b7a4ad375d30367e8c13f55170389340bd3aa8a9f65b6e16985ecb0a3d7e86a8

Sharing

Copy URL Twitter E-mail

General

Target

b7a4ad375d30367e8c13f55170389340bd3aa8a9f65b6e16985ecb0a3d7e86a8
Size

3.6MB
MD5

5a535c07b183a6aefe415ec542133287
SHA1

04ae09572155e919a226f9e572dfaa45519d5395
SHA256

b7a4ad375d30367e8c13f55170389340bd3aa8a9f65b6e16985ecb0a3d7e86a8
SHA512

b72c32bcf346ae99466ef171bdabccb9d1b98e373d6744d2ff35814ef54215425b5d485ea33ee0792037caf3e48f85650d5fb28bba7084ba3abb3fee1b367e08
SSDEEP

98304:1ZINhWFaw7GFkzeMS2B/I31C0EHyFLOAkGkzdnEVomFHKnP3t:18OPq1C0ESFLOyomFHKnP3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b7a4ad375d30367e8c13f55170389340bd3aa8a9f65b6e16985ecb0a3d7e86a8

Files

b7a4ad375d30367e8c13f55170389340bd3aa8a9f65b6e16985ecb0a3d7e86a8
.exe windows x86

69907158047176ab8af3aa13f2a97b39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

pdflib

PDF_begin_document
PDF_delete
PDF_get_errnum
PDF_get_apiname
pdf_catch
PDF_end_document
PDF_end_page_ext
PDF_close_image
PDF_fit_image
PDF_begin_page_ext
PDF_load_image
PDF_set_info
PDF_set_parameter
PDF_set_option
pdf_jbuf
PDF_get_errmsg
PDF_new

opencv_world341d

?allocate@String@cv@@AAEPADI@Z
?imread@cv@@YA?AVMat@1@ABVString@1@H@Z
cvGetSize
cvCreateImage
cvReleaseImage
cvLoadImage
?cvarrToMat@cv@@YA?AVMat@1@PBX_N1HPAV?$AutoBuffer@N$0II@@1@@Z
?deallocate@Mat@cv@@QAEXXZ
?fastFree@cv@@YAXPAX@Z
?deallocate@String@cv@@AAEXXZ

opencv_world341

?resize@cv@@YAXABV_InputArray@1@ABV_OutputArray@1@V?$Size_@H@1@NNH@Z
?imwrite@cv@@YA_NABVString@1@ABV_InputArray@1@ABV?$vector@HV?$allocator@H@std@@@std@@@Z

shlwapi

PathRemoveFileSpecW
StrFormatKBSizeW
PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathFindExtensionW
PathFileExistsW
StrCatW
StrCmpIW
StrCpyW
SHCreateStreamOnFileEx

kernel32

GetTickCount
GetProfileIntW
SearchPathW
GetWindowsDirectoryW
GetTempFileNameW
GetUserDefaultLCID
FindResourceExW
GetFileSizeEx
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetFileAttributesExW
FileTimeToLocalFileTime
SetErrorMode
VirtualProtect
GetCurrentProcess
DuplicateHandle
SystemTimeToTzSpecificLocalTime
UnlockFile
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
GetTempPathW
SetFilePointer
GetFileSize
GetFileAttributesW
CreateFileW
GlobalFlags
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryW
GetThreadLocale
FileTimeToSystemTime
GlobalGetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
WriteFile
OutputDebugStringW
LCMapStringEx
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
CompareStringW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
GlobalAddAtomW
ResumeThread
SuspendThread
SetThreadPriority
GetCurrentProcessId
VerifyVersionInfoW
VerSetConditionMask
LoadLibraryA
GetStringTypeW
GetCPInfo
RtlUnwind
lstrcpyW
lstrcmpW
lstrcmpA
GlobalDeleteAtom
GetFileTime
LoadLibraryW
LoadLibraryExW
GetModuleHandleA
FreeLibrary
GetVersionExW
GetCurrentThreadId
GetCurrentThread
OutputDebugStringA
GetProcAddress
GetModuleHandleW
SetLastError
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
Sleep
DeleteFileW
CreateDirectoryW
GetPrivateProfileStringW
GetPrivateProfileIntW
WritePrivateProfileStringW
MultiByteToWideChar
SetThreadUILanguage
GetUserDefaultUILanguage
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
HeapFree
GetLastError
WideCharToMultiByte
GetModuleFileNameW
lstrcmpiW
FindResourceW
LoadResource
LockResource
SizeofResource
WaitForSingleObject
CreateEventW
CloseHandle
SetEvent
GetModuleFileNameA
QueryPerformanceFrequency
GetSystemInfo
VirtualAlloc
VirtualQuery
GetCommandLineA
GetCommandLineW
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
ExitProcess
LCMapStringW
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
SetFilePointerEx
GetConsoleOutputCP
GetConsoleMode
ReadConsoleW
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
ResetEvent
WriteConsoleW

user32

TranslateAcceleratorW
UpdateLayeredWindow
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
GetUpdateRect
SetClassLongW
DestroyAcceleratorTable
ModifyMenuW
SetMenuDefaultItem
GetMenuDefaultItem
CopyIcon
GetIconInfo
GetDoubleClickTime
EnableScrollBar
LockWindowUpdate
CreatePopupMenu
BringWindowToTop
UnionRect
SetCursorPos
NotifyWinEvent
GetAsyncKeyState
CharUpperW
IsZoomed
TrackMouseEvent
MonitorFromPoint
SetParent
LoadImageW
DestroyIcon
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
MessageBeep
GetNextDlgGroupItem
IntersectRect
SetRect
InvalidateRgn
CopyAcceleratorTableW
CharNextW
KillTimer
SetTimer
RealChildWindowFromPoint
DeleteMenu
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
CopyImage
GetMenuItemInfoW
DestroyMenu
SendDlgItemMessageA
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassLongW
EqualRect
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
RegisterClassW
CallWindowProcW
GetMessageTime
GetMessagePos
IsDialogMessageW
SetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
SetFocus
GetDlgCtrlID
CheckDlgButton
MoveWindow
ShowWindow
GetClassNameW
SetCursor
ShowOwnedPopups
ValidateRect
GetKeyState
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
PtInRect
GetCursorPos
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxW
MapVirtualKeyW
GetKeyNameTextW
LoadMenuW
EnumDisplayMonitors
GetMonitorInfoW
SystemParametersInfoW
LoadCursorW
CopyRect
SetRectEmpty
SetLayeredWindowAttributes
GetClassInfoW
DefWindowProcW
GetDesktopWindow
GetWindowLongW
SetActiveWindow
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
UnpackDDElParam
ReuseDDElParam
GetWindowRgn
DestroyCursor
InvertRect
HideCaret
CreateMenu
GetComboBoxInfo
IsWindow
DrawIconEx
IsRectEmpty
OffsetRect
InflateRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
FillRect
DrawFocusRect
GetSysColorBrush
GetSysColor
MapWindowPoints
GetWindowRect
SetWindowRgn
DrawStateW
PostThreadMessageW
IsWindowVisible
DrawFrameControl
DrawEdge
RegisterWindowMessageW
MapDialogRect
GetWindow
GetParent
SetWindowContextHelpId
SetWindowPos
PostQuitMessage
PostMessageW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
ReleaseDC
GetDC
GetFocus
InvalidateRect
RedrawWindow
UpdateWindow
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
SendMessageW
RemoveMenu
AppendMenuW
GetSystemMenu
LoadIconW
EnableWindow
UnregisterClassW
InsertMenuItemW
IsClipboardFormatAvailable
FrameRect
CharUpperBuffW
SubtractRect
RegisterClipboardFormatW
AdjustWindowRectEx

gdi32

SetTextColor
SetTextAlign
MoveToEx
TextOutW
DeleteDC
DeleteObject
SelectObject
SetDIBColorTable
CreateCompatibleDC
GetObjectW
CreateDIBSection
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetRgnBox
GetMapMode
SetRectRgn
DPtoLP
RealizePalette
SetROP2
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
LPtoDP
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceW
GetWindowExtEx
GetViewportExtEx
GetPixel
GetLayout
SetPolyFillMode
IntersectClipRect
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
SetPixel
LineTo
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateBitmap
GetTextCharsetInfo
GetStockObject
EnumFontFamiliesW
CreatePatternBrush
CreatePen
CreateFontIndirectW
CreateDIBitmap
CreateCompatibleBitmap
BitBlt
GetTextMetricsW
Polyline
Polygon
CreatePolygonRgn
ExtTextOutW
PatBlt
GetTextExtentPoint32W
GetTextColor
GetBkColor
Ellipse
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreateHatchBrush
CreateEllipticRgn
CombineRgn
GetDeviceCaps
CreateDCW
CopyMetaFileW
StretchBlt
SetStretchBltMode

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegSetValueExW
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW

shell32

SHGetMalloc
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetPathFromIDListW
SHBrowseForFolderW
SHAppBarMessage
SHGetFileInfoW
DragQueryFileW
DragFinish
ShellExecuteW

comctl32

InitCommonControlsEx

uxtheme

GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeParentBackground
IsAppThemed
DrawThemeText
GetWindowTheme
GetThemePartSize

ole32

OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
OleIsCurrentClipboard
ReleaseStgMedium
OleDuplicateData
CoUninitialize
CoInitialize
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
OleTranslateAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleFlushClipboard
CoCreateInstance
PropVariantClear
CoTaskMemFree
CoTaskMemAlloc
CoRegisterMessageFilter
CoRevokeClassObject
CoInitializeEx
IsAccelerator

oleaut32

OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
LoadTypeLi
VariantChangeType
SysAllocStringLen
VariantClear
VariantInit
SysStringLen
SysAllocString
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipCreateBitmapFromHBITMAP
GdipSetInterpolationMode
GdipCreateBitmapFromStream
GdiplusStartup
GdipCreateBitmapFromFile
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageRectI
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipCloneImage
GdipFree
GdipDisposeImage
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipDrawImageI
GdiplusShutdown
GdipCreateFromHDC
GdipAlloc

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 143KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69907158047176ab8af3aa13f2a97b39

Headers

DLL Characteristics

File Characteristics

Imports

pdflib

opencv_world341d

opencv_world341

shlwapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 372KB - Virtual size: 371KB

.data Size: 25KB - Virtual size: 43KB

.rsrc Size: 1.4MB - Virtual size: 1.4MB

.reloc Size: 143KB - Virtual size: 143KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 372KB - Virtual size: 371KB

.data
Size: 25KB - Virtual size: 43KB

.rsrc
Size: 1.4MB - Virtual size: 1.4MB

.reloc
Size: 143KB - Virtual size: 143KB