ac39cb2ca9da460e793d36cdcc969f06149053f0eb328114c48708d0063c9a25

Sharing

Copy URL Twitter E-mail

General

Target

ac39cb2ca9da460e793d36cdcc969f06149053f0eb328114c48708d0063c9a25
Size

6.6MB
MD5

7cc42295e1504fd5bb882a21acd45db8
SHA1

16ed23fcc6819b10b6a843523d87fc3483597cb8
SHA256

ac39cb2ca9da460e793d36cdcc969f06149053f0eb328114c48708d0063c9a25
SHA512

980a1b57ff148d9e60a40d3d5721e274427eb98a5d08414e8405cd8eca5e632e713b1b249b478f969aec6063daa2cb13e709578d36f0868d26bea6fb90fc44f6
SSDEEP

196608:6rzlhv9nh9Yga7B+pTB5Cga7B+p9B5CFLOyomFHKnP:6rz6ga9+Uga9+aF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac39cb2ca9da460e793d36cdcc969f06149053f0eb328114c48708d0063c9a25

Files

ac39cb2ca9da460e793d36cdcc969f06149053f0eb328114c48708d0063c9a25
.exe windows:5 windows x86 arch:x86

4fea70ac7f31b20d572d9641db347f9d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\工作目录\Focus\产品服务驱动\Simple80DriveSetup_深圳誉恒达\Release\Simple80DriveSetup.pdb

Imports

kernel32

FindFirstFileExA
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
SetFilePointerEx
GetConsoleMode
GetConsoleCP
GetStringTypeW
GetTimeZoneInformation
GetDriveTypeW
LCMapStringW
GetCurrentDirectoryW
GetStdHandle
ExitProcess
GetFileType
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
GetCommandLineW
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
VirtualQuery
VirtualAlloc
RtlUnwind
OutputDebugStringW
WriteConsoleW
CreateFileW
FindClose
OutputDebugStringA
WriteFile
CloseHandle
WideCharToMultiByte
SizeofResource
LockResource
LoadResource
FindResourceW
Sleep
GetUserDefaultUILanguage
GetSystemInfo
GetNativeSystemInfo
GetVersionExA
DeleteFileA
CopyFileA
FormatMessageA
GetLastError
LocalFree
GetLocalTime
GetProcAddress
GetModuleHandleA
WaitForSingleObject
RemoveDirectoryA
GetTempPathA
CreateDirectoryA
SetCurrentDirectoryA
FindResourceA
GetCurrentDirectoryA
HeapFree
EnterCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
HeapSize
HeapReAlloc
RaiseException
HeapAlloc
DecodePointer
DeleteCriticalSection
GetProcessHeap
SetFilePointer
ReadFile
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileAttributesA
SetFileTime
FileTimeToSystemTime
GetFileSize
GetTickCount
MultiByteToWideChar
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
GlobalFree
MulDiv
SetLastError
SetEvent
GetCurrentThreadId
SetThreadPriority
ResumeThread
GetCurrentProcessId
GetModuleFileNameA
FileTimeToLocalFileTime
CreateFileA
FindFirstFileA
FindNextFileA
SystemTimeToTzSpecificLocalTime
GetModuleFileNameW
GetModuleHandleW
LoadLibraryA
LoadLibraryW
EncodePointer
GetSystemDirectoryW
FreeLibrary
FreeResource
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomA
GlobalFindAtomA
GlobalGetAtomNameA
CompareStringA
GetCurrentThread
lstrcmpA
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GlobalFlags
VerSetConditionMask
lstrcpyA
VerifyVersionInfoA
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
VirtualProtect
GetOEMCP
GetCPInfo
GetACP
FlushFileBuffers
GetFullPathNameA
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
GetCurrentProcess
lstrcmpiA
GetVolumeInformationA
GetTempFileNameA
FindResourceExW
GetWindowsDirectoryA
SearchPathA
GetProfileIntA
SetErrorMode
GetFileAttributesExA
GetFileSizeEx
GetFileTime
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
ResetEvent
WaitForSingleObjectEx
CreateEventW
IsDebuggerPresent
GetStartupInfoW
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead

user32

LoadMenuW
KillTimer
SetTimer
ReleaseCapture
SetCapture
CharUpperA
IsZoomed
TrackMouseEvent
MapDialogRect
GetAsyncKeyState
CopyImage
GetMenuItemInfoA
DestroyMenu
EnumDisplayMonitors
SystemParametersInfoA
LoadCursorW
SetLayeredWindowAttributes
RealChildWindowFromPoint
IntersectRect
ShowOwnedPopups
DrawIconEx
IsRectEmpty
InflateRect
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawFrameControl
DrawEdge
PostQuitMessage
OffsetRect
SetRectEmpty
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
UnhookWindowsHookEx
GetWindow
GetTopWindow
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetWindowRect
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
SetForegroundWindow
GetForegroundWindow
GetSystemMenu
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetFocus
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
DeleteMenu
MessageBeep
WindowFromPoint
GetSystemMetrics
GetClientRect
DrawIcon
LoadBitmapW
SetCursor
LoadCursorA
UnregisterClassA
wsprintfA
GetDesktopWindow
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
IsMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CallWindowProcA
DefWindowProcA
PostMessageA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
CopyRect
MapVirtualKeyA
GetKeyNameTextA
IsWindow
GetClassNameA
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
DestroyIcon
LoadImageW
WaitMessage
SetParent
OpenClipboard
CloseClipboard
InvalidateRect
UpdateWindow
SetClipboardData
RegisterClipboardFormatA
EmptyClipboard
LoadImageA
SetCursorPos
SetRect
BringWindowToTop
LockWindowUpdate
InsertMenuA
AppendMenuA
RemoveMenu
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
IsWindowVisible
GetActiveWindow
GetKeyState
ValidateRect
GetCursorPos
SetWindowsHookExA
CallNextHookEx
IsWindowEnabled
MessageBoxA
GetWindowLongA
GetParent
GetWindowThreadProcessId
GetLastActivePopup
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetDC
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
ClientToScreen
ScreenToClient
GetSysColor
FillRect
DrawStateA
GetDoubleClickTime
GetIconInfo
CopyIcon
ModifyMenuA
DestroyAcceleratorTable
SetClassLongA
GetUpdateRect
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
CopyAcceleratorTableA
EnableWindow
LoadIconW
SendMessageA
RegisterDeviceNotificationA
GetWindowRgn
DestroyCursor
CreateMenu
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcA
DefFrameProcA
DrawMenuBar
MapVirtualKeyExA
IsCharLowerA
IsClipboardFormatAvailable
SubtractRect
InvertRect
HideCaret
GetNextDlgGroupItem
PostThreadMessageA
FrameRect
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
CharUpperBuffA
SetActiveWindow
IsIconic

gdi32

GetTextFaceA
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
SetPaletteEntries
ExtFloodFill
LPtoDP
GetSystemPaletteEntries
GetNearestPaletteIndex
EnumFontFamiliesExA
GetPaletteEntries
CreatePalette
RoundRect
OffsetRgn
GetRgnBox
Rectangle
SetDIBColorTable
StretchBlt
SetPixel
RealizePalette
CreateDIBSection
CreateRoundRectRgn
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
CreateCompatibleBitmap
DPtoLP
SetRectRgn
CreateFontIndirectA
GetTextMetricsA
Polyline
Polygon
CreatePolygonRgn
GetTextExtentPoint32A
GetTextColor
GetBkColor
Ellipse
CreateEllipticRgn
CombineRgn
PatBlt
CreateRectRgnIndirect
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutA
TextOutA
MoveToEx
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteObject
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateBitmap
GetDeviceCaps
CopyMetaFileA
DeleteDC
EndDoc
EndPage
BitBlt
StartPage
StartDocA
CreateDCA
CreateCompatibleDC
GetObjectA

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesA
ConfigurePortA
ord202
OpenPrinterA
ClosePrinter
AddPrinterA
EnumPrintersA
AddPrinterDriverA
GetPrinterDriverDirectoryA

advapi32

SystemFunction036
RegQueryValueExA
RegCloseKey
RegEnumKeyExA
RegQueryValueA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegEnumValueA
RegOpenKeyExA

shell32

ShellExecuteA
ShellExecuteExA
SHGetMalloc
DragFinish
DragQueryFileA
SHGetPathFromIDListA
SHAppBarMessage
SHGetFileInfoA
SHGetDesktopFolder
SHBrowseForFolderA
SHGetSpecialFolderLocation

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionA
PathIsUNCA
PathRemoveFileSpecW
PathStripToRootA
StrFormatKBSizeA
PathFindFileNameA

uxtheme

GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetWindowTheme
DrawThemeText
DrawThemeParentBackground
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
IsAppThemed

ole32

OleLockRunning
CoInitializeEx
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoDisconnectObject
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc

oleaut32

SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantChangeType
VariantCopy
VarBstrFromDate
LoadTypeLi
SysAllocString
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysFreeString

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4.8MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4fea70ac7f31b20d572d9641db347f9d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

setupapi

oleacc

imm32

winmm

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 314KB - Virtual size: 314KB

.data Size: 20KB - Virtual size: 44KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 4.8MB - Virtual size: 4.8MB

.reloc Size: 117KB - Virtual size: 117KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 314KB - Virtual size: 314KB

.data
Size: 20KB - Virtual size: 44KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 4.8MB - Virtual size: 4.8MB

.reloc
Size: 117KB - Virtual size: 117KB