653d27b287633c7d1a591b362b18ad2f86435bf0e28e972885cd80f857160a05

Sharing

Copy URL Twitter E-mail

General

Target

653d27b287633c7d1a591b362b18ad2f86435bf0e28e972885cd80f857160a05
Size

3.4MB
MD5

c6c6352e8479e5da6b4b72a5fe48e063
SHA1

f7ee47009c4980bfbd99366cbba342ef2f8686ca
SHA256

653d27b287633c7d1a591b362b18ad2f86435bf0e28e972885cd80f857160a05
SHA512

b9272844fdf9e848672a7212068b4bf1fa0b3010cde8ea772b3f29368ef59eebfb0b9b7ab599cb46c33b23b9825dc01c9ba54bc1b2ce5b1ac18f6e66bfd8d301
SSDEEP

98304:Hn1dzeVZNuim2J2gh6SXM0l7lHwBiCWCPobQYBcYmQxrn4jkzLCK83tID:VdUHTflwQCWCPj74EDW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
653d27b287633c7d1a591b362b18ad2f86435bf0e28e972885cd80f857160a05

Files

653d27b287633c7d1a591b362b18ad2f86435bf0e28e972885cd80f857160a05
.exe windows:5 windows x86 arch:x86

41d26e90bc054f2a94914d668ee6fa7c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\P68\OutFactoryTools\Release\OutFactoryTools.pdb

Imports

ws2_32

WSAStartup
connect
inet_addr
gethostbyname
ioctlsocket
htons
recv
socket
send
closesocket

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiChangeState
SetupDiSetClassInstallParamsW
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInfo

winmm

PlaySoundW

kernel32

GetUserDefaultUILanguage
GlobalDeleteAtom
lstrcmpA
GetPrivateProfileIntW
WritePrivateProfileStringW
GetPrivateProfileStringW
GlobalAddAtomW
FreeResource
ResumeThread
lstrcpyW
MulDiv
LocalFree
FormatMessageW
GlobalSize
CreateActCtxW
LoadLibraryExW
CompareStringW
GlobalFindAtomW
InitializeCriticalSection
GlobalFlags
GlobalGetAtomNameW
lstrlenA
GetThreadLocale
FileTimeToSystemTime
GetSystemDirectoryW
LocalAlloc
GlobalReAlloc
GlobalHandle
LocalReAlloc
lstrcmpiW
LockFile
UnlockFile
DuplicateHandle
GetVolumeInformationW
GetFullPathNameW
SetErrorMode
GetTempFileNameW
GetFileAttributesExW
FileTimeToLocalFileTime
GetFileAttributesW
GetFileSizeEx
GetWindowsDirectoryW
GetNumberFormatW
GetProfileIntW
SearchPathW
VirtualProtect
FindResourceExW
lstrlenW
GetProcessHeap
SetEndOfFile
HeapReAlloc
IsProcessorFeaturePresent
SetStdHandle
WriteConsoleW
GetStringTypeW
RaiseException
HeapSize
GetLocaleInfoW
InterlockedExchange
RtlUnwind
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetCurrentProcessId
QueryPerformanceCounter
HeapCreate
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetFileType
SetHandleCount
ConvertDefaultLocale
FreeEnvironmentStringsW
GetStdHandle
SetUnhandledExceptionFilter
EncodePointer
DecodePointer
ExitProcess
GetSystemTimeAsFileTime
HeapAlloc
HeapFree
HeapSetInformation
GetCommandLineW
LockResource
SizeofResource
LoadResource
FindResourceW
DeviceIoControl
GetDriveTypeA
WaitForMultipleObjects
GetFileTime
SetFilePointer
CreateFileA
Sleep
GetTickCount
CreateThread
DeleteCriticalSection
GetThreadPriority
CreateSemaphoreW
EnterCriticalSection
ReleaseSemaphore
SetThreadPriority
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
TerminateThread
GetCurrentThread
InterlockedDecrement
InterlockedIncrement
MultiByteToWideChar
WideCharToMultiByte
CreateEventW
ResetEvent
GetOverlappedResult
WriteFile
CreatePipe
GetSystemInfo
GetStartupInfoW
ReadFile
GetExitCodeProcess
GetVersionExW
WaitForSingleObject
CreateProcessW
PeekNamedPipe
DeleteFileW
FindNextFileW
RemoveDirectoryW
FindClose
GlobalFree
GetCurrentDirectoryW
GetTempPathW
GlobalUnlock
GetModuleFileNameW
CopyFileW
GlobalAlloc
GetModuleHandleW
GlobalLock
CreateDirectoryW
FindFirstFileW
CloseHandle
GetLastError
CreateFileW
GetFileSize
SetCurrentDirectoryW
GetProcAddress
LoadLibraryW
FreeLibrary
GetLocalTime
GetSystemDefaultUILanguage
ActivateActCtx
DeactivateActCtx
GetEnvironmentStringsW
lstrcmpW
ExitThread
HeapQueryInformation
VirtualAlloc
VirtualQuery
GetTimeZoneInformation
ReleaseActCtx
SetEnvironmentVariableA

user32

LoadImageW
InsertMenuItemW
TranslateAcceleratorW
LockWindowUpdate
BringWindowToTop
SetCursorPos
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SetClassLongW
DestroyAcceleratorTable
SetParent
CopyImage
UnregisterClassW
GetMenuDefaultItem
SetMenuDefaultItem
GetMenuItemInfoW
CreatePopupMenu
IsMenu
DestroyMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsZoomed
GetAsyncKeyState
NotifyWinEvent
SetWindowRgn
GetSystemMenu
LoadMenuW
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
SetRect
IsRectEmpty
CopyAcceleratorTableW
OffsetRect
CharNextW
CharUpperW
DestroyIcon
WaitMessage
ReleaseCapture
WindowFromPoint
SetCapture
KillTimer
SetTimer
SetLayeredWindowAttributes
EnumDisplayMonitors
SystemParametersInfoW
SetRectEmpty
DeleteMenu
LoadCursorW
GetSysColorBrush
RealChildWindowFromPoint
IntersectRect
InflateRect
MoveWindow
IsDialogMessageW
SetDlgItemTextW
CheckDlgButton
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MonitorFromWindow
MapWindowPoints
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CopyIcon
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
SetWindowLongW
UnhookWindowsHookEx
GetWindowRect
PtInRect
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
ScreenToClient
GetWindowTextLengthW
GetScrollPos
SetScrollPos
GetClassNameW
UpdateWindow
FillRect
DrawStateW
MapVirtualKeyW
GetKeyNameTextW
ReleaseDC
GetDC
CopyRect
SetFocus
GetMenuStringW
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetNextDlgTabItem
EndDialog
RegisterWindowMessageW
SetWindowsHookExW
CallNextHookEx
GetMessageW
TranslateMessage
DispatchMessageW
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
ShowOwnedPopups
SetCursor
PostQuitMessage
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetWindowRgn
DestroyCursor
SubtractRect
MapVirtualKeyExW
IsCharLowerW
GetDoubleClickTime
GetUpdateRect
IsClipboardFormatAvailable
CreateMenu
LoadBitmapW
GetFocus
GetParent
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
DrawTextW
TabbedTextOutW
DrawTextExW
InvalidateRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
PostThreadMessageW
ScrollWindow
CharUpperBuffW
RedrawWindow
GrayStringW
GetSysColor
IsWindow
IsIconic
DrawIcon
GetClientRect
LoadIconW
GetSystemMetrics
EnableWindow
PostMessageW
EnumWindows
GetWindowTextW
GetDlgItem
ShowWindow
RegisterDeviceNotificationW
MessageBoxW
CloseClipboard
EmptyClipboard
OpenClipboard
SendMessageW
SetClipboardData
SetWindowTextW
FrameRect
GetIconInfo
HideCaret
InvertRect
RegisterClipboardFormatW
UnpackDDElParam
AdjustWindowRectEx
ReuseDDElParam
GetMonitorInfoW

gdi32

CreatePatternBrush
SelectPalette
GetObjectType
CreatePen
CreateHatchBrush
CreateFontIndirectW
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
CreateDIBitmap
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
GetBkColor
GetTextColor
GetRgnBox
GetPixel
GetTextExtentPoint32W
CreateRoundRectRgn
CreateDIBSection
CreatePolygonRgn
CreateEllipticRgn
Polyline
Ellipse
Polygon
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
OffsetRgn
ExtSelectClipRgn
StretchBlt
SetPixel
Rectangle
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetTextFaceW
SetPixelV
GetWindowExtEx
GetViewportExtEx
RealizePalette
DeleteDC
SelectClipRgn
SetLayout
GetStockObject
GetObjectW
CreateSolidBrush
DeleteObject
PatBlt
CreateRectRgnIndirect
CreateDCW
CopyMetaFileW
GetDeviceCaps
CreateBitmap
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
ExtTextOutW
PtVisible
CreateRectRgn
Escape
RectVisible
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
SetDIBColorTable
TextOutW
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC

msimg32

TransparentBlt
AlphaBlend

comdlg32

GetFileTitleW

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegEnumKeyW
RegEnumValueW
RegOpenKeyExW
RegEnumKeyExW
RegQueryValueW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegQueryValueExW
RegCloseKey

shell32

SHGetFileInfoW
SHGetPathFromIDListW
ShellExecuteExW
ShellExecuteW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHAppBarMessage
DragQueryFileW
DragFinish
SHBrowseForFolderW
SHGetMalloc

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathRemoveFileSpecW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoInitialize
CoInitializeEx
CoCreateInstance
CoUninitialize
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
CoCreateGuid
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleGetClipboard
CoRegisterMessageFilter
CoRevokeClassObject
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CreateStreamOnHGlobal
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard

oleaut32

SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysAllocString
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipGetImageGraphicsContext
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipCloneImage
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdiplusShutdown
GdiplusStartup
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageI

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

Sections

.text
Size: 1.3MB - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 312KB - Virtual size: 350KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 174KB - Virtual size: 173KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

41d26e90bc054f2a94914d668ee6fa7c

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

ws2_32

setupapi

winmm

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

gdiplus

oleacc

imm32

Sections

.text Size: 1.3MB - Virtual size: 1.3MB

.rdata Size: 1.6MB - Virtual size: 1.6MB

.data Size: 312KB - Virtual size: 350KB

.rsrc Size: 17KB - Virtual size: 17KB

.reloc Size: 174KB - Virtual size: 173KB

.text
Size: 1.3MB - Virtual size: 1.3MB

.rdata
Size: 1.6MB - Virtual size: 1.6MB

.data
Size: 312KB - Virtual size: 350KB

.rsrc
Size: 17KB - Virtual size: 17KB

.reloc
Size: 174KB - Virtual size: 173KB