80e8730b81b7fae6f38146a730a57bce291f1118fdc7587980621e971b79b625

Sharing

Copy URL

Twitter E-mail

General

Target

80e8730b81b7fae6f38146a730a57bce291f1118fdc7587980621e971b79b625
Size

4.3MB
MD5

afa67ce0c4714b0943fcb9830c884f0c
SHA1

ee981b308c81ec87dda41f2f31d556c6386ffa8f
SHA256

80e8730b81b7fae6f38146a730a57bce291f1118fdc7587980621e971b79b625
SHA512

b77d664ef88db74ac91c8e5ddec22ea9a85b7b7f77e52176ca3aef51832948134a3715f5fa48f8d80df5df54313c464135147e11831142448f9ee635fa268e1b
SSDEEP

98304:PhUpqox7d9ZlNtRB7+G5WhKqsnUvazWuFLOAkGkzdnEVomFHKnPD:P2p7lprnUvazVFLOyomFHKnPD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
80e8730b81b7fae6f38146a730a57bce291f1118fdc7587980621e971b79b625

Files

80e8730b81b7fae6f38146a730a57bce291f1118fdc7587980621e971b79b625
.exe windows:6 windows x86 arch:x86

84839305dc10917174f1c78bb407ca84

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\caminspector\Release\CAMInspectorSoft2.pdb

Imports

setupapi

SetupDiGetDeviceInstanceIdW
SetupDiEnumDeviceInfo
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW

kernel32

IsValidCodePage
FindFirstFileExW
ReadConsoleW
SetFilePointerEx
GetConsoleMode
GetConsoleOutputCP
GetTimeZoneInformation
LCMapStringW
GetTimeFormatW
GetDateFormatW
SetStdHandle
HeapQueryInformation
VirtualQuery
GetOEMCP
GetSystemInfo
FreeLibraryAndExitThread
ExitThread
GetCommandLineW
GetCommandLineA
WriteConsoleW
GetStdHandle
PeekNamedPipe
GetFileType
GetFileInformationByHandle
GetDriveTypeW
GetModuleHandleExW
ExitProcess
RtlUnwind
OutputDebugStringW
GetACP
GetCPInfo
GetEnvironmentStringsW
VirtualAlloc
GetStringTypeW
SetEnvironmentVariableW
LoadLibraryA
GetProcAddress
SizeofResource
LockResource
LoadResource
FindResourceW
QueryPerformanceFrequency
GlobalAlloc
GlobalFree
LeaveCriticalSection
EnterCriticalSection
GetLastError
InitializeCriticalSectionEx
MultiByteToWideChar
CloseHandle
ResetEvent
WriteFile
GetOverlappedResult
QueryPerformanceCounter
ReadFile
ResumeThread
CreateEventW
CreateFileW
BuildCommDCBW
SetCommState
GetCommTimeouts
SetCommTimeouts
ClearCommError
WaitForSingleObject
FreeLibrary
FindFirstFileW
LoadLibraryW
FindNextFileW
FindClose
HeapFree
HeapSize
HeapReAlloc
RaiseException
HeapAlloc
DecodePointer
DeleteCriticalSection
GetProcessHeap
DeleteFileW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
WaitForSingleObjectEx
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FindResourceExW
GetWindowsDirectoryW
SetErrorMode
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
VirtualProtect
GetUserDefaultUILanguage
FreeEnvironmentStringsW
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalFlags
SystemTimeToTzSpecificLocalTime
LocalAlloc
FileTimeToSystemTime
GlobalGetAtomNameW
VerifyVersionInfoW
VerSetConditionMask
GetCurrentDirectoryW
GlobalReAlloc
GetThreadLocale
GetStringTypeExW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFileSize
FlushFileBuffers
GetProfileIntW
GetTempPathW
SearchPathW
SystemTimeToFileTime
ReplaceFileW
SetFileTime
GetTempFileNameW
GetFullPathNameW
GetFileTime
GetFileAttributesW
GetDiskFreeSpaceW
GlobalFindAtomW
GetSystemDirectoryW
EncodePointer
SuspendThread
SetEvent
CompareStringW
GlobalAddAtomW
lstrcpyW
GetTickCount
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleW
GetModuleHandleA
GetVersionExW
GetCurrentThreadId
OutputDebugStringA
WideCharToMultiByte
SetLastError
CopyFileW
FormatMessageW
LocalFree
GlobalSize
GetModuleFileNameW
GetCurrentProcessId
MulDiv
GlobalLock
GlobalUnlock
CreateSemaphoreW
CreateThread
ReleaseSemaphore
Sleep
InitializeCriticalSectionAndSpinCount
MoveFileW
GetCurrentThread
SetThreadPriority

user32

ToUnicodeEx
RealChildWindowFromPoint
InvertRect
HideCaret
ModifyMenuW
CharUpperBuffW
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
GetIconInfo
SendDlgItemMessageA
EnumDisplayMonitors
SetLayeredWindowAttributes
DrawFocusRect
DrawFrameControl
DrawEdge
UpdateLayeredWindow
SetParent
DestroyAcceleratorTable
SetClassLongW
GetSysColorBrush
MapVirtualKeyW
GetKeyNameTextW
UnionRect
LockWindowUpdate
GetUpdateRect
CopyImage
DestroyIcon
DrawIconEx
SetMenuDefaultItem
GetMenuDefaultItem
NotifyWinEvent
DeleteMenu
TrackMouseEvent
EnableScrollBar
GetMenuItemInfoW
GetSystemMenu
GetAsyncKeyState
BringWindowToTop
IntersectRect
DestroyCursor
IsRectEmpty
SetWindowRgn
DrawIcon
CharUpperW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
GetTopWindow
GetClassLongW
EqualRect
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
GetScrollRange
GetKeyboardLayout
GetScrollPos
SetScrollPos
ScrollWindow
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
IsCharLowerW
GetMessageTime
GetMessagePos
SetCursor
ShowOwnedPopups
ValidateRect
GetKeyState
GetMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
DestroyMenu
WaitMessage
PostThreadMessageW
MapVirtualKeyExW
GetWindowRgn
GetKeyboardState
UpdateWindow
PeekMessageW
DispatchMessageW
TranslateMessage
CallNextHookEx
SetWindowsHookExW
PtInRect
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
GetClassNameW
DrawStateW
IsDialogMessageW
SetWindowLongW
GetWindowTextLengthW
CreateAcceleratorTableW
CopyAcceleratorTableW
EnumChildWindows
CharNextW
InvalidateRgn
GetNextDlgGroupItem
SetCursorPos
CopyIcon
IsClipboardFormatAvailable
GetDoubleClickTime
GetTabbedTextExtentW
CreateMenu
GetWindowTextW
SetWindowTextW
SubtractRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SetScrollRange
GetComboBoxInfo
PostMessageW
EnableWindow
GetClientRect
InvalidateRect
ScreenToClient
ClientToScreen
KillTimer
GetCapture
SetCapture
WindowFromPoint
IsWindowVisible
SetTimer
ReleaseCapture
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
LoadImageW
GetSysColor
InflateRect
GetParent
ShowScrollBar
SetRectEmpty
LoadMenuW
GetSubMenu
SendMessageW
GetWindowRect
LoadBitmapW
IsChild
GetFocus
FillRect
LoadCursorW
GetDC
AppendMenuW
GetSystemMetrics
GetCursorPos
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
GetDlgCtrlID
OffsetRect
SetRect
CreatePopupMenu
InsertMenuW
FrameRect
UnregisterClassW
GetWindowDC
DefWindowProcW
ReleaseDC
BeginPaint
EndPaint
IsWindowEnabled
MessageBoxW
GetWindowLongW
GetWindowThreadProcessId
GetLastActivePopup
GetMenuStringW
GetMenuState
GetMenuItemID
GetMenuItemCount
RemoveMenu
PostQuitMessage
IsZoomed
RedrawWindow
MessageBeep
SystemParametersInfoW
RegisterClipboardFormatW
SetWindowPos
SetWindowContextHelpId
GetWindow
MapDialogRect
RegisterWindowMessageW
IsWindow
CopyRect
MonitorFromPoint
GetMonitorInfoW
UnhookWindowsHookEx
ShowWindow
MoveWindow
GetDlgItem
SetDlgItemTextW
CheckDlgButton
SetFocus

gdi32

Escape
GetTextColor
GetTextExtentPoint32W
CreateSolidBrush
SetDCPenColor
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
ExcludeClipRect
GetClipBox
GetCurrentPositionEx
GetDeviceCaps
GetObjectType
GetPixel
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextColor
SetTextAlign
StartDocW
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
ExtTextOutW
ScaleViewportExtEx
ScaleWindowExtEx
CopyMetaFileW
CreateDCW
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
CreateFontIndirectW
CreateEllipticRgn
Ellipse
CreateDIBSection
GetViewportOrgEx
PatBlt
Rectangle
CombineRgn
CreateRectRgnIndirect
SetRectRgn
CreateRoundRectRgn
GetDIBits
RealizePalette
StretchBlt
SetDIBColorTable
GetTextMetricsW
CreatePolygonRgn
Polygon
Polyline
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetRgnBox
OffsetRgn
GetROP2
GetBkMode
GetCharWidthW
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetWindowOrgEx
GetTextFaceW
RoundRect
CreatePalette
GetPaletteEntries
ExtFloodFill
SetPaletteEntries
EnumFontFamiliesExW
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetNearestPaletteIndex
GetSystemPaletteEntries
SetPixelV
TextOutW
RectVisible
PtVisible
DeleteObject
CreateFontW
GetObjectW
DeleteDC
SelectObject
CreateCompatibleDC
DPtoLP
GetStockObject
CreateCompatibleBitmap
SetPixel
BitBlt
LPtoDP
GetMapMode
GetWindowExtEx
GetViewportExtEx
OffsetWindowOrgEx
CreateBitmap
GetBkColor

msimg32

AlphaBlend
GradientFill
TransparentBlt

winspool.drv

OpenPrinterW
ClosePrinter
GetJobW
DocumentPropertiesW

advapi32

RegDeleteValueW
CryptGenRandom
CryptAcquireContextW
RegEnumKeyExW
RegEnumValueW
SetFileSecurityW
GetFileSecurityW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
CryptReleaseContext
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegSetValueW
RegCloseKey

shell32

DragAcceptFiles
ShellExecuteW
SHGetFileInfoW
DragQueryFileW
DragFinish
SHAppBarMessage
SHAddToRecentDocs
SHGetMalloc
ExtractIconW
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHGetPathFromIDListW

comctl32

ImageList_AddMasked
InitCommonControlsEx

shlwapi

PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW
PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
StrFormatKBSizeW

uxtheme

GetCurrentThemeName
GetWindowTheme
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
DrawThemeText
GetThemePartSize
GetThemeSysColor

ole32

CoInitializeEx
CoDisconnectObject
CoGetClassObject
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
DoDragDrop
OleGetClipboard
OleLockRunning
RegisterDragDrop
RevokeDragDrop
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
StringFromGUID2
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoRevokeClassObject
CoRegisterClassObject
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
StgCreateDocfileOnILockBytes
CreateStreamOnHGlobal
CoLockObjectExternal

oleaut32

SysAllocString
SysStringLen
SysStringByteLen
SysAllocStringLen
LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysFreeString
VarBstrFromDate
OleCreateFontIndirect
VariantClear
VariantInit
VariantCopy
VariantChangeType

oledlg

OleUIBusyW

gdiplus

GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipBitmapLockBits
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageWidth
GdipGetImageHeight
GdipCreateBitmapFromHBITMAP
GdiplusShutdown
GdipGetImageGraphicsContext
GdipDisposeImage
GdipAlloc
GdipCloneImage
GdiplusStartup
GdipFree

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

wininet

InternetOpenW
HttpQueryInfoW
HttpSendRequestW
HttpOpenRequestW
InternetSetStatusCallbackW
InternetGetLastResponseInfoW
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetConnectW
InternetCloseHandle

winmm

PlaySoundW

Sections

.text
Size: 2.1MB - Virtual size: 2.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 505KB - Virtual size: 505KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 187KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84839305dc10917174f1c78bb407ca84

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

setupapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

wininet

winmm

Sections

.text Size: 2.1MB - Virtual size: 2.1MB

.rdata Size: 505KB - Virtual size: 505KB

.data Size: 48KB - Virtual size: 163KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 187KB - Virtual size: 186KB

.text
Size: 2.1MB - Virtual size: 2.1MB

.rdata
Size: 505KB - Virtual size: 505KB

.data
Size: 48KB - Virtual size: 163KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 187KB - Virtual size: 186KB