407798e04fc60def97a2cffe1789299ad59d18b7d0a282176605fee5e58dfa3d

Sharing

Copy URL Twitter E-mail

General

Target

407798e04fc60def97a2cffe1789299ad59d18b7d0a282176605fee5e58dfa3d
Size

5.6MB
MD5

e674ffc1e2bdf209834d72c1bc64ea57
SHA1

dc8534f9e4b69b79856d9b97e0f2d79b43f78422
SHA256

407798e04fc60def97a2cffe1789299ad59d18b7d0a282176605fee5e58dfa3d
SHA512

b0a4f18b72511c2717574e8654fe040327b7475815b944bd43aa216d38713ea1d2c2a8419d56789cc8dffa5bd9d97160c07e56912728d36e985fefd131d93502
SSDEEP

98304:6hwUaEp5Mrnh8bAXDeSnDExOd0FLOAkGkzdnEVomFHKnP:N13zeGEa0FLOyomFHKnP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
407798e04fc60def97a2cffe1789299ad59d18b7d0a282176605fee5e58dfa3d

Files

407798e04fc60def97a2cffe1789299ad59d18b7d0a282176605fee5e58dfa3d
.exe windows:6 windows x64 arch:x64

1384c9f138c932e030225f1241c42e9b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\PuyaSVN\repos\A15_MCU_tools\B03_PY_LINK\04_Software\PuyaProgrammerSrc\x64\Release\PuyaProgrammer.pdb

Imports

kernel32

FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
LocalFileTimeToFileTime
SystemTimeToTzSpecificLocalTime
SetErrorMode
FindResourceExW
GetWindowsDirectoryW
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalFlags
WriteConsoleW
GetStringTypeW
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCPInfo
GetOEMCP
IsValidCodePage
SearchPathW
FindFirstFileExW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
GetTimeZoneInformation
LCMapStringW
GetTimeFormatW
GetDateFormatW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
ExitProcess
GetStdHandle
HeapQueryInformation
GetCommandLineW
GetCommandLineA
GetFileType
SetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
FreeLibraryAndExitThread
ExitThread
CreateThread
RtlUnwind
RtlPcToFileHeader
RtlUnwindEx
RaiseException
OutputDebugStringW
GetTempPathW
GetProfileIntW
VirtualProtect
FindNextFileW
LocalReAlloc
LocalAlloc
GlobalHandle
ReplaceFileW
SetFileTime
GetTempFileNameW
GetFileTime
GetDiskFreeSpaceW
GetTickCount64
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
lstrcmpA
GetVersionExW
GetCurrentThread
SystemTimeToFileTime
FileTimeToSystemTime
GetThreadLocale
GetStringTypeExW
MoveFileW
lstrcmpiW
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFullPathNameW
FindFirstFileW
FindClose
DeleteFileW
VerifyVersionInfoW
GetCurrentDirectoryW
lstrcpyW
GlobalReAlloc
InitializeCriticalSectionAndSpinCount
GetFileSize
GetFileAttributesW
ResumeThread
SuspendThread
GlobalGetAtomNameW
CompareStringW
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetModuleHandleExW
GetModuleHandleW
GetModuleFileNameW
GetSystemDirectoryW
EncodePointer
OutputDebugStringA
MultiByteToWideChar
CopyFileW
FormatMessageW
MulDiv
GetUserDefaultUILanguage
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
SetLastError
FreeLibrary
GetProcAddress
CreateFileA
DeviceIoControl
TlsFree
TlsAlloc
InitializeConditionVariable
WakeAllConditionVariable
TlsSetValue
TryEnterCriticalSection
SleepConditionVariableCS
CreateIoCompletionPort
QueryPerformanceCounter
FormatMessageA
GetCurrentProcessId
VerSetConditionMask
CancelIoEx
QueryPerformanceFrequency
GetVersionExA
LoadLibraryA
GetSystemDirectoryA
PostQueuedCompletionStatus
ReleaseMutex
CreateMutexA
GetQueuedCompletionStatus
GetCurrentProcess
VerifyVersionInfoA
GetSystemTimeAsFileTime
CancelWaitableTimer
WaitForMultipleObjects
CreateWaitableTimerW
SetWaitableTimer
TlsGetValue
SleepEx
GetCurrentThreadId
lstrcpynW
WideCharToMultiByte
WaitCommEvent
SetCommTimeouts
SetCommState
SetCommMask
GetCommTimeouts
GetCommState
GetCommModemStatus
SetupComm
ClearCommBreak
TerminateThread
SetThreadPriority
Sleep
CreateEventW
ResetEvent
SetEvent
InitializeCriticalSection
CloseHandle
WriteFile
FlushFileBuffers
CreateFileW
PurgeComm
ClearCommError
GetTickCount
WaitForSingleObject
GetOverlappedResult
ReadFile
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
DecodePointer
FindResourceW
SizeofResource
LockResource
GetACP
LoadResource

user32

RealChildWindowFromPoint
MapVirtualKeyW
GetKeyNameTextW
DrawIcon
SendDlgItemMessageA
CopyIcon
SetCursorPos
WaitMessage
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatW
ShowOwnedPopups
PostQuitMessage
InvertRect
HideCaret
EnumDisplayMonitors
SetLayeredWindowAttributes
FrameRect
GetUpdateRect
SetClassLongPtrW
SetRect
UnionRect
EnableScrollBar
UpdateLayeredWindow
CharUpperBuffW
DestroyAcceleratorTable
MonitorFromPoint
SystemParametersInfoW
ModifyMenuW
SetParent
LockWindowUpdate
GetMenuItemInfoW
GetIconInfo
NotifyWinEvent
LoadCursorW
WindowFromPoint
MessageBeep
DeleteMenu
GetSystemMenu
KillTimer
SetCapture
GetAsyncKeyState
CharUpperW
IsZoomed
TrackMouseEvent
DrawIconEx
DrawFocusRect
GetSysColorBrush
SetWindowRgn
DrawFrameControl
CopyImage
IsRectEmpty
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
TranslateMessage
GetMessageW
GetMenuDefaultItem
UnpackDDElParam
DestroyIcon
OffsetRect
IntersectRect
SetCursor
InsertMenuItemW
DestroyMenu
CreatePopupMenu
TranslateAcceleratorW
LoadAcceleratorsW
ReleaseCapture
BringWindowToTop
DrawStateW
GetCursorPos
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
SetDlgItemTextW
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
SendMessageW
EnableWindow
SetTimer
GetSystemMetrics
InvalidateRect
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongPtrW
SetWindowLongPtrW
GetWindowLongPtrW
SetWindowLongW
PtInRect
EqualRect
SetMenuDefaultItem
GetDoubleClickTime
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
CreateAcceleratorTableW
CopyAcceleratorTableW
GetComboBoxInfo
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SubtractRect
IsClipboardFormatAvailable
CopyRect
MapWindowPoints
GetNextDlgGroupItem
DestroyCursor
EnumChildWindows
CharNextW
InvalidateRgn
ReuseDDElParam
RedrawWindow
LoadImageW
LoadMenuW
GetSubMenu
SetRectEmpty
GetParent
UnregisterClassW
IsIconic
GetClientRect
wsprintfW
PostMessageW
PostThreadMessageW
IsWindow
UpdateWindow
ClientToScreen
DrawEdge
InflateRect
GetMenuStringW
GetMenuState
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
DrawTextW
DrawTextExW
GetScrollRange
GrayStringW
TabbedTextOutW
GetDC
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
ScreenToClient
GetSysColor
FillRect
SetFocus
SetScrollPos
GetScrollPos
GetWindowTextW
GetWindowTextLengthW
GetWindowLongW
GetWindow
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
RegisterWindowMessageW
MapVirtualKeyExW
CreateMenu
GetWindowRgn
GetTabbedTextExtentW
IsCharLowerW
DispatchMessageW
PeekMessageW
GetMessagePos
GetMessageTime
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
IsMenu
IsChild
DestroyWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetDlgItem
GetDlgCtrlID
GetKeyState
GetCapture
GetMenu
SetMenu
TrackPopupMenu
SetActiveWindow
GetForegroundWindow
SetForegroundWindow
ValidateRect
ScrollWindow
MessageBoxW
AdjustWindowRectEx
GetWindowRect
RemovePropW
GetPropW
SetPropW
ShowScrollBar
SetScrollRange

gdi32

SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
GetDIBits
PatBlt
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
CreateRectRgnIndirect
Ellipse
GetBkColor
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
GetTextMetricsW
Rectangle
RoundRect
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetMapMode
SetRectRgn
DPtoLP
LPtoDP
EndDoc
EndPage
AbortDoc
SetAbortProc
GetCharWidthW
GetRgnBox
OffsetRgn
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
EnumFontFamiliesExW
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetNearestPaletteIndex
GetSystemPaletteEntries
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextFaceW
SetPixelV
SetTextColor
SetStretchBltMode
TextOutW
MoveToEx
StartDocW
StartPage
CreatePen
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
SelectObject
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetCurrentPositionEx
GetClipBox
ExcludeClipRect
Escape
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
GetTextExtentPoint32W
DeleteDC
CreateFontIndirectW
DeleteObject
GetObjectW
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
ExtTextOutW
CopyMetaFileW
CreateDCW
GetDeviceCaps
SetTextAlign
CreateBitmap
CreateHatchBrush

msimg32

TransparentBlt
AlphaBlend

winspool.drv

GetJobW
ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegCreateKeyExW
RegSetValueW
RegEnumValueW
RegEnumKeyExW
SetFileSecurityW
GetFileSecurityW
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW

shell32

DragAcceptFiles
DragQueryFileW
DragFinish
SHAppBarMessage
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
ExtractIconW
SHAddToRecentDocs
SHGetDesktopFolder
ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

PathStripToRootW
PathFindExtensionW
PathFileExistsW
PathRemoveExtensionW
PathRemoveFileSpecW
StrFormatKBSizeW
PathFindFileNameW
PathIsUNCW

uxtheme

GetThemeSysColor
DrawThemeText
GetThemePartSize
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeParentBackground
GetWindowTheme
IsThemeBackgroundPartiallyTransparent

ole32

OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
StgCreateDocfileOnILockBytes
CreateStreamOnHGlobal
CoRevokeClassObject
CoGetClassObject
CoInitializeEx
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
OleLockRunning
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CoDisconnectObject
CLSIDFromProgID
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitialize
CoCreateGuid
CoUninitialize
CLSIDFromString
CoCreateInstance
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CoRegisterMessageFilter

oleaut32

VariantInit
VariantChangeType
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysAllocStringLen
VariantCopy
VarBstrFromDate
LoadTypeLi
OleCreateFontIndirect
SysFreeString
SysAllocString
VariantClear

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipDrawImageRectI
GdipGetImageHeight
GdiplusShutdown
GdipAlloc
GdipFree
GdiplusStartup
GdipCloneImage
GdipDisposeImage
GdipGetImageGraphicsContext
GdipGetImageWidth
GdipGetImagePixelFormat

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiGetDeviceRegistryPropertyW
SetupDiEnumDeviceInfo

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 682KB - Virtual size: 682KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1384c9f138c932e030225f1241c42e9b

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

setupapi

oleacc

imm32

winmm

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 682KB - Virtual size: 682KB

.data Size: 35KB - Virtual size: 73KB

.pdata Size: 102KB - Virtual size: 102KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 2.4MB - Virtual size: 2.4MB

.reloc Size: 68KB - Virtual size: 68KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 682KB - Virtual size: 682KB

.data
Size: 35KB - Virtual size: 73KB

.pdata
Size: 102KB - Virtual size: 102KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

.reloc
Size: 68KB - Virtual size: 68KB