3a5b46d473faee122954fb7ec3acaca237fd4013a740594e5e18fa4f58b24a55

Sharing

Copy URL Twitter E-mail

General

Target

3a5b46d473faee122954fb7ec3acaca237fd4013a740594e5e18fa4f58b24a55
Size

2.6MB
MD5

c0b5f0a695912761e0e0046ea8c5022d
SHA1

1bd46d67381c2e7812e98cbae2a7b003056c732f
SHA256

3a5b46d473faee122954fb7ec3acaca237fd4013a740594e5e18fa4f58b24a55
SHA512

3d7bf8cb95699617a106e320c5e10fa9482a1f947e73e9740e14a0985fb2f7e9c3dc74b044052879f009e8eacceae52d0e25aed1d401a0f8fa6e8c65ffe62ea2
SSDEEP

49152:CSAjRAL/43KsLQBzSf+JlAvIFbg6Gcnib1CqE6o4hv/LA6dXE:CSMs/UKeQBzSGJlAvIm6Gcni5CqE6o4r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a5b46d473faee122954fb7ec3acaca237fd4013a740594e5e18fa4f58b24a55

Files

3a5b46d473faee122954fb7ec3acaca237fd4013a740594e5e18fa4f58b24a55
.exe windows:6 windows x86 arch:x86

0e2f6b98a55ca3561aeed5ce2c2631dd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\项目\陈春彦\电脑配件与蔡月软件合体\低阶MP4\Jason\x-porg\XProg\Release\X-Prog.pdb

Imports

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceRegistryPropertyA
SetupDiOpenDevRegKey
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList

kernel32

SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
LCMapStringW
CompareStringW
GetStdHandle
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
GetCommandLineW
GetCommandLineA
InitializeSListHead
VirtualAlloc
GetSystemInfo
ExitProcess
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
GetFileType
CreateFileW
RtlUnwind
GetStringTypeW
LCMapStringEx
OutputDebugStringW
FindFirstFileExW
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
ResetEvent
GetUserDefaultLCID
GetTempFileNameA
GetTempPathA
GetProfileIntA
SearchPathA
GetStartupInfoW
GetTickCount
GetWindowsDirectoryA
FindResourceExW
VerifyVersionInfoA
VerSetConditionMask
GetACP
SetErrorMode
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
GetFileAttributesA
FileTimeToLocalFileTime
GetCPInfo
GetOEMCP
VirtualProtect
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
FileTimeToSystemTime
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
WritePrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
GetCurrentThread
SetThreadPriority
SetEvent
GetCurrentProcessId
GetThreadLocale
lstrcmpiA
GetCurrentProcess
DuplicateHandle
GetVolumeInformationA
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetFullPathNameA
GetFileSize
FindFirstFileA
FindClose
DeleteFileA
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleW
GetModuleFileNameW
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
MultiByteToWideChar
CopyFileA
FormatMessageA
MulDiv
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
SetLastError
OpenFileMappingA
MapViewOfFile
ResumeThread
SuspendThread
GetExitCodeThread
GetCurrentDirectoryA
CreateMutexA
GetModuleFileNameA
lstrcpyA
LoadLibraryA
GetProcAddress
FreeLibrary
GetVersionExA
CreateEventA
WaitForSingleObject
DeviceIoControl
SetCommTimeouts
SetCommState
PurgeComm
GetCommState
SetupComm
CloseHandle
WriteFile
ReadFile
FlushFileBuffers
CreateFileA
Sleep
GetModuleHandleA
InitializeCriticalSection
FindResourceA
GetPrivateProfileStringA
InitializeCriticalSectionEx
WideCharToMultiByte
FindResourceW
SizeofResource
LockResource
LoadResource
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
RaiseException
DecodePointer
FindNextFileW
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
WriteConsoleW
VirtualQuery

user32

LoadCursorW
WindowFromPoint
ReleaseCapture
SetCapture
WaitMessage
DestroyIcon
KillTimer
DeleteMenu
GetAsyncKeyState
RealChildWindowFromPoint
CopyImage
SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
LoadCursorA
GetSysColorBrush
DrawStateA
OffsetRect
SetRectEmpty
MapDialogRect
SetWindowContextHelpId
SetCursor
ShowOwnedPopups
PostQuitMessage
GetCursorPos
TranslateMessage
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
MapVirtualKeyA
GetKeyNameTextA
GetWindowThreadProcessId
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IntersectRect
FillRect
ClientToScreen
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetSystemMetrics
CharUpperA
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
LoadIconA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
GetLastActivePopup
GetTopWindow
GetClassNameA
GetClassLongA
EqualRect
CopyRect
MapWindowPoints
ScreenToClient
MessageBoxA
AdjustWindowRectEx
GetWindowRect
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
BeginPaint
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
IsIconic
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
IsMenu
GetClassInfoExA
CopyAcceleratorTableA
InvalidateRgn
SetRect
SetClipboardData
EmptyClipboard
SetClassLongA
DrawEdge
DrawFrameControl
GetClassInfoA
RegisterClassA
CallWindowProcA
GetMessageTime
GetMessagePos
PeekMessageA
RegisterWindowMessageA
IsDialogMessageA
GetWindow
GetParent
SetWindowLongA
GetWindowLongA
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
GetNextDlgGroupItem
MessageBeep
TrackMouseEvent
LoadImageW
IsZoomed
LoadMenuW
GetSystemMenu
SetWindowRgn
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
BringWindowToTop
LoadAcceleratorsA
TranslateAcceleratorA
CharNextA
SetCursorPos
CopyIcon
SendMessageA
UnregisterClassA
UpdateWindow
PostMessageA
GetMessageA
DispatchMessageA
DefWindowProcA
RegisterClassExA
CreateWindowExA
GetFocus
EnableWindow
InvalidateRect
GetSysColor
FrameRect
InflateRect
IsRectEmpty
PtInRect
SetForegroundWindow
FindWindowA
SetTimer
GetClientRect
SetParent
LoadBitmapW
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
AppendMenuA
RemoveMenu
IsWindow
ShowWindow
MoveWindow
CloseClipboard
SetWindowPos
GetDlgItem
CheckDlgButton
SendDlgItemMessageA
GetDlgCtrlID
SetFocus
IsWindowEnabled
DrawIcon
CharUpperBuffA
LockWindowUpdate
ModifyMenuA
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
PostThreadMessageA
GetComboBoxInfo
IsCharLowerA
MapVirtualKeyExA
GetDoubleClickTime
IsClipboardFormatAvailable
GetUpdateRect
DestroyCursor
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
CreateMenu
SubtractRect
GetWindowRgn
OpenClipboard
InvertRect
HideCaret
GetIconInfo
DrawIconEx
DrawFocusRect
RegisterClipboardFormatA
ReuseDDElParam
LoadMenuA
InsertMenuItemA
LoadImageA
UnpackDDElParam

gdi32

Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectA
CreateRectRgnIndirect
GetMapMode
CreateSolidBrush
SetRectRgn
DPtoLP
GetTextExtentPoint32A
GetTextMetricsA
GetBkColor
GetTextColor
GetRgnBox
CreateRoundRectRgn
CreateCompatibleBitmap
CreateDIBSection
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
EnumFontFamiliesExA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
LPtoDP
OffsetRgn
Rectangle
ExtFloodFill
SetPaletteEntries
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceA
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateCompatibleDC
CreateBitmap
BitBlt
GetObjectA
SetTextColor
SetBkColor
GetDeviceCaps
CreateDCA
CopyMetaFileA
PatBlt
DeleteObject
DeleteDC

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegEnumKeyExA
RegEnumValueA
RegQueryValueA
RegEnumKeyA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey

shell32

DragFinish
SHGetFileInfoA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHAppBarMessage
ShellExecuteA
SHBrowseForFolderA
DragQueryFileA
SHGetDesktopFolder

shlwapi

PathIsUNCA
PathStripToRootA
PathFindExtensionA
StrFormatKBSizeA
PathFindFileNameA
PathRemoveFileSpecW

uxtheme

GetWindowTheme
GetThemePartSize
IsAppThemed
DrawThemeText
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
GetThemeColor
GetCurrentThemeName
GetThemeSysColor

ole32

OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
StgCreateDocfileOnILockBytes
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
CoRegisterMessageFilter
CoRevokeClassObject
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CreateStreamOnHGlobal
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
RevokeDragDrop

oleaut32

SysFreeString
SysAllocStringLen
SysAllocStringByteLen
VariantInit
SysAllocString
OleCreateFontIndirect
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
VariantChangeType
VariantClear

oledlg

ord8

gdiplus

GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateFromHDC
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipSetInterpolationMode
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipDrawImageRectI

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

winmm

PlaySoundA

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 366KB - Virtual size: 365KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 507KB - Virtual size: 507KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 143KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e2f6b98a55ca3561aeed5ce2c2631dd

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

setupapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

winmm

imm32

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 366KB - Virtual size: 365KB

.data Size: 26KB - Virtual size: 44KB

.rsrc Size: 507KB - Virtual size: 507KB

.reloc Size: 143KB - Virtual size: 142KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 366KB - Virtual size: 365KB

.data
Size: 26KB - Virtual size: 44KB

.rsrc
Size: 507KB - Virtual size: 507KB

.reloc
Size: 143KB - Virtual size: 142KB