viator-rust-windows[.]vst3

Sharing

Copy URL Twitter E-mail

General

Target

viator-rust-windows.vst3
Size

47.4MB
MD5

d234d0b3c560b2665a85c8c6b2a7ca08
SHA1

9e9c7c602eebbe65fef2e771d7c3abc67b16089d
SHA256

dad1059317834ea31b083744d667adbe3a32762fe70f75f7fac694de476d1373
SHA512

2f61bc148158a4fe02ebdb156173fdcafa0e7582394821bcfccad5a34652570a29655bfa84064cc72d2dd2afd5695757ef8fe234b05c0ae5f792f9791b1d6775
SSDEEP

786432:LczCDpzOGnzaWld/WB963Yj4NS0Dv4akW3AdZhFbOls7PigXDuaU+ywx23T3NFNq:LczEn7mwEAw9W8ZvbOS7PiE3ywST3vNq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
viator-rust-windows.vst3

Files

viator-rust-windows.vst3
.dll windows:6 windows x64 arch:x64

98a2ca545988ace35b0b7c7239a7cb01

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

kernel32

FormatMessageW
GetLastError
GetFileAttributesExW
OutputDebugStringW
SetEvent
GetCurrentThread
TerminateThread
QueryPerformanceFrequency
GetThreadPriority
DeleteFileW
CloseHandle
GetNativeSystemInfo
LoadLibraryW
GetCurrentDirectoryW
GetOverlappedResult
GetProcAddress
LocalFree
ReplaceFileW
ExitProcess
GetModuleHandleW
FreeLibrary
CopyFileW
CreateFileMappingW
MapViewOfFile
QueryPerformanceCounter
MoveFileW
GetDriveTypeW
ConnectNamedPipe
SetUnhandledExceptionFilter
FlushFileBuffers
GetCommandLineW
AttachConsole
CompareStringOrdinal
GlobalSize
LoadLibraryA
GlobalAlloc
GlobalFree
GlobalLock
GetCurrentProcessId
GlobalUnlock
ResetEvent
GetPriorityClass
HeapSize
SetStdHandle
GetProcessHeap
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
FindFirstFileExW
GetOEMCP
GetACP
IsValidCodePage
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetFileSizeEx
GetConsoleOutputCP
HeapReAlloc
HeapFree
Sleep
GetFileType
GetStdHandle
ReadConsoleW
GetConsoleMode
SetFilePointerEx
FreeLibraryAndExitThread
ExitThread
CreateThread
GetTimeZoneInformation
LoadLibraryExW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
RtlUnwind
SetLastError
RaiseException
RtlPcToFileHeader
InterlockedFlushSList
RtlUnwindEx
InitializeSListHead
GetStartupInfoW
IsProcessorFeaturePresent
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
WaitForSingleObjectEx
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetStringTypeW
LCMapStringEx
DecodePointer
EncodePointer
GetSystemTimeAsFileTime
InitializeCriticalSectionEx
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
TryAcquireSRWLockExclusive
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
SleepConditionVariableSRW
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
CreateEventW
GetLogicalDriveStringsW
DisconnectNamedPipe
UnmapViewOfFile
GetModuleHandleA
ResumeThread
GetSystemDirectoryW
ReleaseMutex
GetFileAttributesW
CreateFileW
WaitForSingleObject
GetLocaleInfoW
FindClose
CreateMutexW
GetTempPathW
SetEndOfFile
SetFilePointer
SetThreadPriority
WaitForMultipleObjects
GetModuleFileNameW
RemoveDirectoryW
TerminateProcess
GetModuleHandleExW
WriteFile
GetCurrentProcess
FindNextFileW
SetPriorityClass
CancelIo
TryEnterCriticalSection
GetVolumeInformationW
FindFirstFileW
ReadFile
SetThreadAffinityMask
CreateDirectoryW
IsDebuggerPresent
WideCharToMultiByte
DeleteCriticalSection
MultiByteToWideChar
GetCurrentThreadId
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
HeapAlloc
WriteConsoleW

user32

SetWindowsHookExW
UnhookWindowsHookEx
CallNextHookEx
PostMessageW
AttachThreadInput
GetWindowThreadProcessId
ReleaseDC
GetDC
GetWindowTextW
DestroyCaret
LoadCursorW
LoadIconW
GetClipboardData
BringWindowToTop
SetLayeredWindowAttributes
GetMessageTime
GetForegroundWindow
TrackMouseEvent
MapWindowPoints
CreateCaret
IsChild
EmptyClipboard
CloseClipboard
CreateIconIndirect
GetMonitorInfoW
GetWindowInfo
TranslateMessage
SetFocus
EnumWindows
PeekMessageW
DispatchMessageW
RegisterClassExW
GetWindowLongPtrW
UnregisterClassW
CreateWindowExW
SetWindowLongPtrW
DestroyWindow
GetFocus
SendMessageTimeoutW
DefWindowProcW
GetMessageW
EndPaint
BeginPaint
GetCursorPos
SetCursorPos
GetAncestor
InvalidateRect
ReleaseCapture
GetParent
SystemParametersInfoW
EnableMenuItem
GetDesktopWindow
RedrawWindow
GetCapture
OpenClipboard
GetAsyncKeyState
DestroyIcon
GetSystemMenu
IsWindow
ShowWindow
GetActiveWindow
SetCaretPos
GetKeyboardState
DestroyCursor
GetWindowPlacement
WindowFromPoint
MessageBeep
SetCapture
SetWindowTextW
EndDialog
SendMessageW
GetIconInfo
EnumDisplayMonitors
EnumChildWindows
MonitorFromWindow
MessageBoxW
SetWindowPos
IsWindowVisible
GetWindowRect
ShowCaret
DrawIconEx
UpdateLayeredWindow
GetClientRect
SetWindowLongW
SetCursor
MapVirtualKeyW
CallWindowProcW
MoveWindow
GetWindowLongW
GetMessagePos
ToUnicode
SetClipboardData
GetMessageExtraInfo
GetUpdateRgn

gdi32

SaveDC
CreateDIBSection
StretchDIBits
CreateRectRgnIndirect
CreateRectRgn
GetRegionData
GetObjectW
ExcludeClipRect
RestoreDC
CreateBitmap
CombineRgn
SelectObject
GetKerningPairsW
CreateCompatibleDC
EnumFontFamiliesExW
GetDeviceCaps
GetTextMetricsW
DeleteDC
SetMapperFlags
GetGlyphIndicesW
GetGlyphOutlineW
DeleteObject
RemoveFontMemResourceEx
SetMapMode
CreateFontIndirectW
GetOutlineTextMetricsW

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

AccessCheck
GetNamedSecurityInfoW
OpenProcessToken
DuplicateToken
MapGenericMask

shell32

SHGetKnownFolderPath
ShellExecuteW
SHParseDisplayName
SHGetPathFromIDListW
SHBrowseForFolderW
ExtractAssociatedIconW
SHGetMalloc
SHCreateShellItem
DragQueryFileW
SHGetSpecialFolderPathW
Shell_NotifyIconW

ole32

CoCreateGuid
CoInitialize
CoCreateInstance
OleUninitialize
OleInitialize
CoTaskMemAlloc
CoUninitialize
CoTaskMemFree
DoDragDrop
RegisterDragDrop
CoInitializeEx
OleSetContainedObject
PropVariantClear
OleCreate
RevokeDragDrop

oleaut32

SafeArrayPutElement
SysAllocString
SafeArrayCreateVector
SafeArrayDestroy
SafeArrayUnaccessData
SafeArrayAccessData

wininet

HttpQueryInfoW
InternetSetFilePointer
InternetCrackUrlW
HttpEndRequestW
HttpSendRequestExW
InternetOpenW
InternetConnectW
InternetSetOptionW
InternetReadFile
FtpOpenFileW
InternetWriteFile
InternetCloseHandle
HttpOpenRequestW

ws2_32

sendto
freeaddrinfo
htons
htonl
ioctlsocket
getsockopt
__WSAFDIsSet
accept
bind
closesocket
select
getaddrinfo
WSAStartup
inet_addr
send
inet_ntoa
recv
setsockopt

shlwapi

PathStripToRootW

winmm

midiInMessage
midiInUnprepareHeader
timeBeginPeriod
timeGetTime
midiInOpen
midiOutGetDevCapsW
midiOutPrepareHeader
midiOutOpen
midiInReset
midiOutUnprepareHeader
midiInGetDevCapsW
midiInStart
midiInClose
midiInAddBuffer
midiOutMessage
midiInGetNumDevs
midiOutShortMsg
midiOutGetNumDevs
midiOutLongMsg
midiOutClose
midiInStop
midiInPrepareHeader

imm32

ImmNotifyIME
ImmSetCandidateWindow
ImmAssociateContext
ImmGetCompositionStringW
ImmReleaseContext
ImmGetContext
ImmAssociateContextEx

dxgi

CreateDXGIFactory

Exports

Exports

ExitDll
GetPluginFactory
InitDll

Sections

.text
Size: 3.3MB - Virtual size: 3.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 43.8MB - Virtual size: 43.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 161KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98a2ca545988ace35b0b7c7239a7cb01

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

wininet

ws2_32

shlwapi

winmm

imm32

dxgi

Exports

Exports

Sections

.text Size: 3.3MB - Virtual size: 3.3MB

.rdata Size: 43.8MB - Virtual size: 43.8MB

.data Size: 89KB - Virtual size: 99KB

.pdata Size: 161KB - Virtual size: 161KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 1KB - Virtual size: 1KB

.reloc Size: 44KB - Virtual size: 44KB

.text
Size: 3.3MB - Virtual size: 3.3MB

.rdata
Size: 43.8MB - Virtual size: 43.8MB

.data
Size: 89KB - Virtual size: 99KB

.pdata
Size: 161KB - Virtual size: 161KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 1KB - Virtual size: 1KB

.reloc
Size: 44KB - Virtual size: 44KB