506115b0bc9d30403db7f615aa9f88955f09948192bfcaa69172d0c188526d8a

Sharing

Copy URL Twitter E-mail

General

Target

506115b0bc9d30403db7f615aa9f88955f09948192bfcaa69172d0c188526d8a
Size

32KB
MD5

ea2bc493f4e925330d2dcb93741a6c8d
SHA1

be4a1b3d734c3d0ef88044a5c6384968d27aee8e
SHA256

506115b0bc9d30403db7f615aa9f88955f09948192bfcaa69172d0c188526d8a
SHA512

b0e3da588629727011dbb79bc0a13e3709f8575161572df9b76585bc5f8cd192b3e6521e93e10ee8426a4e04238a9470294d1d0c8a9ab515fffabe3521b8305a
SSDEEP

768:PNARTir3vP0E6kQUOr5xb/qcq4uAcIZZQxjMtpFS:PNARTir3n0E6kZOr5l/qcqmcIZ2x8zS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
506115b0bc9d30403db7f615aa9f88955f09948192bfcaa69172d0c188526d8a

Files

506115b0bc9d30403db7f615aa9f88955f09948192bfcaa69172d0c188526d8a
.exe windows x86

dba0206a0f8b8eb2651c7e909cc4a801

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

qt5core

?installTranslator@QCoreApplication@@SA_NPAVQTranslator@@@Z
?removeTranslator@QCoreApplication@@SA_NPAVQTranslator@@@Z
?translate@QCoreApplication@@SA?AVQString@@PBD00H@Z
??0QProcess@@QAE@PAVQObject@@@Z
??1QProcess@@UAE@XZ
?close@QProcess@@UAEXXZ
?execute@QProcess@@SAHABVQString@@@Z
?currentPath@QDir@@SA?AVQString@@XZ
??0QFileSystemWatcher@@QAE@PAVQObject@@@Z
??1QFileSystemWatcher@@UAE@XZ
?addPath@QFileSystemWatcher@@QAE_NABVQString@@@Z
??0QSettings@@QAE@ABVQString@@W4Format@0@PAVQObject@@@Z
??1QSettings@@UAE@XZ
?value@QSettings@@QBE?AVQVariant@@ABVQString@@ABV2@@Z
??0QTranslator@@QAE@PAVQObject@@@Z
??1QTranslator@@UAE@XZ
?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?connectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?disconnectNotify@QObject@@MAEXABVQMetaMethod@@@Z
?event@QObject@@UAE_NPAVQEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?isEmpty@QTranslator@@UBE_NXZ
?metaObject@QFileSystemWatcher@@UBEPBUQMetaObject@@XZ
?metaObject@QTranslator@@UBEPBUQMetaObject@@XZ
?qt_metacall@QFileSystemWatcher@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QTranslator@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QFileSystemWatcher@@UAEPAXPBD@Z
?qt_metacast@QTranslator@@UAEPAXPBD@Z
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
?translate@QTranslator@@UBE?AVQString@@PBD00H@Z
?setCurrent@QDir@@SA_NABVQString@@@Z
?toString@QVariant@@QBE?AVQString@@XZ
??0QVariant@@QAE@PBD@Z
??1QVariant@@QAE@XZ
?connect@QObject@@SA?AVConnection@QMetaObject@@PBV1@PBD01W4ConnectionType@Qt@@@Z
?setObjectName@QObject@@QAEXABVQString@@@Z
?objectName@QObject@@QBE?AVQString@@XZ
?fromAscii_helper@QString@@CAPAU?$QTypedArrayData@G@@PBDH@Z
?fromUtf8@QString@@SA?AV1@PBDH@Z
?append@QString@@QAEAAV1@ABV1@@Z
?arg@QString@@QBE?AV1@ABV1@HVQChar@@@Z
??1QString@@QAE@XZ
??0QString@@QAE@ABV0@@Z
??0QString@@QAE@XZ
??0QChar@@QAE@UQLatin1Char@@@Z
??1Connection@QMetaObject@@QAE@XZ
?connectSlotsByName@QMetaObject@@SAXPAVQObject@@@Z
?tr@QMetaObject@@QBE?AVQString@@PBD0H@Z
?load@QTranslator@@QAE_NABVQString@@000@Z
?dynamicMetaObject@QObjectData@@QBEPAUQMetaObject@@XZ

qt5gui

??0QIcon@@QAE@ABVQString@@@Z
??1QIcon@@QAE@XZ

qt5widgets

?setVisible@QSystemTrayIcon@@QAEX_N@Z
??0QMenu@@QAE@PAVQWidget@@@Z
??1QMenu@@UAE@XZ
?accept@QDialog@@UAEXXZ
?actionEvent@QMenu@@MAEXPAVQActionEvent@@@Z
?actionEvent@QWidget@@MAEXPAVQActionEvent@@@Z
?changeEvent@QMenu@@MAEXPAVQEvent@@@Z
?changeEvent@QWidget@@MAEXPAVQEvent@@@Z
?closeEvent@QDialog@@MAEXPAVQCloseEvent@@@Z
?closeEvent@QWidget@@MAEXPAVQCloseEvent@@@Z
?contextMenuEvent@QDialog@@MAEXPAVQContextMenuEvent@@@Z
?contextMenuEvent@QWidget@@MAEXPAVQContextMenuEvent@@@Z
?devType@QWidget@@UBEHXZ
?done@QDialog@@UAEXH@Z
?dragEnterEvent@QWidget@@MAEXPAVQDragEnterEvent@@@Z
??1QSystemTrayIcon@@UAE@XZ
?dragMoveEvent@QWidget@@MAEXPAVQDragMoveEvent@@@Z
?dropEvent@QWidget@@MAEXPAVQDropEvent@@@Z
?enterEvent@QMenu@@MAEXPAVQEvent@@@Z
?enterEvent@QWidget@@MAEXPAVQEvent@@@Z
?event@QAction@@MAE_NPAVQEvent@@@Z
?event@QMenu@@MAE_NPAVQEvent@@@Z
?event@QSystemTrayIcon@@MAE_NPAVQEvent@@@Z
?event@QWidget@@MAE_NPAVQEvent@@@Z
?eventFilter@QDialog@@MAE_NPAVQObject@@PAVQEvent@@@Z
?exec@QDialog@@UAEHXZ
?focusInEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?focusNextPrevChild@QMenu@@MAE_N_N@Z
?focusNextPrevChild@QWidget@@MAE_N_N@Z
?focusOutEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?hasHeightForWidth@QWidget@@UBE_NXZ
?heightForWidth@QWidget@@UBEHH@Z
?hideEvent@QMenu@@MAEXPAVQHideEvent@@@Z
?hideEvent@QWidget@@MAEXPAVQHideEvent@@@Z
?initPainter@QWidget@@MBEXPAVQPainter@@@Z
?inputMethodEvent@QWidget@@MAEXPAVQInputMethodEvent@@@Z
?inputMethodQuery@QWidget@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?keyPressEvent@QDialog@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QMenu@@MAEXPAVQKeyEvent@@@Z
?keyReleaseEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?leaveEvent@QMenu@@MAEXPAVQEvent@@@Z
?leaveEvent@QWidget@@MAEXPAVQEvent@@@Z
?metaObject@QAction@@UBEPBUQMetaObject@@XZ
?metaObject@QMenu@@UBEPBUQMetaObject@@XZ
?metaObject@QSystemTrayIcon@@UBEPBUQMetaObject@@XZ
?metric@QWidget@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?minimumSizeHint@QDialog@@UBE?AVQSize@@XZ
?minimumSizeHint@QWidget@@UBE?AVQSize@@XZ
?mouseDoubleClickEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QMenu@@MAEXPAVQMouseEvent@@@Z
?setToolTip@QSystemTrayIcon@@QAEXABVQString@@@Z
?mousePressEvent@QMenu@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QMenu@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?moveEvent@QWidget@@MAEXPAVQMoveEvent@@@Z
?nativeEvent@QWidget@@MAE_NABVQByteArray@@PAXPAJ@Z
?open@QDialog@@UAEXXZ
?paintEngine@QWidget@@UBEPAVQPaintEngine@@XZ
?paintEvent@QMenu@@MAEXPAVQPaintEvent@@@Z
?paintEvent@QWidget@@MAEXPAVQPaintEvent@@@Z
?qt_metacall@QAction@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QMenu@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacall@QSystemTrayIcon@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QAction@@UAEPAXPBD@Z
?qt_metacast@QMenu@@UAEPAXPBD@Z
?qt_metacast@QSystemTrayIcon@@UAEPAXPBD@Z
?redirected@QWidget@@MBEPAVQPaintDevice@@PAVQPoint@@@Z
?reject@QDialog@@UAEXXZ
?resizeEvent@QDialog@@MAEXPAVQResizeEvent@@@Z
?resizeEvent@QWidget@@MAEXPAVQResizeEvent@@@Z
?setVisible@QDialog@@UAEX_N@Z
?setVisible@QWidget@@UAEX_N@Z
?sharedPainter@QWidget@@MBEPAVQPainter@@XZ
?showEvent@QDialog@@MAEXPAVQShowEvent@@@Z
?showEvent@QWidget@@MAEXPAVQShowEvent@@@Z
?sizeHint@QDialog@@UBE?AVQSize@@XZ
?sizeHint@QMenu@@UBE?AVQSize@@XZ
?tabletEvent@QWidget@@MAEXPAVQTabletEvent@@@Z
?timerEvent@QMenu@@MAEXPAVQTimerEvent@@@Z
?wheelEvent@QMenu@@MAEXPAVQWheelEvent@@@Z
?wheelEvent@QWidget@@MAEXPAVQWheelEvent@@@Z
??0QApplication@@QAE@AAHPAPADH@Z
??1QApplication@@UAE@XZ
?exec@QApplication@@SAHXZ
??0QSystemTrayIcon@@QAE@PAVQObject@@@Z
?setText@QAction@@QAEXABVQString@@@Z
??1QAction@@UAE@XZ
??0QAction@@QAE@ABVQString@@PAVQObject@@@Z
??1QDialog@@UAE@XZ
??0QDialog@@QAE@PAVQWidget@@V?$QFlags@W4WindowType@Qt@@@@@Z
?setAttribute@QWidget@@QAEXW4WidgetAttribute@Qt@@_N@Z
?setWindowFlag@QWidget@@QAEXW4WindowType@Qt@@_N@Z
?addAction@QWidget@@QAEXPAVQAction@@@Z
?resize@QWidget@@QAEXHH@Z
?close@QWidget@@QAE_NXZ
?setWindowTitle@QWidget@@QAEXABVQString@@@Z
?qt_metacall@QDialog@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QDialog@@UAEPAXPBD@Z
?staticMetaObject@QDialog@@2UQMetaObject@@B
?setIcon@QSystemTrayIcon@@QAEXABVQIcon@@@Z
?mouseMoveEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?setContextMenu@QSystemTrayIcon@@QAEXPAVQMenu@@@Z
?dragLeaveEvent@QWidget@@MAEXPAVQDragLeaveEvent@@@Z

kernel32

IsProcessorFeaturePresent
CreateEventA
WideCharToMultiByte
LocalFree
GetCommandLineW
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
TerminateProcess
GetCurrentProcess
GetModuleHandleW
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
GetLastError

vcruntime140

_CxxThrowException
__CxxFrameHandler3
memset
_except_handler4_common
__std_exception_copy
__std_exception_destroy

api-ms-win-crt-runtime-l1-1-0

_c_exit
_controlfp_s
_register_thread_local_exe_atexit_callback
_set_app_type
_seh_filter_exe
_crt_atexit
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_configure_narrow_argv
terminate
_exit
exit
_initterm_e
_initterm
_get_narrow_winmain_command_line
_cexit

api-ms-win-crt-heap-l1-1-0

_callnewh
malloc
free
_set_new_mode

api-ms-win-crt-math-l1-1-0

__setusermatherr

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

shell32

CommandLineToArgvW

Sections

.text
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 512B - Virtual size: 80B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dba0206a0f8b8eb2651c7e909cc4a801

Headers

DLL Characteristics

File Characteristics

Imports

qt5core

qt5gui

qt5widgets

kernel32

vcruntime140

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

shell32

Sections

.text Size: 10KB - Virtual size: 10KB

.rdata Size: 15KB - Virtual size: 15KB

.data Size: 512B - Virtual size: 1KB

.gfids Size: 512B - Virtual size: 80B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 10KB - Virtual size: 10KB

.rdata
Size: 15KB - Virtual size: 15KB

.data
Size: 512B - Virtual size: 1KB

.gfids
Size: 512B - Virtual size: 80B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 2KB