0b4e45d7cb5663dc1249a6620c3272d78605853e7ee351fc3408dac0f2abee46

Sharing

Copy URL Twitter E-mail

General

Target

0b4e45d7cb5663dc1249a6620c3272d78605853e7ee351fc3408dac0f2abee46
Size

2.1MB
MD5

53d5608f5993c4bb10c8d79f7ee201ce
SHA1

6906a9606fa0d06c77170e459e5bfe4800906364
SHA256

0b4e45d7cb5663dc1249a6620c3272d78605853e7ee351fc3408dac0f2abee46
SHA512

f13eb6c8b2a274b081cc89fc779318e615587e20bab10bef7d3713621afdc55e82fb1e10dcf22689b6c7fff6a9c6f32f690ab87dadaf6d2c045d11cc5e5eb931
SSDEEP

49152:Ln4XAAfNr0AwYM48MXtMViNnqqUwB2pkcBimTsWZ5NqU02t:z4XAA1AA+484tMViNnqfw8dBi8sWZ5N

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0b4e45d7cb5663dc1249a6620c3272d78605853e7ee351fc3408dac0f2abee46

Files

0b4e45d7cb5663dc1249a6620c3272d78605853e7ee351fc3408dac0f2abee46
.exe windows:5 windows x86 arch:x86

53ef8b3ce4041f8d640ae3a822616183

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\工作目录\Focus\测试工具\JSPRINT_ER3_NoXinye_中性标准\Release\POS Printer Test.pdb

Imports

kernel32

GetOEMCP
IsValidCodePage
FindNextFileW
FindFirstFileExW
SetFilePointerEx
ReadConsoleW
GetTimeZoneInformation
LCMapStringW
GetTimeFormatW
GetDateFormatW
GetStringTypeW
GetConsoleMode
GetConsoleCP
GetACP
GetCPInfo
GetStdHandle
SetStdHandle
QueryPerformanceFrequency
HeapQueryInformation
GetCommandLineW
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
PeekNamedPipe
GetFileType
GetDriveTypeW
VirtualQuery
VirtualAlloc
GetSystemInfo
RtlUnwind
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
ExitProcess
lstrlenW
Sleep
CloseHandle
WideCharToMultiByte
LockResource
FreeLibrary
GetProcAddress
LoadResource
SizeofResource
LoadLibraryW
GetModuleFileNameW
FindResourceW
GetPrivateProfileStringW
WritePrivateProfileStringW
MultiByteToWideChar
WriteFile
ReadFile
GetCommState
GetCommTimeouts
PurgeComm
SetCommState
SetCommTimeouts
CreateFileW
InterlockedExchange
GetLastError
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
TerminateThread
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
CreateEventW
GetCurrentDirectoryW
WaitForSingleObject
OutputDebugStringA
GlobalSize
GetPrivateProfileIntW
DecodePointer
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
RaiseException
GetFileAttributesW
OutputDebugStringW
CreateThread
SetLastError
LocalFree
MulDiv
FormatMessageW
CopyFileW
GetCurrentProcessId
EncodePointer
GetCurrentThreadId
GetSystemDirectoryW
FreeResource
GetModuleHandleA
GetModuleHandleW
LoadLibraryExW
GlobalDeleteAtom
lstrcmpW
LoadLibraryA
GlobalAddAtomW
GlobalFindAtomW
DeleteFileW
FindClose
FindFirstFileW
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetVolumeInformationW
LockFile
SetEndOfFile
SetFilePointer
UnlockFile
DuplicateHandle
GetCurrentProcess
lstrcmpiW
GetThreadLocale
GetVersionExW
SetEvent
SetThreadPriority
SuspendThread
ResumeThread
GetCurrentThread
lstrcmpA
CompareStringA
lstrcpyW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileAttributesExW
GetFileSizeEx
GetFileTime
SystemTimeToTzSpecificLocalTime
InitializeCriticalSection
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GlobalGetAtomNameW
GlobalFlags
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
VerSetConditionMask
VerifyVersionInfoW
SetErrorMode
GetWindowsDirectoryW
FindResourceExW
SearchPathW
GetTickCount
GetProfileIntW
GetTempFileNameW
GetTempPathW
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW

user32

GetAsyncKeyState
CopyImage
DestroyIcon
TrackMouseEvent
RealChildWindowFromPoint
GetSysColorBrush
MapVirtualKeyW
GetKeyNameTextW
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
TranslateMessage
GetMessageW
CharUpperW
GetCursorPos
LoadMenuW
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
SetWindowsHookExW
GetTopWindow
GetClassNameW
GetClassLongW
PtInRect
EqualRect
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
IsWindowVisible
IsZoomed
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
CloseClipboard
EnableMenuItem
HideCaret
SetRectEmpty
SendDlgItemMessageA
SetClipboardData
EmptyClipboard
DrawEdge
GetScrollPos
SetScrollPos
SetCursor
LoadCursorW
SetTimer
KillTimer
TranslateAcceleratorW
GetSystemMenu
AppendMenuW
GetDesktopWindow
IntersectRect
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
UnhookWindowsHookEx
GetLastActivePopup
GetWindowThreadProcessId
MessageBoxW
IsDialogMessageW
GetWindow
SetCapture
ReleaseCapture
DeleteMenu
MessageBeep
WindowFromPoint
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetMenuDefaultItem
IsRectEmpty
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
SetLayeredWindowAttributes
EnumDisplayMonitors
GetParent
SetWindowLongW
GetWindowLongW
IsClipboardFormatAvailable
WaitMessage
CharNextW
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
EndDeferWindowPos
GetIconInfo
GetDC
ModifyMenuW
UnregisterDeviceNotification
OffsetRect
LoadBitmapW
DrawIconEx
wsprintfW
LoadAcceleratorsW
FindWindowW
UpdateWindow
UnregisterClassW
RegisterDeviceNotificationW
DrawStateW
SetWindowRgn
FillRect
GetWindowTextW
DrawFocusRect
SetRect
CopyRect
InflateRect
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
RemoveMenu
IsWindow
ShowWindow
MoveWindow
SetWindowPos
GetDlgItem
SetDlgItemTextW
CheckDlgButton
GetDlgCtrlID
SetFocus
GetFocus
DrawFrameControl
BringWindowToTop
SetCursorPos
CopyIcon
InvertRect
SetClassLongW
SetParent
CheckMenuItem
OpenClipboard
IsWindowEnabled
SetWindowTextW
GetWindowTextLengthW
FrameRect
RegisterClipboardFormatW
CharUpperBuffW
LockWindowUpdate
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
SendMessageW
IsIconic
EnableWindow
GetSystemMetrics
DrawIcon
InvalidateRect
GetClientRect
GetWindowRect
LoadIconW
LoadImageW
ReleaseDC
GetWindowRgn
SubtractRect
CreateMenu
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
DestroyCursor
GetUpdateRect
GetDoubleClickTime
MapVirtualKeyExW
IsCharLowerW
GetComboBoxInfo
PostThreadMessageW
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
DestroyAcceleratorTable
SetMenuItemBitmaps
CreateAcceleratorTableW

gdi32

GetTextFaceW
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
SetPaletteEntries
ExtFloodFill
Rectangle
OffsetRgn
EnumFontFamiliesExW
LPtoDP
Polyline
Polygon
CreatePolygonRgn
Ellipse
CreateEllipticRgn
SetPixel
RealizePalette
GetSystemPaletteEntries
GetPaletteEntries
GetNearestPaletteIndex
CreatePalette
GetRgnBox
GetTextColor
GetBkColor
GetTextCharsetInfo
EnumFontFamiliesW
CreateDIBitmap
DPtoLP
SetRectRgn
GetMapMode
CreateRectRgnIndirect
CreateFontIndirectW
CombineRgn
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutW
MoveToEx
SetTextAlign
SetTextColor
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SetBkColor
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateRectRgn
CreateHatchBrush
GetDeviceCaps
CreateDCW
CopyMetaFileW
RoundRect
GetTextExtentPoint32W
CreateRoundRectRgn
CreatePen
PatBlt
TextOutW
EndPage
StartPage
EndDoc
StartDocW
GetTextMetricsW
GetObjectW
SetDIBColorTable
CreateDIBSection
GetPixel
DeleteObject
DeleteDC
CreatePatternBrush
CreateCompatibleBitmap
CreateBitmap
BitBlt
CreateFontW
StretchBlt
SelectObject
CreateSolidBrush
CreateCompatibleDC

msimg32

AlphaBlend
TransparentBlt

comdlg32

PrintDlgW

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

SystemFunction036
RegCloseKey
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW

shell32

DragQueryFileW
DragFinish
DragAcceptFiles
ShellExecuteW
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
SHAppBarMessage
DragQueryFileA
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation

comctl32

_TrackMouseEvent
InitCommonControlsEx

shlwapi

PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
PathFileExistsW
StrFormatKBSizeW

uxtheme

CloseThemeData
GetThemePartSize
GetThemeSysColor
GetWindowTheme
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeText
DrawThemeParentBackground
OpenThemeData
GetThemeColor
DrawThemeBackground
GetCurrentThemeName

ole32

OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoRevokeClassObject
CoRegisterMessageFilter
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoInitializeEx
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
CoInitializeSecurity
CoUninitialize
CoCreateInstance
CoInitialize

oleaut32

SysAllocString
VariantInit
VariantClear
VarBstrCat
OleLoadPicture
VariantChangeType
SystemTimeToVariantTime
VariantTimeToSystemTime
LoadTypeLi
SysStringLen
SysAllocStringLen
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
SysFreeString
SafeArrayCreate
SafeArrayGetUBound
SafeArrayDestroy
SafeArrayGetLBound
SafeArrayPutElement
SafeArrayGetElement

oledlg

OleUIBusyW

gdiplus

GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromFile
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromStream
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipDrawImageRectI
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipFree
GdipAlloc
GdipGetImageWidth

ws2_32

WSACleanup
WSAStartup
select
recv
ioctlsocket
__WSAFDIsSet
gethostname
gethostbyname
WSAGetLastError
socket
setsockopt
sendto
send
WSAIoctl
recvfrom
htons
connect
closesocket
bind
htonl
inet_addr
inet_ntoa

iphlpapi

FlushIpNetTable
GetIpNetTable

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

winmm

PlaySoundW

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 387KB - Virtual size: 387KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53ef8b3ce4041f8d640ae3a822616183

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

ws2_32

iphlpapi

setupapi

oleacc

winmm

imm32

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 387KB - Virtual size: 387KB

.data Size: 24KB - Virtual size: 51KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 66KB - Virtual size: 66KB

.reloc Size: 134KB - Virtual size: 133KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 387KB - Virtual size: 387KB

.data
Size: 24KB - Virtual size: 51KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 66KB - Virtual size: 66KB

.reloc
Size: 134KB - Virtual size: 133KB