setup[.]exe | Triage

Resubmissions

28-09-2024 07:56

240928-js35ravdmk 7

28-09-2024 07:48

240928-jm4t4avaqj 7

Sharing

Copy URL

Twitter E-mail

General

Target

setup.exe
Size

47.2MB
MD5

851eaed1e935b78977930ceaa82b87af
SHA1

cd764ca043df6413a375b9083218c7a4f89a8895
SHA256

fc2cb33d4a9b11d1effc52e0281464abe87112b9b47378f1dee3ff728b5751d8
SHA512

ba5143ebd4715a5a45afd783fa25dafb352a59aa86baeb1636dc41dd180e254854681b8357a493385a542ef1fce4393210781e9930479a5a3f49347dedea84cb
SSDEEP

786432:BJ2egoCZWRPnp5jLEaTl4BG9VZ4wIXPCbll33xPY7vky4K1rs9Iq48xFKfijSVck:BxGZ8pZLEaTAyIXPO3Bw7sy4K1eZ48xa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
setup.exe

Files

setup.exe
.exe windows:4 windows x86 arch:x86

8a1103ababb5473d057163b9c50bb01a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetConnectionDialog

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

comctl32

ImageList_GetIconSize
PropertySheetA
ImageList_DrawEx

kernel32

GetUserDefaultLangID
GetSystemDirectoryA
LoadLibraryA
LocalFree
GetFileSize
FreeLibrary
GetProcAddress
FormatMessageA
GetLogicalDrives
FindClose
FindNextFileA
GetTempPathA
GetCurrentDirectoryA
GetVolumeInformationA
GetFileAttributesA
GetDiskFreeSpaceA
MulDiv
DeleteFileA
CreateFileA
LocalAlloc
GetFileTime
GetTimeFormatA
GetDateFormatA
FileTimeToSystemTime
WriteFile
CreateDirectoryA
SetFileTime
RemoveDirectoryA
SetLastError
GetWindowsDirectoryA
CreateFileMappingA
GetLastError
GetVersionExA
ExitProcess
GetCurrentProcess
GetOEMCP
SetStdHandle
FlushFileBuffers
GetModuleFileNameA
ReadFile
SetFilePointer
CloseHandle
MultiByteToWideChar
GetNumberFormatA
SetFileAttributesA
FindFirstFileA
SetCurrentDirectoryA
IsBadReadPtr
GetStringTypeA
IsBadCodePtr
GetStdHandle
SetHandleCount
GetFileType
LCMapStringW
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
TerminateProcess
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetACP
LCMapStringA
WideCharToMultiByte
SetUnhandledExceptionFilter
HeapFree
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapAlloc
RaiseException
RtlUnwind
GetStringTypeW
GetCPInfo

user32

LoadStringA
ShowWindow
MessageBoxA
GetDesktopWindow
SendMessageA
PostMessageA
CreateWindowExA
RegisterClassA
LoadIconA
LoadCursorA
DefWindowProcA
GetParent
ReleaseDC
GetDC
CreateDialogParamA
SendDlgItemMessageA
SetWindowLongA
SetDlgItemTextA
DialogBoxParamA
DrawFocusRect
PeekMessageA
DispatchMessageA
IsDialogMessageA
TranslateMessage
OffsetRect
MoveWindow
GetWindowRect
SetWindowPos
LoadImageA
GetClientRect
GetSystemMetrics
SetWindowTextA
DestroyWindow
GetSysColor
ExitWindowsEx
EnableWindow
EndDialog
GetDlgItem

gdi32

CreateFontIndirectA
ExtTextOutA
SetTextColor
SetBkColor
GetTextExtentExPointA
GetTextExtentPoint32A
SelectObject
GetDeviceCaps
CreateCompatibleDC

advapi32

RegQueryInfoKeyA
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegDeleteKeyA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA

shell32

SHGetFileInfoA
SHChangeNotify

ole32

CoInitialize
CoCreateInstance

Sections

.text
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 2.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

8a1103ababb5473d057163b9c50bb01a

Headers

File Characteristics

Imports

mpr

version

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

.text Size: 72KB - Virtual size: 70KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 8KB - Virtual size: 2.5MB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 72KB - Virtual size: 70KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 8KB - Virtual size: 2.5MB

.rsrc
Size: 4KB - Virtual size: 3KB