d54e9533bb5098f5943b22d567add60d417b7277b504af21b26205f5c12d81d5

Sharing

Copy URL Twitter E-mail

General

Target

d54e9533bb5098f5943b22d567add60d417b7277b504af21b26205f5c12d81d5
Size

4.8MB
MD5

7f16647f7ecce8df19e33c267287a114
SHA1

30fca2e2eebb8395a38afe7fca4300a6b3ccd9a5
SHA256

d54e9533bb5098f5943b22d567add60d417b7277b504af21b26205f5c12d81d5
SHA512

1a2e324457ae6705eaa91320e3ccf832f59aa2b8ae12d5fe6f5c4c3ba1ab16e4443680338b7043a7cace3fb00afe89322d53b8c5765e6576a19c3862852d40ba
SSDEEP

24576:RYlpTz6BSmIAb6GskKP9fdZU73N2jTLA5chGSptYbuWkjOa00quhJ4pdfo8fEiBF:xBSmI1G4I78GsYbujGyST2AZg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d54e9533bb5098f5943b22d567add60d417b7277b504af21b26205f5c12d81d5

Files

d54e9533bb5098f5943b22d567add60d417b7277b504af21b26205f5c12d81d5
.exe windows:5 windows x86

fec176413e3e7d5c2fa997ff4cf248d7

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

controlcan

VCI_SetReference
VCI_Transmit
VCI_Receive
VCI_InitCAN
VCI_CloseDevice
VCI_OpenDevice
VCI_StartCAN

ecanvci

StartCAN
CloseDevice
SetReference
OpenDevice
Transmit
Receive
InitCAN

kernel32

SetFileAttributesW
MultiByteToWideChar
FindResourceW
SizeofResource
LockResource
LoadResource
SetPriorityClass
GetCurrentProcess
CreateDirectoryW
GlobalUnlock
GlobalFree
GlobalLock
GlobalAlloc
_lclose
_lread
_lopen
GetModuleHandleW
WaitForSingleObject
DeleteFileW
MoveFileW
WritePrivateProfileStringW
CreateEventW
FreeResource
GetPrivateProfileStringW
GetTickCount
PurgeComm
SetCommState
GetCommState
ClearCommError
CreateFileW
CloseHandle
DeviceIoControl
ReadFile
WriteFile
GetLastError
VirtualProtect
SetLastError
GetProcAddress
LoadLibraryW
SetThreadPriority
GetThreadPriority
FileTimeToLocalFileTime
OpenEventA
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
ResumeThread
SuspendThread
GetVersionExA
SetEnvironmentVariableA
CreateFileA
GetConsoleOutputCP
WriteConsoleA
GetDriveTypeA
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetTimeZoneInformation
LCMapStringA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
HeapReAlloc
HeapSize
GetDateFormatA
GetTimeFormatA
GetProcessHeap
HeapAlloc
LCMapStringW
SetConsoleCtrlHandler
FatalAppExitA
IsValidCodePage
GetCPInfo
GetOEMCP
GetACP
UnhandledExceptionFilter
TerminateProcess
VirtualFree
HeapFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetSystemTimeAsFileTime
QueryPerformanceCounter
SetUnhandledExceptionFilter
OutputDebugStringW
WriteConsoleW
OutputDebugStringA
GetStdHandle
VirtualQuery
GetSystemInfo
VirtualAlloc
GetFileType
SetStdHandle
ExitProcess
ExitThread
CreateThread
GetModuleFileNameA
IsBadReadPtr
HeapValidate
DebugBreak
RaiseException
IsDebuggerPresent
GetFileAttributesA
RtlUnwind
GetStartupInfoW
WaitForMultipleObjects
ReleaseMutex
CreateMutexW
ReleaseSemaphore
CreateSemaphoreW
GetCurrentDirectoryW
GlobalDeleteAtom
LocalFileTimeToFileTime
GetFileSizeEx
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GlobalFlags
GetProfileIntW
SetErrorMode
FindResourceExW
GetAtomNameW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
ResetEvent
PulseEvent
GetPrivateProfileIntW
CompareStringA
InterlockedExchange
lstrcmpA
GetCurrentThread
GetLocaleInfoW
ConvertDefaultLocale
EnumResourceLanguagesW
GetDiskFreeSpaceW
GetTempFileNameW
GetFileTime
SetFileTime
GetFileAttributesW
SetEvent
GetCurrentProcessId
FindNextFileW
SystemTimeToFileTime
FileTimeToSystemTime
GetModuleHandleA
InterlockedIncrement
InterlockedDecrement
lstrlenA
WideCharToMultiByte
MulDiv
CopyFileW
GlobalSize
FormatMessageW
LocalFree
GetModuleFileNameW
GetShortPathNameW
lstrcmpiW
GetThreadLocale
GetStringTypeExW
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
DuplicateHandle
GetHandleInformation
lstrlenW
CompareStringW
LoadLibraryA
GlobalFindAtomW
GetVersionExW
lstrcmpW
FreeLibrary
GetCurrentThreadId
GlobalGetAtomNameW
GlobalAddAtomW
Sleep

user32

GetClipboardFormatNameW
GetClipboardFormatNameA
SystemParametersInfoW
GetDialogBaseUnits
DestroyCursor
GetCursorPos
GetMessageW
TranslateMessage
SetRectEmpty
GetMenuBarInfo
UnpackDDElParam
ReuseDDElParam
DestroyMenu
GetWindowThreadProcessId
ReleaseCapture
TranslateAcceleratorW
LoadAcceleratorsW
MapVirtualKeyW
GetKeyNameTextW
PostQuitMessage
CheckMenuRadioItem
GetMenuContextHelpId
SetMenuContextHelpId
LoadMenuIndirectW
LoadMenuW
ModifyMenuW
InsertMenuItemW
SetMenuItemInfoW
GetMenuItemInfoW
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
DeleteMenu
CreatePopupMenu
CreateMenu
ScrollDC
GrayStringW
GetTabbedTextExtentW
DrawTextExW
DrawTextW
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateW
DrawIcon
InvertRect
FrameRect
FillRect
ExcludeUpdateRgn
WindowFromDC
GetSysColorBrush
RemoveMenu
IsMenu
GetMenuItemCount
GetSubMenu
GetMenuState
GetMenuStringW
AppendMenuW
InsertMenuW
GetMenuItemID
CharUpperW
MoveWindow
SetWindowTextW
IsDialogMessageW
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextW
SetDlgItemInt
GetDlgItemTextW
GetDlgItemInt
CheckRadioButton
CheckDlgButton
GetMenuCheckMarkDimensions
LoadBitmapW
SetMenuItemBitmaps
RegisterWindowMessageW
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
SendDlgItemMessageW
SendDlgItemMessageA
PeekMessageW
DispatchMessageW
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
PtInRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
WinHelpW
TrackPopupMenuEx
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthW
GetWindowTextW
GetKeyState
GetDlgCtrlID
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
UnhookWindowsHookEx
CallWindowProcW
DefWindowProcW
SetMenu
GetMenu
GetMessageTime
GetMessagePos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
EndDialog
CreateDialogIndirectParamW
DestroyWindow
TabbedTextOutW
OpenIcon
CloseWindow
LoadIconW
LoadCursorW
PostThreadMessageW
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
GetWindowContextHelpId
SetWindowContextHelpId
SendNotifyMessageW
GetForegroundWindow
SetForegroundWindow
ShowCaret
HideCaret
SetCaretPos
GetCaretPos
CreateCaret
GetClipboardViewer
GetClipboardOwner
GetOpenClipboardWindow
OpenClipboard
SetClipboardViewer
ChangeClipboardChain
FlashWindow
WindowFromPoint
SetParent
IsChild
GetLastActivePopup
GetWindow
GetTopWindow
FindWindowExW
FindWindowW
ChildWindowFromPointEx
ChildWindowFromPoint
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
SetWindowLongW
GetWindowLongW
SetCursor
GetSysColor
LoadImageA
DlgDirSelectComboBoxExW
DlgDirSelectExW
DlgDirListComboBoxW
DlgDirListW
SetCapture
KillTimer
SetTimer
DrawCaption
DrawAnimatedRects
EnableScrollBar
RedrawWindow
LockWindowUpdate
GetDCEx
ShowOwnedPopups
IsWindowVisible
InSendMessage
IsRectEmpty
CopyAcceleratorTableW
GetTabbedTextExtentA
DestroyIcon
CharNextW
MessageBeep
MsgWaitForMultipleObjects
UnregisterClassW
IsClipboardFormatAvailable
WaitMessage
CopyRect
LoadImageW
PeekMessageA
IsWindowUnicode
GetMessageA
DispatchMessageA
SubtractRect
UnionRect
InflateRect
SetRect
ReleaseDC
GetDC
GetSystemMetrics
GetDesktopWindow
IsWindow
IsWindowEnabled
GetDlgItem
GetParent
SetFocus
GetFocus
GetAsyncKeyState
RemovePropW
SendMessageW
GetPropW
SetActiveWindow
GetActiveWindow
GetCapture
EnableWindow
SetPropW
PostMessageW
ShowWindow
SetWindowPos
MapDialogRect
GetWindowRect
DragDetect
DrawMenuBar
GetSystemMenu
HiliteMenuItem
IsIconic
IsZoomed
ArrangeIconicWindows
SetWindowRgn
GetWindowRgn
BringWindowToTop
GetClientRect
MapWindowPoints
ClientToScreen
ScreenToClient
BeginPaint
EndPaint
GetWindowDC
UpdateWindow
GetUpdateRect
GetUpdateRgn
InvalidateRect
InvalidateRgn
ValidateRect
ValidateRgn
RegisterClipboardFormatW

gdi32

SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
ExtTextOutW
CloseEnhMetaFile
CreateEnhMetaFileW
CloseMetaFile
CreateMetaFileW
StretchDIBits
GetDIBits
GetSystemPaletteEntries
CreateSolidBrush
GetDeviceCaps
GetStockObject
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
DeleteObject
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
CreatePen
ExtCreatePen
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
UnrealizeObject
CreatePenIndirect
CreateBrushIndirect
CreateFontIndirectW
CreateFontW
CreateBitmapIndirect
SetBitmapBits
GetBitmapBits
SetBitmapDimensionEx
GetBitmapDimensionEx
CreateCompatibleBitmap
CreateDiscardableBitmap
CreatePalette
CreateHalftonePalette
GetPaletteEntries
SetPaletteEntries
AnimatePalette
GetNearestPaletteIndex
ResizePalette
CreateRectRgnIndirect
CreateEllipticRgn
CreateEllipticRgnIndirect
CreatePolygonRgn
CreatePolyPolygonRgn
CreateRoundRectRgn
PathToRegion
ExtCreateRegion
GetRegionData
SetRectRgn
CombineRgn
EqualRgn
OffsetRgn
GetRgnBox
PtInRegion
RectInRegion
SelectPalette
CreateCompatibleDC
GetBrushOrgEx
SetBrushOrgEx
EnumObjects
GetNearestColor
RealizePalette
UpdateColors
GetBkColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetObjectW
GetMapMode
GetGraphicsMode
GetWorldTransform
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
InvertRgn
PaintRgn
PtVisible
RectVisible
Arc
Polyline
Chord
Ellipse
Pie
Polygon
PolyPolygon
Rectangle
RoundRect
PatBlt
BitBlt
StretchBlt
GetPixel
SetPixel
FloodFill
ExtFloodFill
TextOutW
GetTextExtentPoint32W
GetTextAlign
GetTextFaceW
GetTextMetricsW
GetTextCharacterExtra
GetCharWidthW
GetFontLanguageInfo
GetCharacterPlacementW
GetAspectRatioFilterEx
Escape
SetBoundsRect
GetBoundsRect
ResetDCW
GetOutlineTextMetricsW
GetCharABCWidthsW
GetFontData
GetKerningPairsW
GetGlyphOutlineW
StartDocW
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
MaskBlt
PlgBlt
SetPixelV
AngleArc
GetArcDirection
PolyPolyline
GetColorAdjustment
GetCurrentObject
PolyBezier
DrawEscape
ExtEscape
GetCharABCWidthsFloatW
GetCharWidthFloatW
AbortPath
BeginPath
CloseFigure
EndPath
FillPath
FlattenPath
GetMiterLimit
GetPath
SetMiterLimit
StrokeAndFillPath
StrokePath
SetBkMode
SetPolyFillMode
SetROP2
WidenPath
GdiComment
PlayEnhMetaFile
EnumFontFamiliesExW
GetTextExtentPointW
GetTextExtentPoint32A
DeleteMetaFile
SetStretchBltMode
SetGraphicsMode
SetWorldTransform
ModifyWorldTransform
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
CreateBitmap
CopyMetaFileW
CreateDCW
DeleteDC
SaveDC
RestoreDC
GetTextColor
SelectObject
CreateICW
ScaleViewportExtEx

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW
GetJobW

advapi32

RevertToSelf
SetThreadToken
RegCloseKey
RegQueryValueExW
RegOpenKeyW
RegSetValueW
RegOpenKeyExW
RegCreateKeyW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
GetFileSecurityW
SetFileSecurityW
OpenThreadToken

shell32

SHGetFileInfoW
DragFinish
DragQueryFileW
ExtractIconW
DragAcceptFiles

shlwapi

PathStripToRootW
PathFindExtensionW
PathRemoveExtensionW
PathFindFileNameW
PathIsUNCW
PathRemoveFileSpecW

oledlg

OleUIInsertObjectW
OleUIConvertW
OleUIChangeIconW
OleUIEditLinksW
OleUIUpdateLinksW
OleUIPasteSpecialW
OleUIBusyW

ole32

OleLockRunning
OleFlushClipboard
OleSetClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoRegisterClassObject
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
OleRegGetMiscStatus
OleSetContainedObject
CoUninitialize
CoInitializeEx
CoFreeUnusedLibraries
OleUninitialize
OleSaveToStream
StringFromGUID2
CoDisconnectObject
CoCreateInstance
OleRun
CLSIDFromString
CLSIDFromProgID
ReleaseStgMedium
CoTaskMemAlloc
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleCreateFromData
OleCreateLinkFromData
OleCreateStaticFromData
OleCreateFromFile
OleCreateLinkToFile
OleCreate
OleLoad
DoDragDrop
OleSetMenuDescriptor
OleQueryLinkFromData
OleQueryCreateFromData
GetClassFile
OleGetClipboard
CreateDataAdviseHolder
CreateOleAdviseHolder
StgIsStorageFile
StgOpenStorage
StgCreateDocfile
CoGetMalloc
CoLockObjectExternal
GetRunningObjectTable
CreateFileMoniker
OleIsRunning
CreateItemMoniker
CreateGenericComposite
OleRegEnumVerbs
CreateStreamOnHGlobal
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
CoTaskMemFree
OleDuplicateData
WriteClassStm
OleGetIconOfClass
GetHGlobalFromILockBytes
CoUnmarshalInterface
CoMarshalInterface
CoReleaseMarshalData
StgIsStorageILockBytes
OleInitialize
OleSave

oleaut32

VarBstrFromCy
VarDateFromUdate
VariantTimeToSystemTime
DosDateTimeToVariantTime
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
RegisterTypeLi
VarBstrFromDate
VarDateFromStr
VarDecFromStr
VarBstrFromDec
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
VarUdateFromDate
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SysStringLen
SysAllocStringByteLen
SysStringByteLen
SysFreeString
SysAllocString
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayRedim
SafeArrayCreate
VariantCopy
SafeArrayCopy
VarCyFromStr
SystemTimeToVariantTime
SysReAllocStringLen

gdiplus

GdipCreateFont
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDrawString
GdipFillRectangleI
GdipDrawRectangleI
GdipDrawLineI
GdipDeleteGraphics
GdipCreateFromHDC
GdipSetStringFormatAlign
GdipSetStringFormatFlags
GdipDeleteStringFormat
GdipCreateStringFormat
GdipSetPenDashStyle
GdipSetPenEndCap
GdipSetPenStartCap
GdipSetPenWidth
GdipDeletePen
GdipCreatePen1
GdipAlloc
GdipFree
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdiplusShutdown
GdiplusStartup
GdipDeleteFont

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 514KB - Virtual size: 514KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 11.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 1024B - Virtual size: 793B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fec176413e3e7d5c2fa997ff4cf248d7

Headers

DLL Characteristics

File Characteristics

Imports

controlcan

ecanvci

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

gdiplus

Sections

.text Size: 2.9MB - Virtual size: 2.9MB

.rdata Size: 514KB - Virtual size: 514KB

.data Size: 22KB - Virtual size: 11.2MB

.idata Size: 25KB - Virtual size: 25KB

.didat Size: 1024B - Virtual size: 793B

.rsrc Size: 1.3MB - Virtual size: 1.3MB

.text
Size: 2.9MB - Virtual size: 2.9MB

.rdata
Size: 514KB - Virtual size: 514KB

.data
Size: 22KB - Virtual size: 11.2MB

.idata
Size: 25KB - Virtual size: 25KB

.didat
Size: 1024B - Virtual size: 793B

.rsrc
Size: 1.3MB - Virtual size: 1.3MB