ee73d94c6c432756e6b2bc50edf46b8fb7e2a8a3bfebd82d0ce45ef0567a571e

Sharing

Copy URL

Twitter E-mail

General

Target

ee73d94c6c432756e6b2bc50edf46b8fb7e2a8a3bfebd82d0ce45ef0567a571e
Size

864KB
MD5

7b27a851574551f3c6b81f8d9dd853f5
SHA1

62ebe02b8607f3fb3d06a0fab3af90fd16fa07cc
SHA256

ee73d94c6c432756e6b2bc50edf46b8fb7e2a8a3bfebd82d0ce45ef0567a571e
SHA512

1b2277e11384b17fd556b37880e259208641675ee6205e29668374f1ba5753a5d6a78b0b2e253cd20bb8b5ae9f78171a6d3a2d9900202390e715fdc8828d39de
SSDEEP

24576:RN+3tDMLGt8LgYF8pQRpu0QBwRfm+Yj+nebXXqXaaaaQ7XXM0lC8D:ctGW8LgYF8pQRpu0QBwRfm+Yj+nv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ee73d94c6c432756e6b2bc50edf46b8fb7e2a8a3bfebd82d0ce45ef0567a571e

Files

ee73d94c6c432756e6b2bc50edf46b8fb7e2a8a3bfebd82d0ce45ef0567a571e
.exe windows:6 windows x64

3b195e6cbc77f0031ea9250ddbb3f2ee

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

opencv_world300

cvCloneImage
cvBoundingRect
cvMinAreaRect2
cvGetReal2D
cvWarpAffine
cv2DRotationMatrix
cvSmooth
cvResetImageROI
cvAbsDiff
cvRectangle
cvSetReal2D
cvFlip
cvCvtColor
cvCopy
cvAddS
cvMul
cvDiv
cvSub
cvLUT
cvSetData
cvCreateMatHeader
cvConvertScale
cvSetZero
cvResize
cvMinMaxLoc
cvMatchTemplate
cvGetSubRect
cvCreateImageHeader
cvPutText
cvInitFont
cvCircle
cvLine
??1UMat@cv@@QEAA@XZ
cvSet
cvGetImageROI
cvSaveImage
cvSetImageROI
cvLoadImage
cvConvertImage
cvGetSize
cvCreateImage
cvReleaseImage
?copySize@UMat@cv@@QEAAXAEBV12@@Z
?detectMultiScaleROI@HOGDescriptor@cv@@UEBAXAEBVMat@2@AEAV?$vector@V?$Rect_@H@cv@@V?$allocator@V?$Rect_@H@cv@@@std@@@std@@AEAV?$vector@UDetectionROI@cv@@V?$allocator@UDetectionROI@cv@@@std@@@5@NH@Z
?detectROI@HOGDescriptor@cv@@UEBAXAEBVMat@2@AEBV?$vector@V?$Point_@H@cv@@V?$allocator@V?$Point_@H@cv@@@std@@@std@@AEAV45@AEAV?$vector@NV?$allocator@N@std@@@5@NV?$Size_@H@2@4@Z
?computeGradient@HOGDescriptor@cv@@UEBAXAEBVMat@2@AEAV32@1V?$Size_@H@2@2@Z
?detectMultiScale@HOGDescriptor@cv@@UEBAXAEBV_InputArray@2@AEAV?$vector@V?$Rect_@H@cv@@V?$allocator@V?$Rect_@H@cv@@@std@@@std@@AEAV?$vector@NV?$allocator@N@std@@@5@NV?$Size_@H@2@3NN_N@Z
?detectMultiScale@HOGDescriptor@cv@@UEBAXAEBV_InputArray@2@AEAV?$vector@V?$Rect_@H@cv@@V?$allocator@V?$Rect_@H@cv@@@std@@@std@@NV?$Size_@H@2@2NN_N@Z
?detect@HOGDescriptor@cv@@UEBAXAEBVMat@2@AEAV?$vector@V?$Point_@H@cv@@V?$allocator@V?$Point_@H@cv@@@std@@@std@@AEAV?$vector@NV?$allocator@N@std@@@5@NV?$Size_@H@2@3AEBV45@@Z
?detect@HOGDescriptor@cv@@UEBAXAEBVMat@2@AEAV?$vector@V?$Point_@H@cv@@V?$allocator@V?$Point_@H@cv@@@std@@@std@@NV?$Size_@H@2@2AEBV45@@Z
?compute@HOGDescriptor@cv@@UEBAXAEBV_InputArray@2@AEAV?$vector@MV?$allocator@M@std@@@std@@V?$Size_@H@2@2AEBV?$vector@V?$Point_@H@cv@@V?$allocator@V?$Point_@H@cv@@@std@@@5@@Z
?copyTo@HOGDescriptor@cv@@UEBAXAEAU12@@Z
?save@HOGDescriptor@cv@@UEBAXAEBVString@2@0@Z
?load@HOGDescriptor@cv@@UEAA_NAEBVString@2@0@Z
?write@HOGDescriptor@cv@@UEBAXAEAVFileStorage@2@AEBVString@2@@Z
?read@HOGDescriptor@cv@@UEAA_NAEAVFileNode@2@@Z
?setSVMDetector@HOGDescriptor@cv@@UEAAXAEBV_InputArray@2@@Z
?copySize@Mat@cv@@QEAAXAEBV12@@Z
??AMatStep@cv@@QEAAAEA_KH@Z
??AMatStep@cv@@QEBAAEB_KH@Z
??0MatStep@cv@@QEAA@XZ
cvShowImage
??0MatSize@cv@@QEAA@PEAH@Z

api-ms-win-crt-stdio-l1-1-0

fread
fopen
fseek
ftell
__stdio_common_vsprintf_s
__stdio_common_vswprintf
fopen_s
fclose
_kbhit

api-ms-win-crt-heap-l1-1-0

malloc
_callnewh
free

api-ms-win-crt-runtime-l1-1-0

_initialize_narrow_environment
_seh_filter_dll
abort
_invalid_parameter_noinfo_noreturn
_beginthreadex
_sleep
_configure_narrow_argv
_register_onexit_function
_execute_onexit_table
_crt_atexit
_crt_at_quick_exit
_cexit
terminate
_initialize_onexit_table

vcruntime140

_CxxThrowException
__C_specific_handler
__current_exception
__std_exception_destroy
__std_exception_copy
__current_exception_context
__CxxRegisterExceptionObject
memset
__CxxQueryExceptionSize
__CxxExceptionFilter
__FrameUnwindFilter
__CxxUnregisterExceptionObject
__CxxDetectRethrow

kernel32

TerminateProcess
OpenProcess
CloseHandle
Process32NextW
WritePrivateProfileStringW
GetPrivateProfileStringW
ResumeThread
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
Process32FirstW
SetThreadPriority
CreateThread
Beep
GetTickCount
GetFileAttributesW
Sleep
CreateDirectoryW
WideCharToMultiByte
GetModuleHandleW
IsProcessorFeaturePresent
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
CreateToolhelp32Snapshot
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind

dmc2210

d2210_t_pmove
d2210_board_init
d2210_config_EL_MODE
d2210_decel_stop
d2210_get_position
d2210_set_position
d2210_read_inbit
d2210_read_outbit
d2210_write_outbit
d2210_check_done
d2210_set_profile
d2210_imd_stop

mvcameracontrol

MV_CC_CreateHandle
MV_CC_OpenDevice
MV_CC_GetOneFrameTimeout
MV_CC_GetOptimalPacketSize
MV_CC_SetExposureTime
MV_CC_SetEnumValue
MV_CC_StartGrabbing
MV_CC_DestroyHandle
MV_CC_StopGrabbing
MV_CC_CloseDevice
MV_CC_EnumDevices
MV_CC_SetIntValue
MV_CC_SetExposureAutoMode
MV_CC_GetIntValue

srdecoderdll

FsaDecoderGetResultString
FsaDecoderGetResultBounds
FsaDecoderGetResultLength
FsaDecoderGetResultNum
UninstallFsaDecoder
FsaDecoderSetMaxBarcodeNum
FsaDecoderSetTimeoutConfig
FsaDecoderEnableSymbol
ReinitFsaDecoder
FsaDecode

user32

FindWindowW
SendMessageW
SetWindowPos
GetKeyState
ReleaseDC
SetRect
GetDC

gdi32

StretchDIBits
SetStretchBltMode
SetDIBitsToDevice

winspool.drv

StartDocPrinterW
WritePrinter
OpenPrinterW
ClosePrinter
EndPagePrinter
EndDocPrinter
StartPagePrinter

shell32

ShellExecuteA

msvcp140

?__ExceptionPtrCopy@@YAXPEAXPEBX@Z
?__ExceptionPtrDestroy@@YAXPEAX@Z

api-ms-win-crt-conio-l1-1-0

_getch

api-ms-win-crt-string-l1-1-0

wcscpy_s

api-ms-win-crt-convert-l1-1-0

_wtoi
_itoa_s
_itow_s
_wtof

api-ms-win-crt-utility-l1-1-0

rand

mscoree

_CorExeMain

Sections

.text
Size: 321KB - Virtual size: 321KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nep
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 519KB - Virtual size: 518KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 18.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 244B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b195e6cbc77f0031ea9250ddbb3f2ee

Headers

DLL Characteristics

File Characteristics

Imports

opencv_world300

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-heap-l1-1-0

api-ms-win-crt-runtime-l1-1-0

vcruntime140

kernel32

dmc2210

mvcameracontrol

srdecoderdll

user32

gdi32

winspool.drv

shell32

msvcp140

api-ms-win-crt-conio-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-utility-l1-1-0

mscoree

Sections

.text Size: 321KB - Virtual size: 321KB

.nep Size: 9KB - Virtual size: 8KB

.rdata Size: 519KB - Virtual size: 518KB

.data Size: 10KB - Virtual size: 18.8MB

.pdata Size: 1024B - Virtual size: 516B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 512B - Virtual size: 244B

.text
Size: 321KB - Virtual size: 321KB

.nep
Size: 9KB - Virtual size: 8KB

.rdata
Size: 519KB - Virtual size: 518KB

.data
Size: 10KB - Virtual size: 18.8MB

.pdata
Size: 1024B - Virtual size: 516B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 512B - Virtual size: 244B