SonicSAGE[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

SonicSAGE.exe
Size

198.2MB
MD5

170ac0f07fd31adb71cc556c7aa50c35
SHA1

ab1a834ffd57b4e18af5475d299bd04ba14ce472
SHA256

680cb9fea15a1f1c5004abd791b1b27383640b985d0f95578871aeacd7d83d0a
SHA512

563f5fecaf462efc84aac94510816a9ebd265fbc27fc7a5eefe88b8ab390e6b680d722af9b13e1738b7146924d9aff6ae06f932e8d1f8fee3e92284a06b7dc13
SSDEEP

3145728:pFyh9NvfiE4dQw4zhQSGYBuzqVNF1OFZhckc8fHK2duv5B0oi9s4hQWzwwM+rzTB:y4yPQSGY8zqVn4FZvS2MxMs4+MbRSAP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
SonicSAGE.exe

Files

SonicSAGE.exe
.exe windows:4 windows x86 arch:x86

0215dc3baad612381d9dd2303b0fafb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumValueW
RegQueryValueExW
RegCloseKey
RegOpenKeyExA
RegOpenKeyExW
RegOpenKeyW
RegCreateKeyA
RegQueryValueW

user32

InvalidateRect
AdjustWindowRectEx
PostQuitMessage
EnableMenuItem
GetSystemMenu
GetDC
OffsetRect
CheckMenuRadioItem
ClientToScreen
DefWindowProcW
SetWindowPos
CreateMenu
LoadCursorW
LoadBitmapW
GetMessageTime
BeginPaint
ShowCursor
DispatchMessageW
EmptyClipboard
DestroyMenu
CreateWindowExW
DestroyCursor
ExitWindowsEx
MessageBoxW
AppendMenuW
GetCursorPos
SetForegroundWindow
GetWindowDC
WindowFromPoint
ShowCaret
GetClassNameW
ScreenToClient
GetParent
GetDlgItem
EnumWindows
OpenClipboard
UpdateWindow
WaitForInputIdle
MessageBeep
MsgWaitForMultipleObjects
PeekMessageW
GetSystemMetrics
GetWindowTextW
GetUpdateRect
CopyRect
DefFrameProcW
DrawIconEx
PostMessageW
TranslateMessage
RegisterClassW
GetMessageW
GetMenuItemCount
ShowWindow
UnregisterClassW
CallWindowProcW
RedrawWindow
TrackPopupMenu
SetWindowTextW
GetWindowTextLengthW
GetActiveWindow
SystemParametersInfoW
GetMenuItemInfoW
EndPaint
LoadImageW
SendMessageW
DrawMenuBar
GetFocus
GetForegroundWindow
DestroyWindow
MoveWindow
KillTimer
ReleaseDC
HideCaret
IsClipboardFormatAvailable
GetUpdateRgn
CloseClipboard
EnableWindow
CreatePopupMenu
LoadCursorFromFileW
IsIconic
RegisterClipboardFormatW
IsWindow
GetKeyState
GetSubMenu
SetTimer
GetWindow
SetFocus
DrawFocusRect
GetClipboardFormatNameW
ChildWindowFromPoint
LoadIconW

kernel32

SetEnvironmentVariableA
CompareStringW
CompareStringA
SetStdHandle
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
FlushFileBuffers
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
GetLastError
MultiByteToWideChar
WriteFile
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetModuleFileNameA
GetModuleHandleA
GetProcAddress
WideCharToMultiByte
RtlUnwind
GetVersion
GetCommandLineA
HeapAlloc
HeapFree
GetLocalTime
GetSystemTime
GetTimeZoneInformation
GetSystemTimeAsFileTime
ReadFile
SetFilePointer
CreateFileMappingW
MapViewOfFile
CreateFileA
InitializeCriticalSection
ExitProcess
CreateFileW
UnmapViewOfFile
CloseHandle

Sections

.text
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 16.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0215dc3baad612381d9dd2303b0fafb0

Headers

File Characteristics

Imports

advapi32

user32

kernel32

Sections

.text Size: 60KB - Virtual size: 58KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 16KB - Virtual size: 16.4MB

.rsrc Size: 12KB - Virtual size: 10KB

.text
Size: 60KB - Virtual size: 58KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 16KB - Virtual size: 16.4MB

.rsrc
Size: 12KB - Virtual size: 10KB