Static task
static1
General
-
Target
Set-up.exe
-
Size
2.7MB
-
MD5
870feaab725b148208dd12ffabe33f9d
-
SHA1
9f3651ad5725848c880c24f8e749205a7e1e78c1
-
SHA256
bbf7154f14d736f0c8491fb9fb44d2f179cdb02d34ab54c04466fa0702ea7d55
-
SHA512
5bea301f85e6a55fd5730793b960442bc4dab92d0bf47e4e55c5490448a4a22ed6d0feb1dbe9d56d6b6ff8d06f163381807f83f467621f527bc6521857fc8e1a
-
SSDEEP
49152:C11fbWXfBeBqTww8Gkfoa0yeL8zj9JLF+lP/MatsfHVnZbhG3EVsMI62Pseaj/1n:QbWkuwwjkULhlPUatsfBxhsE
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Set-up.exe
Files
-
Set-up.exe.exe windows:6 windows x86 arch:x86
e30b6006fb6f4fe4fb6e0a3e6913226a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
d3dx9_43
D3DXMatrixTranspose
D3DXMatrixRotationAxis
D3DXMatrixScaling
D3DXVec3TransformCoord
D3DXCreateTextureFromFileInMemoryEx
D3DXComputeNormals
D3DXMatrixRotationY
D3DXMatrixRotationZ
D3DXVec3Normalize
D3DXVec3TransformNormal
D3DXCreateMeshFVF
D3DXMatrixRotationX
D3DXVec4Transform
D3DXLoadMeshFromXW
D3DXLoadSurfaceFromSurface
D3DXComputeBoundingSphere
D3DXGetFVFVertexSize
D3DXLoadMeshFromXInMemory
D3DXCreateTextureFromFileExW
D3DXMatrixTranslation
D3DXMatrixOrthoOffCenterLH
D3DXMatrixOrthoOffCenterRH
D3DXComputeNormalMap
D3DXMatrixInverse
D3DXCreateTexture
D3DXMatrixPerspectiveFovLH
D3DXMatrixLookAtLH
D3DXCreateEffect
D3DXMatrixMultiply
winmm
mmioDescend
mmioOpenW
mmioSeek
mmioRead
mmioStringToFOURCCW
dsound
ord11
kernel32
GetTimeZoneInformation
lstrcpynW
LockResource
FindResourceExW
LoadResource
GetModuleHandleW
SizeofResource
HeapFree
GetModuleFileNameW
InitializeCriticalSectionEx
HeapSize
MultiByteToWideChar
GetLastError
HeapReAlloc
RaiseException
FindResourceW
HeapAlloc
DecodePointer
HeapDestroy
DeleteCriticalSection
GetProcessHeap
WriteProcessMemory
OpenProcess
CloseHandle
VirtualAllocEx
ReadProcessMemory
VirtualFreeEx
GetTempPathW
LoadLibraryW
WriteFile
DeleteFileW
CopyFileW
GetCurrentProcess
GetProcAddress
VerSetConditionMask
VerifyVersionInfoW
lstrcpyW
WaitForSingleObject
Sleep
TerminateThread
CreateThread
CreateProcessW
TlsSetValue
TlsGetValue
LoadLibraryExW
TlsAlloc
TlsFree
EnterCriticalSection
GetCommandLineW
GetDateFormatW
LeaveCriticalSection
GetVersionExW
LocalFree
SetThreadExecutionState
FreeLibrary
lstrlenW
ExpandEnvironmentStringsW
GetFileAttributesW
GetVersionExA
QueryPerformanceFrequency
QueryPerformanceCounter
LCMapStringW
CompareStringW
EncodePointer
GetSystemTimeAsFileTime
SwitchToThread
CreateEventW
SetLastError
GetStringTypeW
WideCharToMultiByte
GetCPInfo
SetEvent
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
IsDebuggerPresent
GetStartupInfoW
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
OutputDebugStringW
RtlUnwind
GetTimeFormatW
IsValidLocale
GetLocaleInfoW
CreateFileW
GetDriveTypeW
GetFileInformationByHandle
GetFileType
PeekNamedPipe
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
ExitProcess
GetUserDefaultLCID
EnumSystemLocalesW
GetFileSizeEx
SetFilePointerEx
FlushFileBuffers
GetConsoleCP
GetConsoleMode
ReadFile
ReadConsoleW
GetStdHandle
GetCurrentDirectoryW
GetFullPathNameW
SetStdHandle
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
WriteConsoleW
InitializeCriticalSectionAndSpinCount
SetEndOfFile
GetModuleHandleExW
user32
SetMenu
UnhookWindowsHookEx
DestroyMenu
ClipCursor
SetWindowsHookExW
GetClientRect
IsZoomed
GetClassLongW
SetRect
IsIconic
ReleaseDC
GetWindowTextW
CreateWindowExW
DispatchMessageW
PeekMessageW
AdjustWindowRect
DestroyWindow
EndDialog
SetWindowTextW
DefWindowProcW
MessageBoxW
GetMenuItemCount
SetWindowPlacement
RegisterClassW
GetMonitorInfoW
SystemParametersInfoA
TrackPopupMenu
LoadStringW
GetSubMenu
SetTimer
CheckMenuItem
PostQuitMessage
GetParent
BeginPaint
EndPaint
InvalidateRect
EnumDisplaySettingsW
GetMenu
GetIconInfo
CallNextHookEx
GetSystemMetrics
TranslateMessage
GetCursorPos
EnumDisplayMonitors
GetWindow
IsWindow
FindWindowW
RegisterClassExW
LoadIconW
LoadCursorW
SetCursor
GetWindowLongW
GetWindowThreadProcessId
PostMessageW
FindWindowExW
GetDC
IsWindowVisible
ShowWindow
SetWindowLongW
SystemParametersInfoW
GetWindowRect
SetWindowPos
ScreenToClient
SendMessageW
UnregisterClassW
GetDlgItem
CreateDialogParamW
LoadMenuIndirectW
GetWindowPlacement
gdi32
GetObjectW
GetStockObject
BitBlt
SelectObject
CreateCompatibleDC
DeleteDC
GetDIBits
DeleteObject
advapi32
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegQueryValueExW
RegOpenKeyExW
shell32
CommandLineToArgvW
Shell_NotifyIconW
ShellExecuteW
ExtractIconW
ole32
CoInitialize
CoCreateGuid
CLSIDFromString
CoCreateInstance
StringFromGUID2
OleUninitialize
oleaut32
SysFreeString
SysAllocString
shlwapi
PathFindFileNameW
PathFileExistsW
comctl32
ord17
uxtheme
EnableThemeDialogTexture
Sections
.text Size: 1.9MB - Virtual size: 1.9MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 445KB - Virtual size: 445KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 48KB - Virtual size: 61KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 200KB - Virtual size: 199KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 141KB - Virtual size: 141KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ