717e67d91e463e477a11d8f1061cebe9259c9ad8565e3719bd6b940bf7eadf6a

Sharing

Copy URL Twitter E-mail

General

Target

717e67d91e463e477a11d8f1061cebe9259c9ad8565e3719bd6b940bf7eadf6a
Size

68KB
MD5

d3f86dcd7e96623541baabbc8c2e5c8f
SHA1

270b799f9d6aec8163cddef811f199d1e2c6bfae
SHA256

717e67d91e463e477a11d8f1061cebe9259c9ad8565e3719bd6b940bf7eadf6a
SHA512

b3dc19724f6a9a2a4543adf7dfcda79e33075585a3c7e8b58261fb15087eb342ab352a18fcbc9d35dabb8191051a7632c1b9df71caf77d190b8359041e6c815c
SSDEEP

768:GcDuf9ohckbRUHGBLTThwbHaYYYfwXvI3mNxyC4aPuhISOlS/Sxd9UThwbHaYYYE:rWoCmRUmJhe38MnBh9OAaZmhe3fq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
717e67d91e463e477a11d8f1061cebe9259c9ad8565e3719bd6b940bf7eadf6a

Files

717e67d91e463e477a11d8f1061cebe9259c9ad8565e3719bd6b940bf7eadf6a
.exe windows:5 windows x86 arch:x86

aca00fe0639510a25c5b78f3cc1c3394

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

qtcore4

??1QEasingCurve@@QAE@XZ
?setEasingCurve@QVariantAnimation@@QAEXABVQEasingCurve@@@Z
??0QEasingCurve@@QAE@W4Type@0@@Z
?setEndValue@QVariantAnimation@@QAEXABVQVariant@@@Z
??1QVariant@@QAE@XZ
?setStartValue@QVariantAnimation@@QAEXABVQVariant@@@Z
??0QVariant@@QAE@N@Z
?setDuration@QVariantAnimation@@QAEXH@Z
??0QPropertyAnimation@@QAE@PAVQObject@@ABVQByteArray@@0@Z
??0QByteArray@@QAE@PBD@Z
?fromAscii_helper@QString@@CAPAUData@1@PBDH@Z
?metaObject@QPropertyAnimation@@UBEPBUQMetaObject@@XZ
?qt_metacast@QPropertyAnimation@@UAEPAXPBD@Z
?qt_metacall@QPropertyAnimation@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?event@QPropertyAnimation@@MAE_NPAVQEvent@@@Z
?duration@QVariantAnimation@@UBEHXZ
?updateCurrentTime@QVariantAnimation@@MAEXH@Z
?updateState@QPropertyAnimation@@MAEXW4State@QAbstractAnimation@@0@Z
?start@QAbstractAnimation@@QAEXW4DeletionPolicy@1@@Z
?updateCurrentValue@QPropertyAnimation@@MAEXABVQVariant@@@Z
?interpolated@QVariantAnimation@@MBE?AVQVariant@@ABV2@0N@Z
??1QPropertyAnimation@@UAE@XZ
?startDetached@QProcess@@SA_NABVQString@@ABVQStringList@@0PA_J@Z
?arguments@QCoreApplication@@SA?AVQStringList@@XZ
?absolutePath@QFileInfo@@QBE?AVQString@@XZ
??0QFileInfo@@QAE@ABVQString@@@Z
?applicationDirPath@QCoreApplication@@SA?AVQString@@XZ
??1QByteArray@@QAE@XZ
??0QFile@@QAE@ABVQString@@@Z
?exists@QFile@@QBE_NXZ
??1QFile@@UAE@XZ
?fileName@QFileInfo@@QBE?AVQString@@XZ
??0QDir@@QAE@ABVQString@@@Z
?exists@QDir@@QBE_NXZ
?entryInfoList@QDir@@QBE?AV?$QList@VQFileInfo@@@@V?$QFlags@W4Filter@QDir@@@@V?$QFlags@W4SortFlag@QDir@@@@@Z
?isDir@QFileInfo@@QBE_NXZ
?absoluteFilePath@QFileInfo@@QBE?AVQString@@XZ
??1QDir@@QAE@XZ
??0QChar@@QAE@D@Z
?split@QString@@QBE?AVQStringList@@ABVQChar@@W4SplitBehavior@1@W4CaseSensitivity@Qt@@@Z
??8QString@@QBE_NABV0@@Z
??MQString@@QBE_NABV0@@Z
?disconnectNotify@QObject@@MAEXPBD@Z
?connectNotify@QObject@@MAEXPBD@Z
?fromWCharArray@QString@@SA?AV1@PBGH@Z
?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ
?detach@QByteArray@@QAEXXZ
?qWinMain@@YAXPAUHINSTANCE__@@0PADHAAHAAV?$QVector@PAD@@@Z
?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z
?qMemSet@@YAPAXPAXHI@Z
?allocate@QVectorData@@SAPAU1@HH@Z
?qBadAlloc@@YAXXZ
?free@QVectorData@@SAXPAU1@H@Z
?qRegisterResourceData@@YA_NHPBE00@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?createData@QMapData@@SAPAU1@H@Z
?detach@QListData@@QAEPAUData@1@H@Z
?node_create@QMapData@@QAEPAUNode@1@QAPAU21@HH@Z
?node_delete@QMapData@@QAEXQAPAUNode@1@HPAU21@@Z
?qFree@@YAXPAX@Z
?continueFreeData@QMapData@@QAEXH@Z
??0QFileInfo@@QAE@ABV0@@Z
??1QFileInfo@@QAE@XZ
?shared_null@QMapData@@2U1@A
?translated@QRect@@QBE?AV1@HH@Z
??4QString@@QAEAAV0@ABV0@@Z
??AQString@@QBE?BVQChar@@H@Z
?isDigit@QChar@@QBE_NXZ
??YQString@@QAEAAV0@VQChar@@@Z
?shared_null@QString@@0UData@1@A
?fromAscii@QString@@SA?AV1@PBDH@Z
?free@QString@@CAXPAUData@1@@Z
??0QString@@QAE@ABV0@@Z
?append@QString@@QAEAAV1@ABV1@@Z
??1QString@@QAE@XZ
?qUnregisterResourceData@@YA_NHPBE00@Z
?updateDirection@QAbstractAnimation@@MAEXW4Direction@1@@Z

qtgui4

?paintEngine@QWidget@@UBEPAVQPaintEngine@@XZ
?getDC@QWidget@@UBEPAUHDC__@@XZ
?releaseDC@QWidget@@UBEXPAUHDC__@@@Z
?metric@QWidget@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?setGeometry@QWidget@@QAEXABVQRect@@@Z
?pos@QCursor@@SA?AVQPoint@@XZ
?setPixelSize@QFont@@QAEXH@Z
?setAttribute@QWidget@@QAEXW4WidgetAttribute@Qt@@_N@Z
?setWindowFlags@QWidget@@QAEXV?$QFlags@W4WindowType@Qt@@@@@Z
??0QFont@@QAE@ABVQString@@HH_N@Z
??0QWidget@@QAE@PAV0@V?$QFlags@W4WindowType@Qt@@@@@Z
??1QApplication@@UAE@XZ
?exec@QApplication@@SAHXZ
?show@QWidget@@QAEXXZ
?queryKeyboardModifiers@QApplication@@SA?AV?$QFlags@W4KeyboardModifier@Qt@@@@XZ
??0QApplication@@QAE@AAHPAPADH@Z
?devType@QWidget@@UBEHXZ
?languageChange@QWidget@@MAEXXZ
?windowActivationChange@QWidget@@MAEX_N@Z
?fontChange@QWidget@@MAEXABVQFont@@@Z
?paletteChange@QWidget@@MAEXABVQPalette@@@Z
?enabledChange@QWidget@@MAEX_N@Z
?styleChange@QWidget@@MAEXAAVQStyle@@@Z
?focusNextPrevChild@QWidget@@MAE_N_N@Z
?inputMethodQuery@QWidget@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QWidget@@MAEXPAVQInputMethodEvent@@@Z
?changeEvent@QWidget@@MAEXPAVQEvent@@@Z
?winEvent@QWidget@@MAE_NPAUtagMSG@@PAJ@Z
?hideEvent@QWidget@@MAEXPAVQHideEvent@@@Z
?showEvent@QWidget@@MAEXPAVQShowEvent@@@Z
?dropEvent@QWidget@@MAEXPAVQDropEvent@@@Z
?dragLeaveEvent@QWidget@@MAEXPAVQDragLeaveEvent@@@Z
?dragMoveEvent@QWidget@@MAEXPAVQDragMoveEvent@@@Z
?dragEnterEvent@QWidget@@MAEXPAVQDragEnterEvent@@@Z
?actionEvent@QWidget@@MAEXPAVQActionEvent@@@Z
?tabletEvent@QWidget@@MAEXPAVQTabletEvent@@@Z
?contextMenuEvent@QWidget@@MAEXPAVQContextMenuEvent@@@Z
?moveEvent@QWidget@@MAEXPAVQMoveEvent@@@Z
?enterEvent@QWidget@@MAEXPAVQEvent@@@Z
?focusOutEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?keyReleaseEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?wheelEvent@QWidget@@MAEXPAVQWheelEvent@@@Z
?mouseDoubleClickEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?heightForWidth@QWidget@@UBEHH@Z
?sizeHint@QWidget@@UBE?AVQSize@@XZ
?setVisible@QWidget@@UAEX_N@Z
?event@QWidget@@MAE_NPAVQEvent@@@Z
??1QFont@@QAE@XZ
??1QWidget@@UAE@XZ
??0QPainter@@QAE@PAVQPaintDevice@@@Z
?setRenderHint@QPainter@@QAEXW4RenderHint@1@_N@Z
??0QMatrix@@QAE@XZ
?rect@QWidget@@QBE?AVQRect@@XZ
?translate@QMatrix@@QAEAAV1@NN@Z
?scale@QMatrix@@QAEAAV1@NN@Z
?setMatrix@QPainter@@QAEXABVQMatrix@@_N@Z
?setRgb@QColor@@QAEXHHHH@Z
??0QPen@@QAE@ABVQColor@@@Z
?setPen@QPainter@@QAEXABVQPen@@@Z
?setOpacity@QPainter@@QAEXN@Z
?fillRect@QPainter@@QAEXABVQRect@@ABVQColor@@@Z
?drawRects@QPainter@@QAEXPBVQRect@@H@Z
?setFont@QPainter@@QAEXABVQFont@@@Z
?setColor@QPen@@QAEXABVQColor@@@Z
?drawText@QPainter@@QAEXABVQRect@@HABVQString@@PAV2@@Z
??1QPen@@QAE@XZ
??1QPainter@@QAE@XZ
?close@QWidget@@QAE_NXZ
?update@QWidget@@QAEXXZ
?staticMetaObject@QWidget@@2UQMetaObject@@B
?qt_metacall@QWidget@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QWidget@@UAEPAXPBD@Z
?minimumSizeHint@QWidget@@UBE?AVQSize@@XZ

msvcr100

__setusermatherr
_commode
_fmode
__set_app_type
_except_handler4_common
_configthreadlocale
_crt_debugger_hook
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_invoke_watson
_controlfp_s
_initterm_e
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
_onexit
_lock
__dllonexit
_unlock
_CxxThrowException
??2@YAPAXI@Z
??3@YAXPAX@Z
memcpy
__CxxFrameHandler3

kernel32

GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoW
HeapSetInformation
InterlockedCompareExchange
Sleep
InterlockedExchange
DecodePointer
EncodePointer
GetCommandLineW

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.zero
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aca00fe0639510a25c5b78f3cc1c3394

Headers

DLL Characteristics

File Characteristics

Imports

qtcore4

qtgui4

msvcr100

kernel32

Sections

.text Size: 13KB - Virtual size: 13KB

.rdata Size: 29KB - Virtual size: 28KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 17KB - Virtual size: 17KB

.reloc Size: 2KB - Virtual size: 2KB

.zero Size: 4KB - Virtual size: 3KB

.text
Size: 13KB - Virtual size: 13KB

.rdata
Size: 29KB - Virtual size: 28KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 17KB - Virtual size: 17KB

.reloc
Size: 2KB - Virtual size: 2KB

.zero
Size: 4KB - Virtual size: 3KB