DpXpc[.]exe | Triage

Sharing

Copy URL

Twitter E-mail

General

Target

DpXpc.exe
Size

2.7MB
MD5

c678bf02b36b6481c9f5ddd002ae13c4
SHA1

2d57b8b1f2d9ffd8af9ea724913361b4bd8311c6
SHA256

67d7c50dfaa905da9aafb46ff9210a9fd3e5714872c562293b0ce90fc36c51b4
SHA512

0e47e3363c7720b6ebcd3371ad5b830e8e6faf2e9546b154d1062b6998c35f1061eb4711efdc516071b0294085649a887c29abdd84b05536696924b999c68b54
SSDEEP

12288:ibezWjDLP93qSSrYyb5lYxl5FBgdBW+PJk0bEA1g5F:vwDT93qSSrPFlkFknk0Vgz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
DpXpc.exe

Files

DpXpc.exe
.exe windows:4 windows x86 arch:x86

51b6f8d46b5813ad9a1d8d0689a8d471

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

crtdll

memset
memcpy
realloc
free
printf
strcpy
strlen
strncpy
cos
sin
malloc
strcat
fread
memcmp
sprintf
abs
pow
longjmp
strtod
calloc
fopen
fseek
fclose
_stricmp
strncmp
_strnicmp
gmtime
memmove
floor
_iob
_setjmp
_isnan
_lseek
_close
_fstat
_open
_read
_write

user32

wsprintfA
SetWindowLongA
SetClassLongA
InvalidateRect
GetWindowLongA
GetSystemMetrics
GetDC
ReleaseDC
SendMessageA
GetAsyncKeyState
wvsprintfA
ShowWindow
SetWindowPos
EnumDisplaySettingsA
ShowCursor
GetWindowRect
OffsetRect
SetRect
CallWindowProcA
GetClientRect
ClientToScreen
GetPropA
SetPropA
TranslateMessage
DispatchMessageA
PeekMessageA
SetWindowTextA
MoveWindow
EnableWindow
ScreenToClient
GetDesktopWindow
BeginPaint
EndPaint
DefWindowProcA
LoadIconA
RegisterClassExA
CreateWindowExA
DestroyIcon
CreateIconFromResourceEx
CreateIconFromResource
GetIconInfo
FillRect
DestroyWindow
GetWindow
GetParent
GetClassNameA
ValidateRect
LoadCursorA
RegisterClassA
GetSysColor
SetActiveWindow
UnregisterClassA
DestroyAcceleratorTable
GetMenu
AdjustWindowRect
GetActiveWindow
GetMessageA
TranslateAcceleratorA
PostMessageA
SetFocus
IsWindowEnabled
IsWindowVisible
GetFocus
IsChild
EnumChildWindows
GetKeyState
CreateAcceleratorTableA
SetCursorPos
LoadImageA
SetCursor
SystemParametersInfoA
SetCapture
GetCursorPos
MapWindowPoints
ReleaseCapture
DrawIconEx

gdi32

StretchBlt
CreatePatternBrush
CreateCompatibleDC
SelectObject
BitBlt
DeleteObject
DeleteDC
GetStockObject
Rectangle
GetDeviceCaps
GetObjectType
SetDIBits
GetObjectA
SetStretchBltMode
SetBrushOrgEx
CreateDCA
CreateCompatibleBitmap
CreateBrushIndirect
CreateSolidBrush
CreatePen
SetTextAlign
SetTextColor
SetPixelV
MoveToEx
LineTo
SelectPalette
RealizePalette
GetDIBits
StretchDIBits
SetBkColor
TextOutA
Ellipse
SetROP2
SetBkMode

winmm

timeGetTime

ole32

CoUninitialize
CoInitialize
CoCreateInstance

comctl32

InitCommonControls

kernel32

GetModuleHandleA
GetCommandLineA
ExitProcess
HeapCreate
LoadLibraryA
GetProcAddress
FreeLibrary
GetTempPathA
HeapDestroy
HeapReAlloc
HeapAlloc
IsBadReadPtr
HeapFree
GetCurrentProcess
WriteProcessMemory
GlobalAlloc
GlobalFree
GlobalLock
GlobalUnlock
GlobalReAlloc
GetModuleFileNameA
VirtualAlloc
VirtualFree
VirtualProtect
GetProcessHeap
CloseHandle
QueryPerformanceFrequency
QueryPerformanceCounter
MultiByteToWideChar
GetTickCount
WaitForSingleObject
Sleep
GetDriveTypeA
FindFirstFileA
FindClose
DeleteFileA
CreateFileA
ReadFile
SetFilePointer
GetFileSize
WriteFile

shell32

ShellExecuteExA

Sections

.text
Size: 203KB - Virtual size: 203KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2.5MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.flat
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

51b6f8d46b5813ad9a1d8d0689a8d471

Headers

File Characteristics

Imports

crtdll

user32

gdi32

winmm

ole32

comctl32

kernel32

shell32

Sections

.text Size: 203KB - Virtual size: 203KB

.data Size: 2.5MB - Virtual size: 2.8MB

.rsrc Size: 2KB - Virtual size: 2KB

.flat Size: 1KB - Virtual size: 1KB

.text
Size: 203KB - Virtual size: 203KB

.data
Size: 2.5MB - Virtual size: 2.8MB

.rsrc
Size: 2KB - Virtual size: 2KB

.flat
Size: 1KB - Virtual size: 1KB