dbd74a65f10a408cdbda4ee5d6cae70c55a04b4df4a66c938145b00ac4680a79

Sharing

Copy URL

Twitter E-mail

General

Target

dbd74a65f10a408cdbda4ee5d6cae70c55a04b4df4a66c938145b00ac4680a79
Size

6.7MB
MD5

56e4ddb095fd68ad3497c024992d105d
SHA1

42260591407423c09eb74f6729deac5bb79a801c
SHA256

dbd74a65f10a408cdbda4ee5d6cae70c55a04b4df4a66c938145b00ac4680a79
SHA512

f2ac1d74f38d2ea9cf038fc4bb77e18d2cd14a5793f4215e8986eb0840b8c66d6df1cbe64fd7df5b9047e3948db85622889a06f4def413ec57322a19a3b12e6f
SSDEEP

98304:NrkArfa7rJav8KeJ2APpK+A3zA/rTJxBYhDlH0tRt:xkArf8svmMzUrTJrYhaR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dbd74a65f10a408cdbda4ee5d6cae70c55a04b4df4a66c938145b00ac4680a79

Files

dbd74a65f10a408cdbda4ee5d6cae70c55a04b4df4a66c938145b00ac4680a79
.exe windows:6 windows x64

0b813d584f3325a31e17bfac63f67aed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

winhttp

WinHttpSetStatusCallback
WinHttpQueryDataAvailable
WinHttpReadData
WinHttpCrackUrl
WinHttpConnect
WinHttpCloseHandle
WinHttpGetIEProxyConfigForCurrentUser
WinHttpQueryHeaders
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpOpen
WinHttpOpenRequest

opencv_world343

??0Mat@cv@@QEAA@AEBV01@AEBV?$Rect_@H@1@@Z
?convertTo@Mat@cv@@QEBAXAEBV_OutputArray@2@HNN@Z
?copyTo@Mat@cv@@QEBAXAEBV_OutputArray@2@@Z
?update@Tracker@cv@@QEAA_NAEBV_InputArray@2@AEAV?$Rect_@N@2@@Z
?init@Tracker@cv@@QEAA_NAEBV_InputArray@2@AEBV?$Rect_@N@2@@Z
?create@TrackerMedianFlow@cv@@SA?AU?$Ptr@VTrackerMedianFlow@cv@@@2@XZ
?cvtColor@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@HH@Z
?updateContinuityFlag@Mat@cv@@QEAAXXZ
?repeat@cv@@YA?AVMat@1@AEBV21@HH@Z
?deallocate@String@cv@@AEAAXXZ
?allocate@String@cv@@AEAAPEAD_K@Z
?deallocate@Mat@cv@@QEAAXXZ
?fastFree@cv@@YAXPEAX@Z
?create@Mat@cv@@QEAAXHPEBHH@Z
??Hcv@@YA?AVMatExpr@0@AEBVMat@0@0@Z
??Gcv@@YA?AVMatExpr@0@AEBVMat@0@0@Z
?remap@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@00HHAEBV?$Scalar_@N@1@@Z
??Hcv@@YA?AVMatExpr@0@AEBV10@0@Z
?mul@Mat@cv@@QEBA?AVMatExpr@2@AEBV_InputArray@2@N@Z
?error@cv@@YAXHAEBVString@1@PEBD1H@Z
?calcOpticalFlowFarneback@cv@@YAXAEBV_InputArray@1@0AEBV_InputOutputArray@1@NHHHHNH@Z

kernel32

GetFileSizeEx
SetErrorMode
GetTempFileNameW
VerSetConditionMask
lstrcpyW
VerifyVersionInfoW
GetWindowsDirectoryW
FindResourceExW
SearchPathW
GetProfileIntW
GetFileAttributesW
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
RtlPcToFileHeader
RtlUnwindEx
OutputDebugStringW
VirtualProtect
GetSystemDefaultUILanguage
GetFileAttributesExW
GlobalGetAtomNameW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalFlags
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
GetCurrentThread
FindNextFileW
ResumeThread
SuspendThread
SetThreadPriority
GetVersionExW
SystemTimeToTzSpecificLocalTime
lstrcmpA
GetThreadLocale
lstrcmpiW
GetCurrentProcess
GetLocaleInfoW
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetFullPathNameW
GetFileSize
FlushFileBuffers
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetProcAddress
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
FormatMessageW
MulDiv
GlobalSize
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
LoadLibraryW
GetModuleHandleExW
OutputDebugStringA
OpenFileMappingA
WriteFile
ReadFile
MapViewOfFile
SetLastError
CreateFileMappingW
UnmapViewOfFile
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
CreateFileW
GetTickCount
GetVolumeInformationW
FindClose
FindFirstFileW
MultiByteToWideChar
WideCharToMultiByte
OpenMutexA
GetCurrentDirectoryW
GetProcessHeap
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
HeapFree
CopyFileW
GetTempPathW
FreeResource
GetUserDefaultUILanguage
GetLocalTime
CreateMutexA
CreateSemaphoreW
ReleaseSemaphore
LocalFree
LocalAlloc
SetWaitableTimer
QueryPerformanceCounter
QueryPerformanceFrequency
CreateWaitableTimerW
CreateProcessW
GetCurrentProcessId
GetModuleFileNameW
Sleep
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
GetModuleHandleW
CreateDirectoryW
ReleaseMutex
CreateMutexW
DeleteFileW
ResetEvent
CreateThread
WaitForSingleObject
SetEvent
CloseHandle
CreateEventW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
InitializeCriticalSectionEx
GetLastError
EnterCriticalSection
LeaveCriticalSection
FindResourceW
LoadResource
LockResource
SizeofResource
GetSystemInfo
VirtualAlloc
VirtualQuery
ExitThread
FreeLibraryAndExitThread
GetCommandLineA
GetCommandLineW
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
ExitProcess
LCMapStringW
GetConsoleMode
ReadConsoleW
GetConsoleCP
SetFilePointerEx
GetTimeZoneInformation
GetDriveTypeW
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
WriteConsoleW
WaitForSingleObjectEx

user32

GetWindowThreadProcessId
FillRect
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
CharUpperW
MapVirtualKeyW
GetKeyNameTextW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongPtrW
SetWindowLongW
GetSysColor
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetFocus
SetFocus
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
IsChild
IsMenu
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
LoadMenuW
GetSubMenu
GetMenuState
GetMenuStringW
GetWindowLongW
SetActiveWindow
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
MessageBoxW
IsWindow
IntersectRect
ShowScrollBar
UnionRect
FrameRect
UnregisterClassW
GetKeyState
GetDesktopWindow
SetParent
UpdateWindow
GetDlgCtrlID
IsWindowVisible
DispatchMessageW
TranslateMessage
PeekMessageW
TrackMouseEvent
IsZoomed
DrawIconEx
LoadCursorW
SetCursor
GetMonitorInfoW
MonitorFromRect
DrawIcon
GetSystemMetrics
IsIconic
LoadIconW
EqualRect
DefWindowProcW
PostQuitMessage
EndPaint
BeginPaint
SetWindowLongPtrW
SubtractRect
MapVirtualKeyExW
IsCharLowerW
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
CopyIcon
GetWindowLongPtrW
GetCursorPos
ShowWindow
MoveWindow
CreateWindowExW
RegisterClassExW
LoadImageW
ScreenToClient
DrawTextW
OffsetRect
SetRect
wsprintfW
InflateRect
SetWindowRgn
SetLayeredWindowAttributes
InvalidateRect
ReleaseCapture
GetCapture
SetCapture
ClientToScreen
KillTimer
GetDoubleClickTime
SetTimer
ReleaseDC
UpdateLayeredWindow
SystemParametersInfoW
WindowFromPoint
MessageBeep
ShowOwnedPopups
SendDlgItemMessageA
RealChildWindowFromPoint
GetSysColorBrush
DestroyMenu
GetMenuItemInfoW
CopyImage
GetAsyncKeyState
MapDialogRect
IsClipboardFormatAvailable
GetDC
GetMessageW
PostThreadMessageW
CharNextW
BringWindowToTop
GetWindowRgn
GetComboBoxInfo
DestroyCursor
CreateMenu
InvertRect
HideCaret
GetIconInfo
GetUpdateRect
SetMenuDefaultItem
EnableScrollBar
CharUpperBuffW
SetCursorPos
DrawFocusRect
DrawFrameControl
DrawEdge
GetNextDlgGroupItem
GetMenuDefaultItem
SetClassLongPtrW
LockWindowUpdate
RegisterClipboardFormatW
EnumChildWindows
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
WaitMessage
ModifyMenuW
NotifyWinEvent
GetSystemMenu
EnableWindow
PostMessageW
GetWindowRect
GetParent
GetClientRect
SendMessageW
CopyRect
SetRectEmpty
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
MonitorFromPoint
DeleteMenu
IsRectEmpty
PtInRect
SetWindowContextHelpId
InvalidateRgn
CopyAcceleratorTableW
ReuseDDElParam
UnpackDDElParam
DestroyIcon
InsertMenuItemW
CreatePopupMenu
TranslateAcceleratorW
GetMenuItemID
LoadAcceleratorsW

gdi32

CreateBitmap
CreateRectRgnIndirect
PatBlt
CreateHatchBrush
CreatePen
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SetTextColor
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
GetMapMode
SetRectRgn
DPtoLP
CreateEllipticRgn
LPtoDP
GetTextMetricsW
GetBkColor
GetTextColor
GetRgnBox
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetDIBits
RealizePalette
SetPixel
CreateRoundRectRgn
OffsetRgn
EnumFontFamiliesExW
CreatePolygonRgn
Polygon
Polyline
Rectangle
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetTextFaceW
SetPixelV
SetBkColor
GetDeviceCaps
CreateDCW
CopyMetaFileW
SetStretchBltMode
AddFontMemResourceEx
SetDIBColorTable
Ellipse
RemoveFontMemResourceEx
GetObjectW
GetDIBColorTable
StretchBlt
SetBitmapBits
DeleteDC
GetTextExtentPoint32W
SelectObject
CreateFontW
CreateDIBSection
RoundRect
GetStockObject
CreateSolidBrush
CombineRgn
CreateRectRgn
DeleteObject
BitBlt
CreateCompatibleDC
OffsetViewportOrgEx
CreatePatternBrush
CreateCompatibleBitmap

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

RegSetValueExW
RegCloseKey
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
CryptDecrypt
RegDeleteValueW
CryptDestroyKey
CryptEncrypt
CryptDestroyHash
CryptDeriveKey
CryptHashData
CryptCreateHash
CryptAcquireContextW
RegQueryValueExW

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListW
DragQueryFileW
ShellExecuteW
SHGetMalloc
SHBrowseForFolderW
SHGetFileInfoW
DragFinish
SHAppBarMessage
SHGetDesktopFolder
DragAcceptFiles

comctl32

InitCommonControlsEx
_TrackMouseEvent

shlwapi

ord12
PathFileExistsW
SHCreateStreamOnFileW
PathIsUNCW
PathStripToRootW
PathIsDirectoryW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

DrawThemeText
DrawThemeParentBackground
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
OpenThemeData
CloseThemeData
GetThemePartSize
IsAppThemed
GetThemeColor
GetCurrentThemeName
GetWindowTheme
GetThemeSysColor

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoUninitialize
CoInitializeEx
CreateStreamOnHGlobal
CoTaskMemFree
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CoGetClassObject
CoDisconnectObject
CoInitialize
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CLSIDFromProgID
CoCreateGuid
OleDraw
CLSIDFromString
OleLockRunning
CoRevokeClassObject
CoRegisterMessageFilter
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
CoCreateInstance
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CreateILockBytesOnHGlobal

oleaut32

OleCreateFontIndirect
VariantCopy
LoadTypeLi
SysAllocString
VarBstrFromDate
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VariantChangeType
VariantInit
SysAllocStringLen
VariantClear
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipGetPropertyItem
GdipCreateFromHDC
GdipCreateBitmapFromFile
GdipDrawImageRectI
GdipGetPropertyItemSize
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipGetImageEncoders
GdipSaveImageToFile
GdipSetPropertyItem
GdiplusShutdown
GdipCreateBitmapFromStream
GdipFree
GdipGetImageEncodersSize
GdiplusStartup
GdipGetImagePixelFormat
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipCreateBitmapFromGdiDib
GdipCreateHBITMAPFromBitmap
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipGetImageHeight
GdipDeleteGraphics
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits

xmllite

CreateXmlWriter
CreateXmlReader

winmm

PlaySoundW
timeGetTime
waveOutRestart
waveOutPause
waveOutWrite
waveOutOpen
waveOutPrepareHeader
waveOutClose
waveOutReset
waveOutUnprepareHeader

wlanapi

WlanOpenHandle
WlanCloseHandle
WlanEnumInterfaces
WlanGetAvailableNetworkList
WlanFreeMemory

iphlpapi

NotifyAddrChange

ws2_32

send
connect
closesocket
inet_addr
bind
htons
recv
setsockopt
socket
recvfrom
select
sendto
WSACleanup
WSAStartup
WSACloseEvent
WSACreateEvent
__WSAFDIsSet
htonl
WSAGetLastError

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

d3d10

D3D10CompileEffectFromMemory
D3D10CreateDeviceAndSwapChain
D3D10CreateEffectFromMemory

dxgi

CreateDXGIFactory

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

wininet

HttpQueryInfoW
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
InternetSetStatusCallbackW
InternetGetLastResponseInfoW
InternetSetOptionW
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetConnectW
InternetCloseHandle
InternetOpenW

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 985KB - Virtual size: 985KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 46KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 126KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0b813d584f3325a31e17bfac63f67aed

Headers

DLL Characteristics

File Characteristics

Imports

winhttp

opencv_world343

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

xmllite

winmm

wlanapi

iphlpapi

ws2_32

version

d3d10

dxgi

oleacc

wininet

imm32

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.rdata Size: 985KB - Virtual size: 985KB

.data Size: 46KB - Virtual size: 91KB

.pdata Size: 126KB - Virtual size: 125KB

.rsrc Size: 2.7MB - Virtual size: 2.7MB

.reloc Size: 82KB - Virtual size: 82KB

.text
Size: 2.8MB - Virtual size: 2.8MB

.rdata
Size: 985KB - Virtual size: 985KB

.data
Size: 46KB - Virtual size: 91KB

.pdata
Size: 126KB - Virtual size: 125KB

.rsrc
Size: 2.7MB - Virtual size: 2.7MB

.reloc
Size: 82KB - Virtual size: 82KB