3[.]0版金税盘一键升级底层工具V1[.]39（AN6-220524 AT6-220525 AC5-220526）授权截止日期：2022年12月31日[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

3.0版金税盘一键升级底层工具V1.39（AN6-220524 AT6-220525 AC5-220526）授权截止日期：2022年12月31日.exe
Size

14.3MB
MD5

ee0d931049a8ac903ea7580feb12604e
SHA1

68d53c9e8aa735a9fae932358aa15e1a59238527
SHA256

17864e53be7b2ed563ddeb4ae2c2cc43c9e2347566d97772ad4c21a013ccf026
SHA512

9175d47346d00cee7320be9e97c14f85974e0fb23b863687a34c3c955fb66fb545f59762d2d1f7451073779a24dd3734d67be32f420a577c124780ad87fff956
SSDEEP

393216:RP1hc3Ml5cMShYOrzmGqsYRb6A+GWawyiMv97Hu/FDH0kwOAtF:RXwRwHUFDHGOA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3.0版金税盘一键升级底层工具V1.39（AN6-220524 AT6-220525 AC5-220526）授权截止日期：2022年12月31日.exe

Files

3.0版金税盘一键升级底层工具V1.39（AN6-220524 AT6-220525 AC5-220526）授权截止日期：2022年12月31日.exe
.exe windows x86

1a393f0461c3e00027a5bbebe5d955a0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
WriteConsoleW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
FindNextFileA
FindFirstFileExA
GetTimeZoneInformation
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetStringTypeW
LCMapStringW
UnhandledExceptionFilter
ExitProcess
HeapQueryInformation
GetCommandLineW
GetCommandLineA
IsDebuggerPresent
SetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
RtlUnwind
GetFullPathNameW
FindNextFileW
FindFirstFileW
TerminateThread
OpenThread
CreateMutexW
CreateNamedPipeA
GetLocalTime
CreateProcessW
GetExitCodeProcess
GetFileAttributesW
DeleteFileW
CreateFileW
GetCurrentDirectoryW
GetEnvironmentVariableW
GetStdHandle
OutputDebugStringW
GetStartupInfoW
InitializeSListHead
GetFileType
CreateEventW
WaitForSingleObjectEx
FindResourceExW
GetWindowsDirectoryA
SearchPathA
GetProfileIntA
GetTickCount
GetTempFileNameA
GetTempPathA
GetCPInfo
GetOEMCP
VirtualProtect
GetACP
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GetCurrentDirectoryA
lstrcpyA
SetErrorMode
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
FileTimeToSystemTime
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetSystemDirectoryW
EncodePointer
FindResourceA
FreeResource
GlobalAddAtomA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
CompareStringA
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetCurrentThread
ResumeThread
SetThreadPriority
GetThreadLocale
GetVolumeInformationA
LoadLibraryW
lstrcmpiA
GetModuleHandleW
GetModuleFileNameW
DuplicateHandle
OutputDebugStringA
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
FindFirstFileA
FindClose
DeleteFileA
SetLastError
CopyFileA
MulDiv
LocalFree
GlobalUnlock
GlobalLock
GlobalSize
MultiByteToWideChar
GetModuleFileNameA
FreeLibrary
GetProcAddress
IsWow64Process
CreateIoCompletionPort
QueryPerformanceCounter
FormatMessageA
GetCurrentProcessId
VerSetConditionMask
GetOverlappedResult
CancelIoEx
QueryPerformanceFrequency
GetVersionExA
LoadLibraryA
GetSystemDirectoryA
PostQueuedCompletionStatus
CreateMutexA
GetQueuedCompletionStatus
GetCurrentProcess
VerifyVersionInfoA
CreateEventA
GetSystemTimeAsFileTime
CreateWaitableTimerA
ResetEvent
HeapFree
SetEvent
CancelWaitableTimer
WaitForMultipleObjects
SetWaitableTimer
TlsFree
TlsAlloc
InitializeConditionVariable
WakeAllConditionVariable
TlsSetValue
TryEnterCriticalSection
SleepConditionVariableCS
TlsGetValue
SleepEx
GetCurrentThreadId
InitializeCriticalSection
InterlockedExchange
WideCharToMultiByte
FindResourceW
LoadResource
LockResource
SizeofResource
GetModuleHandleA
WriteFile
ReadFile
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
CloseHandle
HeapReAlloc
GlobalFree
GlobalAlloc
CreateFileA
GetLastError
Sleep
HeapSize
ReleaseMutex
WaitForSingleObject
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeviceIoControl
EnterCriticalSection
GetCurrentThreadId
TlsSetValue
GetCommandLineA
GetVersionExA
TlsFree
LeaveCriticalSection
TlsGetValue
TlsAlloc
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
HeapReAlloc
EnterCriticalSection
FlushFileBuffers
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
ExitProcess
GetModuleHandleA
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
GetACP
GetOEMCP
GetCPInfo
SetFilePointer
InitializeCriticalSection
SetStdHandle
GetLocaleInfoA
GetStringTypeA
MultiByteToWideChar
GetStringTypeW
LCMapStringA
LCMapStringW
RtlUnwind
CloseHandle
VirtualProtect
GetSystemInfo
VirtualQuery
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
GetProcAddress
LoadLibraryA
GetLastError
Sleep
GetTickCount
DeviceIoControl
WriteFile
SetLastError

user32

OpenClipboard
MonitorFromPoint
SetParent
EnumDisplayMonitors
SystemParametersInfoA
LoadCursorW
SetLayeredWindowAttributes
IntersectRect
SetRectEmpty
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
GetTopWindow
GetClassLongA
SetWindowLongA
EqualRect
AdjustWindowRectEx
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
ScrollWindow
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetDlgCtrlID
EndDeferWindowPos
DeferWindowPos
IsZoomed
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
CloseClipboard
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
GetWindowTextLengthA
GetWindowTextA
GetScrollPos
SetScrollPos
SetFocus
GetClassNameA
InvalidateRect
UpdateWindow
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
LockWindowUpdate
DestroyMenu
EnableScrollBar
GetDoubleClickTime
GetIconInfo
CopyIcon
GetMenuItemInfoA
GetAsyncKeyState
CheckMenuItem
GetMenuDefaultItem
BeginPaint
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
CopyRect
ReleaseDC
GetDC
MapVirtualKeyA
GetKeyNameTextA
MapDialogRect
GetWindow
SetWindowContextHelpId
SetCapture
ReleaseCapture
SetTimer
KillTimer
LoadMenuW
GetSystemMenu
DeleteMenu
MessageBeep
WindowFromPoint
NotifyWinEvent
SetCursorPos
SetRect
UnionRect
BringWindowToTop
SetWindowPos
UnhookWindowsHookEx
SetClipboardData
EmptyClipboard
DestroyIcon
LoadImageA
LoadImageW
CopyImage
GetClassInfoA
TrackMouseEvent
BeginDeferWindowPos
CreatePopupMenu
UnregisterClassA
PeekMessageA
SendMessageA
TranslateMessage
DispatchMessageA
MessageBoxA
EnableWindow
IsIconic
GetClientRect
SetCursor
GetWindowLongW
CreateWindowExW
GetClassInfoExW
RegisterClassExW
DefWindowProcW
PostMessageW
SendMessageW
DispatchMessageW
GetMessageW
LoadIconW
RegisterDeviceNotificationA
RedrawWindow
DrawIcon
GetSystemMetrics
LoadCursorA
IsWindowEnabled
GetWindowLongA
GetParent
GetWindowThreadProcessId
GetLastActivePopup
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
CharUpperA
GetMessageA
IsWindowVisible
GetActiveWindow
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExA
CallNextHookEx
RegisterWindowMessageA
DrawEdge
DrawFrameControl
GetFocus
DrawMenuBar
DrawStateA
SetWindowRgn
GetWindowRect
MapWindowPoints
GetSysColor
GetSysColorBrush
DrawFocusRect
FillRect
InflateRect
OffsetRect
IsRectEmpty
DrawIconEx
PostMessageA
PostQuitMessage
ShowOwnedPopups
IsWindow
DestroyWindow
CreateDialogIndirectParamA
EndDialog
GetDlgItem
GetNextDlgTabItem
SetActiveWindow
GetDesktopWindow
ClientToScreen
ScreenToClient
PtInRect
SetMenuDefaultItem
ModifyMenuA
DestroyAcceleratorTable
SetClassLongA
GetUpdateRect
RealChildWindowFromPoint
WaitMessage
UpdateLayeredWindow
CharNextA
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
SubtractRect
RegisterClipboardFormatA
CharUpperBuffA
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
FrameRect
IsClipboardFormatAvailable
PostThreadMessageA
IsCharLowerA
MapVirtualKeyExA
GetWindowRgn
EnumChildWindows
DestroyCursor
CreateMenu
InvertRect
HideCaret
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
EndPaint

gdi32

ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
GetObjectA
MoveToEx
TextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
CreatePatternBrush
CreateFontIndirectA
GetMapMode
SetRectRgn
DPtoLP
CreateCompatibleBitmap
CreateDIBitmap
Escape
GetTextCharsetInfo
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateRoundRectRgn
Rectangle
GetRgnBox
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExA
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceA
CreatePen
CreateCompatibleDC
CreateBitmap
BitBlt
GetTextMetricsA
Polyline
Polygon
CreatePolygonRgn
ExtTextOutA
PatBlt
GetTextExtentPoint32A
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
EnumFontFamiliesA
DeleteObject
DeleteDC
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
CombineRgn
GetDeviceCaps
CreateDCA
CopyMetaFileA
ScaleWindowExtEx
SelectClipRgn

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

CryptReleaseContext
CryptDestroyKey
CryptAcquireContextW
ConvertStringSidToSidA
ConvertSidToStringSidA
SetSecurityDescriptorOwner
InitializeSecurityDescriptor
GetTokenInformation
OpenProcessToken
RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
CryptGenKey

shell32

ShellExecuteExW
DragFinish
DragQueryFileA
ShellExecuteA
SHAppBarMessage
SHGetDesktopFolder
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
SHGetFileInfoA
ShellExecuteExA
ord680
SHCreateDirectoryExW

comctl32

InitCommonControlsEx

shlwapi

PathRemoveFileSpecW
PathFindFileNameA
PathFindExtensionA
PathStripToRootA
PathIsUNCA
StrFormatKBSizeA

uxtheme

GetWindowTheme
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
OpenThemeData
DrawThemeText
DrawThemeParentBackground
IsAppThemed

ole32

IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CreateStreamOnHGlobal
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
CoRegisterMessageFilter
CoInitializeEx

oleaut32

VariantCopy
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysFreeString
OleCreateFontIndirect
LoadTypeLi
SafeArrayDestroy
SysAllocString

oledlg

ord8

gdiplus

GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdiplusShutdown
GdipGetImagePalette

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInfo
SetupDiOpenDevRegKey
SetupDiGetDevicePropertyW
SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9.4MB - Virtual size: 9.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 107KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 139KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a393f0461c3e00027a5bbebe5d955a0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

setupapi

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 9.4MB - Virtual size: 9.4MB

.data Size: 1.4MB - Virtual size: 1.4MB

.gfids Size: 107KB - Virtual size: 107KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1.7MB - Virtual size: 1.7MB

.reloc Size: 139KB - Virtual size: 138KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 9.4MB - Virtual size: 9.4MB

.data
Size: 1.4MB - Virtual size: 1.4MB

.gfids
Size: 107KB - Virtual size: 107KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1.7MB - Virtual size: 1.7MB

.reloc
Size: 139KB - Virtual size: 138KB