2398708bf941136109629a4e5bed31b9641d2bb140490c2ed1454f48dfec3f1e

Sharing

Copy URL Twitter E-mail

General

Target

2398708bf941136109629a4e5bed31b9641d2bb140490c2ed1454f48dfec3f1e
Size

3.1MB
MD5

295325f50b4d03c4a498f5f76cebf176
SHA1

b2840a9c5fe5416671419062603a54ffa632b265
SHA256

2398708bf941136109629a4e5bed31b9641d2bb140490c2ed1454f48dfec3f1e
SHA512

3de842e59f32df5941ccac97f3781ea047e4220eb8d9547249929c5ad8e6d38a2545825c00f9cdb48d33d228240dae004e139bf957bbced7c2123a5571cf4f0d
SSDEEP

49152:NjmkuM0CvcFoCHvPl5AyWNHLv8sNu2GWm2G7J5pZJ5FVscM8L7XPS/:7uqvcFoCHvPl27z9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2398708bf941136109629a4e5bed31b9641d2bb140490c2ed1454f48dfec3f1e

Files

2398708bf941136109629a4e5bed31b9641d2bb140490c2ed1454f48dfec3f1e
.exe windows:6 windows x86 arch:x86

2dbf7a3fb88a089e8b1f0b6e1b48cbfc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\22年eMwin工程项目模拟\9寸变频供水屏模拟\Output\Debug\SimulationTrial.pdb

Imports

winmm

timeGetDevCaps
timeEndPeriod
timeBeginPeriod
timeGetTime

kernel32

SetUnhandledExceptionFilter
IsProcessorFeaturePresent
IsDebuggerPresent
RaiseException
MultiByteToWideChar
WideCharToMultiByte
GetLastError
HeapAlloc
HeapFree
GetProcessHeap
VirtualQuery
FreeLibrary
GetProcAddress
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
InitializeSListHead
GetStartupInfoW
GetModuleHandleW
UnhandledExceptionFilter
GetLocalTime
GlobalUnlock
GlobalLock
GlobalAlloc
OutputDebugStringA
WriteFile
CreateFileA
GlobalFree
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
CreateMutexA
GetModuleFileNameW
LoadLibraryExW
InterlockedPushEntrySList
InterlockedFlushSList
RtlUnwind
SetLastError
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
SetConsoleCtrlHandler
TlsGetValue
TlsSetValue
TlsFree
EncodePointer
GetConsoleCP
GetStdHandle
ExitProcess
GetModuleHandleExW
GetDateFormatW
GetTimeFormatW
CompareStringW
LCMapStringW
GetLocaleInfoW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetFileType
FlushFileBuffers
GetConsoleOutputCP
GetConsoleMode
CreateFileW
SetConsoleMode
GetNumberOfConsoleInputEvents
ReadConsoleInputW
PeekConsoleInputA
ReadConsoleW
OutputDebugStringW
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
SetStdHandle
GetStringTypeW
DecodePointer
SetFilePointerEx
ReadFile
GetFileSizeEx
HeapSize
HeapReAlloc
WriteConsoleW
SetThreadAffinityMask
GetThreadContext
ResumeThread
SuspendThread
TerminateThread
ExitThread
SetThreadPriorityBoost
SetThreadPriority
GetCurrentThread
CreateThread
TerminateProcess
GetCurrentProcess
WaitForMultipleObjects
Sleep
CreateEventW
CreateMutexW
WaitForSingleObject
ReleaseMutex
SetEvent
CloseHandle
TlsAlloc

user32

GetMessageA
LoadAcceleratorsA
UpdateWindow
ShowWindow
SetWindowLongA
GetWindowRect
GetSubMenu
LoadMenuA
LoadImageA
GetSystemMetrics
GetClientRect
FindWindowExA
wsprintfA
EnumChildWindows
SetWindowPos
BringWindowToTop
GetParent
GetClassNameA
SendMessageA
CopyAcceleratorTableA
LoadCursorA
LoadIconA
SetTimer
EndPaint
BeginPaint
MoveWindow
GetCapture
SetCapture
ReleaseCapture
PostQuitMessage
EnableMenuItem
DialogBoxParamA
MessageBeep
SetDlgItemTextA
SetWindowTextA
EndDialog
WindowFromPoint
KillTimer
LoadBitmapA
ReleaseDC
FillRect
GetDC
DrawTextA
GetWindowDC
SetWindowRgn
GetWindowRgn
TranslateMessage
DispatchMessageA
GetWindowLongA
ClientToScreen
TrackPopupMenu
DestroyWindow
InvalidateRect
IsWindowVisible
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
DefWindowProcA
GetClassInfoExA
RegisterClassExA
GetDesktopWindow
CreateWindowExA
MessageBoxA
GetKeyboardState
MapVirtualKeyA
ToAscii
GetKeyState

gdi32

DeleteObject
Rectangle
OffsetRgn
CreateRectRgn
GetObjectA
GetStockObject
TextOutA
DeleteDC
BitBlt
SelectObject
CreateCompatibleDC
LineTo
MoveToEx
CreatePen
StretchBlt
CreateSolidBrush
CreateCompatibleBitmap
ExtFloodFill
SetDIBitsToDevice
StretchDIBits
SetStretchBltMode
SetTextColor
GetTextExtentPoint32A
SetPixel
GetDIBits
CombineRgn

Sections

.textbss
Size: - Virtual size: 439KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 949KB - Virtual size: 948KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 4.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.00cfg
Size: 512B - Virtual size: 265B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2dbf7a3fb88a089e8b1f0b6e1b48cbfc

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

winmm

kernel32

user32

gdi32

Sections

.textbss Size: - Virtual size: 439KB

.text Size: 949KB - Virtual size: 948KB

.rdata Size: 1.8MB - Virtual size: 1.8MB

.data Size: 17KB - Virtual size: 4.9MB

.idata Size: 7KB - Virtual size: 6KB

.00cfg Size: 512B - Virtual size: 265B

.rsrc Size: 144KB - Virtual size: 144KB

.reloc Size: 144KB - Virtual size: 144KB

.textbss
Size: - Virtual size: 439KB

.text
Size: 949KB - Virtual size: 948KB

.rdata
Size: 1.8MB - Virtual size: 1.8MB

.data
Size: 17KB - Virtual size: 4.9MB

.idata
Size: 7KB - Virtual size: 6KB

.00cfg
Size: 512B - Virtual size: 265B

.rsrc
Size: 144KB - Virtual size: 144KB

.reloc
Size: 144KB - Virtual size: 144KB