104d96a31803d041636a86bc57a60b5a133c8e57d2b79e63f6371ee20f082cf7

Sharing

Copy URL Twitter E-mail

General

Target

104d96a31803d041636a86bc57a60b5a133c8e57d2b79e63f6371ee20f082cf7
Size

7.1MB
MD5

473daa87587c90fe7c0846c52b78541c
SHA1

a66dc978bdae83deaf9fba0f7ca6833647d2c2f9
SHA256

104d96a31803d041636a86bc57a60b5a133c8e57d2b79e63f6371ee20f082cf7
SHA512

7732e45bbef705da3a20ddf3e5b6b98690774c0bfa92de8051193b84eb008117ef6d24fcf9688fc695d8bd5ce85ef860d11501d63430b6fa40370acd8f3da171
SSDEEP

196608:cxB3a5WliGceuv6hamNEi2Z2R6C7fKLCgtXB9CeJ8Ia:c7a5WkfQvNz2zoQTtXDNJp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
104d96a31803d041636a86bc57a60b5a133c8e57d2b79e63f6371ee20f082cf7

Files

104d96a31803d041636a86bc57a60b5a133c8e57d2b79e63f6371ee20f082cf7
.exe windows:5 windows x86 arch:x86

de425b90bbff3cf5404c00bfa4a13c2d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\NewSoft\RepairPartner\rel\RepairPartner.pdb

Imports

comctl32

_TrackMouseEvent
ImageList_Create
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Destroy

gdiplus

GdipRotateMatrix
GdipScaleMatrix
GdipCreateBitmapFromStream
GdipGetRegionBounds
GdipMeasureCharacterRanges
GdipCloneBitmapAreaI
GdipGetStringFormatFlags
GdipBitmapSetResolution
GdipBitmapLockBits
GdipStringFormatGetGenericTypographic
GdipMeasureString
GdipSetStringFormatMeasurableCharacterRanges
GdipLoadImageFromStream
GdipDrawString
GdipBitmapUnlockBits
GdipSetPropertyItem
GdipDrawRectangle
GdipDrawLine
GdipDrawImageRectRect
GdipInvertMatrix
GdipSetWorldTransform
GdipTransformMatrixPoints
GdipSetImageAttributesWrapMode
GdipCreateImageAttributes
GdipGetImageHorizontalResolution
GdipGetPropertyItemSize
GdipAddPathRectangleI
GdipWindingModeOutline
GdipCreateStringFormat
GdipGetRegionHRgn
GdipReleaseDC
GdipGetDC
GdipCreateBitmapFromGdiDib
GdipSetStringFormatFlags
GdipAddPathLine
GdipClosePathFigure
GdipStartPathFigure
GdipGetImageHeight
GdipCreateBitmapFromGraphics
GdipGetImageWidth
GdipDrawImageI
GdipDisposeImageAttributes
GdipCreateHBITMAPFromBitmap
GdipDrawImageRectRectI
GdipSetPathMarker
GdipPathIterNextMarkerPath
GdipSetPenColor
GdipAddPathEllipseI
GdipSetStringFormatLineAlign
GdipGetPathData
GdipCreatePathIter
GdipPathIterRewind
GdipDeletePathIter
GdipTransformPointsI
GdipSetStringFormatTrimming
GdipIsVisibleRectI
GdipCreateFromHWNDICM
GdipCreateFromHWND
GdipAddPathLineI
GdipIsVisiblePathPointI
GdipGetPointCount
GdipSetSolidFillColor
GdipCreatePath2
GdipResetWorldTransform
GdipTranslateWorldTransform
GdiplusStartup
GdiplusShutdown
GdipImageGetFrameDimensionsCount
GdipTransformPath
GdipCreateMatrix
GdipSetPenMiterLimit
GdipFillPath
GdipFillRectangle
GdipDrawPath
GdipFree
GdipCreateFontFromDC
GdipCreateSolidFill
GdipAlloc
GdipCreatePen2
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipSetTextRenderingHint
GdipGetGenericFontFamilySansSerif
GdipGetLogFontW
GdipSetPageUnit
GdipCreateFont
GdipSetSmoothingMode
GdipDisposeImage
GdipCloneImage
GdipCreateFontFamilyFromName
GdipDeleteBrush
GdipSetCompositingQuality
GdipDeleteFontFamily
GdipGetFontHeight
GdipDeleteMatrix
GdipSetPenMode
GdipGetPathWorldBoundsI
GdipClonePath
GdipCreateRegion
GdipSetClipRectI
GdipSetClipRegion
GdipGetClip
GdipDeleteRegion
GdipDrawRectangleI
GdipCreateLineBrushFromRect
GdipTranslateMatrix
GdipCreateFromHDC
GdipCloneStringFormat
GdipCloneBrush
GdipFillRectangleI
GdipStringFormatGetGenericDefault
GdipDeleteGraphics
GdipDeleteStringFormat
GdipSetCompositingMode
GdipDeleteFont
GdipDeletePen
GdipCreatePen1
GdipDrawLineI
GdipAddPathPolygon
GdipDeletePath
GdipCreatePath
GdipGetPathWorldBounds
GdipGetPropertyItem
GdipDrawImageRectI
GdipImageSelectActiveFrame
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipCreateFontFromLogfontA

msimg32

GradientFill

shlwapi

PathAppendW
SHGetValueW
ord219
StrStrW
StrStrIW
StrRStrIW
PathIsRelativeW

urlmon

CoInternetGetSession

kernel32

SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetOEMCP
IsValidCodePage
FindNextFileA
FindFirstFileExA
GetProcessHeap
GetTimeZoneInformation
SetEndOfFile
MoveFileExW
FlushFileBuffers
SetStdHandle
GetFullPathNameA
GetCurrentDirectoryW
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetConsoleCP
ReadConsoleW
GetConsoleMode
ExitThread
GetModuleHandleExW
ExitProcess
SetFilePointerEx
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
GetCurrentDirectoryA
GetCurrentProcess
GetProcAddress
GetModuleHandleW
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
QueryPerformanceCounter
MulDiv
HeapCreate
HeapFree
OutputDebugStringA
TerminateProcess
GetEnvironmentVariableA
WaitForSingleObject
GetCurrentThreadId
GetVersionExW
GetLocaleInfoA
CreateToolhelp32Snapshot
CreateEventW
SetEvent
HeapReAlloc
CloseHandle
GetSystemInfo
CreateThread
FindResourceW
HeapAlloc
Module32FirstW
HeapDestroy
GetCurrentProcessId
GlobalMemoryStatusEx
Module32NextW
SetUnhandledExceptionFilter
MultiByteToWideChar
LoadLibraryA
FreeLibrary
QueryPerformanceFrequency
lstrlenW
WriteFile
CreateFileW
InterlockedDecrement
GetLastError
InterlockedIncrement
Sleep
GetTickCount
GetVolumeInformationW
TerminateThread
GetDriveTypeW
SetErrorMode
SizeofResource
GetUserDefaultUILanguage
LockResource
LoadResource
GlobalLock
GlobalUnlock
GetFileType
SetConsoleCtrlHandler
RtlUnwind
UnregisterWaitEx
QueryDepthSList
InterlockedFlushSList
InterlockedPopEntrySList
ReleaseSemaphore
VirtualProtect
VirtualFree
VirtualAlloc
LoadLibraryExW
FreeLibraryAndExitThread
GetThreadTimes
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
GetThreadPriority
SetThreadPriority
SwitchToThread
SignalObjectAndWait
CreateTimerQueue
InitializeSListHead
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
UnhandledExceptionFilter
ResetEvent
GetCPInfo
GetStringTypeW
LCMapStringW
CompareStringW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
SetLastError
WaitForSingleObjectEx
DuplicateHandle
DecodePointer
EncodePointer
GetEnvironmentVariableW
SetFilePointer
TryEnterCriticalSection
FindClose
FindNextFileW
FindFirstFileW
GetACP
RaiseException
GetSystemDirectoryW
VirtualQuery
GetCurrentThread
GetModuleHandleA
GetModuleFileNameA
GetFileTime
GetTempFileNameW
DeleteFileW
GetFileAttributesExW
GetFileInformationByHandle
GetTempPathW
GetShortPathNameW
GetLongPathNameW
GetFullPathNameW
GetFileSizeEx
ReadFile
CreateDirectoryW
WideCharToMultiByte
CreateFileMappingW
FormatMessageA
GetSystemTimeAsFileTime
VerifyVersionInfoW
CreateProcessW
VerSetConditionMask
LocalFree
GetWindowsDirectoryW
LoadLibraryW
GlobalAlloc
FreeResource
GetLocaleInfoW
GetModuleFileNameW
GetStdHandle
WriteConsoleW
HeapSize
InterlockedPushEntrySList
InterlockedExchange
CreateEventA
InterlockedCompareExchange
lstrcpynW
FileTimeToDosDateTime
FileTimeToLocalFileTime
SetCurrentDirectoryA

user32

DestroyCursor
BeginDeferWindowPos
GetWindowInfo
GetMonitorInfoW
ClientToScreen
EndDeferWindowPos
SetClipboardData
CheckMenuItem
GetDesktopWindow
SetForegroundWindow
MonitorFromRect
CopyImage
AdjustWindowRectEx
DeferWindowPos
SystemParametersInfoW
GetSystemMetrics
SendMessageW
GetFocus
PostMessageW
GetKeyState
EndPaint
BeginPaint
InvalidateRect
GetClientRect
GetWindow
CharLowerW
IsCharAlphaNumericW
PeekMessageW
FillRect
MessageBoxW
IsIconic
ReleaseCapture
KillTimer
SetCursor
SetCapture
SetFocus
SetTimer
GetCapture
GetScrollPos
GetScrollInfo
GetCursor
DefWindowProcW
ValidateRect
GetUpdateRect
FindWindowExW
SetWindowTextW
SetScrollInfo
ReleaseDC
GetParent
DrawEdge
EnableMenuItem
DrawIconEx
GetClassLongW
AppendMenuW
IsZoomed
RemoveMenu
TrackPopupMenuEx
SetWindowLongW
GetWindowDC
FindWindowW
DestroyMenu
LoadBitmapW
GetForegroundWindow
GetSysColor
SetMenuDefaultItem
TrackMouseEvent
MapWindowPoints
RedrawWindow
OffsetRect
InvalidateRgn
ShowWindow
TrackPopupMenu
RegisterClassExW
SetMenuItemBitmaps
CreatePopupMenu
CreateWindowExW
GetMenuItemCount
SetWindowPos
SetPropW
RemovePropW
GetPropW
GetActiveWindow
SetMenu
IsWindowVisible
InsertMenuItemW
GetWindowRect
CallWindowProcW
GetMessageW
LoadAcceleratorsW
DispatchMessageW
TranslateAcceleratorW
TranslateMessage
ShowScrollBar
LoadMenuW
MapVirtualKeyW
WindowFromPoint
GetSubMenu
IsWindow
GetKeyboardLayoutList
GetKeyboardLayout
ActivateKeyboardLayout
PostQuitMessage
CharLowerBuffW
IsCharUpperW
EndDialog
SetDlgItemTextW
SendDlgItemMessageW
IsDlgButtonChecked
GetDlgItem
CheckDlgButton
DialogBoxParamW
LoadImageW
EnableWindow
GetWindowTextW
SetActiveWindow
LoadIconW
OpenClipboard
CloseClipboard
EmptyClipboard
GetMessagePos
MessageBeep
MoveWindow
GetDC
LoadCursorW
DrawTextW
DrawFrameControl
UpdateWindow
ScreenToClient
GetCursorPos
DestroyWindow
CheckMenuRadioItem
GetMenuItemID
GetSystemMenu
CreateMenu
wsprintfA
GetWindowLongW
GetMenuItemInfoW

gdi32

SetGraphicsMode
GetDIBits
GetObjectW
SetDIBits
SetDIBColorTable
GetDIBColorTable
SetLayout
SetBrushOrgEx
PatBlt
CreatePatternBrush
CreateBitmap
SetROP2
IntersectClipRect
SetWorldTransform
CreateBrushIndirect
CreateFontW
SetStretchBltMode
GetDeviceCaps
CreateDIBSection
GetTextExtentPoint32W
SelectClipRgn
ExtTextOutW
GetClipBox
CreateRectRgn
SetViewportOrgEx
ExcludeClipRect
ExtSelectClipRgn
GetObjectA
StretchBlt
BitBlt
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
GetStockObject
DeleteDC
TextOutW
SetTextColor
SetBkMode
LineTo
CreatePen
Rectangle
MoveToEx
SetBkColor
Ellipse
DeleteObject
CreateSolidBrush
CreateFontIndirectW

comdlg32

GetSaveFileNameW

advapi32

RegSetValueExA
RegCloseKey
RegQueryValueExW
RegEnumKeyW
RegOpenKeyExW
RegOpenKeyExA

shell32

ShellExecuteExW
SHFileOperationW
ShellExecuteW

ole32

CoGetMalloc
CoTaskMemFree
CoTaskMemAlloc
ReleaseStgMedium
OleInitialize
OleUninitialize
StringFromGUID2
CLSIDFromString
OleRun
CLSIDFromProgID
CoCreateInstance
CoUninitialize
CoInitialize
CreateStreamOnHGlobal

oleaut32

GetErrorInfo
VariantClear
SysStringByteLen
SysFreeString
VariantInit
VariantChangeType
VariantCopy
SysAllocStringByteLen
SysAllocString

iphlpapi

GetAdaptersInfo
GetPerAdapterInfo

winhttp

WinHttpReceiveResponse
WinHttpQueryDataAvailable
WinHttpCrackUrl
WinHttpConnect
WinHttpSendRequest
WinHttpCloseHandle
WinHttpOpenRequest
WinHttpReadData
WinHttpQueryHeaders
WinHttpAddRequestHeaders
WinHttpOpen

imm32

ImmGetContext
ImmSetConversionStatus
ImmGetConversionStatus
ImmReleaseContext

Sections

.text
Size: 2.9MB - Virtual size: 2.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data:
Size: 733KB - Virtual size: 733KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 133KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1009KB - Virtual size: 1009KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de425b90bbff3cf5404c00bfa4a13c2d

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

comctl32

gdiplus

msimg32

shlwapi

urlmon

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

iphlpapi

winhttp

imm32

Sections

.text Size: 2.9MB - Virtual size: 2.9MB

.data: Size: 733KB - Virtual size: 733KB

.rdata Size: 2.3MB - Virtual size: 2.3MB

.data Size: 133KB - Virtual size: 187KB

.gfids Size: 3KB - Virtual size: 3KB

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 1009KB - Virtual size: 1009KB

.reloc Size: 100KB - Virtual size: 100KB

.text
Size: 2.9MB - Virtual size: 2.9MB

.data:
Size: 733KB - Virtual size: 733KB

.rdata
Size: 2.3MB - Virtual size: 2.3MB

.data
Size: 133KB - Virtual size: 187KB

.gfids
Size: 3KB - Virtual size: 3KB

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 1009KB - Virtual size: 1009KB

.reloc
Size: 100KB - Virtual size: 100KB