Static task
static1
General
-
Target
FS2Crew FBW A32NX.exe
-
Size
218.7MB
-
MD5
931afb17f022727ed3cf52b646f30c5c
-
SHA1
e85c3ac29221e740decd329f3c4fb9e10a1b6fda
-
SHA256
5f4ed68beaef9a608b9ee1aab0be50b4fb5b948989cdef9e578ec5a907efd014
-
SHA512
dbd3546e500f085c50e9e6dc3bbcedd43b1ddf709022a56f43ebd816cb914f3496a30d65ccf4cb25df844aa49e925df66ce61cfddc97fe87a70d86ed5fe829a1
-
SSDEEP
6291456:9Vp4bUPrf7wXU3NdRf9WbBHh9dL5JSeMOxXlnSgdu:97kUb7+MNTURhrL/Bxddu
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource FS2Crew FBW A32NX.exe
Files
-
FS2Crew FBW A32NX.exe.exe windows:4 windows x86 arch:x86
96e1a8caed744ca05ad2ccb2f1e9cae5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FormatMessageW
GetVolumeInformationW
CreateFileA
DeleteFileA
MoveFileA
GetFileAttributesA
SetFileAttributesA
CreateProcessA
GetModuleFileNameA
GetWindowsDirectoryA
GetSystemDirectoryA
GetTempPathA
GetShortPathNameA
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
CreateDirectoryA
RemoveDirectoryA
GetDriveTypeA
CopyFileA
FindFirstFileA
FindNextFileA
GetPrivateProfileStringA
FormatMessageA
GetVolumeInformationA
GetVersionExW
SetStdHandle
GetOEMCP
GetACP
WritePrivateProfileStringW
GetStringTypeW
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
TerminateProcess
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
HeapCompact
HeapAlloc
HeapFree
GetPrivateProfileStringW
FindNextFileW
FindFirstFileW
CopyFileW
LoadLibraryW
GetDriveTypeW
RemoveDirectoryW
CreateDirectoryW
GetCurrentDirectoryW
SetCurrentDirectoryW
GetFullPathNameW
GetShortPathNameW
GetTempPathW
GetSystemDirectoryW
GetWindowsDirectoryW
GetModuleFileNameW
CreateProcessW
SetFileAttributesW
GetFileAttributesW
MoveFileW
DeleteFileW
CreateFileW
GetVersion
GetVersionExA
GetCommandLineW
GetCurrentProcess
MoveFileExW
GetUserDefaultLangID
GetModuleHandleA
LoadLibraryA
SetFileTime
FlushFileBuffers
SetErrorMode
WideCharToMultiByte
WritePrivateProfileStringA
GetTickCount
GetLocalTime
Sleep
GetExitCodeProcess
MultiByteToWideChar
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
CloseHandle
SetFilePointer
WriteFile
ReadFile
FindClose
GetProcAddress
FreeLibrary
GetDiskFreeSpaceW
GetDiskFreeSpaceA
GetCPInfo
GetLastError
user32
DispatchMessageA
CharToOemA
SetWindowTextA
DrawTextA
FindWindowA
CreateWindowExA
GetClassNameA
RegisterClassA
LoadCursorW
LoadIconW
CharToOemW
DispatchMessageW
GetMessageW
SendDlgItemMessageW
PostMessageW
GetWindowLongW
SetWindowLongW
MessageBoxW
GetDlgItemTextW
SetDlgItemTextW
SetWindowTextW
GetMessageA
GetSysColor
ScreenToClient
DrawTextW
IsDialogMessageW
DialogBoxParamW
CreateDialogParamW
CallWindowProcW
DefWindowProcW
FindWindowW
CreateWindowExW
GetClassNameW
RegisterClassW
GetLastActivePopup
BringWindowToTop
ExitWindowsEx
IsIconic
PostQuitMessage
AdjustWindowRectEx
EndDialog
CheckDlgButton
GetMessagePos
PeekMessageA
SendDlgItemMessageA
PostMessageA
GetWindowLongA
SetWindowLongA
IsDialogMessageA
CallWindowProcA
LoadIconA
DialogBoxParamA
CreateDialogParamA
DefWindowProcA
GetWindow
GetWindowRect
GetDlgItem
EndPaint
BeginPaint
GetClientRect
FillRect
GetSystemMetrics
SendMessageTimeoutA
SetCursor
LoadCursorA
EnableWindow
TranslateMessage
SendMessageA
SendMessageW
MapWindowPoints
SetTimer
KillTimer
SetDlgItemTextA
GetFocus
GetDlgItemTextA
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
CloseClipboard
IsDlgButtonChecked
CheckRadioButton
SetFocus
GetParent
UpdateWindow
IsWindowVisible
InvalidateRect
RedrawWindow
SetWindowPos
ShowWindow
DestroyWindow
IsWindowEnabled
ValidateRect
PeekMessageW
gdi32
AddFontResourceW
RemoveFontResourceW
CreateFontIndirectA
GetObjectW
AddFontResourceA
RemoveFontResourceA
CreateFontIndirectW
GetStockObject
SetBkMode
SetTextColor
StretchDIBits
SetStretchBltMode
SetBrushOrgEx
CreateSolidBrush
CreateDIBPatternBrush
CreateHalftonePalette
SelectPalette
RealizePalette
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
BitBlt
DeleteDC
GetDeviceCaps
GetSystemPaletteEntries
CreatePalette
SetBkColor
GetObjectA
DeleteObject
ExtTextOutA
comdlg32
GetOpenFileNameA
GetOpenFileNameW
advapi32
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyExW
shell32
DragQueryFileW
DragQueryFileA
ShellExecuteExA
ShellExecuteA
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteExW
ShellExecuteW
DragAcceptFiles
DragFinish
SHGetSpecialFolderLocation
SHGetMalloc
ole32
CoGetMalloc
CoCreateInstance
OleInitialize
OleUninitialize
version
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerFindFileA
VerFindFileW
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
comctl32
ImageList_LoadImageW
ord17
ImageList_LoadImageA
Sections
.text Size: 164KB - Virtual size: 162KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 28KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 56KB - Virtual size: 53KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ