a7c55b92db88ae884776d921a1f41afd642b6afc4f8d5d2bebad976dcbeeaacb

Sharing

Copy URL

Twitter E-mail

General

Target

a7c55b92db88ae884776d921a1f41afd642b6afc4f8d5d2bebad976dcbeeaacb
Size

511KB
MD5

118e1111d6b9972c53c24475435cd3a6
SHA1

2ecdd2333be061141afd76b1ac4d0703e4d8a722
SHA256

a7c55b92db88ae884776d921a1f41afd642b6afc4f8d5d2bebad976dcbeeaacb
SHA512

42f2803646c104f774dc8cebe4f0cdced9bf2825919408aca8a69d0a0a6668a28c6b007dc57bcd681cf914be001f3000a71024a5ec0a38d640cb1f73ba08f531
SSDEEP

6144:Mkt+PXzppCR4DwV5fBBOcp4UhUmclPhSitKZIqwC51AO3l4Pf8OE7VNOqM8FA:MoEzppO4aw84UhUXMZIAfM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7c55b92db88ae884776d921a1f41afd642b6afc4f8d5d2bebad976dcbeeaacb

Files

a7c55b92db88ae884776d921a1f41afd642b6afc4f8d5d2bebad976dcbeeaacb
.exe windows:6 windows x86 arch:x86

5d9183fe619ec7a4033fed1d8efc6fe2

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessageW
TranslateMessage
DispatchMessageW
PostMessageW
DefWindowProcW
PostQuitMessage
RegisterClassA
CreateWindowExA
ShowWindow
CreatePopupMenu
DestroyMenu
AppendMenuA
TrackPopupMenu
UpdateWindow
SetForegroundWindow
MessageBoxA
LoadIconW
GetCursorPos
RegisterWindowMessageA

ws2_32

bind
closesocket
htons
inet_ntoa
listen
ntohs
accept
htonl
ntohl
recv
send
WSAStartup
WSACleanup
socket

shell32

Shell_NotifyIconA

upbase

UPBase_WriteInfo
UPBase_GetModuleName
UPBase_GetProfileInt
UPBase_ExitMsgPump
UPBase_CreateLock
UPBase_DestroyLock
UPBase_EnterLock
UPBase_LeaveLock
UPBase_CreateImage
UPBase_CloneImage
UPBase_DestroyImage
UPBase_GetImageData
UPBase_GetImageInfo
UPBase_GetImageROI
UPBase_SetImageROI
UPBase_ResetImageROI
UPBase_GetImageDpi
UPBase_SetImageDpi
UPBase_ImageRotateLeft
UPBase_ImageRotateRight
UPBase_ImageRotate180
UPBase_CreateBufferFromData
UPBase_CreateBufferWithData
UPBase_DestroyBuffer
UPBase_GetBufferData
UPBase_DestroyMsgPump
UPBase_GetBufferSize
UPBase_CreateEvent
UPBase_DestroyEvent
UPBase_WaitEventTimeout
UPBase_RunMsgPump
UPBase_SetEvent
UPBase_OpenThread
UPBase_CloseThread
UPBase_CreateDir
UPBase_DeleteFile
UPBase_GetTmpFileName
UPBase_GetFilePath
UPBase_GetFilePrefix
UPBase_GetFileSuffix
UPBase_Base64Encode
UPBase_Base64Decode
UPBase_SetDogSN
UPBase_GetDogSN
UPBase_GetLocalTime
UPBase_GetTickCount
UPBase_GetIntervalSeconds
UPBase_PostPumpMessage
UPBase_CreateMsgPump

upimgfmt

UPImgFmt_CreateRecorder
UPImgFmt_WriteImageToRecorder
UPImgFmt_WriteSoundToRecorder
UPImgFmt_LoadJpegImageFromBuffer
UPImgFmt_SaveJpegImageToBuffer
UPImgFmt_GetImgFmtType
UPImgFmt_LoadImage
UPImgFmt_SaveImage
UPImgFmt_OpenImageWriter
UPImgFmt_CloseImageWriter
UPImgFmt_SaveImageToWriter
UPImgFmt_DestroyRecorder

upimgproc

UPImgProc_GetOCRInfoPlainText
UPImgProc_DestroyOCRInfo
UPImgProc_FileOCR
UPImgProc_ImageOCRToFile
UPImgProc_ImageOCR
UPImgProc_DestroyOCRMgr
UPImgProc_CreateOCRMgr
UPImgProc_GetImageDiversity
UPImgProc_ImageClearBkColor
UPImgProc_DestroyBarcodeMgr
UPImgProc_CreateDeskewImage
UPImgProc_ImageDetectObject
UPImgProc_AddImageWatermark
UPImgProc_ImageDrawLine
UPImgProc_ResizeImage
UPImgProc_FaceRecognition
UPImgProc_GetFaceInfoPos
UPImgProc_DestroyFaceInfo
UPImgProc_GetFaceSimilarity
UPImgProc_DestroyFaceMgr
UPImgProc_CreateFaceMgr
UPImgProc_CreateBarcodeMgr
UPImgProc_BarcodeRecognition
UPImgProc_DestroyBarcodeInfo
UPImgProc_GetBarcodeInfoItemCount
UPImgProc_GetBarcodeInfoItemType
UPImgProc_GetBarcodeInfoItemText
UPImgProc_GetBarcodeInfoItemPos
UPImgProc_TemplRecognition
UPImgProc_DestroyRecoInfo
UPImgProc_GetRecoInfoRegionCount
UPImgProc_GetRecoInfoRegionKey
UPImgProc_ImageBinarization
UPImgProc_GetRecoInfoRegionText
UPImgProc_ImageDetectMultiObject

updevice

UPDevice_GetIdInfoNegativeImage
UPDevice_CreateCameraMgr
UPDevice_DestroyCameraMgr
UPDevice_GetCameraCount
UPDevice_GetCameraVidByIndex
UPDevice_GetCameraPidByIndex
UPDevice_CreateCamera
UPDevice_DestroyCamera
UPDevice_GetCameraName
UPDevice_GetCameraVid
UPDevice_GetCameraPid
UPDevice_GetCameraFormatCaps
UPDevice_SetCameraFormat
UPDevice_GetCameraFormat
UPDevice_SetCameraProperty
UPDevice_OpenCameraStream
UPDevice_CloseCameraStream
UPDevice_CreateMikeMgr
UPDevice_DestroyMikeMgr
UPDevice_CreateMike
UPDevice_DestroyMike
UPDevice_GetMikeFormat
UPDevice_OpenMikeStream
UPDevice_CloseMikeStream
UPDevice_CreateIdReaderMgr
UPDevice_DestroyIdReaderMgr
UPDevice_CreateIdReader
UPDevice_DestroyIdReader
UPDevice_StartIdReader
UPDevice_StopIdReader
UPDevice_CreateIdInfo
UPDevice_DestroyIdInfo
UPDevice_CloneIdInfo
UPDevice_GetIdInfoText
UPDevice_GetIdInfoPhoto
UPDevice_GetIdInfoPositiveImage

kernel32

WriteConsoleW
SetEndOfFile
HeapReAlloc
HeapSize
CreateFileW
FlushFileBuffers
GetStringTypeW
SetStdHandle
GetProcessHeap
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
FindClose
DecodePointer
GetFileSizeEx
GetConsoleOutputCP
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetFileType
LCMapStringW
HeapAlloc
HeapFree
WriteFile
GetStdHandle
GetModuleFileNameW
GetModuleHandleExW
ExitProcess
ReadFile
LoadLibraryExW
GetProcAddress
FreeLibrary
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
EncodePointer
SetLastError
RtlUnwind
RaiseException
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetModuleHandleW
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WideCharToMultiByte
MultiByteToWideChar
CreateMutexW
GetLastError
CloseHandle

Sections

.text
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 265KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5d9183fe619ec7a4033fed1d8efc6fe2

Headers

DLL Characteristics

File Characteristics

Imports

user32

ws2_32

shell32

upbase

upimgfmt

upimgproc

updevice

kernel32

Sections

.text Size: 179KB - Virtual size: 179KB

.rdata Size: 56KB - Virtual size: 55KB

.data Size: 2KB - Virtual size: 5KB

.rsrc Size: 265KB - Virtual size: 264KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 179KB - Virtual size: 179KB

.rdata
Size: 56KB - Virtual size: 55KB

.data
Size: 2KB - Virtual size: 5KB

.rsrc
Size: 265KB - Virtual size: 264KB

.reloc
Size: 7KB - Virtual size: 7KB