Static task
static1
General
-
Target
rusty-autoclicker-windows.exe
-
Size
3.9MB
-
MD5
22caa3bab36d3de9dc854626bc8e4d16
-
SHA1
cdd39d333c1b5ec01bb8adb543695ce6426f03fa
-
SHA256
6cd5bcb1efc3b401bfe176b383cd37cc5f3d5e181a3df22b53970592d3fc795f
-
SHA512
df44edb372e6b0a5baebfc7796e091a8974354bf1c6add7533dc1a673873cb1c25b51d2f9b514a02363d7dd54be6792e9a2f08a2cf5abe1a42e88789e8749eb7
-
SSDEEP
49152:VXZ90fUfE1fDJg9shPrExkuJw2DU569bVroKJeq0a3/P5u:/nUPrGh3btPP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource rusty-autoclicker-windows.exe
Files
-
rusty-autoclicker-windows.exe.exe windows:6 windows x64 arch:x64
1b040a656972dafb19627a0f242409cd
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
bcrypt
BCryptOpenAlgorithmProvider
BCryptGenRandom
BCryptCloseAlgorithmProvider
opengl32
wglGetCurrentContext
wglDeleteContext
wglShareLists
wglCreateContext
wglGetProcAddress
wglGetCurrentDC
wglMakeCurrent
shlwapi
AssocQueryStringW
gdi32
DeleteObject
CreateRectRgn
SetPixelFormat
DescribePixelFormat
ChoosePixelFormat
SwapBuffers
GetDeviceCaps
kernel32
ReleaseSRWLockShared
AcquireSRWLockShared
GetSystemTimeAsFileTime
QueryPerformanceFrequency
ExitProcess
WriteFileEx
IsDebuggerPresent
RtlVirtualUnwind
InitializeSListHead
UnhandledExceptionFilter
SetUnhandledExceptionFilter
RtlCaptureContext
IsProcessorFeaturePresent
HeapFree
GetProcessHeap
HeapAlloc
QueryPerformanceCounter
GetLastError
Sleep
AddVectoredExceptionHandler
SetThreadStackGuarantee
HeapReAlloc
GlobalUnlock
GlobalFree
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
GetCurrentThreadId
SwitchToThread
CloseHandle
GetProcAddress
GlobalLock
GlobalSize
MultiByteToWideChar
GlobalAlloc
FreeLibrary
SetThreadErrorMode
LoadLibraryExW
LoadLibraryW
GetModuleHandleA
GetCurrentThread
TryAcquireSRWLockExclusive
GetStdHandle
GetConsoleMode
WaitForSingleObject
WriteConsoleW
SetLastError
GetCurrentDirectoryW
WaitForSingleObjectEx
LoadLibraryA
CreateMutexA
GetCurrentProcess
ReleaseMutex
GetEnvironmentVariableW
RtlLookupFunctionEntry
GetModuleHandleW
FormatMessageW
CreateFileW
GetFullPathNameW
GetEnvironmentStringsW
FreeEnvironmentStringsW
CompareStringOrdinal
GetSystemDirectoryW
GetModuleFileNameW
GetWindowsDirectoryW
CreateProcessW
GetFileAttributesW
DuplicateHandle
GetCurrentProcessId
CreateNamedPipeW
CreateThread
ReadFileEx
SleepEx
shell32
DragFinish
DragQueryFileW
user32
DispatchMessageW
DefWindowProcW
ClientToScreen
GetPropW
CallWindowProcW
SetWindowLongPtrW
RemovePropW
CloseClipboard
OpenClipboard
ReleaseDC
PostMessageW
GetClientRect
SetWindowTextW
ReleaseCapture
IsIconic
GetWindowRect
MonitorFromWindow
GetMonitorInfoW
SetWindowPos
InvalidateRgn
ChangeDisplaySettingsExW
PeekMessageW
GetWindowPlacement
SetWindowPlacement
SetPropW
GetSystemMetrics
CreateIcon
EnumDisplayMonitors
RedrawWindow
GetWindowLongPtrW
GetDC
RegisterClassExW
CreateWindowExW
SendMessageW
SetWindowDisplayAffinity
TranslateMessage
SendInput
SetForegroundWindow
RegisterTouchWindow
IsProcessDPIAware
ScreenToClient
DestroyWindow
LoadCursorW
SetCursor
MonitorFromRect
SetCapture
TrackMouseEvent
MapVirtualKeyA
GetTouchInputInfo
CloseTouchInputHandle
GetMenu
GetKeyboardState
PostThreadMessageW
RegisterRawInputDevices
GetRawInputData
ValidateRect
GetUpdateRect
MsgWaitForMultipleObjectsEx
IsClipboardFormatAvailable
GetClipboardData
EmptyClipboard
SetClipboardData
GetClassNameW
GetClassInfoExW
DestroyIcon
RegisterWindowMessageA
GetKeyboardLayout
ToUnicodeEx
GetKeyState
GetWindowLongW
AdjustWindowRectEx
SystemParametersInfoA
ShowWindow
SetWindowLongW
GetSystemMenu
EnableMenuItem
GetActiveWindow
GetClipCursor
ClipCursor
ShowCursor
GetMessageW
GetAsyncKeyState
GetCursorPos
MapVirtualKeyW
oleaut32
SysFreeString
SafeArrayPutElement
SysAllocStringLen
SysStringLen
GetErrorInfo
SetErrorInfo
SafeArrayCreateVector
uiautomationcore
UiaRaiseAutomationPropertyChangedEvent
UiaRaiseAutomationEvent
UiaGetReservedNotSupportedValue
UiaHostProviderFromHwnd
UiaLookupId
UiaReturnRawElementProvider
imm32
ImmAssociateContextEx
ImmReleaseContext
ImmSetCandidateWindow
ImmGetContext
ImmGetCompositionStringW
dwmapi
DwmEnableBlurBehindWindow
ole32
CoUninitialize
RegisterDragDrop
CoCreateInstance
CoInitializeEx
OleInitialize
RevokeDragDrop
winmm
timeEndPeriod
timeBeginPeriod
timeGetDevCaps
uxtheme
SetWindowTheme
vcruntime140
memset
memmove
__CxxFrameHandler3
memcmp
_CxxThrowException
__C_specific_handler
__current_exception
__current_exception_context
memcpy
api-ms-win-crt-math-l1-1-0
floorf
ceilf
floor
trunc
_hypotf
roundf
sinf
atan2f
acosf
cbrtf
exp2f
round
cosf
ceil
__setusermatherr
powf
expf
api-ms-win-crt-string-l1-1-0
strlen
wcslen
api-ms-win-crt-runtime-l1-1-0
_get_initial_narrow_environment
_initterm
_initterm_e
exit
_exit
_set_app_type
__p___argc
__p___argv
_cexit
_c_exit
_register_thread_local_exe_atexit_callback
_seh_filter_exe
_initialize_narrow_environment
_initialize_onexit_table
_register_onexit_function
terminate
_crt_atexit
_configure_narrow_argv
api-ms-win-crt-stdio-l1-1-0
__p__commode
_set_fmode
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
api-ms-win-crt-heap-l1-1-0
free
_set_new_mode
Sections
.text Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.9MB - Virtual size: 1.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 51KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 173KB - Virtual size: 173KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ