8f73e81649959f8279b7b10a2da72f0d6679fae4ba7687be5e3edcb9b562b863

Sharing

Copy URL

Twitter E-mail

General

Target

8f73e81649959f8279b7b10a2da72f0d6679fae4ba7687be5e3edcb9b562b863
Size

210KB
MD5

aca08c0d88d3695af1812cd47e996d3d
SHA1

68dd33c7be59ada91ec7c0b573087c4965ad68df
SHA256

8f73e81649959f8279b7b10a2da72f0d6679fae4ba7687be5e3edcb9b562b863
SHA512

becc417641d98ab1b557d31fbd983448b56f74345e82ca458a1eb01b9741761e914bf3605674de511a4501fb79fcfd8e7562423ace0b5c822d050e1b1464497c
SSDEEP

3072:rF8PsPc7yLVFbZ51Jeuiq7K1e5H2QHzHIkpA:rF4sPc7i/b/1Jeui/pOjfm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f73e81649959f8279b7b10a2da72f0d6679fae4ba7687be5e3edcb9b562b863

Files

8f73e81649959f8279b7b10a2da72f0d6679fae4ba7687be5e3edcb9b562b863
.exe windows:5 windows x86 arch:x86

638b9b36ea472feff9b8b62869c1b3e0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCP
GetConsoleMode
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetCurrentProcessId
LoadLibraryA
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
HeapSize
FlushFileBuffers
SetFilePointer
GetSystemDefaultLangID
SetThreadUILanguage
GetVersionExA
CreateThread
Sleep
WriteFile
OutputDebugStringA
CreateFileA
GetFileSize
CloseHandle
ReadFile
QueryPerformanceFrequency
QueryPerformanceCounter
GetLastError
FormatMessageA
GetLocalTime
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetModuleHandleA
HeapCreate
VirtualFree
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualAlloc
HeapReAlloc
GetModuleHandleW
ExitProcess
GetStdHandle
GetModuleFileNameA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetTickCount

user32

LoadImageA
LoadIconA
GetWindowRect
MoveWindow
ScreenToClient
GetDlgItemInt
IsDlgButtonChecked
PostQuitMessage
CheckDlgButton
DestroyWindow
DefWindowProcA
SetFocus
EnableWindow
GetDlgItemTextA
SetDlgItemInt
SetWindowLongA
SetDlgItemTextA
GetWindowLongA
CallWindowProcA
GetWindowTextLengthA
SendMessageA
PostMessageA
DestroyCaret
GetDlgItem
GetDC
ReleaseDC
CreateCaret
ShowCaret
SendDlgItemMessageA

gdi32

GetTextExtentPoint32A
SelectObject

comdlg32

GetSaveFileNameA
GetOpenFileNameA

comctl32

PropertySheetA

ch347dll

CH347StreamSPI4
CH347Uart_SetTimeout
CH347Uart_Read
CH347Uart_Write
CH347Uart_Init
CH347Uart_Open
CH347Uart_GetDeviceInfor
CH347Uart_Close
CH347SetDeviceNotify
CH347StreamI2C
CH347I2C_SetStretch
CH347I2C_SetDelaymS
CH347SPI_SetFrequency
CH347SPI_SetDataBits
CH347SPI_WriteRead
CH347SetTimeout
CH347GetChipType
CH347Jtag_INIT
CH347Jtag_BitReadIR
CH347Jtag_BitWriteDR
CH347Jtag_BitWriteIR
CH347Jtag_ByteReadIR
CH347Jtag_ByteWriteDR
CH347Jtag_ByteWriteIR
CH347Jtag_SwitchTapState
CH347Jtag_ByteReadDR
CH347Jtag_BitReadDR
CH347SetIntRoutine
CH347GPIO_Get
CH347GPIO_Set
CH347I2C_Set
CH347OpenDevice
CH347GetDeviceInfor
CH347CloseDevice
CH347SPI_Write
CH347SPI_Read
CH347SPI_GetCfg
CH347SPI_Init
CH347SPI_SetChipSelect
CH347WriteEEPROM
CH347ReadEEPROM

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

638b9b36ea472feff9b8b62869c1b3e0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

comctl32

ch347dll

Sections

.text Size: 97KB - Virtual size: 96KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 5KB - Virtual size: 46KB

.rsrc Size: 82KB - Virtual size: 82KB

.text
Size: 97KB - Virtual size: 96KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 5KB - Virtual size: 46KB

.rsrc
Size: 82KB - Virtual size: 82KB