aa1d4650a26ac6682c4c28a43e3dbafce3e985122cc71de95f24133dd071fc09

Sharing

Copy URL Twitter E-mail

General

Target

aa1d4650a26ac6682c4c28a43e3dbafce3e985122cc71de95f24133dd071fc09
Size

2.0MB
MD5

4649c9856772a7c50d689aa293b4a0b0
SHA1

f0d8b0a87078a4ac84f465fc1d24a1d9e7a1da72
SHA256

aa1d4650a26ac6682c4c28a43e3dbafce3e985122cc71de95f24133dd071fc09
SHA512

11e170a715e8558015d93c0fa4c51499e270209419212ccabfb1571e32b00ae7af895e8b461285be87d12800f2dd25dc6a612963f3e73477d0088600e89d8aab
SSDEEP

49152:MGUmqQn+TR6Prf3NR3eAw3Tox1GX5Zmr5hr8lL:MGUm4FCf3NR3eAw3Ty1GX5Zmr5hr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aa1d4650a26ac6682c4c28a43e3dbafce3e985122cc71de95f24133dd071fc09

Files

aa1d4650a26ac6682c4c28a43e3dbafce3e985122cc71de95f24133dd071fc09
.dll windows x86

dcd7d5953ebfa419e461612e4bec0981

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

hid

HidD_GetProductString
HidD_GetManufacturerString
HidP_GetCaps
HidD_GetPreparsedData
HidD_GetAttributes
HidD_GetHidGuid

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA

kernel32

SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
FindFirstFileExA
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
GetStdHandle
WriteConsoleW
ExitProcess
QueryPerformanceFrequency
GetFileType
SetStdHandle
HeapQueryInformation
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
GetCommandLineW
GetCommandLineA
VirtualQuery
VirtualAlloc
GetSystemInfo
InterlockedFlushSList
RtlUnwind
GetStringTypeW
LCMapStringW
GetFileSize
CreateThread
CloseHandle
MultiByteToWideChar
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceW
GetLastError
CreateEventA
HeapFree
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
HeapSize
HeapReAlloc
RaiseException
HeapAlloc
DecodePointer
DeleteCriticalSection
GetProcessHeap
CreateFileA
OutputDebugStringW
ReadFile
WaitForSingleObject
CancelIo
WriteFile
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
GlobalFree
LocalFree
MulDiv
FormatMessageA
CopyFileA
SetLastError
GetCurrentThread
GetCurrentThreadId
GetVersionExA
FreeLibrary
GetModuleFileNameA
LoadLibraryExW
GlobalDeleteAtom
lstrcmpA
CompareStringA
DeleteFileA
FindClose
FindFirstFileA
FlushFileBuffers
CreateFileW
GetFullPathNameA
LockFile
SetEndOfFile
SetFilePointer
UnlockFile
OutputDebugStringA
DuplicateHandle
GetCurrentProcess
GetModuleFileNameW
GetModuleHandleA
GetModuleHandleW
GetProcAddress
lstrcmpiA
LoadLibraryA
LoadLibraryW
GetVolumeInformationA
FileTimeToLocalFileTime
GetFileAttributesA
GetFileAttributesExA
GetFileSizeEx
GetFileTime
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
SetEvent
SetThreadPriority
ResumeThread
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GlobalAddAtomA
GetCurrentProcessId
EncodePointer
GetSystemDirectoryW
FreeResource
lstrcmpW
FindResourceA
GlobalFindAtomA
GlobalGetAtomNameA
LocalAlloc
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalReAlloc
SetErrorMode
GetCurrentDirectoryA
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GlobalFlags
VirtualProtect
GetOEMCP
GetCPInfo
FindNextFileA
VerSetConditionMask
lstrcpyA
VerifyVersionInfoA
GetACP
FindResourceExW
GetTempPathA
GetTempFileNameA
GetWindowsDirectoryA
SearchPathA
GetTickCount
GetProfileIntA
Sleep
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
ResetEvent
WaitForSingleObjectEx
CreateEventW
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead

user32

NotifyWinEvent
WindowFromPoint
MessageBeep
SetWindowRgn
GetSystemMenu
LoadMenuW
ReleaseCapture
SetCapture
IsZoomed
TrackMouseEvent
IntersectRect
EnumDisplayMonitors
LoadCursorW
SetLayeredWindowAttributes
MapDialogRect
GetAsyncKeyState
OffsetRect
SetRectEmpty
InflateRect
GetMenuItemInfoA
DestroyMenu
DestroyIcon
RealChildWindowFromPoint
DeleteMenu
SystemParametersInfoA
CopyImage
LoadCursorA
GetSysColorBrush
ClientToScreen
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
FillRect
InvalidateRect
DrawStateA
GetDesktopWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
GetTopWindow
GetClassNameA
GetClassLongA
PtInRect
EqualRect
CopyRect
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowRect
GetClientRect
CreatePopupMenu
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetClipboardData
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxA
SetCursor
ShowOwnedPopups
CallNextHookEx
SetWindowsHookExA
EmptyClipboard
LoadImageA
PostMessageA
SetTimer
RemovePropA
UnregisterClassA
RegisterDeviceNotificationA
UnregisterDeviceNotification
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
PeekMessageA
DispatchMessageA
TranslateMessage
GetMessageA
LoadBitmapW
SetMenuItemInfoA
GetMenuDefaultItem
SetMenuDefaultItem
IsRectEmpty
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
LoadImageW
DrawEdge
DrawFrameControl
DrawFocusRect
DrawIconEx
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
MapVirtualKeyA
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetCursorPos
SetRect
SetParent
BringWindowToTop
LockWindowUpdate
SetClassLongA
OpenClipboard
GetPropA
CloseClipboard
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
PostQuitMessage
UnhookWindowsHookEx
KillTimer
IsWindow
ShowWindow
MoveWindow
SetWindowPos
GetDlgItem
CheckDlgButton
SendDlgItemMessageA
GetDlgCtrlID
SetFocus
GetFocus
IsWindowEnabled
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
GetWindowLongA
SetWindowLongA
GetParent
GetWindow
IsDialogMessageA
CharUpperA
GetSystemMetrics
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SendMessageA
EnableWindow
GetWindowRgn
GetComboBoxInfo
DestroyCursor
CreateMenu
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
MapVirtualKeyExA
IsCharLowerA
GetDoubleClickTime
DrawIcon
GetKeyNameTextA
InvertRect
HideCaret
GetIconInfo
GetNextDlgGroupItem
WaitMessage
PostThreadMessageA
FrameRect
CopyIcon
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
ModifyMenuA
CharUpperBuffA
IsIconic
RegisterClipboardFormatA

gdi32

SetBkColor
CreateBitmap
GetDeviceCaps
CreateDCA
CopyMetaFileA
ExcludeClipRect
SetTextColor
GetTextFaceA
SetPixelV
GetViewportOrgEx
GetWindowOrgEx
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
SetPaletteEntries
ExtFloodFill
RoundRect
LPtoDP
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
Rectangle
OffsetRgn
GetRgnBox
SetDIBColorTable
StretchBlt
SetPixel
RealizePalette
Polyline
Polygon
CreatePolygonRgn
GetTextColor
GetBkColor
Ellipse
CreateEllipticRgn
EnumFontFamiliesExA
CreateDIBSection
CreateRoundRectRgn
DPtoLP
SetRectRgn
PatBlt
CombineRgn
GetTextMetricsA
GetTextCharsetInfo
EnumFontFamiliesA
CreateRectRgnIndirect
CreateDIBitmap
CreateCompatibleBitmap
GetTextExtentPoint32A
CreateFontIndirectA
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutA
TextOutA
MoveToEx
SetTextAlign
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
GetObjectA
Escape
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
BitBlt
GetStockObject
DeleteObject
CreateSolidBrush
DeleteDC

msimg32

AlphaBlend
TransparentBlt

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegEnumValueA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegCloseKey
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegDeleteValueA

shell32

Shell_NotifyIconA
SHGetFileInfoA
SHBrowseForFolderA
DragFinish
DragQueryFileA
SHAppBarMessage
ShellExecuteA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListA

shlwapi

PathIsUNCA
PathStripToRootA
PathFindFileNameA
UrlUnescapeA
PathRemoveFileSpecW
PathFindExtensionA
StrFormatKBSizeA

uxtheme

IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme
GetThemePartSize

ole32

OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleCreateMenuDescriptor
OleLockRunning
CreateStreamOnHGlobal
DoDragDrop
CoInitializeEx
CoDisconnectObject
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc

oleaut32

SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
LoadTypeLi
VariantCopy
VarBstrFromDate
SysAllocString
VariantChangeType
VariantClear
SysAllocStringLen
VariantInit
SysAllocStringByteLen
SysFreeString

gdiplus

GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipGetImageHeight
GdipDrawImageI
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipCreateFromHDC

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

wininet

HttpSendRequestA
HttpAddRequestHeadersA
HttpOpenRequestA
InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetConnectA
InternetCloseHandle
InternetOpenA
InternetCanonicalizeUrlA
InternetCrackUrlA

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Exports

Exports

SendUIPara
getDeviceInfo
getEQPara
getUIPara
getUpdateInfo
initHIDCtrl
updateApp
updateTexiao

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 332KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 121KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dcd7d5953ebfa419e461612e4bec0981

Headers

DLL Characteristics

File Characteristics

Imports

hid

setupapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

wininet

imm32

winmm

Exports

Exports

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 332KB - Virtual size: 331KB

.data Size: 21KB - Virtual size: 46KB

.gfids Size: 105KB - Virtual size: 104KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 17KB - Virtual size: 16KB

.reloc Size: 121KB - Virtual size: 121KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 332KB - Virtual size: 331KB

.data
Size: 21KB - Virtual size: 46KB

.gfids
Size: 105KB - Virtual size: 104KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 17KB - Virtual size: 16KB

.reloc
Size: 121KB - Virtual size: 121KB