b8776f2fc42bd631f17105a3a6b75b4a30cf84d726145afce8dde00471b1489f

Sharing

Copy URL Twitter E-mail

General

Target

b8776f2fc42bd631f17105a3a6b75b4a30cf84d726145afce8dde00471b1489f
Size

264KB
MD5

4232daa9d14f173d9086924e88aceee0
SHA1

90a8a6fe1e458876cde768267e914b1ee825c7d8
SHA256

b8776f2fc42bd631f17105a3a6b75b4a30cf84d726145afce8dde00471b1489f
SHA512

790cd04ddca8f1e4aa16030b9b0bdbcd818368553ecce18c2c22432d48d96a6b40d391f12d9f88669bb05df6687edce81a114c6fab1df00901282d2675b90528
SSDEEP

3072:VDPWOwvzPZbO310PE8pc10YCP6VzKdCEVGzaRyie8DSxR8CO7HzYTRdn:VD2vzPZbO31DCP6VzazxyYDQDOvYTT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8776f2fc42bd631f17105a3a6b75b4a30cf84d726145afce8dde00471b1489f

Files

b8776f2fc42bd631f17105a3a6b75b4a30cf84d726145afce8dde00471b1489f
.exe windows:5 windows x64 arch:x64

dc709df860aa6f52668067cc729689ec

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

PDB Paths

D:\Work\Barcode\program\etc\etc\DataMatrixConfigWizard_1.1.x.x\DataMatrixConfigWizard\x64\Release\DatamatixConfigWizard.pdb

Imports

barcode_x64

BCD_Insp_Return_PPDB
BCD_Inspection
BCD_Use_NEW_Barcode_Set
BCD_EncoderType_Order
BCD_PPDB_Alloc
BCD_Close
BCD_Set_PPBD
BCD_Open

imvr_x64

IMVR_CreateResource
IMVR_CreateView
IMVR_DeleteOverlay
IMVR_GetOverlayWithIndex
IMVR_GetSelectedOverlayID
IMVR_PreTranslateMessage
IMVR_SetMutiSelectMode
IMVR_InsertOverlay
IMVR_SetMouseMultiSelectMode
IMVR_GetOverayCount
IMVR_SetUseViewMousePoint
IMVR_GetImageInfo
IMVR_GetImagePtr
IMVR_GetOverlayID
IMVR_InsertOverayToImage
IMVR_DeleteImage
IMVR_SetOverlayWithIndex
IMVR_GetOverlayRect
IMVR_DeleteView
IMVR_DeleteAllImage
IMVR_DeleteAllOverlay
IMVR_ZoomFit
IMVR_SetImageMoveRButton
IMVR_LoadFromFile
IMVR_Draw

mfc100u

ord2354
ord7088
ord2791
ord2794
ord12251
ord5338
ord2663
ord2884
ord2885
ord3486
ord10101
ord9747
ord7870
ord10805
ord1290
ord926
ord928
ord959
ord3836
ord12163
ord4755
ord3998
ord4758
ord4059
ord4043
ord1291
ord411
ord7624
ord6954
ord11618
ord12581
ord4623
ord7222
ord12830
ord11517
ord1953
ord9216
ord1190
ord776
ord12453
ord3163
ord3147
ord3254
ord3249
ord3150
ord3242
ord6453
ord12677
ord8241
ord10846
ord4620
ord4628
ord12014
ord12926
ord12012
ord4626
ord906
ord3320
ord11674
ord12395
ord11683
ord340
ord4457
ord4989
ord7058
ord12068
ord5834
ord5616
ord2138
ord5562
ord4195
ord4200
ord3277
ord885
ord5871
ord8037
ord5255
ord8084
ord10892
ord7964
ord2355
ord12255
ord5340
ord2751
ord3622
ord5570
ord7957
ord2659
ord3608
ord7596
ord2530
ord3310
ord1877
ord5637
ord5112
ord7961
ord3611
ord6959
ord5879
ord5243
ord1486
ord2754
ord2853
ord3625
ord6085
ord369
ord6451
ord10845
ord1240
ord3162
ord5868
ord2748
ord2850
ord6609
ord9138
ord878
ord5894
ord9019
ord13766
ord11523
ord10891
ord10922
ord9189
ord7094
ord3942
ord10918
ord10910
ord5049
ord3295
ord13189
ord13192
ord13190
ord13193
ord13188
ord13191
ord6898
ord11150
ord12889
ord10658
ord13782
ord1716
ord6853
ord11542
ord3484
ord3543
ord8221
ord13008
ord6836
ord13002
ord11158
ord11157
ord2117
ord4570
ord13475
ord11463
ord7246
ord7321
ord1270
ord12387
ord837
ord1868
ord6895
ord2076
ord1492
ord1490
ord1497
ord4228
ord4265
ord4236
ord4248
ord4244
ord4240
ord4270
ord4261
ord4232
ord4274
ord4253
ord4219
ord4223
ord4256
ord3857
ord13687
ord3850
ord2577
ord13003
ord6837
ord13009
ord5910
ord10414
ord12208
ord5064
ord2286
ord10798
ord3362
ord2859
ord2858
ord2759
ord10841
ord4473
ord4737
ord4907
ord8174
ord4715
ord4935
ord4476
ord6669
ord6670
ord6660
ord4610
ord7096
ord9024
ord8038
ord373
ord1252
ord1244
ord992
ord908
ord6087
ord285
ord12756
ord5019
ord2541
ord1276
ord1900
ord2527
ord5052
ord286
ord1454
ord280
ord265
ord266
ord4131
ord856
ord10651
ord13768
ord13767
ord13765
ord13769
ord13752
ord13680
ord13681
ord7968
ord10763
ord3282
ord10626
ord13001
ord7803
ord5998
ord9734
ord8063
ord2760
ord12359
ord10928
ord10926
ord4910
ord1479
ord11056
ord2458
ord1288
ord1428
ord306
ord1430
ord891
ord7967
ord4612
ord1247
ord296
ord890
ord1278
ord7609
ord2050

msvcr100

__C_specific_handler
__crt_debugger_hook
?_type_info_dtor_internal_method@type_info@@QEAAXXZ
_onexit
_lock
__dllonexit
_unlock
?terminate@@YAXXZ
__set_app_type
_fmode
_commode
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_wcmdln
exit
_cexit
_exit
_XcptFilter
__CxxFrameHandler3
__wgetmainargs
_amsg_exit
labs
floorf
_wtof
remove
rename
_wtoi
ceil
??1exception@std@@UEAA@XZ
?what@exception@std@@UEBAPEBDXZ
??0exception@std@@QEAA@AEBQEBD@Z
??0exception@std@@QEAA@AEBV01@@Z
_CxxThrowException
memmove
strlen
memcpy
floor
_waccess

kernel32

DeleteFileW
GetPrivateProfileStringW
CloseHandle
SystemTimeToTzSpecificLocalTime
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
SetUnhandledExceptionFilter
DecodePointer
EncodePointer
GetStartupInfoW
Sleep
GetTickCount
LoadLibraryW
GetProcAddress
CreateEventW
GetLastError
WritePrivateProfileStringW
CreateFileW
GetFileTime
FileTimeToSystemTime

user32

SwitchToThisWindow
PostQuitMessage
LoadIconW
LoadCursorW
EnableWindow
SendMessageW
GetFocus
KillTimer
InvalidateRect
ReleaseDC
GetDC
ScreenToClient
GetClientRect
GetWindowRect
PostMessageW
SetCursor
GetCursorPos
PtInRect
SetCursorPos
SetRect
FindWindowW

gdi32

Rectangle
ExtCreatePen
StretchDIBits

comctl32

InitCommonControlsEx

oleaut32

SysFreeString

opencv_imgproc2410

?convexHull@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@_N2@Z
?arcLength@cv@@YANAEBV_InputArray@1@_N@Z
?approxPolyDP@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@N_N@Z
?cvtColor@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@HH@Z
?Sobel@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@HHHHNNH@Z
?minAreaRect@cv@@YA?AVRotatedRect@1@AEBV_InputArray@1@@Z
?findContours@cv@@YAXAEBV_OutputArray@1@00HHV?$Point_@H@1@@Z
?boundingRect@cv@@YA?AV?$Rect_@H@1@AEBV_InputArray@1@@Z
?contourArea@cv@@YANAEBV_InputArray@1@_N@Z
?drawContours@cv@@YAXAEBV_OutputArray@1@AEBV_InputArray@1@HAEBV?$Scalar_@N@1@HH1HV?$Point_@H@1@@Z
?adaptiveThreshold@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@NHHHN@Z
?morphologyEx@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@H0V?$Point_@H@1@HHAEBV?$Scalar_@N@1@@Z
?GaussianBlur@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@V?$Size_@H@1@NNH@Z
?getRotationMatrix2D@cv@@YA?AVMat@1@V?$Point_@M@1@NN@Z
?warpAffine@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@0V?$Size_@H@1@HHAEBV?$Scalar_@N@1@@Z
?threshold@cv@@YANAEBV_InputArray@1@AEBV_OutputArray@1@NNH@Z

opencv_highgui2410

?imread@cv@@YA?AVMat@1@AEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@H@Z
?imwrite@cv@@YA_NAEBV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AEBV_InputArray@1@AEBV?$vector@HV?$allocator@H@std@@@3@@Z

opencv_core2410

?points@RotatedRect@cv@@QEBAXQEAV?$Point_@M@2@@Z
??0_OutputArray@cv@@QEAA@AEBVMat@1@@Z
?clear@_OutputArray@cv@@UEBAXXZ
?release@_OutputArray@cv@@UEBAXXZ
?create@_OutputArray@cv@@UEBAXV?$Size_@H@2@HH_NH@Z
?create@_OutputArray@cv@@UEBAXHHHH_NH@Z
?create@_OutputArray@cv@@UEBAXHPEBHHH_NH@Z
?getMatRef@_OutputArray@cv@@UEBAAEAVMat@2@H@Z
?needed@_OutputArray@cv@@UEBA_NXZ
?fixedType@_OutputArray@cv@@UEBA_NXZ
?fixedSize@_OutputArray@cv@@UEBA_NXZ
?empty@_InputArray@cv@@UEBA_NXZ
?channels@_InputArray@cv@@UEBAHH@Z
?depth@_InputArray@cv@@UEBAHH@Z
?fastFree@cv@@YAXPEAX@Z
?deallocate@Mat@cv@@QEAAXXZ
?_interlockedExchangeAdd@cv@@YAHPEAHH@Z
?flip@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@H@Z
?transpose@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@@Z
?meanStdDev@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@10@Z
?bitwise_not@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@0@Z
?noArray@cv@@YAAEBV_OutputArray@1@XZ
??0_InputArray@cv@@QEAA@AEBVMat@1@@Z
?copyTo@Mat@cv@@QEBAXAEBV_OutputArray@2@@Z
??0_OutputArray@cv@@QEAA@AEAVMat@1@@Z
??4Mat@cv@@QEAAAEAV01@AEBV?$Scalar_@N@1@@Z
?copySize@Mat@cv@@QEAAXAEBV12@@Z
?create@Mat@cv@@QEAAXHPEBHH@Z
??0Mat@cv@@QEAA@AEBV01@AEBV?$Rect_@H@1@@Z
?zeros@Mat@cv@@SA?AVMatExpr@2@HHH@Z
?zeros@Mat@cv@@SA?AVMatExpr@2@V?$Size_@H@2@H@Z
?fillConvexPoly@cv@@YAXAEBV_OutputArray@1@AEBV_InputArray@1@AEBV?$Scalar_@N@1@HH@Z
?bitwise_xor@cv@@YAXAEBV_InputArray@1@0AEBV_OutputArray@1@0@Z
?line@cv@@YAXAEAVMat@1@V?$Point_@H@1@1AEBV?$Scalar_@N@1@HHH@Z
?addWeighted@cv@@YAXAEBV_InputArray@1@N0NNAEBV_OutputArray@1@H@Z
?convertScaleAbs@cv@@YAXAEBV_InputArray@1@AEBV_OutputArray@1@NN@Z
?setTo@Mat@cv@@QEAAAEAV12@AEBV_InputArray@2@0@Z
??0_InputArray@cv@@QEAA@AEBN@Z
?copyTo@Mat@cv@@QEBAXAEBV_OutputArray@2@AEBV_InputArray@2@@Z
??0Mat@cv@@QEAA@AEBV01@AEBVRange@1@1@Z
?rectangle@cv@@YAXAEAVMat@1@V?$Rect_@H@1@AEBV?$Scalar_@N@1@HHH@Z
?circle@cv@@YAXAEAVMat@1@V?$Point_@H@1@HAEBV?$Scalar_@N@1@HHH@Z
?getMat@_InputArray@cv@@UEBA?AVMat@2@H@Z
?getMatVector@_InputArray@cv@@UEBAXAEAV?$vector@VMat@cv@@V?$allocator@VMat@cv@@@std@@@std@@@Z
?getGlBuffer@_InputArray@cv@@UEBA?AVGlBuffer@2@XZ
?getGlTexture@_InputArray@cv@@UEBA?AVGlTexture@2@XZ
?getGpuMat@_InputArray@cv@@UEBA?AVGpuMat@gpu@2@XZ
?kind@_InputArray@cv@@UEBAHXZ
?size@_InputArray@cv@@UEBA?AV?$Size_@H@2@H@Z
?total@_InputArray@cv@@UEBA_KH@Z
?type@_InputArray@cv@@UEBAHH@Z

msvcp100

?_Swap_all@_Container_base0@std@@QEAAXAEAU12@@Z
?_Xlength_error@std@@YAXPEBD@Z
?_Xout_of_range@std@@YAXPEBD@Z
?_Orphan_all@_Container_base0@std@@QEAAXXZ

Sections

.text
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

��
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dc709df860aa6f52668067cc729689ec

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

barcode_x64

imvr_x64

mfc100u

msvcr100

kernel32

user32

gdi32

comctl32

oleaut32

opencv_imgproc2410

opencv_highgui2410

opencv_core2410

msvcp100

Sections

.text Size: 173KB - Virtual size: 173KB

.rdata Size: 57KB - Virtual size: 56KB

.data Size: 1KB - Virtual size: 4KB

.pdata Size: 11KB - Virtual size: 10KB

.rsrc Size: 11KB - Virtual size: 11KB

�� Size: 3KB - Virtual size: 2KB

.text
Size: 173KB - Virtual size: 173KB

.rdata
Size: 57KB - Virtual size: 56KB

.data
Size: 1KB - Virtual size: 4KB

.pdata
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 11KB - Virtual size: 11KB

��
Size: 3KB - Virtual size: 2KB