799b54f0c23306c979646b6477907c311aecf1336de85e6211b8266edf61247d

Sharing

Copy URL

Twitter E-mail

General

Target

799b54f0c23306c979646b6477907c311aecf1336de85e6211b8266edf61247d
Size

7.0MB
MD5

526104d608a486c4b061144e8acb53d3
SHA1

84a0fa43dfbb23abdfac388094d92557d99ad158
SHA256

799b54f0c23306c979646b6477907c311aecf1336de85e6211b8266edf61247d
SHA512

147f64d8252e9775e215596250d6c2926091115ed88e625a5f1325bd735c8290cc9a6caff144ba9745a752d64f6cab79941f2fd8dcba1573414e85763ad686b5
SSDEEP

196608:5cIsxWMADeSsw2wSQJEi2Z2A16CXEKwC72XB1CQJAI0d:GIsxW9X921QJz2DQ4As2XPPJt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
799b54f0c23306c979646b6477907c311aecf1336de85e6211b8266edf61247d

Files

799b54f0c23306c979646b6477907c311aecf1336de85e6211b8266edf61247d
.exe windows:5 windows x86 arch:x86

88d27ac1bb27cf8c4f728ba865c62af4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\NewSoft\RepairPartner\rel\RepairPartner.pdb

Imports

comctl32

_TrackMouseEvent
ImageList_Create
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Destroy

gdiplus

GdipBitmapUnlockBits
GdipRotateMatrix
GdipScaleMatrix
GdipCreateBitmapFromStream
GdipGetRegionBounds
GdipMeasureCharacterRanges
GdipCloneBitmapAreaI
GdipGetStringFormatFlags
GdipBitmapSetResolution
GdipBitmapLockBits
GdipStringFormatGetGenericTypographic
GdipMeasureString
GdipSetStringFormatMeasurableCharacterRanges
GdipLoadImageFromStream
GdipDrawString
GdipSetPropertyItem
GdipDrawRectangle
GdipDrawLine
GdipDrawImageRectRect
GdipInvertMatrix
GdipSetWorldTransform
GdipTransformMatrixPoints
GdipSetImageAttributesWrapMode
GdipCreateImageAttributes
GdipCreateFontFromLogfontA
GdipFree
GdipCreateFontFromDC
GdipCreateSolidFill
GdipAlloc
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipSetTextRenderingHint
GdipGetGenericFontFamilySansSerif
GdipGetLogFontW
GdipSetPageUnit
GdipCreateFont
GdipSetSmoothingMode
GdipDisposeImage
GdipCloneImage
GdipCreateFontFamilyFromName
GdipSetCompositingQuality
GdipDeleteFontFamily
GdipGetImageHorizontalResolution
GdipCreateHBITMAPFromBitmap
GdipDrawImageRectRectI
GdipSetPathMarker
GdipPathIterNextMarkerPath
GdipSetPenColor
GdipAddPathEllipseI
GdipSetStringFormatLineAlign
GdipGetPathData
GdipCreatePathIter
GdipPathIterRewind
GdipDeletePathIter
GdipTransformPointsI
GdipSetStringFormatTrimming
GdipIsVisibleRectI
GdipCreateFromHWNDICM
GdipCreateFromHWND
GdipAddPathLineI
GdipIsVisiblePathPointI
GdipGetPointCount
GdipSetSolidFillColor
GdipCreatePath2
GdipResetWorldTransform
GdipTranslateWorldTransform
GdiplusStartup
GdiplusShutdown
GdipImageGetFrameDimensionsCount
GdipGetFontHeight
GdipDeleteMatrix
GdipSetPenMode
GdipGetPathWorldBoundsI
GdipClonePath
GdipTranslateMatrix
GdipDrawPath
GdipFillRectangle
GdipFillPath
GdipSetPenMiterLimit
GdipCreateMatrix
GdipTransformPath
GdipCreateLineBrushFromRect
GdipDrawImageI
GdipDeleteBrush
GdipGetImageWidth
GdipCreateBitmapFromGraphics
GdipGetImageHeight
GdipStartPathFigure
GdipClosePathFigure
GdipAddPathLine
GdipSetStringFormatFlags
GdipCreateBitmapFromGdiDib
GdipGetDC
GdipReleaseDC
GdipGetRegionHRgn
GdipCreateStringFormat
GdipWindingModeOutline
GdipAddPathRectangleI
GdipGetPropertyItemSize
GdipCreateRegion
GdipSetClipRectI
GdipSetClipRegion
GdipGetClip
GdipDeleteRegion
GdipDrawRectangleI
GdipDisposeImageAttributes
GdipCreateFromHDC
GdipCloneStringFormat
GdipCloneBrush
GdipFillRectangleI
GdipStringFormatGetGenericDefault
GdipDeleteGraphics
GdipDeleteStringFormat
GdipSetCompositingMode
GdipDeleteFont
GdipDeletePen
GdipCreatePen1
GdipDrawLineI
GdipAddPathPolygon
GdipDeletePath
GdipCreatePath
GdipGetPathWorldBounds
GdipGetPropertyItem
GdipDrawImageRectI
GdipImageSelectActiveFrame
GdipImageGetFrameDimensionsList
GdipCreatePen2
GdipImageGetFrameCount

msimg32

GradientFill

shlwapi

PathAppendW
SHGetValueW
ord219
StrStrW
StrStrIW
StrRStrIW
PathIsRelativeW

urlmon

CoInternetGetSession

kernel32

SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
GetProcessHeap
GetTimeZoneInformation
SetEndOfFile
MoveFileExW
FlushFileBuffers
SetStdHandle
GetFullPathNameA
GetCurrentDirectoryW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetConsoleCP
ReadConsoleW
GetConsoleMode
GetModuleHandleExW
ExitProcess
SetFilePointerEx
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetFileType
GetCurrentDirectoryA
GetCurrentProcess
GetProcAddress
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
QueryPerformanceCounter
MulDiv
HeapCreate
HeapFree
OutputDebugStringA
TerminateProcess
GetEnvironmentVariableA
WaitForSingleObject
GetCurrentThreadId
GetVersionExW
GetLocaleInfoA
CreateToolhelp32Snapshot
CreateEventW
SetEvent
HeapReAlloc
CloseHandle
GetSystemInfo
CreateThread
FindResourceW
HeapAlloc
Module32FirstW
HeapDestroy
GetCurrentProcessId
GlobalMemoryStatusEx
Module32NextW
SetUnhandledExceptionFilter
MultiByteToWideChar
LoadLibraryA
FreeLibrary
QueryPerformanceFrequency
lstrlenW
WriteFile
CreateFileW
InterlockedDecrement
GetLastError
InterlockedIncrement
Sleep
GetTickCount
GetVolumeInformationW
TerminateThread
GetDriveTypeW
SetErrorMode
GetUserDefaultUILanguage
LockResource
LoadResource
GlobalLock
GlobalUnlock
SetConsoleCtrlHandler
LoadLibraryExW
RtlUnwind
InitializeSListHead
SetCurrentDirectoryA
IsDebuggerPresent
IsProcessorFeaturePresent
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
GetCPInfo
GetStringTypeW
LCMapStringW
CompareStringW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
SetLastError
DecodePointer
EncodePointer
GetEnvironmentVariableW
TryEnterCriticalSection
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
GetACP
RaiseException
GetSystemDirectoryW
VirtualQuery
GetCurrentThread
GetModuleHandleA
GetModuleFileNameA
GetFileTime
GetTempFileNameW
DeleteFileW
GetFileAttributesExW
GetFileInformationByHandle
GetTempPathW
GetPrivateProfileIntW
GetShortPathNameW
GetLongPathNameW
GetFullPathNameW
WritePrivateProfileStringW
GetFileSizeEx
ReadFile
CreateDirectoryW
WideCharToMultiByte
CreateFileMappingW
FormatMessageA
GetSystemTimeAsFileTime
VerifyVersionInfoW
CreateProcessW
VerSetConditionMask
LocalFree
GetWindowsDirectoryW
LoadLibraryW
GlobalAlloc
FreeResource
GetLocaleInfoW
GetModuleFileNameW
GetStdHandle
WriteConsoleW
HeapSize
SizeofResource
GetStartupInfoW
CreateEventA
InterlockedExchange
InterlockedCompareExchange
lstrcpynW
FileTimeToDosDateTime
FileTimeToLocalFileTime

user32

CopyImage
MonitorFromRect
DestroyCursor
BeginDeferWindowPos
GetWindowInfo
GetMonitorInfoW
ClientToScreen
EndDeferWindowPos
SetClipboardData
CheckMenuItem
GetDesktopWindow
SetForegroundWindow
AdjustWindowRectEx
DeferWindowPos
PeekMessageW
SetPropW
RemovePropW
GetPropW
SystemParametersInfoW
GetSystemMetrics
SendMessageW
GetFocus
PostMessageW
GetKeyState
IsCharAlphaNumericW
EndPaint
BeginPaint
InvalidateRect
GetClientRect
GetActiveWindow
ValidateRect
GetUpdateRect
FindWindowExW
SetWindowTextW
FillRect
GetMessageW
LoadAcceleratorsW
DispatchMessageW
TranslateAcceleratorW
TranslateMessage
ShowScrollBar
LoadMenuW
MapVirtualKeyW
GetWindow
GetSubMenu
IsWindow
GetKeyboardLayoutList
GetKeyboardLayout
ActivateKeyboardLayout
PostQuitMessage
CharLowerBuffW
IsCharUpperW
EndDialog
SetDlgItemTextW
SendDlgItemMessageW
IsDlgButtonChecked
GetDlgItem
CheckDlgButton
DialogBoxParamW
MessageBoxW
IsIconic
ReleaseCapture
KillTimer
SetCursor
SetCapture
SetFocus
SetTimer
GetCapture
GetScrollPos
GetScrollInfo
GetCursor
LoadImageW
EnableWindow
GetWindowTextW
SetActiveWindow
LoadIconW
DefWindowProcW
SetScrollInfo
ReleaseDC
GetParent
DrawEdge
EnableMenuItem
DrawIconEx
GetClassLongW
AppendMenuW
IsZoomed
RemoveMenu
TrackPopupMenuEx
SetWindowLongW
GetWindowDC
FindWindowW
DestroyMenu
LoadBitmapW
GetForegroundWindow
GetSysColor
SetMenuDefaultItem
TrackMouseEvent
MapWindowPoints
RedrawWindow
OffsetRect
InvalidateRgn
ShowWindow
TrackPopupMenu
RegisterClassExW
SetMenuItemBitmaps
CreatePopupMenu
CreateWindowExW
GetMenuItemCount
HideCaret
SetClassLongW
ShowCaret
WindowFromPoint
CharLowerW
SetWindowPos
IsWindowVisible
InsertMenuItemW
GetWindowRect
OpenClipboard
CloseClipboard
EmptyClipboard
GetMessagePos
MessageBeep
MoveWindow
GetDC
LoadCursorW
DrawTextW
DrawFrameControl
UpdateWindow
ScreenToClient
GetCursorPos
DestroyWindow
CheckMenuRadioItem
GetMenuItemID
SetMenu
CreateMenu
wsprintfA
GetWindowLongW
GetMenuItemInfoW
GetSystemMenu
CallWindowProcW

gdi32

SetGraphicsMode
GetDIBits
GetObjectW
SetDIBits
SetDIBColorTable
GetDIBColorTable
GetDeviceCaps
SetBrushOrgEx
PatBlt
CreatePatternBrush
CreateBitmap
SetROP2
IntersectClipRect
SetWorldTransform
CreateBrushIndirect
CreateFontW
SetLayout
SetStretchBltMode
SelectObject
CreateDIBSection
GetTextExtentPoint32W
SelectClipRgn
ExtTextOutW
GetClipBox
CreateRectRgn
SetViewportOrgEx
ExcludeClipRect
ExtSelectClipRgn
GetObjectA
StretchBlt
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetStockObject
DeleteDC
TextOutW
SetTextColor
SetBkMode
LineTo
CreatePen
Rectangle
MoveToEx
SetBkColor
Ellipse
DeleteObject
CreateSolidBrush
CreateFontIndirectW

comdlg32

GetSaveFileNameW

advapi32

RegSetValueExA
RegCloseKey
RegQueryValueExW
RegEnumKeyW
RegOpenKeyExW
RegOpenKeyExA

shell32

ShellExecuteExW
ShellExecuteW
SHFileOperationW

ole32

CreateStreamOnHGlobal
CoGetMalloc
CoTaskMemFree
CoTaskMemAlloc
ReleaseStgMedium
OleInitialize
OleUninitialize
StringFromGUID2
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
CoUninitialize
CoInitialize
OleRun

oleaut32

SysAllocString
VariantClear
SysStringByteLen
SysFreeString
VariantInit
VariantChangeType
SysAllocStringByteLen
VariantCopy
GetErrorInfo

iphlpapi

GetAdaptersInfo
GetPerAdapterInfo

winhttp

WinHttpReceiveResponse
WinHttpOpen
WinHttpQueryDataAvailable
WinHttpCrackUrl
WinHttpConnect
WinHttpSendRequest
WinHttpCloseHandle
WinHttpOpenRequest
WinHttpReadData
WinHttpQueryHeaders
WinHttpAddRequestHeaders

imm32

ImmGetContext
ImmSetConversionStatus
ImmGetConversionStatus
ImmReleaseContext

Sections

.text
Size: 2.8MB - Virtual size: 2.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data:
Size: 733KB - Virtual size: 733KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 128KB - Virtual size: 182KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 1024B - Virtual size: 952B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1009KB - Virtual size: 1008KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

88d27ac1bb27cf8c4f728ba865c62af4

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

comctl32

gdiplus

msimg32

shlwapi

urlmon

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

iphlpapi

winhttp

imm32

Sections

.text Size: 2.8MB - Virtual size: 2.8MB

.data: Size: 733KB - Virtual size: 733KB

.rdata Size: 2.3MB - Virtual size: 2.3MB

.data Size: 128KB - Virtual size: 182KB

.gfids Size: 1024B - Virtual size: 952B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1009KB - Virtual size: 1008KB

.reloc Size: 94KB - Virtual size: 93KB

.text
Size: 2.8MB - Virtual size: 2.8MB

.data:
Size: 733KB - Virtual size: 733KB

.rdata
Size: 2.3MB - Virtual size: 2.3MB

.data
Size: 128KB - Virtual size: 182KB

.gfids
Size: 1024B - Virtual size: 952B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1009KB - Virtual size: 1008KB

.reloc
Size: 94KB - Virtual size: 93KB