9e9c2e3c6ff7e3a78ecca837f42561c22362da821ba5506b17a307cb1afade94

Sharing

Copy URL

Twitter E-mail

General

Target

9e9c2e3c6ff7e3a78ecca837f42561c22362da821ba5506b17a307cb1afade94
Size

7.4MB
MD5

f7a1eb5573e82e6d54da2d3a19f42d2c
SHA1

292bd96bc7e2bf7b26ebc382a26310b042d47980
SHA256

9e9c2e3c6ff7e3a78ecca837f42561c22362da821ba5506b17a307cb1afade94
SHA512

6998479736b12fd120a33faa510fc043e3b5ab5786dd891c33c2cec8042cb0feefba2823ea163fec42c2a2dc218d6c8dc77679e42acb5d5fc0b5fe8ec1f725de
SSDEEP

196608:IFHPAcBw/lSxmidLRVokE2ZEFLOyomFHKnPXFLOyomFHKnP:IFHPFq/ulyFIF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
9e9c2e3c6ff7e3a78ecca837f42561c22362da821ba5506b17a307cb1afade94

Files

9e9c2e3c6ff7e3a78ecca837f42561c22362da821ba5506b17a307cb1afade94
.exe windows:5 windows x86 arch:x86

de787e786d4602d9e019caef280d5c45

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\work\windows程序\HCTLableEditor\Release\HCTLableEditor.pdb

Imports

kernel32

SetErrorMode
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
VirtualProtect
GetCommandLineW
RtlUnwind
IsDebuggerPresent
IsProcessorFeaturePresent
ExitProcess
GetModuleHandleExW
ExitThread
SetStdHandle
GetFileType
GetSystemInfo
VirtualAlloc
VirtualQuery
GetSystemTimeAsFileTime
HeapQueryInformation
GetStdHandle
GetStartupInfoW
GetEnvironmentStringsW
GlobalFlags
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsValidCodePage
GetOEMCP
GetCPInfo
GetTimeZoneInformation
GetDateFormatW
GetTimeFormatW
LCMapStringW
GetStringTypeW
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
OutputDebugStringW
WriteConsoleW
SetEnvironmentVariableA
CreateEventW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
CompareStringW
LocalReAlloc
LocalAlloc
GetTempPathW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
GlobalGetAtomNameW
GlobalReAlloc
FileTimeToSystemTime
SystemTimeToFileTime
ReplaceFileW
SetFileTime
GetTempFileNameW
GetFileTime
GetFileAttributesW
GetDiskFreeSpaceW
GetStringTypeExW
MoveFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFullPathNameW
GetFileSize
FindFirstFileW
FindClose
CompareStringA
GetCurrentThread
lstrcmpA
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleW
GetModuleHandleA
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
SetLastError
GetCurrentDirectoryW
VerifyVersionInfoW
GlobalHandle
VerSetConditionMask
CopyFileW
MulDiv
GlobalSize
GetCurrentProcessId
GetACP
GetLocaleInfoW
lstrcpyW
lstrlenW
DeleteCriticalSection
DecodePointer
EnterCriticalSection
HeapSize
RaiseException
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapFree
HeapAlloc
HeapReAlloc
GetModuleFileNameW
InterlockedDecrement
InterlockedIncrement
EndUpdateResourceW
UpdateResourceW
BeginUpdateResourceW
FindResourceExW
CreateDirectoryW
SetThreadLocale
SetThreadUILanguage
GetTickCount
GlobalFree
FreeResource
DeleteFileW
MultiByteToWideChar
WideCharToMultiByte
GetVersionExW
GetLocalTime
Beep
GetThreadLocale
WaitCommEvent
GetCommTimeouts
SetCommTimeouts
SetupComm
PurgeComm
FlushFileBuffers
SetCommMask
SetCommState
GetCommState
SetCommBreak
GetOverlappedResult
WriteFile
ReadFile
ClearCommError
CreateFileW
LocalFree
lstrcpynW
FormatMessageW
FreeLibrary
GetProcAddress
LoadLibraryW
GlobalAlloc
GlobalUnlock
GlobalLock
FindResourceW
LoadResource
LockResource
SizeofResource
ResumeThread
TerminateThread
Sleep
SetThreadPriority
CreateThread
WaitForMultipleObjects
GetLastError
ResetEvent
QueryPerformanceCounter
QueryPerformanceFrequency
WaitForSingleObject
CloseHandle
SetEvent
FreeEnvironmentStringsW

user32

GetComboBoxInfo
UpdateLayeredWindow
EnumDisplayMonitors
SetLayeredWindowAttributes
RealChildWindowFromPoint
SetClassLongW
UnionRect
GetUpdateRect
ModifyMenuW
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
GetSysColorBrush
DrawFrameControl
DrawEdge
SetParent
LockWindowUpdate
BringWindowToTop
GetDoubleClickTime
CopyImage
LoadImageW
SetMenuDefaultItem
DeleteMenu
GetSystemMenu
IsClipboardFormatAvailable
IsMenu
TrackMouseEvent
DestroyAcceleratorTable
WindowFromPoint
IsIconic
DrawIcon
CharUpperW
GetMessageW
ShowOwnedPopups
WaitMessage
PostThreadMessageW
MonitorFromPoint
SetWindowRgn
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatW
PostQuitMessage
DrawIconEx
DestroyIcon
OffsetRect
IsZoomed
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
MapVirtualKeyW
GetKeyNameTextW
SendDlgItemMessageA
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
LoadMenuW
DrawStateW
NotifyWinEvent
DrawFocusRect
HideCaret
MessageBeep
EnableScrollBar
GetSystemMetrics
GetAsyncKeyState
IsDialogMessageW
SetWindowTextW
CheckDlgButton
MoveWindow
SetMenuItemInfoW
CreateAcceleratorTableW
SetMenuItemBitmaps
CheckMenuItem
FillRect
EndPaint
BeginPaint
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetTopWindow
GetClassNameW
GetClassLongW
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
SetFocus
GetDlgCtrlID
GetDlgItem
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsWindow
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
RemoveMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
GetMenuStringW
GetLastActivePopup
GetWindowThreadProcessId
IsWindowEnabled
KillTimer
ScreenToClient
SetWindowLongW
CreateWindowExW
UnregisterClassW
SetCursor
DestroyCursor
GetWindowRgn
CreateMenu
MapVirtualKeyExW
IsCharLowerW
CharUpperBuffW
FrameRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
CopyIcon
SubtractRect
SetCursorPos
SetRectEmpty
LoadCursorW
GetIconInfo
GetNextDlgGroupItem
InvalidateRgn
CharNextW
EnumChildWindows
ShowWindow
CopyAcceleratorTableW
IsRectEmpty
GetSysColor
GetWindowLongW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
GetMenuCheckMarkDimensions
GetMenuDefaultItem
GetFocus
RedrawWindow
IntersectRect
PtInRect
ClientToScreen
InvertRect
LoadBitmapW
GetWindowDC
UpdateWindow
DispatchMessageW
TranslateMessage
PeekMessageW
InsertMenuW
GetSubMenu
AppendMenuW
CreatePopupMenu
GetWindowRect
SetClipboardData
EmptyClipboard
CloseClipboard
GetClipboardData
OpenClipboard
ShowCaret
SetCaretPos
CreateCaret
GetClientRect
ReleaseCapture
SetCapture
GetKeyState
SetForegroundWindow
EnableMenuItem
InvalidateRect
SetRect
InflateRect
GetParent
PostMessageW
EnableWindow
GetCursorPos
SetTimer
SendMessageW
ReleaseDC
GetDC
MessageBoxW

gdi32

MoveToEx
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateFontIndirectW
CreateRectRgnIndirect
GetTextMetricsW
CombineRgn
GetMapMode
PatBlt
SetRectRgn
CreateRoundRectRgn
CreateEllipticRgn
Ellipse
CreateDIBSection
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
GetTextColor
GetBkColor
CreatePolygonRgn
Polygon
Polyline
EnumFontFamiliesW
CreatePalette
GetPaletteEntries
GetRgnBox
OffsetRgn
RoundRect
GetNearestPaletteIndex
GetSystemPaletteEntries
GetWindowOrgEx
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
ExtFloodFill
SetPaletteEntries
SetPixelV
GetTextFaceW
SetBkMode
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SetTextAlign
SetTextCharacterExtra
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
GetTextCharsetInfo
GetTextExtentPoint32W
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
DeleteObject
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateBitmap
SetTextColor
SetBkColor
GetDeviceCaps
CreateDCW
CopyMetaFileW
DeleteDC
Rectangle
GetStockObject
LPtoDP
DPtoLP
CreateDIBitmap
EnumFontFamiliesExW
SelectObject
CreateFontW
GetDIBits
BitBlt
TextOutW
GetObjectW
CreateCompatibleBitmap
CreateCompatibleDC

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegSetValueExW
RegEnumKeyExW
RegEnumValueW
SetFileSecurityW
GetFileSecurityW
RegQueryValueW
RegEnumKeyW
RegOpenKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueW
RegCloseKey
RegQueryValueExW

shell32

SHAddToRecentDocs
ShellExecuteW
SHGetFileInfoW
DragQueryFileW
DragFinish
SHAppBarMessage
SHGetMalloc
SHGetPathFromIDListW
ShellExecuteExW
ExtractIconW
DragAcceptFiles
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
PathIsDirectoryW
StrFormatKBSizeW

uxtheme

GetCurrentThemeName
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
DrawThemeText
DrawThemeParentBackground
GetThemeSysColor

ole32

OleFlushClipboard
CoRevokeClassObject
CoGetClassObject
CoDisconnectObject
CreateStreamOnHGlobal
CoInitializeEx
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoUninitialize
CoInitialize
CoCreateInstance
OleIsCurrentClipboard
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CoCreateGuid

oleaut32

VariantClear
OleCreateFontIndirect
LoadTypeLi
VarBstrFromDate
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocString
SysAllocStringLen
SysFreeString
VariantInit
VariantChangeType
VarUdateFromDate

oledlg

OleUIBusyW

gdiplus

GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageRectI

setupapi

SetupDiGetClassDevsW
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 443KB - Virtual size: 442KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 53KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5.1MB - Virtual size: 5.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 156KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de787e786d4602d9e019caef280d5c45

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

setupapi

oleacc

imm32

winmm

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rdata Size: 443KB - Virtual size: 442KB

.data Size: 53KB - Virtual size: 83KB

.rsrc Size: 5.1MB - Virtual size: 5.1MB

.reloc Size: 156KB - Virtual size: 156KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rdata
Size: 443KB - Virtual size: 442KB

.data
Size: 53KB - Virtual size: 83KB

.rsrc
Size: 5.1MB - Virtual size: 5.1MB

.reloc
Size: 156KB - Virtual size: 156KB