PCFaxTxDial[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

PCFaxTxDial.exe
Size

3.3MB
MD5

791b3f943f3b51c0060cee8925b386c9
SHA1

9b9ea0eb92a223cf69eabfb8523cfee7dcd5167e
SHA256

69a340b6cbe7dcc6d77d16aae008d17b98f93cc6beeef22ba374e3ed2e0e3df0
SHA512

a625bbe7ab57b12bb69b0bc99ff17143a2f68a9b61f9bb9e5207a72bd82fe865f22274f773fc10b99585ee36257967f55f25bdbcf2e5a27b8abb13e08c7460d3
SSDEEP

49152:JzTNxqhw6BAcj+51enAdvfDwthoKtxdvZ7vVkMVlZTut:JzTL6Bra3qRtho+vDtut

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
PCFaxTxDial.exe

Files

PCFaxTxDial.exe
.exe windows:5 windows x86 arch:x86

3c7c1ab6714d1549e81b60364e22f603

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\Mini15_PC-FaxTx_MSI\PC-FaxTx\PCFaxTxDial\Debug\PCFaxTxDial.pdb

Imports

pcfaxtxcom

pfcomOpenWAB
pfcomInitWABEx
pfcomOpenMapiAB
pfcomExitWAB
pfcomGetIllegalMember
pfcomGetAddrData
pfcomGetSelectDialData
pfcomGetGroupData
pfcomGetSelectDialDataNum
pfcomResetAddrBook
pfcomExitAddrBook
pfcomInitAddrBook
pfcomSetSendMode
pfcomLoadAddrBook

kernel32

WideCharToMultiByte
GlobalFree
GlobalReAlloc
GlobalAlloc
GetModuleFileNameA
GetProcAddress
LoadLibraryA
FreeLibrary
GetWindowsDirectoryA
GetPrivateProfileStringA
GetPrivateProfileIntA
WritePrivateProfileStringA
FindClose
CreateDirectoryA
FindFirstFileA
CloseHandle
CreateProcessA
GetCurrentThreadId
MapViewOfFile
CreateFileMappingA
CreateFileA
UnmapViewOfFile
LoadResource
GetLastError
MoveFileExA
CreateMutexA
OpenMutexA
WaitForSingleObject
lstrlenA
ReleaseMutex
MultiByteToWideChar
OutputDebugStringA
GetModuleHandleA
GetTimeFormatA
GetLocalTime
GetFileAttributesA
ExpandEnvironmentStringsA
LocalFree
FormatMessageA
GlobalUnlock
GlobalLock
GlobalSize
CopyFileA
lstrlenW
MulDiv
LockResource
SizeofResource
DeleteFileA
InitializeCriticalSectionAndSpinCount
OpenEventA
FileTimeToLocalFileTime
SetEnvironmentVariableA
CreateFileW
GetCurrentDirectoryW
SetLastError
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GetProcessHeap
GetConsoleMode
GetConsoleCP
CompareStringW
GetDriveTypeW
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
QueryPerformanceCounter
HeapCreate
HeapFree
HeapQueryInformation
HeapSize
HeapReAlloc
HeapAlloc
GetTimeZoneInformation
GetStringTypeW
LCMapStringW
IsValidCodePage
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
IsDebuggerPresent
SetStdHandle
OutputDebugStringW
GetFileType
WriteConsoleW
GetStdHandle
ExitThread
CreateThread
ExitProcess
VirtualQuery
GetSystemInfo
VirtualAlloc
GetStartupInfoW
HeapSetInformation
GetCommandLineA
IsBadReadPtr
HeapValidate
GetSystemTimeAsFileTime
RaiseException
DecodePointer
EncodePointer
RtlUnwind
Sleep
SearchPathA
GetTickCount
GetTempPathA
GetTempFileNameA
GetNumberFormatA
FindResourceExW
GetCurrentDirectoryA
GetFileAttributesExA
GetFileTime
GetFileSizeEx
lstrcpyA
GetSystemDirectoryW
GetACP
GlobalGetAtomNameA
GetOEMCP
GetCPInfo
GlobalFlags
GetProfileIntA
VirtualProtect
FileTimeToSystemTime
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
ReleaseActCtx
CreateActCtxW
GetModuleFileNameW
SetErrorMode
InterlockedIncrement
InterlockedDecrement
GetCurrentProcessId
SetEvent
GetModuleHandleW
InterlockedExchange
lstrcmpA
GetCurrentThread
GetLocaleInfoA
LoadLibraryExA
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
FindNextFileA
GetAtomNameA
lstrcmpiA
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
GetHandleInformation
ResumeThread
SetThreadPriority
CompareStringA
LoadLibraryW
ActivateActCtx
DeactivateActCtx
GetVersionExA
FindResourceA
FreeResource
lstrcmpW
FindResourceW

user32

SetClassLongA
SetCursorPos
GetKeyboardState
GetKeyboardLayout
ToAsciiEx
CreateAcceleratorTableA
DestroyAcceleratorTable
DrawIconEx
GetIconInfo
UnregisterClassA
MessageBeep
CopyAcceleratorTableA
CharNextA
ReuseDDElParam
TranslateAcceleratorA
LoadAcceleratorsA
DestroyIcon
LoadAcceleratorsW
SetLayeredWindowAttributes
EnumDisplayMonitors
CopyImage
SystemParametersInfoA
DestroyMenu
UnpackDDElParam
GetClipboardFormatNameA
RealChildWindowFromPoint
ReleaseCapture
SetRectEmpty
GetAsyncKeyState
EndDialog
CreateDialogIndirectParamA
SetCursor
GetCursorPos
GetMessageA
TranslateMessage
PostQuitMessage
MapVirtualKeyA
GetKeyNameTextA
CharUpperA
LoadMenuW
ModifyMenuA
InsertMenuItemA
GetMenuItemInfoA
GetMenuDefaultItem
SetMenuDefaultItem
EnableMenuItem
CheckMenuItem
DeleteMenu
CreatePopupMenu
CreateMenu
GrayStringA
DrawTextExA
DrawTextA
DrawFocusRect
DrawFrameControl
DrawEdge
DrawStateA
DrawIcon
InvertRect
FrameRect
FillRect
GetSysColorBrush
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
CheckDlgButton
LoadCursorW
LoadCursorA
PostThreadMessageA
EnableWindow
NotifyWinEvent
SetWindowContextHelpId
HideCaret
RegisterClipboardFormatA
OpenClipboard
WindowFromPoint
SetParent
GetLastActivePopup
ShowScrollBar
GetNextDlgTabItem
GetNextDlgGroupItem
SetCapture
GetActiveWindow
KillTimer
SetTimer
EnableScrollBar
RedrawWindow
LockWindowUpdate
ShowOwnedPopups
IsWindowVisible
ValidateRect
InvalidateRgn
InvalidateRect
GetUpdateRect
UpdateWindow
ReleaseDC
GetWindowDC
GetDC
EndPaint
BeginPaint
ClientToScreen
BringWindowToTop
GetWindowRgn
SetWindowRgn
IsZoomed
IsIconic
GetSystemMenu
DrawMenuBar
RegisterWindowMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
LoadImageA
GetDesktopWindow
LoadIconW
LoadIconA
SendDlgItemMessageA
MonitorFromWindow
GetMonitorInfoA
GetClientRect
MapWindowPoints
PeekMessageA
DispatchMessageA
SetActiveWindow
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetWindowRect
GetScrollInfo
SetScrollInfo
GetScrollRange
IsCharLowerA
MapVirtualKeyExA
MonitorFromPoint
UpdateLayeredWindow
OffsetRect
WaitMessage
LoadImageW
SetClipboardData
EmptyClipboard
PtInRect
CopyIcon
IsRectEmpty
CharUpperBuffA
DefFrameProcA
TranslateMDISysAccel
DefMDIChildProcA
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetParent
GetWindow
GetCapture
WinHelpA
TrackPopupMenu
IsClipboardFormatAvailable
GetDoubleClickTime
DestroyCursor
SubtractRect
UnionRect
IntersectRect
InflateRect
SetRect
WaitForInputIdle
PostMessageA
MessageBoxA
GetSystemMetrics
SetWindowLongA
GetWindowLongA
SetWindowTextW
GetWindowTextW
GetWindowTextLengthW
SetForegroundWindow
GetDlgCtrlID
AttachThreadInput
GetWindowThreadProcessId
FindWindowExA
GetForegroundWindow
wsprintfA
LoadMenuA
GetSysColor
GetMenuItemID
InsertMenuA
AppendMenuA
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemCount
IsMenu
RemoveMenu
MapDialogRect
IsWindow
SendMessageA
TabbedTextOutA
GetFocus
SetMenuItemBitmaps
LoadBitmapW
GetMenuCheckMarkDimensions
SetWindowPos
GetMessagePos
GetMessageTime
GetMenu
SetMenu
DefWindowProcA
RemovePropA
CallWindowProcA
GetPropA
UnhookWindowsHookEx
SetPropA
GetClassNameA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
DestroyWindow
GetKeyState
GetWindowTextA
GetWindowTextLengthA
GetDlgItem
GetWindowPlacement
SetWindowPlacement
CloseClipboard

gdi32

CreateCompatibleBitmap
CreatePalette
GetPaletteEntries
SetPaletteEntries
GetNearestPaletteIndex
CreateRectRgn
CreateRectRgnIndirect
CreateEllipticRgn
CreatePolygonRgn
CreateRoundRectRgn
SetRectRgn
CombineRgn
OffsetRgn
GetRgnBox
PtInRegion
RealizePalette
GetBkColor
GetTextColor
GetMapMode
GetViewportOrgEx
GetViewportExtEx
GetWindowOrgEx
GetWindowExtEx
DPtoLP
LPtoDP
FillRgn
FrameRgn
PtVisible
RectVisible
Polyline
Ellipse
Polygon
Rectangle
PatBlt
StretchBlt
GetPixel
SetPixel
ExtFloodFill
TextOutA
GetTextFaceA
GetTextMetricsA
Escape
GetBoundsRect
SetPixelV
GetCurrentObject
SaveDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetLayout
SetLayout
ExtSelectClipRgn
EnumFontFamiliesA
GetTextCharsetInfo
EnumFontFamiliesExA
GetSystemPaletteEntries
CreateDIBSection
SetDIBColorTable
CreateFontIndirectA
GetTextExtentPoint32A
DeleteObject
SelectObject
GetStockObject
DeleteDC
RestoreDC
GetDIBits
StretchDIBits
SetStretchBltMode
CreateDIBitmap
CreateCompatibleDC
BitBlt
CopyMetaFileA
CreateDCA
GetDeviceCaps
ExtTextOutA
CreateBitmap
SetTextColor
SetBkColor
GetObjectA
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

OpenThreadToken
InitializeSecurityDescriptor
AddAccessAllowedAce
InitializeAcl
AllocateAndInitializeSid
RevertToSelf
SetThreadToken
SetFileSecurityA
FreeSid
GetLengthSid
RegCloseKey
RegEnumKeyExA
RegEnumValueA
RegEnumKeyA
RegQueryValueA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
SetSecurityDescriptorDacl

shell32

SHGetFileInfoA
DoEnvironmentSubstA
DragFinish
DragQueryFileA
SHAppBarMessage
SHBrowseForFolderA
ShellExecuteA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetSpecialFolderPathA

comctl32

ImageList_GetIconSize
InitCommonControlsEx

shlwapi

PathFindExtensionA
PathFindFileNameA
PathRemoveFileSpecW
PathStripToRootA
PathIsUNCA

ole32

OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
CoRevokeClassObject
CoFreeUnusedLibraries
OleInitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitialize
StringFromGUID2
CoUninitialize
CoInitializeEx
CoCreateInstance
OleDuplicateData
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
ReleaseStgMedium
OleGetClipboard
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CoRegisterMessageFilter
OleUninitialize
CoTaskMemAlloc
StringFromCLSID

oleaut32

SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocString
OleCreateFontIndirect
VarBstrFromDate
SafeArrayDestroy
SysAllocStringByteLen
SysFreeString
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SysStringLen
VariantCopy

oledlg

ord8

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

gdiplus

GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDrawImageI
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipCreateBitmapFromHBITMAP
GdipAlloc
GdipCloneImage
GdipFree
GdipDisposeImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipDeleteGraphics
GdipCreateFromHDC
GdiplusShutdown
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromStream
GdiplusStartup
GdipCreateBitmapFromStreamICM

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundA

Sections

.text
Size: 2.6MB - Virtual size: 2.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 428KB - Virtual size: 428KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 26KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 238KB - Virtual size: 237KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3c7c1ab6714d1549e81b60364e22f603

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

pcfaxtxcom

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

oleacc

gdiplus

imm32

winmm

Sections

.text Size: 2.6MB - Virtual size: 2.6MB

.rdata Size: 428KB - Virtual size: 428KB

.data Size: 26KB - Virtual size: 59KB

.rsrc Size: 45KB - Virtual size: 45KB

.reloc Size: 238KB - Virtual size: 237KB

.text
Size: 2.6MB - Virtual size: 2.6MB

.rdata
Size: 428KB - Virtual size: 428KB

.data
Size: 26KB - Virtual size: 59KB

.rsrc
Size: 45KB - Virtual size: 45KB

.reloc
Size: 238KB - Virtual size: 237KB