e3a67fd20aa2258e6333d989b8042511a85c5bc3f83768e641da0a3ccbb79784

Sharing

Copy URL Twitter E-mail

General

Target

e3a67fd20aa2258e6333d989b8042511a85c5bc3f83768e641da0a3ccbb79784
Size

6.3MB
MD5

df9eae74b9b8ee04da76722b5fa53138
SHA1

b3baf9d7cfc48b7f41f8c1dfa8c8dd625119d001
SHA256

e3a67fd20aa2258e6333d989b8042511a85c5bc3f83768e641da0a3ccbb79784
SHA512

7e06227624195d0882df0cf38d294f1756dd8e84c8b8cec644bdf1a90ec2f5eadb5fd93a406abc271244bb50581e330692adf89776826bd2f01460bf1c297a95
SSDEEP

196608:cvMJDjbHGx5leRtm9DXq46OyHkn123U6l:qMJDHHGx5lQtm9DXq41gkW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e3a67fd20aa2258e6333d989b8042511a85c5bc3f83768e641da0a3ccbb79784

Files

e3a67fd20aa2258e6333d989b8042511a85c5bc3f83768e641da0a3ccbb79784
.exe windows:4 windows x86 arch:x86

6d8b66972448c8d36338d18798dffa82

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

GetModuleHandleA
GetProcAddress

user32

GetDC

advapi32

GetAce

iphlpapi

GetIfTable

shell32

ILFree

hid

HidP_GetCaps

setupapi

SetupInstallFileA

dhcpcsvc

DhcpIsEnabled

dhcpcsvc6

Dhcpv6IsEnabled

psapi

EnumProcesses

wsock32

bind

echo_filefrombarcode

GetCutFileFromBarCode

pieceaddmark

ord1

akgraphana

FindSymmetry

commandrequest

CreateRequester

redisobtain

CreateObtainer

subscribemessage

CreateSubcriber

pumpfollow

PumpFollow

antsalgorithm

AntsAlgorithm

knifedetector_boardcopy

QueryEyes_BoardCopy

libxl

xlCreateBookA

ms_dmath

MSD_UnCustomZip

eastcas

Kernel_FitedCurve

toolkitpro1321vc60

??0CXTPButton@@QAE@XZ

center

korydatacenter

reversefit

GetOutNum

imageload

LoadGIF

sessionexchange

connect_redis_server

echo_pwfunction

?PWF_ForFree@@YAXXZ

parallelfunct

ParallelForFunct

echo_sofamodule

StartSofaMoudle

echo_configparseexcel

EFile_GetPiecesInfo

echo_judgeconcaveangle

?ContourConcaveInsertCircularArc@@YAXHHUcontourArray@@NPAH1AAU1@@Z

echo_clothtemplate

GLion_CutFinish

dealfontsfiles

?lsw_TextPloterFormat@@YG_NAAHPAH1PBD22ABH3ABN4444@Z

arckinfeeyedll

ArcKnifeEye

previewdlg

Show

hasp_windows_30306

ord14

wibucm32

ord76

plc

stop

wupiengine32

ord24

shlwapi

PathFileExistsA

dbghelp

MiniDumpWriteDump

version

VerQueryValueA

winmm

timeSetEvent

gdiplus

GdipFree

msvcp60

??0_Winit@std@@QAE@XZ

oleaut32

CreateErrorInfo

ole32

OleRun

comctl32

ImageList_Draw

gdi32

Arc

msvcrt

pow

mfc42

ord567

Exports

Exports

OnSwitchPathBetweenCutters

Sections

.AKS1
Size: 2.8MB - Virtual size: 16.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AKS2
Size: 3.3MB - Virtual size: 4.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.AKS3
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 219KB - Virtual size: 218KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6d8b66972448c8d36338d18798dffa82

Headers

File Characteristics

Imports

kernel32

user32

advapi32

iphlpapi

shell32

hid

setupapi

dhcpcsvc

dhcpcsvc6

psapi

wsock32

echo_filefrombarcode

pieceaddmark

akgraphana

commandrequest

redisobtain

subscribemessage

pumpfollow

antsalgorithm

knifedetector_boardcopy

libxl

ms_dmath

eastcas

toolkitpro1321vc60

center

reversefit

imageload

sessionexchange

echo_pwfunction

parallelfunct

echo_sofamodule

echo_configparseexcel

echo_judgeconcaveangle

echo_clothtemplate

dealfontsfiles

arckinfeeyedll

previewdlg

hasp_windows_30306

wibucm32

plc

wupiengine32

shlwapi

dbghelp

version

winmm

gdiplus

msvcp60

oleaut32

ole32

comctl32

gdi32

msvcrt

mfc42

Exports

Exports

Sections

.AKS1 Size: 2.8MB - Virtual size: 16.3MB

.AKS2 Size: 3.3MB - Virtual size: 4.8MB

.AKS3 Size: 1KB - Virtual size: 1KB

.rsrc Size: 219KB - Virtual size: 218KB

.AKS1
Size: 2.8MB - Virtual size: 16.3MB

.AKS2
Size: 3.3MB - Virtual size: 4.8MB

.AKS3
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 219KB - Virtual size: 218KB