UDisplay[.]exe

Sharing

Copy URL

Twitter E-mail

General

Target

UDisplay.exe
Size

5.0MB
MD5

95646ff7d98ddf540f238b3ffbccff2b
SHA1

358a10e5a103ab9345b1089b25cfaba1608d3526
SHA256

e51626bdd88db36afbaff56f8cac9a61972515850186b34e6420b4853e03d0e8
SHA512

9dbbe3b21c2aa237f3a17e1ce2bb8b970f54ea5d31f432257fb2ed244d76d0e46416ab00bcc06eff4039bb584acf51d36bd656614e3eeffc63ee652492f9b31b
SSDEEP

98304:TVfWNnk8JWgpukTAjEalth5x35xRDAH/EWfO:BcFQoI9t3DAH/ES

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
UDisplay.exe

Files

UDisplay.exe
.exe windows:6 windows x86 arch:x86

3fa3758af684482f3fd88643b79984dc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\CI\PROJECT\20230707-162929\Release\UDisplay.pdb

Imports

setupapi

SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInfo
SetupDiGetDevicePropertyW
SetupDiDestroyDeviceInfoList

hid

HidD_GetHidGuid
HidP_GetCaps
HidD_GetPreparsedData
HidD_GetSerialNumberString
HidD_GetAttributes

d3d11

D3D11CreateDevice

kernel32

GetUserDefaultLCID
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsValidCodePage
FindFirstFileExW
CreateProcessW
GetExitCodeProcess
SetEnvironmentVariableW
GetCurrentDirectoryW
GetFileAttributesExW
SetFilePointerEx
EnumSystemLocalesW
IsValidLocale
LCMapStringW
CompareStringW
HeapValidate
GetConsoleOutputCP
ReadConsoleW
GetFullPathNameW
SetStdHandle
HeapQueryInformation
MoveFileExW
DeleteFileW
GetTimeZoneInformation
FreeLibraryAndExitThread
ExitThread
CreateThread
ExitProcess
PeekNamedPipe
GetFileType
GetFileInformationByHandle
GetDriveTypeW
CreateFileW
GetCommandLineW
GetCommandLineA
VirtualAlloc
GetSystemInfo
RtlUnwind
VirtualQuery
InitializeSListHead
UnhandledExceptionFilter
IsProcessorFeaturePresent
WaitForSingleObjectEx
SwitchToThread
GetModuleHandleExW
SetThreadErrorMode
GetFileAttributesW
FindNextFileW
FindFirstFileW
GetStringTypeW
LCMapStringEx
GetSystemTimeAsFileTime
QueryPerformanceFrequency
QueryPerformanceCounter
SleepConditionVariableSRW
WakeAllConditionVariable
WakeConditionVariable
InitializeConditionVariable
TryAcquireSRWLockExclusive
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
RaiseException
OutputDebugStringW
IsDebuggerPresent
GetTempFileNameA
GetProfileIntA
SearchPathA
GetTickCount64
GetWindowsDirectoryA
GetTempPathA
FindResourceExW
GetCurrentDirectoryA
GetACP
GetStartupInfoW
WaitForSingleObject
Sleep
InitializeCriticalSectionEx
GetLastError
DecodePointer
DeleteCriticalSection
WideCharToMultiByte
SizeofResource
LockResource
VerifyVersionInfoA
LoadResource
FindResourceW
SetEvent
ReleaseMutex
ResetEvent
CreateMutexA
CreateEventA
LeaveCriticalSection
EnterCriticalSection
MultiByteToWideChar
InitializeCriticalSectionAndSpinCount
ResumeThread
TerminateProcess
GetCurrentProcess
SuspendThread
CreateDirectoryA
FindResourceA
GlobalUnlock
FindFirstFileA
FindNextFileA
HeapFree
OutputDebugStringA
HeapSize
HeapReAlloc
HeapAlloc
GetProcessHeap
GetOverlappedResult
CloseHandle
CreateFileA
WriteFile
ReadFile
GetCurrentThreadId
GetLocalTime
LocalFree
GetCurrentProcessId
FormatMessageA
LoadLibraryA
GetProcAddress
SetUnhandledExceptionFilter
VirtualProtect
WriteProcessMemory
GlobalAlloc
GlobalLock
GlobalFree
MulDiv
LoadLibraryW
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetSystemDefaultLangID
GetModuleHandleA
DeleteFileA
GetFileAttributesA
SetFileAttributesA
CreatePipe
GetStdHandle
CreateProcessA
DeviceIoControl
GetSystemTime
AllocConsole
GetCurrentConsoleFont
SetCurrentConsoleFontEx
SetConsoleTitleA
GetStartupInfoA
GetModuleFileNameA
SetEnvironmentVariableA
GetLogicalDriveStringsA
GetDriveTypeA
GetVolumeInformationA
CopyFileA
GetConsoleMode
WriteConsoleW
ReleaseSemaphore
CreateEventW
CreateSemaphoreW
GetModuleHandleW
GetProcessAffinityMask
FreeLibrary
GetCurrentThread
SetThreadPriority
GetThreadPriority
GlobalSize
SetLastError
lstrcmpA
GetModuleFileNameW
LoadLibraryExW
LocalAlloc
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
FindClose
FlushFileBuffers
GetFileSize
GetFullPathNameA
LockFile
SetEndOfFile
SetFilePointer
UnlockFile
DuplicateHandle
lstrcmpiA
EncodePointer
GetSystemDirectoryW
GlobalDeleteAtom
lstrcmpW
GlobalAddAtomA
GlobalFindAtomA
GlobalGetAtomNameA
CompareStringA
GetVersionExA
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalReAlloc
GlobalFlags
FileTimeToLocalFileTime
GetFileAttributesExA
GetFileSizeEx
lstrcpyA
VerSetConditionMask
GetCPInfo
GetOEMCP
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
SetErrorMode
GetFileTime

user32

SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
NotifyWinEvent
SetWindowRgn
DestroyAcceleratorTable
MapVirtualKeyA
GetKeyNameTextA
SetRectEmpty
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
DrawStateA
SetMenuItemInfoA
GetMenuCheckMarkDimensions
IsDialogMessageA
SetWindowTextA
SendDlgItemMessageA
CheckDlgButton
MoveWindow
ShowWindow
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconW
GetTopWindow
GetClassNameA
GetClassLongA
IsZoomed
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
ShowScrollBar
SetMenuDefaultItem
IsRectEmpty
UpdateLayeredWindow
EnableScrollBar
UnionRect
LoadImageW
WaitMessage
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
UnregisterClassA
GetDC
SetMenu
GetMenu
GetCapture
GetFocus
SetFocus
BringWindowToTop
ReleaseCapture
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
CreatePopupMenu
InsertMenuItemA
SetCursor
DestroyIcon
LoadImageA
CopyAcceleratorTableA
UnpackDDElParam
ReuseDDElParam
SetCapture
GetSystemMenu
DeleteMenu
MonitorFromPoint
GetDlgCtrlID
PostQuitMessage
LockWindowUpdate
MessageBeep
ShowOwnedPopups
GetSysColorBrush
RealChildWindowFromPoint
CopyImage
MapDialogRect
SetLayeredWindowAttributes
LoadCursorW
EnumDisplayMonitors
TrackMouseEvent
SetWindowLongA
ReleaseDC
GetCursorInfo
GetIconInfo
DestroyCursor
EnableWindow
SetRect
GetClientRect
InvalidateRect
InflateRect
PtInRect
OffsetRect
GetWindowRect
GetParent
ScreenToClient
GetAsyncKeyState
SetTimer
KillTimer
SendMessageA
IntersectRect
RedrawWindow
FillRect
PostMessageA
GetWindow
LoadCursorA
ClientToScreen
WindowFromPoint
GetSysColor
IsWindowVisible
EnumDisplayDevicesA
EnumDisplaySettingsExA
ChangeDisplaySettingsExA
SetDisplayConfig
DisplayConfigGetDeviceInfo
DisplayConfigSetDeviceInfo
QueryDisplayConfig
GetMenuItemID
ModifyMenuA
GetSubMenu
LoadMenuW
LoadBitmapW
SetMenuItemBitmaps
RemoveMenu
CheckMenuItem
LoadIconA
SetForegroundWindow
GetCursorPos
RegisterHotKey
GetClassInfoA
FindWindowA
EnableMenuItem
UpdateWindow
GetMenuStringA
GetMenuState
GetMenuItemCount
InsertMenuA
AppendMenuA
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetWindowDC
BeginPaint
EndPaint
IsWindowEnabled
MessageBoxA
GetWindowLongA
GetWindowThreadProcessId
GetLastActivePopup
GetMessageA
TranslateMessage
DispatchMessageA
PeekMessageA
GetActiveWindow
GetKeyState
ValidateRect
SetWindowsHookExA
CallNextHookEx
UnhookWindowsHookEx
GetDesktopWindow
CharUpperA
GetSystemMetrics
RegisterWindowMessageA
GetMessagePos
GetMessageTime
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoExA
CreateWindowExA
IsWindow
SetParent
DrawEdge
DrawFrameControl
DrawFocusRect
DrawIconEx
IsClipboardFormatAvailable
GetKeyboardLayout
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
CharUpperBuffA
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SetClassLongA
SetCursorPos
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
PostThreadMessageA
EnumChildWindows
RegisterClipboardFormatA
CopyIcon
FrameRect
GetNextDlgGroupItem
HideCaret
InvertRect
DrawIcon
CreateMenu
GetWindowRgn
GetUpdateRect
SubtractRect
GetDoubleClickTime
GetComboBoxInfo
IsCharLowerA
MapVirtualKeyExA
IsMenu
IsChild
DestroyWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsIconic
GetDlgItem
GetMenuDefaultItem

gdi32

SetPixelV
GetTextFaceA
RoundRect
SetPaletteEntries
ExtFloodFill
GetViewportOrgEx
PtInRegion
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
EnumFontFamiliesExA
SetPixel
OffsetRgn
GetRgnBox
Polyline
Polygon
CreatePolygonRgn
Ellipse
CreateEllipticRgn
GetTextCharsetInfo
EnumFontFamiliesA
CreateDIBitmap
StretchDIBits
GetCharWidthA
DPtoLP
SetRectRgn
PatBlt
CreateFontIndirectA
CombineRgn
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutA
TextOutA
MoveToEx
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CopyMetaFileA
GetTextExtentPoint32A
CreateRoundRectRgn
FrameRgn
FillRgn
CreateRectRgnIndirect
GetBkColor
GetTextColor
GetTextMetricsA
GetPixel
GetDIBColorTable
SetDIBColorTable
CreateFontA
Rectangle
GetDIBits
RealizePalette
SelectPalette
GetStockObject
GetDeviceCaps
CreateDCA
CreateCompatibleBitmap
GetCurrentObject
CreateBitmap
GetBitmapBits
ModifyWorldTransform
SetWorldTransform
SetGraphicsMode
SetBrushOrgEx
StretchBlt
DeleteDC
BitBlt
SetStretchBltMode
SelectObject
CreateCompatibleDC
CreateDIBSection
GetObjectA
DeleteObject

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegGetValueW
RegQueryValueExW
RegQueryInfoKeyW
RegEnumValueW
RegEnumKeyExW
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegEnumValueA
RegEnumKeyExA
RegQueryValueA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExW
RegCloseKey

shell32

SHCreateDirectoryExA
Shell_NotifyIconA
Shell_NotifyIconGetRect
SHGetFileInfoA
DragQueryFileA
DragFinish
SHAppBarMessage
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteA
SHGetSpecialFolderPathA

comctl32

InitCommonControlsEx
_TrackMouseEvent

shlwapi

ord12
PathFileExistsA
UrlUnescapeA
PathFindExtensionA
PathStripToRootA
PathFindFileNameA
StrFormatKBSizeA
PathRemoveFileSpecW
PathIsUNCA

uxtheme

CloseThemeData
GetThemeSysColor
GetWindowTheme
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
DrawThemeText
OpenThemeData
DrawThemeParentBackground
IsAppThemed

ole32

RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
OleLockRunning
CoDisconnectObject
CoInitialize
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CreateStreamOnHGlobal
CoUninitialize
CoTaskMemFree
CoCreateInstance
CoInitializeEx
RevokeDragDrop

oleaut32

VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysAllocStringByteLen
SysFreeString
SysAllocString

gdiplus

GdipSetInterpolationMode
GdipDeleteStringFormat
GdipGetImageHeight
GdipGetImageWidth
GdipLoadImageFromStream
GdiplusStartup
GdipCreateBitmapFromScan0
GdipCreateBitmapFromHBITMAP
GdipCloneImage
GdipAlloc
GdipFree
GdipDisposeImage
GdiplusShutdown
GdipCreateStringFormat
GdipCreateBitmapFromStream
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipDrawImageI
GdipReleaseDC
GdipDrawImageRectI
GdipDeleteGraphics
GdipCreateFromHDC

urlmon

URLDownloadToFileA

dbghelp

MiniDumpWriteDump
MakeSureDirectoryPathExists

wtsapi32

WTSUnRegisterSessionNotification
WTSRegisterSessionNotification

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

ws2_32

setsockopt
bind
listen
inet_addr
socket
accept
closesocket
connect
recv
send
WSAStartup
htons

wininet

HttpEndRequestA
HttpSendRequestExA
HttpSendRequestA
HttpQueryInfoA
HttpOpenRequestA
HttpAddRequestHeadersA
InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetConnectA
InternetCloseHandle
InternetOpenA
InternetGetConnectedState
InternetCrackUrlA
InternetCanonicalizeUrlA

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundA

Sections

.text
Size: 3.5MB - Virtual size: 3.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 730KB - Virtual size: 729KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 20.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 600KB - Virtual size: 600KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 195KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3fa3758af684482f3fd88643b79984dc

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

setupapi

hid

d3d11

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

urlmon

dbghelp

wtsapi32

version

ws2_32

wininet

oleacc

imm32

winmm

Sections

.text Size: 3.5MB - Virtual size: 3.5MB

.rdata Size: 730KB - Virtual size: 729KB

.data Size: 32KB - Virtual size: 20.9MB

.rsrc Size: 600KB - Virtual size: 600KB

.reloc Size: 195KB - Virtual size: 194KB

.text
Size: 3.5MB - Virtual size: 3.5MB

.rdata
Size: 730KB - Virtual size: 729KB

.data
Size: 32KB - Virtual size: 20.9MB

.rsrc
Size: 600KB - Virtual size: 600KB

.reloc
Size: 195KB - Virtual size: 194KB