3df85153c291c62e0ca38f79b861773721816756298d859fb48747522b8149b7

Sharing

Copy URL

Twitter E-mail

General

Target

3df85153c291c62e0ca38f79b861773721816756298d859fb48747522b8149b7
Size

8.6MB
MD5

0e3fea586b10d7c2d2019993cf6f3998
SHA1

62c8f4d4615bdc49cb281b71c5383dc0e263dfc4
SHA256

3df85153c291c62e0ca38f79b861773721816756298d859fb48747522b8149b7
SHA512

f53677df5d7f2ae54da47b96c3249ca6d9d36bd11684df0e823db2bd42007390bb617858452f7e6585f8493ee8b26f21dda2372eec76e3aa6bc8b2479892a1c2
SSDEEP

196608:b/fH9R9TBNSlFHmwZyqLW2peHcP2kCx/Uq5c1dCNDhYd:b3dR9rSlN+qi78PfW/US6dSYd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3df85153c291c62e0ca38f79b861773721816756298d859fb48747522b8149b7

Files

3df85153c291c62e0ca38f79b861773721816756298d859fb48747522b8149b7
.exe windows:6 windows x86 arch:x86

a5ce49a53836583064c0abaabad5bdb0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\Projects\MouriNaruto\NanaZip\Output\Binaries\Release\Win32\NanaZip.Core.Windows.pdb

Imports

comctl32

ord410
ord345
ord413

kernel32

GetCurrentProcessId
TerminateProcess
GetCurrentThreadId
IsProcessorFeaturePresent
GetSystemInfo
GetSystemTimeAsFileTime
GetTickCount64
GetSystemDirectoryW
VirtualAlloc
VirtualProtect
VirtualQuery
FreeLibrary
GetModuleFileNameW
GetModuleHandleW
GetProcAddress
GlobalFree
LocalFree
MulDiv
MultiByteToWideChar
GetCommandLineW
GetVersionExW
ReadFile
GetStdHandle
WriteFile
CompareFileTime
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
SetPriorityClass
GetTickCount
GlobalLock
GlobalUnlock
WaitForMultipleObjects
GetVersion
CreateDirectoryW
GetCurrentThread
SuspendThread
ResumeThread
GetThreadContext
SetThreadContext
FlushInstructionCache
VirtualFree
GetCurrentDirectoryW
DeleteFileW
RemoveDirectoryW
SetFileAttributesW
SetFileTime
MoveFileW
FindClose
FindNextFileW
GetLogicalDriveStringsW
GetModuleHandleA
GetFileSize
SetEndOfFile
SetFilePointer
GlobalMemoryStatus
GetProcessAffinityMask
FileTimeToLocalFileTime
FileTimeToSystemTime
InitializeCriticalSection
ReleaseSemaphore
CreateSemaphoreW
CreateFileW
GetModuleHandleExW
ExitProcess
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
SleepConditionVariableSRW
WakeAllConditionVariable
CreateEventW
WaitForSingleObject
GetCurrentProcess
GlobalAlloc
FindFirstFileW
GetFileAttributesW
Sleep
GetFileInformationByHandle
ResetEvent
SetEvent
AcquireSRWLockShared
AcquireSRWLockExclusive
ReleaseSRWLockShared
ReleaseSRWLockExclusive
QueryPerformanceCounter
SetLastError
GetLastError
FormatMessageW

user32

GetFocus
EndDialog
SetWindowTextW
ShowWindow
SetDlgItemTextW
MoveWindow
SetFocus
GetDlgItem
InvalidateRect
EnableWindow
LoadIconW
ScreenToClient
GetWindowRect
DestroyIcon
CheckDlgButton
IsDlgButtonChecked
GetParent
GetKeyState
SendMessageW
PostMessageW
MonitorFromWindow
SystemParametersInfoW
SetWindowLongW
KillTimer
SetCursor
LoadCursorW
CharUpperW
GetMenuBarInfo
CallNextHookEx
SetWindowsHookExW
GetClassNameW
EnumChildWindows
OffsetRect
FrameRect
FillRect
GetSysColorBrush
GetSysColor
GetClientRect
GetWindowDC
GetMenuItemInfoW
GetMenu
GetWindowTextLengthW
GetWindowTextW
LoadStringW
GetMonitorInfoA
MapDialogRect
DialogBoxParamW
OpenClipboard
SetTimer
GetDC
ReleaseDC
CloseClipboard
EmptyClipboard
SetClipboardData
GetWindowLongW
MapWindowPoints

gdi32

GetStockObject
SetBkColor
SetTextColor
CreateSolidBrush
GetDeviceCaps

advapi32

RegOpenKeyExW
RegQueryValueExW

shell32

SHGetPathFromIDListW
SHGetFileInfoW
SHGetIDListFromObject
SHCreateItemFromParsingName

ole32

CoInitialize
CoCreateInstance
OleInitialize
CoUninitialize
CoTaskMemFree

oleaut32

VariantClear
SysFreeString
SysAllocStringLen
SysStringLen
SysAllocString

dwmapi

DwmGetWindowAttribute
DwmExtendFrameIntoClientArea
DwmSetWindowAttribute

uxtheme

DrawThemeText
DrawThemeTextEx
GetWindowTheme
SetWindowTheme
DrawThemeBackground
CloseThemeData
OpenThemeData

msvcrt

_CxxThrowException
_except_handler4_common
_amsg_exit
__CxxFrameHandler3
free
malloc
_beginthreadex
abort
_errno
realloc
_initterm
_initterm_e
_callnewh
_set_fmode
__p__commode
_controlfp_s
strcpy_s
memcpy
memset
__getmainargs
_msize
?terminate@@YAXXZ
_XcptFilter
__set_app_type
_ismbblead
_acmdln
?_set_new_mode@@YAHH@Z
wcsstr
memmove

Sections

.text
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.detourc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.detourd
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 381KB - Virtual size: 380KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5ce49a53836583064c0abaabad5bdb0

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

comctl32

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

dwmapi

uxtheme

msvcrt

Sections

.text Size: 277KB - Virtual size: 277KB

.rdata Size: 49KB - Virtual size: 48KB

.data Size: 4KB - Virtual size: 28KB

.detourc Size: 4KB - Virtual size: 4KB

.detourd Size: 512B - Virtual size: 12B

.rsrc Size: 381KB - Virtual size: 380KB

.text
Size: 277KB - Virtual size: 277KB

.rdata
Size: 49KB - Virtual size: 48KB

.data
Size: 4KB - Virtual size: 28KB

.detourc
Size: 4KB - Virtual size: 4KB

.detourd
Size: 512B - Virtual size: 12B

.rsrc
Size: 381KB - Virtual size: 380KB