d21c05e15ee88c85ffd62e5e9868f0a71f74214b86a0
-
SSDEEP
393216:GByiOmzm3r7Yrf/rrrioMgU/XJM50vJVs6aB/O9+EoLwWBCJROMsxD+1+I+3+o+Y:GcJ7YCB/JTs6s/OdoLz4E
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource exe.exe
Files
-
exe.exe.exe windows:5 windows x86 arch:x86
f69ddabb2a2e3fac9454b03cf6a6f05b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
wininet
HttpQueryInfoA
HttpQueryInfoW
crypt32
CertFindCertificateInStore
CertVerifySubjectCertificateContext
CertFreeCertificateContext
CryptVerifyMessageSignature
CertCreateCertificateContext
CertCloseStore
CryptGetMessageCertificates
urlmon
CopyStgMedium
version
VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
winmm
waveOutPrepareHeader
waveOutGetDevCapsW
waveInGetDevCapsW
waveOutGetNumDevs
waveInGetNumDevs
waveOutOpen
waveOutReset
waveInStart
waveInAddBuffer
waveInStop
waveOutClose
waveInClose
waveInUnprepareHeader
waveInReset
waveInPrepareHeader
waveInOpen
timeKillEvent
timeSetEvent
waveOutGetPosition
timeGetTime
waveOutWrite
timeGetDevCaps
timeBeginPeriod
timeEndPeriod
waveOutUnprepareHeader
oleaut32
SysFreeString
dsound
ord8
kernel32
ReadFile
GetFileSize
CreateThread
LockResource
LoadResource
FindResourceExA
FindResourceExW
SetUnhandledExceptionFilter
GetTempPathW
FindClose
FindNextFileW
FindFirstFileW
InterlockedIncrement
InterlockedDecrement
GetTimeZoneInformation
GetSystemTime
SystemTimeToFileTime
ReleaseSemaphore
WaitForMultipleObjects
SetEvent
CreateSemaphoreW
GetTempPathA
GetModuleFileNameA
GetModuleFileNameW
GetTempFileNameW
GetSystemDirectoryW
ExpandEnvironmentStringsA
WideCharToMultiByte
CreateProcessW
GetTempFileNameA
GetFileAttributesA
CreateDirectoryA
DeleteFileA
CreateMutexA
SetFilePointerEx
GetFileSizeEx
GetFileAttributesExW
GetFileInformationByHandle
GetVolumeInformationW
GetCurrentDirectoryW
GlobalFree
RemoveDirectoryW
GetFullPathNameW
ExpandEnvironmentStringsW
OutputDebugStringA
GetVersionExA
CreateDirectoryW
RaiseException
UnmapViewOfFile
ReleaseMutex
MapViewOfFile
CreateFileMappingA
SetLastError
SetThreadPriority
GetSystemDirectoryA
TerminateThread
lstrcpyA
lstrlenA
QueryPerformanceFrequency
QueryPerformanceCounter
QueueUserAPC
OpenThread
SleepEx
FlushInstructionCache
GetModuleHandleA
GetCommandLineW
SetEndOfFile
SetFileAttributesA
CopyFileA
GetStartupInfoW
GetCommandLineA
TlsFree
TlsSetValue
TlsGetValue
VirtualAlloc
VirtualFree
LocalFree
FormatMessageW
FormatMessageA
ConnectNamedPipe
CreateNamedPipeA
FlushFileBuffers
GetNumberFormatW
GetCurrencyFormatW
CompareStringW
GetDateFormatW
GetTimeFormatW
GetUserDefaultLCID
EnumSystemLocalesW
HeapAlloc
GetProcessHeap
HeapFree
CreateFileA
VerSetConditionMask
VerifyVersionInfoW
CreateFileW
SetFilePointer
WriteFile
GetUserDefaultUILanguage
GetUserDefaultLangID
VirtualQuery
GetFileAttributesW
DeleteFileW
MoveFileExW
GetModuleHandleW
GetSystemInfo
LoadLibraryA
GlobalAlloc
GlobalSize
GetCurrentProcessId
GlobalLock
GlobalUnlock
GetCurrentProcess
GetProcessTimes
FreeLibrary
CreateProcessA
LCMapStringW
GetTickCount
GetCurrentThreadId
GetLocaleInfoW
GetEnvironmentVariableW
GetLastError
CreateSemaphoreA
ResetEvent
WaitForSingleObject
GetVersionExW
LoadLibraryW
GetProcAddress
GetCurrentThread
SetThreadAffinityMask
IsDBCSLeadByte
GetACP
GetCPInfo
MultiByteToWideChar
CreateEventW
CloseHandle
ExitThread
InterlockedExchange
InterlockedCompareExchange
Sleep
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
TlsAlloc
CreateEventA
HeapSize
VirtualProtect
IsProcessorFeaturePresent
RtlUnwind
ExitProcess
GetStartupInfoA
UnhandledExceptionFilter
SetStdHandle
GetFileType
GetStdHandle
TerminateProcess
IsDebuggerPresent
GetConsoleCP
GetConsoleMode
SetHandleCount
HeapCreate
HeapReAlloc
GetOEMCP
IsValidCodePage
LCMapStringA
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetLocaleInfoA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetStringTypeA
GetStringTypeW
CompareStringA
SetEnvironmentVariableA
SetCurrentDirectoryW
user32
SetMenu
GetSystemMenu
IsZoomed
GetWindowPlacement
SetWindowPlacement
IsWindowVisible
GetWindow
ShowWindowAsync
GetClassInfoExW
GetMenu
GetWindowTextW
DeleteMenu
LoadMenuW
PostQuitMessage
UnregisterClassA
GetWindowTextA
InsertMenuA
InsertMenuW
GetWindowTextLengthA
TranslateAcceleratorW
LoadAcceleratorsW
GetMenuStringA
GetMenuStringW
CloseClipboard
RegisterClipboardFormatW
IsWindow
TrackMouseEvent
CallWindowProcW
GetCapture
GetWindowThreadProcessId
AttachThreadInput
MessageBoxW
GetCursorPos
LoadStringA
GetFocus
EnableMenuItem
CheckMenuItem
GetQueueStatus
GetMenuItemInfoW
RemoveMenu
SetMenuItemInfoW
InsertMenuItemW
DrawMenuBar
SetMenuInfo
MapVirtualKeyW
GetKeyState
GetForegroundWindow
WaitForInputIdle
CreatePopupMenu
CreateMenu
ShowWindow
LoadCursorW
RegisterClassExW
GetSubMenu
TrackPopupMenu
EnumDisplaySettingsW
ReleaseCapture
KillTimer
SetCapture
SetTimer
UpdateWindow
BeginPaint
EndPaint
OpenClipboard
DestroyMenu
InvalidateRect
MessageBoxA
GetMessageW
EnableWindow
GetWindowTextLengthW
GetDlgItemTextA
IsWindowEnabled
SetDlgItemTextA
DialogBoxParamW
GetDlgItemTextW
SetDlgItemTextW
MoveWindow
ScreenToClient
SetWindowTextA
GetClientRect
LoadStringW
RedrawWindow
PostMessageW
EndDialog
GetDesktopWindow
SetWindowPos
LoadIconW
GetDlgItem
SetWindowTextW
GetParent
SendMessageTimeoutW
SendMessageW
CreateIconIndirect
SetFocus
SetRectEmpty
SetWindowLongW
SetCursor
GetCursor
GetPropW
SetPropW
SystemParametersInfoW
GetSystemMetrics
GetClipboardFormatNameA
RegisterClipboardFormatA
CreateWindowExW
DdeInitializeW
DdeCreateStringHandleA
DdeConnect
DdeClientTransaction
FlashWindowEx
GetActiveWindow
MapWindowPoints
SetCaretPos
DestroyCaret
CreateCaret
ShowCaret
EmptyClipboard
SetClipboardData
IsClipboardFormatAvailable
DdeDisconnect
DdeFreeStringHandle
DdeUninitialize
DefWindowProcW
SendInput
GetKeyboardLayout
FillRect
GetWindowLongW
GetWindowRect
UpdateLayeredWindow
GetDC
ReleaseDC
ClientToScreen
GetMonitorInfoW
SetRect
OffsetRect
MonitorFromWindow
PeekMessageW
MsgWaitForMultipleObjects
TranslateMessage
DispatchMessageW
GetDoubleClickTime
DestroyWindow
GetClipboardData
DialogBoxIndirectParamW
gdi32
BitBlt
SelectObject
RealizePalette
SelectPalette
ExtTextOutW
SetBkColor
CreateSolidBrush
StretchBlt
SetStretchBltMode
GetStretchBltMode
CreateDIBSection
GetICMProfileA
CreateDCA
GetStockObject
SetPixel
CreateBitmap
CreateFontIndirectW
GetTextMetricsW
EnumFontFamiliesA
SetBkMode
SetTextAlign
GetDeviceCaps
EnumFontFamiliesW
GetObjectW
SelectClipRgn
CreateCompatibleBitmap
SetTextColor
CreateFontIndirectA
GetClipRgn
CreateRectRgn
GetTextAlign
GetBkMode
GetTextColor
SetTextCharacterExtra
GetTextExtentPoint32W
GetCurrentObject
GetBkColor
CreatePen
DPtoLP
GetTextExtentPoint32A
GetTextCharacterExtra
SetWorldTransform
SetGraphicsMode
GetWorldTransform
CreatePalette
GetSystemPaletteEntries
LPtoDP
StartDocW
EndDoc
StrokePath
ExtCreatePen
FillPath
StretchDIBits
GetClipBox
GetDIBits
DeleteObject
GdiFlush
DeleteDC
CreateCompatibleDC
RestoreDC
SelectClipPath
PolyBezierTo
LineTo
MoveToEx
ExtTextOutA
EndPath
BeginPath
SaveDC
SetPolyFillMode
EndPage
GetFontData
EnumFontFamiliesExW
IntersectClipRect
StartPage
comdlg32
GetOpenFileNameW
GetSaveFileNameW
PrintDlgW
GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
advapi32
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegOpenKeyExA
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA
shell32
DragQueryFileA
DragAcceptFiles
SHGetDiskFreeSpaceExW
SHGetFolderPathW
SHGetSpecialFolderLocation
SHAppBarMessage
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFolderPathA
DragQueryFileW
ole32
OleIsCurrentClipboard
OleSetClipboard
OleGetClipboard
OleFlushClipboard
CoInitialize
OleUninitialize
ReleaseStgMedium
CoUninitialize
CreateBindCtx
CoTaskMemFree
CoTaskMemAlloc
OleInitialize
CoCreateInstance
mscms
OpenColorProfileW
CloseColorProfile
TranslateBitmapBits
DeleteColorTransform
CreateColorTransformW
ws2_32
WSACloseEvent
htons
getsockname
ntohs
inet_addr
recv
setsockopt
WSAStartup
socket
WSASocketW
gethostbyname
inet_ntoa
htonl
getservbyname
gethostbyaddr
WSACleanup
closesocket
WSAAsyncSelect
WSAGetLastError
WSAIoctl
ntohl
select
gethostname
connect
ioctlsocket
WSAEnumNetworkEvents
WSAEventSelect
WSACreateEvent
WSAAddressToStringA
bind
sendto
recvfrom
WSASetLastError
send
getservbyport
Sections
.text Size: 4.1MB - Virtual size: 4.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rodata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 124KB - Virtual size: 222KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rodata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 905KB - Virtual size: 904KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 179KB - Virtual size: 179KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ