8cf307dcb3422de64d29016394f1e42c2d92f2d34de6c288e78abf08ee946539

Sharing

Copy URL

Twitter E-mail

General

Target

8cf307dcb3422de64d29016394f1e42c2d92f2d34de6c288e78abf08ee946539
Size

904KB
MD5

f23c49bacf9330de27790ab0ac4ab67c
SHA1

f83223bb653729124b7c29c926838044c63bb95f
SHA256

8cf307dcb3422de64d29016394f1e42c2d92f2d34de6c288e78abf08ee946539
SHA512

0ade7f84e9774ca6322a6b3a54e21d28544e7b164832d5b2b08665b40d75228667194734746ef7c95471a392aa74f32ac057fbfda980562032bae727afe914a5
SSDEEP

12288:1KIdGZ5GJ2yWGicvzncNcFAP5axI4W5SC3gu9Hu4x5iwgqMBLF6qtBz:1xr25GVcLPMxCou9xxsuoJ3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cf307dcb3422de64d29016394f1e42c2d92f2d34de6c288e78abf08ee946539

Files

8cf307dcb3422de64d29016394f1e42c2d92f2d34de6c288e78abf08ee946539
.exe windows:4 windows x86 arch:x86

e922d37bd82071255d5f78284a431cf1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\TOOL\V53UartController\CTF拼接控制软件20210222\ctftech\MultiLCD\Release\MultiLCD.pdb

Imports

kernel32

SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
GetCommandLineA
GetProcessHeap
GetStartupInfoA
ExitProcess
SetStdHandle
GetFileType
HeapSize
GetACP
VirtualFree
HeapDestroy
HeapCreate
GetStdHandle
LCMapStringA
UnhandledExceptionFilter
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
SetHandleCount
GetConsoleCP
GetConsoleMode
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
TerminateProcess
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapReAlloc
HeapFree
HeapAlloc
RtlUnwind
SetErrorMode
FindResourceExA
GetCurrentDirectoryA
LocalFileTimeToFileTime
FileTimeToLocalFileTime
GetShortPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetThreadLocale
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
DeleteFileA
MoveFileA
GetOEMCP
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
LocalAlloc
GlobalFlags
GetProfileIntA
InterlockedDecrement
GetModuleFileNameW
SystemTimeToFileTime
FileTimeToSystemTime
VirtualProtect
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
GlobalFindAtomA
GlobalDeleteAtom
FreeLibrary
lstrcmpW
GlobalFree
CopyFileA
GlobalAlloc
FormatMessageA
LocalFree
GetCurrentProcessId
GlobalGetAtomNameA
GlobalAddAtomA
FreeResource
GetCPInfo
GetCurrentThreadId
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
CreateFileA
SetupComm
GetCommState
SetCommState
SetCommTimeouts
SetCommMask
EscapeCommFunction
PurgeComm
CloseHandle
ReadFile
WriteFile
GetTickCount
GlobalSize
GlobalLock
GlobalUnlock
MulDiv
GlobalReAlloc
GetVersionExA
SetLastError
GetProcAddress
GetModuleHandleA
LoadLibraryA
Sleep
GetStringTypeExA
lstrlenA
lstrcmpiA
CompareStringW
CompareStringA
lstrlenW
GetVersion
MultiByteToWideChar
InterlockedExchange
GetModuleFileNameA
GetLastError
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
LCMapStringW
SizeofResource

user32

DrawIcon
SetWindowRgn
GetWindowDC
BeginPaint
EndPaint
GetAsyncKeyState
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
SetParent
GetDCEx
LockWindowUpdate
CharNextA
CopyAcceleratorTableA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
PostThreadMessageA
UnregisterClassA
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
EnableMenuItem
CheckMenuItem
IsZoomed
SendDlgItemMessageA
IsChild
GetClassLongA
GetWindowTextLengthA
GetWindowTextA
GetTopWindow
DestroyWindow
GetMessageTime
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
MessageBoxA
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetWindowPlacement
GetMenuStringA
RegisterWindowMessageA
UnpackDDElParam
ReuseDDElParam
DestroyMenu
WinHelpA
SetFocus
GetWindowThreadProcessId
IsWindowEnabled
GetDlgItem
PeekMessageA
LoadAcceleratorsA
SetActiveWindow
FindWindowA
InsertMenuItemA
GetLastActivePopup
BringWindowToTop
SetMenu
ShowWindow
TranslateAcceleratorA
GetNextDlgTabItem
GetActiveWindow
GetIconInfo
CreateIconIndirect
DrawIconEx
GetDesktopWindow
ModifyMenuA
InsertMenuA
GetMenuState
GetMenuItemID
AppendMenuA
DeleteMenu
CreatePopupMenu
CreateMenu
SetWindowPos
TrackMouseEvent
IsMenu
SetMenuItemInfoA
SetWindowsHookExA
GetMenuItemCount
GetMenuItemRect
DestroyIcon
LoadBitmapA
GetClassNameA
GetWindowLongA
CallNextHookEx
CallWindowProcA
UnhookWindowsHookEx
SetWindowLongA
GetPropA
SetPropA
RemovePropA
GetForegroundWindow
GetSystemMenu
GetMenu
OffsetRect
SetRectEmpty
DrawStateA
GetMenuItemInfoA
GetMessageA
DispatchMessageA
GetDlgCtrlID
GetWindow
ValidateRect
DrawFocusRect
GetSysColorBrush
BeginDeferWindowPos
EndDeferWindowPos
EqualRect
GetDoubleClickTime
WindowFromPoint
IsWindowVisible
ClientToScreen
IsRectEmpty
CopyRect
ReleaseCapture
ClipCursor
GetMessagePos
IsClipboardFormatAvailable
IsWindow
GetClassInfoA
DefWindowProcA
GrayStringA
DrawTextExA
TabbedTextOutA
GetFocus
RegisterClipboardFormatA
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
TranslateMessage
PostQuitMessage
SetCapture
GetCapture
KillTimer
SetTimer
InvertRect
IntersectRect
CreateDialogIndirectParamA
EndDialog
SetCursorPos
RedrawWindow
IsIconic
GetKeyState
GetSysColor
DrawTextA
SetCursor
LoadCursorA
DrawEdge
FrameRect
FillRect
InflateRect
SetRect
SystemParametersInfoA
GetDC
ReleaseDC
PostMessageA
GetParent
LoadIconA
GetCursorPos
CloseWindow
LoadMenuA
GetSubMenu
ScreenToClient
PtInRect
InvalidateRect
GetWindowRect
SendMessageA
CharUpperA
LoadImageA
GetClientRect
UpdateWindow
GetSystemMetrics
EnableWindow
DestroyCursor

gdi32

IntersectClipRect
LineTo
MoveToEx
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
ExtSelectClipRgn
CreatePatternBrush
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
GetRgnBox
EnumFontFamiliesExA
CreateDIBSection
GetTextExtentPoint32W
GetBkMode
Ellipse
GetClipBox
SetPixel
SetBkColor
SetMapMode
SetBkMode
RestoreDC
SaveDC
LPtoDP
DPtoLP
CreateEllipticRgn
StretchDIBits
GetCharWidthA
CopyMetaFileA
GetObjectA
GetPixel
GetTextColor
DeleteObject
SetTextColor
DeleteDC
GetTextMetricsA
PatBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
BitBlt
GetBkColor
CreateCompatibleBitmap
CreateFontA
CreatePen
GetCurrentObject
GetDeviceCaps
GetTextExtentPoint32A
CreateFontIndirectA
GetStockObject
SetStretchBltMode
SetBrushOrgEx
StretchBlt
Rectangle
SelectObject
CreateCompatibleDC
CreateSolidBrush
CreateBitmap

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueA
RegQueryValueExA
RegOpenKeyExA
RegSetValueA
RegOpenKeyA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
RegEnumKeyA
RegDeleteKeyA
GetFileSecurityA
SetFileSecurityA

shell32

DragFinish
DragQueryFileA
SHGetFileInfoA
ExtractIconA
ShellExecuteExA

comctl32

ImageList_Draw
ImageList_GetIcon
ord17
_TrackMouseEvent

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

CoGetClassObject
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
OleGetClipboard
OleInitialize
CoFreeUnusedLibraries
StgOpenStorageOnILockBytes
CLSIDFromString
CLSIDFromProgID
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
CoRegisterMessageFilter
CoRevokeClassObject
OleUninitialize

oleaut32

SysAllocString
OleCreateFontIndirect
SafeArrayDestroy
VariantCopy
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
VarUdateFromDate
SystemTimeToVariantTime
VariantTimeToSystemTime
SysFreeString

winmm

PlaySoundA

Sections

.text
Size: 612KB - Virtual size: 611KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 132KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e922d37bd82071255d5f78284a431cf1

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

winmm

Sections

.text Size: 612KB - Virtual size: 611KB

.rdata Size: 136KB - Virtual size: 133KB

.data Size: 20KB - Virtual size: 31KB

.rsrc Size: 132KB - Virtual size: 129KB

.text
Size: 612KB - Virtual size: 611KB

.rdata
Size: 136KB - Virtual size: 133KB

.data
Size: 20KB - Virtual size: 31KB

.rsrc
Size: 132KB - Virtual size: 129KB