9f0f58b9ad07583c6e759ca4ffbcc275670591d84c91d37eca39e6385426f2e4

Sharing

Copy URL Twitter E-mail

General

Target

9f0f58b9ad07583c6e759ca4ffbcc275670591d84c91d37eca39e6385426f2e4
Size

68KB
MD5

d594c4b239d8f0fee309888f4b01a4d5
SHA1

4ff7871b0d806c3d36f95f6c269e9babffb04ce4
SHA256

9f0f58b9ad07583c6e759ca4ffbcc275670591d84c91d37eca39e6385426f2e4
SHA512

122e5456349c7cec741b6979b6797ea33f9bfa6e55e770ff610d650b7b66d8a09c17faf583203d0b05584ed0fe17ed8bf8014d15c471622417c065c2cd9a59f4
SSDEEP

768:rvv6XrYqMZy/0aNO49gzVcclpZ/NyfbXiB9LBfK1Sp6aNog7GI5q:DzzVcc3Zg0ZKqogTq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9f0f58b9ad07583c6e759ca4ffbcc275670591d84c91d37eca39e6385426f2e4

Files

9f0f58b9ad07583c6e759ca4ffbcc275670591d84c91d37eca39e6385426f2e4
.exe windows:4 windows x86 arch:x86

9c8779eded7c50c17236e08e26ddcec0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommTimeouts
SetupComm
ReadFile
GetFileSize
IsBadReadPtr
GetSystemDefaultLangID
CreateThread
LCMapStringW
LCMapStringA
SetStdHandle
LoadLibraryA
SetCommTimeouts
GetACP
GetCPInfo
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
PurgeComm
GetCommState
SetCommState
CreateFileA
SetFilePointer
WriteFile
OutputDebugStringA
CloseHandle
GetLastError
FormatMessageA
GetOEMCP
HeapFree
HeapAlloc
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetProcAddress
GetModuleFileNameA
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FlushFileBuffers

user32

SendDlgItemMessageA
DestroyWindow
DefWindowProcA
PostQuitMessage
ShowWindow
SetDlgItemTextA
SetWindowTextA
DialogBoxParamA
GetDlgItemTextA
CharUpperA
GetWindowTextA
GetDlgItem
EnableWindow
PostMessageA

comdlg32

GetOpenFileNameA

advapi32

RegCloseKey
RegOpenKeyExA
RegEnumValueA

ch375dll

CH375CloseDevice
CH375GetUsbID
CH375SetExclusive
CH375SetTimeout
CH375OpenDevice
CH375SetDeviceNotify
CH375ReadData
CH375GetDeviceName
CH375WriteData

Sections

.text
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9c8779eded7c50c17236e08e26ddcec0

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

ch375dll

Sections

.text Size: 36KB - Virtual size: 32KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 16KB - Virtual size: 23KB

.rsrc Size: 8KB - Virtual size: 4KB

.text
Size: 36KB - Virtual size: 32KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 16KB - Virtual size: 23KB

.rsrc
Size: 8KB - Virtual size: 4KB