Static task
static1
General
-
Target
Autorun.exe
-
Size
108KB
-
MD5
929345a9de12b9310086612ddc5a5c55
-
SHA1
a710fbb681e47d3420cae873704bd66ebb3de58a
-
SHA256
de0a161812e02913a95568ab121d89ac8da576e35968df7ff5aeea74ab6a0b8c
-
SHA512
0a93fe22fb0351f183e8944f1eb05d8cda063f7ddc024bee99f6e484781dd3740c9f942bf1fd3267325ed82fcfaa60f64dd5d9e4920a3025125ad6970fc07f75
-
SSDEEP
1536:N53sHXI0iJgsr1wIwwXTMo+66x51JPv3UUnj878rYok36S+:r8ZiJgsrtpTMrx513jtrYolS+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Autorun.exe
Files
-
Autorun.exe.exe windows:4 windows x86 arch:x86
f990818377b263a88255d15e51521124
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetLastError
FormatMessageA
LocalFree
CloseHandle
WaitForSingleObject
CreateProcessA
GetCurrentThreadId
lstrcpynA
EnterCriticalSection
FlushInstructionCache
LeaveCriticalSection
GetCurrentProcess
DeleteCriticalSection
InitializeCriticalSection
GetModuleFileNameA
HeapDestroy
WritePrivateProfileStringA
GetModuleHandleA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetVersion
GetFullPathNameA
SetEndOfFile
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
SetFilePointer
GetStringTypeW
lstrcmpiA
lstrlenA
lstrcpyA
CreateFileA
GetWindowsDirectoryA
FreeLibrary
SetLastError
GetProcAddress
LoadLibraryA
SetErrorMode
GetStdHandle
OutputDebugStringA
WriteFile
ExitProcess
TerminateProcess
RtlUnwind
GetPrivateProfileStringA
GetStartupInfoA
GetCommandLineA
IsBadWritePtr
ReadFile
HeapAlloc
HeapFree
GetDriveTypeA
HeapReAlloc
HeapSize
GetCPInfo
GetACP
GetOEMCP
UnhandledExceptionFilter
GetVersionExA
GetStringTypeA
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetEnvironmentVariableA
HeapCreate
VirtualFree
GetCurrentDirectoryA
MultiByteToWideChar
LCMapStringA
LCMapStringW
VirtualAlloc
user32
InvalidateRect
MessageBoxA
PeekMessageA
MsgWaitForMultipleObjects
PostMessageA
PtInRect
SetRect
GetWindowLongA
AdjustWindowRect
GetSystemMetrics
SetWindowPos
MessageBeep
RegisterClassA
UpdateWindow
ReleaseDC
GetDC
EndPaint
BeginPaint
SetWindowTextA
ReleaseCapture
SetCapture
SetCursor
PostQuitMessage
CallWindowProcA
LoadIconA
SendMessageA
DefWindowProcA
GetClassInfoExA
LoadCursorA
wsprintfA
RegisterClassExA
CreateWindowExA
SetWindowLongA
FindWindowA
ShowWindow
GetMessageA
TranslateMessage
DispatchMessageA
EnableWindow
shell32
ShellExecuteExA
winmm
PlaySoundA
gdi32
PatBlt
RealizePalette
SelectObject
DeleteDC
SelectPalette
CreateCompatibleDC
SetPaletteEntries
DeleteObject
CreatePalette
GetSystemPaletteEntries
StretchBlt
GetDeviceCaps
Sections
.text Size: 68KB - Virtual size: 64KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 44KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ