Static task
static1
General
-
Target
Download_Ready_874645.exe
-
Size
10.1MB
-
MD5
121b98476e81ff2d110a3d6b04108af1
-
SHA1
6b9484e7b61b831175ba9c7e6b751a625f3f5f23
-
SHA256
7c10957e9b6beab6f62a1589111f74413429d30cd734a9f22a7b01440a874f68
-
SHA512
3439caf18f5e841e549bc10fdfd82bfa39d37904b3a56a66a63b613a73e42732e5402fa7980b5c8247715900cfb2c24a06cd704b784429affc96674283d303e8
-
SSDEEP
196608:SP1LsD7/2EWQDVH4vfa08akMaWrryb5jm984vuDWe3GUYS5ema9yX3jUVYcsg/dS:SPfa08akMaWN840vGUYS5ePsgqv+XeLd
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Download_Ready_874645.exe
Files
-
Download_Ready_874645.exe.exe windows:6 windows x86 arch:x86
4cd82646a22243cff5ecbe799345e108
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
dwrite
DWriteCreateFactory
d2d1
ord1
kernel32
GetFileSize
GetConsoleMode
GetTimeFormatW
Sleep
GetCurrentThread
OutputDebugStringA
GetSystemTimeAsFileTime
GetFileType
WriteConsoleW
GetTimeZoneInformation
FlushFileBuffers
FindClose
GetTickCount64
InitializeCriticalSectionAndSpinCount
GetProcessHeap
LoadLibraryExW
ReleaseSRWLockExclusive
SetFilePointerEx
CloseHandle
FreeLibrary
GetEnvironmentStringsW
SetEnvironmentVariableA
GetFileSizeEx
ExitThread
GetTickCount
FreeLibraryAndExitThread
VerifyVersionInfoW
SetEndOfFile
AcquireSRWLockExclusive
GetCurrentProcessId
FindFirstFileExA
GetDriveTypeW
GetCommandLineA
WideCharToMultiByte
GetStdHandle
GetOEMCP
UnhandledExceptionFilter
TlsFree
GetProcAddress
GetModuleFileNameA
GetUserDefaultLCID
IsValidCodePage
GetCurrentProcess
QueryPerformanceFrequency
GetModuleHandleExW
ReadConsoleW
LoadLibraryW
GetDateFormatW
GetModuleFileNameW
MulDiv
InitializeSListHead
GetModuleHandleW
GetModuleHandleA
TerminateProcess
GetCPInfo
DeleteCriticalSection
HeapSize
GetLocaleInfoW
GetLastError
CreateEventW
FormatMessageW
SetUnhandledExceptionFilter
QueryPerformanceCounter
EncodePointer
LeaveCriticalSection
GetSystemDirectoryW
GetCurrentDirectoryW
GetFileAttributesExW
EnterCriticalSection
GetCurrentThreadId
RtlUnwind
IsValidLocale
CreateFileW
GetStringTypeW
TlsGetValue
FileTimeToSystemTime
DeleteFileW
SetStdHandle
WaitForMultipleObjects
DebugBreak
IsProcessorFeaturePresent
WaitForSingleObject
LocalFree
GetConsoleCP
MultiByteToWideChar
RaiseException
HeapFree
HeapReAlloc
LCMapStringW
ResetEvent
EnumSystemLocalesW
TlsSetValue
TlsAlloc
WaitForSingleObjectEx
FindNextFileA
GetStartupInfoW
HeapAlloc
CreateThread
LoadLibraryA
IsDebuggerPresent
OutputDebugStringW
GetEnvironmentVariableA
MoveFileExW
lstrlenA
SleepEx
WriteFile
lstrcatA
GetCommandLineW
PeekNamedPipe
GetFullPathNameW
ExitProcess
DecodePointer
SetEvent
ReadFile
InitializeCriticalSectionEx
FreeEnvironmentStringsW
VerSetConditionMask
SetLastError
SystemTimeToTzSpecificLocalTime
GetACP
CompareStringW
user32
CreateMenu
SetFocus
MapWindowPoints
SetCapture
TranslateMessage
EndPaint
UpdateWindow
GetDoubleClickTime
GetMessageW
wsprintfA
GetClassNameW
GetSystemMetrics
SetScrollInfo
PtInRect
KillTimer
RegisterClassW
GetWindowRect
SetTimer
GetClientRect
InvalidateRect
CreateWindowExW
GetMenuItemInfoW
DefWindowProcW
AdjustWindowRectEx
SendMessageW
UnregisterClassW
CreatePopupMenu
CallNextHookEx
SendMessageA
GetSysColor
GetScrollInfo
SetMenu
LoadCursorW
GetAncestor
DispatchMessageW
IsDialogMessageW
DestroyWindow
PostQuitMessage
LoadIconW
SetWindowsHookExW
GetActiveWindow
SetMenuItemInfoW
ReleaseDC
UnhookWindowsHookEx
BeginPaint
GetWindowLongW
EnableWindow
GetWindowTextW
IsChild
SetWindowTextW
GetDC
SetWindowPos
SystemParametersInfoW
ShowWindow
ReleaseCapture
GetKeyState
AppendMenuW
SetParent
ValidateRect
SetWindowLongW
GetUpdateRect
GetMessageTime
gdi32
BitBlt
DeleteDC
SetTextColor
GetTextExtentPoint32W
GetStockObject
CreatePatternBrush
GetDeviceCaps
DeleteObject
SetBrushOrgEx
CreateCompatibleDC
GetTextMetricsW
SelectObject
CreateFontIndirectW
CreateCompatibleBitmap
SetBkMode
advapi32
CloseServiceHandle
CryptAcquireContextW
CryptGetHashParam
CryptDestroyHash
CryptDestroyKey
CryptCreateHash
CryptHashData
CryptReleaseContext
CryptEncrypt
CryptImportKey
ole32
CoInitialize
CoUninitialize
CoCreateInstance
bcrypt
BCryptGenRandom
Sections
.text Size: 9.4MB - Virtual size: 9.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 286KB - Virtual size: 285KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.gfids Size: 1024B - Virtual size: 688B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 9B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 67KB - Virtual size: 67KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 122KB - Virtual size: 122KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ