97ebab037a291413bd767c116ad946c5456cb1d92017d0f7e8e96f2fa86bff37

Sharing

Copy URL Twitter E-mail

General

Target

97ebab037a291413bd767c116ad946c5456cb1d92017d0f7e8e96f2fa86bff37
Size

1.0MB
MD5

49e4751da84962bd10fb1c2fcbddf614
SHA1

0554e3eca1ed215380ea7d8a3e3c4a73613bd2bf
SHA256

97ebab037a291413bd767c116ad946c5456cb1d92017d0f7e8e96f2fa86bff37
SHA512

812515dce0c0231b050bb11eaa4c682410071daef190239fdf934ace4defec2e362edd099a9c529970c6b5ad6a169dc9a4ba81016b9517172bc8e2350129582b
SSDEEP

24576:D+1iODL7LB0YkFwX2V5BNBUMcC2nUinWKe8V:4X7LB02gN2C2nUiWKjV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
97ebab037a291413bd767c116ad946c5456cb1d92017d0f7e8e96f2fa86bff37

Files

97ebab037a291413bd767c116ad946c5456cb1d92017d0f7e8e96f2fa86bff37
.exe windows:6 windows x86 arch:x86

fb3fdcfa1ed4c74029334a238fd2d828

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Users\student\Desktop\Git\Caplush\Caplush.pdb

Imports

kernel32

FindNextFileW
FindFirstFileExW
GetTimeZoneInformation
SetStdHandle
GetFullPathNameW
GetCurrentDirectoryW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
ReadConsoleW
ReadFile
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetProcessHeap
HeapSize
WriteConsoleW
QueryPerformanceFrequency
QueryPerformanceCounter
FindFirstFileA
FindClose
IsValidCodePage
HeapAlloc
GetConsoleMode
GetConsoleOutputCP
FlushFileBuffers
SetFilePointerEx
GetFileSizeEx
HeapReAlloc
HeapFree
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
GetFileInformationByHandle
GetDriveTypeW
CreateFileW
LoadLibraryExW
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
GetLastError
RaiseException
RtlUnwind
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetProcAddress
GetModuleHandleW
CreateEventW
WaitForSingleObjectEx
FindNextFileA
IsDBCSLeadByte
ResetEvent
SetEvent
InitializeCriticalSectionAndSpinCount
CloseHandle
GetStringTypeW
EncodePointer
DecodePointer
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
MultiByteToWideChar
WideCharToMultiByte
LCMapStringEx
CompareStringEx
GetCPInfo
SetEndOfFile

user32

MessageBoxA
FillRect
GetKeyState
GetActiveWindow
ReleaseDC
GetDC
GetCursorPos
LoadIconA
LoadCursorA
RegisterClassExA
AdjustWindowRect
CreateWindowExA
ShowWindow
UpdateWindow
PeekMessageA
TranslateMessage
DispatchMessageA
UnregisterClassA
DestroyWindow
PostQuitMessage
DefWindowProcA
ShowCursor
GetWindowLongA
SetWindowLongA
SetWindowPos
GetWindowRect
GetSystemMetrics
ClientToScreen
SetCursorPos

gdi32

DeleteDC
StrokeAndFillPath
EndPath
TextOutA
BeginPath
SetBkMode
CreatePen
DeleteObject
CreateSolidBrush
CreateDIBSection
GetGlyphOutlineA
GetTextMetricsA
SelectObject
CreateFontIndirectA
CreateCompatibleDC
AddFontResourceExA

openal32

alGenSources
alGenBuffers
alDeleteBuffers
alDeleteSources
alSource3f
alBufferData
alSourcei
alSourcePlay
alSourceStop
alSourcef
alGetSourcei
alListener3f
alListenerfv
alcOpenDevice
alcCreateContext
alcMakeContextCurrent
alGetError
alcDestroyContext
alcCloseDevice

d3d9

Direct3DCreate9

d3dx9_43

D3DXLoadMeshFromXA
D3DXCreateTextureFromFileA
D3DXMatrixRotationYawPitchRoll
D3DXCreateTexture
D3DXMatrixLookAtLH
D3DXMatrixScaling
D3DXMatrixOrthoLH
D3DXMatrixPerspectiveFovLH
D3DXVec3Normalize
D3DXMatrixInverse
D3DXMatrixRotationZ
D3DXVec3TransformCoord
D3DXCreateSprite
D3DXMatrixTranslation
D3DXMatrixMultiply

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

dinput8

DirectInput8Create

xinput1_3

ord2
ord5

shlwapi

PathFileExistsA

Sections

.text
Size: 881KB - Virtual size: 881KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 126KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

_RDATA
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 35KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb3fdcfa1ed4c74029334a238fd2d828

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

openal32

d3d9

d3dx9_43

winmm

dinput8

xinput1_3

shlwapi

Sections

.text Size: 881KB - Virtual size: 881KB

.rdata Size: 126KB - Virtual size: 126KB

.data Size: 18KB - Virtual size: 22KB

_RDATA Size: 10KB - Virtual size: 9KB

.rsrc Size: 512B - Virtual size: 480B

.reloc Size: 35KB - Virtual size: 34KB

.text
Size: 881KB - Virtual size: 881KB

.rdata
Size: 126KB - Virtual size: 126KB

.data
Size: 18KB - Virtual size: 22KB

_RDATA
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 512B - Virtual size: 480B

.reloc
Size: 35KB - Virtual size: 34KB