c66d2726918c39eedd61a0608f8942a6502d94e222b37baabcd307bd7b5f06bf

Sharing

Copy URL

Twitter E-mail

General

Target

c66d2726918c39eedd61a0608f8942a6502d94e222b37baabcd307bd7b5f06bf
Size

4.5MB
MD5

7e0adea8ff3870f75130b5bea2c58d97
SHA1

e453fd917d91e4965aa938d8edfbe69835d22340
SHA256

c66d2726918c39eedd61a0608f8942a6502d94e222b37baabcd307bd7b5f06bf
SHA512

beae3b5b185b7adb250c9ad8495b806f062eb6100fa5ec22c2f297c86ca761d1ec3f24541a5041881488160de02e208d672d275d17b9a7a2d0c530fbe135f6cd
SSDEEP

98304:/tq0Ex7cgAt+DJHrjgUMcwK4s7GypPiV8/:FqlVZDxfgURwK4GGciG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c66d2726918c39eedd61a0608f8942a6502d94e222b37baabcd307bd7b5f06bf

Files

c66d2726918c39eedd61a0608f8942a6502d94e222b37baabcd307bd7b5f06bf
.dll windows:5 windows x64

83953bf5595a5593d0fc4341a417b6f6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL

Imports

libufun

UF_get_fail_message
UF_initialize
UF_translate_variable
UF_terminate

libugopenint

UF_STYLER_create_dialog
UF_UI_set_status
UF_STYLER_free_value
UF_STYLER_ask_value
uc1601

kernel32

FlsSetValue
GetCommandLineA
RtlUnwindEx
HeapReAlloc
RtlLookupFunctionEntry
RaiseException
RtlPcToFileHeader
VirtualAlloc
SetThreadStackGuarantee
VirtualQuery
SetStdHandle
GetFileType
ExitThread
CreateThread
HeapSize
HeapQueryInformation
ExitProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlCaptureContext
GetTimeZoneInformation
IsValidCodePage
FlsGetValue
FlsAlloc
LCMapStringW
SetHandleCount
GetStdHandle
GetStartupInfoW
HeapSetInformation
GetVersion
HeapCreate
HeapDestroy
GetStringTypeW
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
CompareStringW
WriteConsoleW
GetProcessHeap
CreateFileW
SetEnvironmentVariableA
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
FlsFree
DecodePointer
FindResourceW
LoadResource
WaitForSingleObject
WideCharToMultiByte
SizeofResource
ReadFile
LockResource
CloseHandle
CreateFileA
GetFileSize
SetFilePointer
FreeLibrary
GetEnvironmentVariableA
GetProcAddress
CopyFileA
GetPrivateProfileStringA
LoadLibraryA
GetModuleHandleA
GetModuleHandleExA
FindFirstFileA
FindClose
GetModuleFileNameA
DeviceIoControl
GetVersionExA
lstrlenA
FormatMessageA
LocalFree
GetCurrentProcess
GetModuleHandleW
GetLastError
GetSystemInfo
CreateMutexA
ReleaseMutex
QueryDosDeviceA
LocalAlloc
MultiByteToWideChar
SetLastError
MulDiv
lstrlenW
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalSize
GlobalFree
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileAttributesExA
GetFileAttributesA
GetFileSizeEx
GetFileTime
lstrcmpA
DeactivateActCtx
ActivateActCtx
GetCurrentProcessId
CreateActCtxW
ReleaseActCtx
GetModuleFileNameW
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
InitializeCriticalSection
TlsAlloc
GlobalReAlloc
GlobalHandle
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
SetThreadPriority
ResumeThread
GetCurrentThreadId
SetErrorMode
GlobalGetAtomNameA
CompareStringA
lstrcmpiA
WriteFile
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
DuplicateHandle
GetVolumeInformationA
GetFullPathNameA
lstrcmpW
LoadLibraryW
InitializeCriticalSectionAndSpinCount
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
FreeResource
FindResourceA
GlobalFlags
GetLocaleInfoA
GetUserDefaultUILanguage
GetCPInfo
GetOEMCP
GetSystemDirectoryW
lstrcpyA
GetACP
GetCurrentDirectoryA
GetTempFileNameA
GetTempPathA
GetWindowsDirectoryA
GetNumberFormatA
GetTickCount
GetProfileIntA
Sleep
SearchPathA
VirtualProtect
FindResourceExW
EncodePointer
LocalAlloc
LocalFree
GetModuleFileNameW
ExitProcess
LoadLibraryA
GetModuleHandleA
GetProcAddress

user32

GetSubMenu
GetMenuItemCount
InsertMenuA
GetMenuItemID
AppendMenuA
GetMenuStringA
GetMenuState
MessageBoxA
EnableWindow
IsWindowEnabled
GetLastActivePopup
GetParent
GetWindowThreadProcessId
UnhookWindowsHookEx
ValidateRect
GetCursorPos
GetKeyState
IsWindowVisible
GetActiveWindow
TranslateMessage
GetMessageA
CallNextHookEx
SetWindowsHookExA
UnregisterClassA
GetWindowTextA
GetWindowTextLengthA
GetSysColorBrush
GetSysColor
ReleaseDC
GetDC
LoadCursorA
CharUpperA
CheckMenuItem
EnableMenuItem
ModifyMenuA
GetFocus
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
GetWindow
PtInRect
SetWindowPos
CopyRect
GetMenu
CallWindowProcA
DefWindowProcA
GetDlgCtrlID
GetWindowPlacement
SetWindowPlacement
SetScrollInfo
GetScrollInfo
DeferWindowPos
EqualRect
ScreenToClient
GetWindowRect
AdjustWindowRectEx
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
GetClientRect
UpdateWindow
RedrawWindow
ShowScrollBar
SetForegroundWindow
GetScrollPos
SetScrollPos
GetScrollRange
SetScrollRange
SetMenu
TrackPopupMenu
GetWindowLongA
ScrollWindow
MapWindowPoints
GetMonitorInfoA
MonitorFromWindow
GetMessagePos
GetMessageTime
SetWindowLongPtrA
GetWindowLongPtrA
DestroyWindow
GetTopWindow
GetDlgItem
EndDeferWindowPos
PeekMessageA
SetActiveWindow
GetForegroundWindow
PostMessageA
IsWindow
RemovePropA
GetPropA
SetPropA
GetClassLongPtrA
GetClassNameA
GetClassLongA
GetCapture
IsChild
WinHelpA
SendDlgItemMessageA
LoadIconA
LoadIconW
RegisterWindowMessageA
CheckDlgButton
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
ClientToScreen
RealChildWindowFromPoint
RemoveMenu
FillRect
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
GetWindowDC
BeginPaint
EndPaint
DestroyIcon
InflateRect
GetMenuItemInfoA
DestroyMenu
SystemParametersInfoA
PostQuitMessage
CopyImage
SetRectEmpty
EnumDisplayMonitors
SetLayeredWindowAttributes
LoadCursorW
IntersectRect
IsIconic
InvalidateRect
SetCursor
ShowOwnedPopups
DeleteMenu
IsRectEmpty
OffsetRect
IsZoomed
SetWindowRgn
SetParent
DestroyAcceleratorTable
CreatePopupMenu
WindowFromPoint
NotifyWinEvent
GetAsyncKeyState
SetClassLongPtrA
LoadMenuW
GetSystemMenu
SetCapture
ReleaseCapture
MessageBeep
DrawStateA
DrawIconEx
DrawEdge
DrawFrameControl
DrawFocusRect
CopyAcceleratorTableA
ToAsciiEx
MapVirtualKeyA
GetKeyboardLayout
GetKeyboardState
LoadAcceleratorsW
CreateAcceleratorTableA
SetRect
SetCursorPos
BringWindowToTop
LockWindowUpdate
GetMenuDefaultItem
InvertRect
HideCaret
EnableScrollBar
GetNextDlgTabItem
GetIconInfo
LoadImageA
GetNextDlgGroupItem
EndDialog
CreateDialogIndirectParamA
TranslateAcceleratorA
InsertMenuItemA
LoadAcceleratorsA
LoadMenuA
ReuseDDElParam
UnpackDDElParam
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
MonitorFromPoint
UnionRect
UpdateLayeredWindow
IsMenu
CreateMenu
PostThreadMessageA
WaitMessage
SetMenuDefaultItem
IsClipboardFormatAvailable
FrameRect
GetUpdateRect
OpenClipboard
SetClipboardData
CloseClipboard
EmptyClipboard
LoadImageW
RegisterClipboardFormatA
CopyIcon
CharUpperBuffA
GetDoubleClickTime
IsCharLowerA
GetKeyNameTextA
MapVirtualKeyExA
SubtractRect
MapDialogRect
DrawIcon
DestroyCursor
GetWindowRgn
DispatchMessageA
GetSystemMetrics
SetTimer
KillTimer
SendMessageA
GetDesktopWindow
SetWindowLongA
SetFocus
BeginDeferWindowPos

gdi32

GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
BitBlt
CreatePatternBrush
CreateCompatibleDC
GetStockObject
SelectPalette
GetObjectType
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SetLayout
GetLayout
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateFontIndirectA
GetTextExtentPoint32A
CreateDIBitmap
CreateCompatibleBitmap
CreateRectRgnIndirect
GetTextMetricsA
EnumFontFamiliesA
GetTextCharsetInfo
SetRectRgn
CombineRgn
GetDeviceCaps
CopyMetaFileA
CreateDCA
CreateBitmap
SetTextColor
SetBkColor
GetObjectA
DeleteObject
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetTextAlign
MoveToEx
SetROP2
LineTo
IntersectClipRect
ExcludeClipRect
DeleteDC
SetMapMode
PatBlt
DPtoLP
SetPixelV
GetTextFaceA
SetPaletteEntries
ExtFloodFill
GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
LPtoDP
EnumFontFamiliesExA
Rectangle
SetPixel
StretchBlt
SetDIBColorTable
GetRgnBox
OffsetRgn
GetSystemPaletteEntries
RealizePalette
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
Polygon
Ellipse
Polyline
CreateEllipticRgn
GetTextColor
GetBkColor
CreatePolygonRgn
CreateRoundRectRgn
CreateDIBSection
GetClipBox

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegSetValueExA
RegQueryValueExA
RegCreateKeyA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
RegCreateKeyExA
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
RegDeleteKeyA
RegEnumKeyExA

shell32

SHGetFileInfoA
SHBrowseForFolderA
SHAppBarMessage
DragQueryFileA
DragFinish
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetDesktopFolder
ShellExecuteA

comctl32

ImageList_GetIconSize

shlwapi

PathIsDirectoryA
PathFindExtensionA
PathStripToRootA
PathIsUNCA
PathRemoveFileSpecW
PathFindFileNameA

ole32

DoDragDrop
CreateStreamOnHGlobal
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CoInitializeEx
CoUninitialize
CoInitialize
CoCreateInstance
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
OleGetClipboard
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop

oleaut32

VariantInit
VarBstrFromDate
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringLen
SysAllocString
SysFreeString
VariantClear
VariantChangeType

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList

iphlpapi

GetAdaptersInfo

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipAlloc
GdipDeleteGraphics
GdipFree
GdipDrawImageI

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Exports

Exports

quick_cam_check_password

Sections

.text
Size: - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: - Virtual size: 515KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

text
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE

data
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rTB
Size: - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.@xP
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.2~}
Size: 4.4MB - Virtual size: 4.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 144B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 85KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83953bf5595a5593d0fc4341a417b6f6

Headers

DLL Characteristics

File Characteristics

Imports

libufun

libugopenint

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

setupapi

iphlpapi

oleacc

gdiplus

imm32

winmm

Exports

Exports

Sections

.text Size: - Virtual size: 1.5MB

.rdata Size: - Virtual size: 515KB

.data Size: - Virtual size: 132KB

.pdata Size: - Virtual size: 75KB

text Size: - Virtual size: 2KB

data Size: - Virtual size: 1KB

.rTB Size: - Virtual size: 1.6MB

.@xP Size: 6KB - Virtual size: 5KB

.2~} Size: 4.4MB - Virtual size: 4.4MB

.reloc Size: 512B - Virtual size: 144B

.rsrc Size: 85KB - Virtual size: 179KB

.text
Size: - Virtual size: 1.5MB

.rdata
Size: - Virtual size: 515KB

.data
Size: - Virtual size: 132KB

.pdata
Size: - Virtual size: 75KB

text
Size: - Virtual size: 2KB

data
Size: - Virtual size: 1KB

.rTB
Size: - Virtual size: 1.6MB

.@xP
Size: 6KB - Virtual size: 5KB

.2~}
Size: 4.4MB - Virtual size: 4.4MB

.reloc
Size: 512B - Virtual size: 144B

.rsrc
Size: 85KB - Virtual size: 179KB