f587883e0f6d4697a7f528f762cb44b11634187d55cc4614f8301f04a565e04d

Sharing

Copy URL Twitter E-mail

General

Target

f587883e0f6d4697a7f528f762cb44b11634187d55cc4614f8301f04a565e04d
Size

439KB
MD5

dd059f6dd7519cb4cf032f02fd45e707
SHA1

693e961932877332658764f5006dda3a09797752
SHA256

f587883e0f6d4697a7f528f762cb44b11634187d55cc4614f8301f04a565e04d
SHA512

41424338d2f39298e2989840aaf692f991d556423de7d7ef52dcdd0be648bc8a326209e8a64823b2bb7c7c7f4da775a65a47524a64564f9d578fe349d5187703
SSDEEP

6144:DkYYWPJALXs5L8NyNEOqrz3ZOqyoiHZ09dYnhH/ym5neSPx:4XL854kNmz3/iG9wleSPx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f587883e0f6d4697a7f528f762cb44b11634187d55cc4614f8301f04a565e04d

Files

f587883e0f6d4697a7f528f762cb44b11634187d55cc4614f8301f04a565e04d
.exe windows:4 windows x64 arch:x64

c1ef85aee4de153fb3aeaf3c42279c9b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mvcapi

MV_Usb2SetAeCallBackFunction
MV_Usb2ReadFPGA
MV_Usb2SetRadio
MV_Usb2PausePreview
MV_Usb2AutoExposure
MV_Usb2SetAWBProcess
MV_Usb2AWB
MV_Usb2SetPartOfCapInfo
MV_Usb2ClearView
MV_Usb2Stop
MV_Usb2Start
MV_Usb2SetMask
MV_Usb2SetCapInfo
MV_Usb2SetFrameArriveCallBack
MV_Usb2GetRgbData
MV_Usb2RemoveNoisePixel
MV_Usb2DetectNoisePixel
MV_Usb2MeanPreview
MV_Usb2GaussBlurPreview
MV_Usb2EmbossPreview
MV_Usb2SharpPreview
MV_Usb2SetMirrorMode
MV_Usb2EdgeDetectPreview
MV_Usb2SetBw
MV_Usb2SendUserTrigger
MV_Usb2SetSignalPolarity
MV_Usb2SetTriggerPulse
MV_Usb2SetADCMode
MV_Usb2SetTestPattern
MV_Usb2SetAgcAec
MV_Usb2SetTriggerDelay
MV_Usb2SetLedWidth
MV_Usb2SetSensorTriggerWidth
MV_Usb2SetImageProcess
MV_Usb2SetDataThreshold
MV_Usb2SetFlashMode
MV_Usb2GetTemperature
MV_Usb2SetTriggerInterval
MV_Usb2LoadUserData
MV_Usb2SaveUserData
MV_Usb2SetCDSGain
MV_Usb2SetVGAGain
MV_Usb2SetADClamp
MV_Usb2SetFramePeriod
MV_Usb2LongTimeIntegration
MV_Usb2Init
MV_Usb2GetNumberDevices
MV_Usb2GetDeviceType
MV_Usb2GetSerial
MV_Usb2SetAwbCallBackFunction
MV_Usb2WriteFPGA
MV_Usb2SetMaskCallBack
MV_Usb2SetFrameCallBack
MV_Usb2SetRawCallBack
MV_Usb2SetTimingIntegration
MV_Usb2GetRawData
MV_Usb2GetFrameRate
MV_Usb2Uninit
MV_Usb2SetFilterProcess
MV_Usb2SetViewWin
MV_Usb2SetGammaValue
MV_Usb2Enhanced
MV_Usb2SetTemperature
MV_Usb2SetOpMode

kernel32

MulDiv
GlobalAlloc
lstrcmpA
GetLocaleInfoA
GetModuleFileNameA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
CloseHandle
GetCurrentProcessId
GetModuleFileNameW
GetPrivateProfileIntA
WritePrivateProfileStringA
GlobalFlags
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
InitializeCriticalSection
TlsAlloc
GlobalReAlloc
GlobalHandle
TlsSetValue
LocalReAlloc
GetCurrentThreadId
TlsFree
GetCPInfo
GetOEMCP
GetThreadLocale
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
SetEndOfFile
GetCurrentProcess
CreateFileA
SetErrorMode
RtlLookupFunctionEntry
RtlUnwindEx
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetDateFormatA
GetTimeFormatA
HeapReAlloc
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RaiseException
RtlPcToFileHeader
ExitProcess
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlCaptureContext
FlsGetValue
FlsSetValue
FlsFree
FlsAlloc
RtlVirtualUnwind
HeapSetInformation
HeapCreate
GetConsoleCP
GetConsoleMode
GetStdHandle
GetACP
GetTimeZoneInformation
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetEnvironmentVariableA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FreeLibrary
LoadLibraryA
SetLastError
lstrcmpW
GetModuleHandleA
GetProcAddress
GetVersionExA
GlobalLock
GlobalUnlock
GlobalFree
FreeResource
lstrlenA
CompareStringW
CompareStringA
GetVersion
MultiByteToWideChar
CopyFileA
WideCharToMultiByte
Sleep
FindResourceA
LoadResource
LockResource
SizeofResource
GetLastError
FormatMessageA
LocalFree
DeleteCriticalSection

user32

UnregisterClassA
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetWindowThreadProcessId
SetCursor
GetMessageA
TranslateMessage
GetCursorPos
ValidateRect
PostQuitMessage
ReleaseDC
ShowWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
GetCapture
CallNextHookEx
GetClassLongA
GetClassNameA
GetClassLongPtrA
SetPropA
GetPropA
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
GetTopWindow
GetWindowLongPtrA
SetWindowLongPtrA
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
GetKeyState
SetForegroundWindow
IsWindowVisible
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
EnableWindow
SendMessageA
PostMessageA
MessageBoxA
DrawIcon
AppendMenuA
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
SetWindowLongA
SetWindowPos
LoadCursorA
GetSysColorBrush
DestroyMenu
EndPaint
BeginPaint
SetWindowsHookExA
ClientToScreen
GetSystemMenu
IsIconic
GetClientRect
GetDC
RedrawWindow
SetTimer
KillTimer
LoadIconA
GetSystemMetrics
LoadImageA
EndDialog
GetNextDlgTabItem
GetParent
IsWindowEnabled
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetWindow
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetWindowLongA
GetDlgItem
UpdateWindow

gdi32

GetDeviceCaps
SaveDC
RestoreDC
SetMapMode
CreateBitmap
PtVisible
RectVisible
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
GetObjectA
SetBkColor
GetClipBox
SetTextColor
Rectangle
SelectObject
MoveToEx
LineTo
SetBkMode
TextOutA
CreatePen
GetStockObject
DeleteObject

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegCloseKey

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc

shlwapi

PathFindFileNameA
PathFindExtensionA

oleaut32

VariantInit
VariantChangeType
VariantClear

Sections

.text
Size: 269KB - Virtual size: 269KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 42KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c1ef85aee4de153fb3aeaf3c42279c9b

Headers

DLL Characteristics

File Characteristics

Imports

mvcapi

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

shlwapi

oleaut32

Sections

.text Size: 269KB - Virtual size: 269KB

.rdata Size: 95KB - Virtual size: 94KB

.data Size: 11KB - Virtual size: 33KB

.pdata Size: 20KB - Virtual size: 19KB

.rsrc Size: 42KB - Virtual size: 42KB

.text
Size: 269KB - Virtual size: 269KB

.rdata
Size: 95KB - Virtual size: 94KB

.data
Size: 11KB - Virtual size: 33KB

.pdata
Size: 20KB - Virtual size: 19KB

.rsrc
Size: 42KB - Virtual size: 42KB