c554e7b1394814e79e1a93598309cb996d7d0c12b0dc412b248130f2ea40b706

Sharing

Copy URL Twitter E-mail

General

Target

c554e7b1394814e79e1a93598309cb996d7d0c12b0dc412b248130f2ea40b706
Size

320KB
MD5

7ca52e8c5690f4faa7c159b12b41db98
SHA1

325a76f5b4d01b66d7584441ce9b67c988b1e224
SHA256

c554e7b1394814e79e1a93598309cb996d7d0c12b0dc412b248130f2ea40b706
SHA512

0a2525882d2b289b478d53d0d9ad760fdcdd57e889884b9c5a8b782e532b5ed977ecb6a89f106a5471660b0ce71e1f3acb4cff5762007bd5fa714a2cc6ff7ea8
SSDEEP

6144:UCMCPRzvQlfk7ZO2qc+md3noG7TMBceML0LegKejUg/EfZh1:UC9PRjQZk7ZO2Cmd3oegyg2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c554e7b1394814e79e1a93598309cb996d7d0c12b0dc412b248130f2ea40b706

Files

c554e7b1394814e79e1a93598309cb996d7d0c12b0dc412b248130f2ea40b706
.exe windows:4 windows x86 arch:x86

0e6e5d82b10ae95eb774c44f17feb9dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcAddress
LoadLibraryA
GetVersion
GetPrivateProfileSectionA
GetUserDefaultLangID
GetCurrentProcess
GetModuleHandleA
_lclose
OpenFile
CreateThread
GetLocalTime
CompareStringW
CompareStringA
FlushFileBuffers
SetStdHandle
GetTimeZoneInformation
HeapReAlloc
VirtualAlloc
DeleteFileA
GetStringTypeA
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
SetLastError
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
TerminateProcess
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
GetWindowsDirectoryA
GetFileAttributesA
GetVersionExA
GetSystemInfo
WinExec
GetSystemDirectoryA
FreeLibrary
QueryDosDeviceA
DefineDosDeviceA
GetCurrentDirectoryA
Sleep
LCMapStringA
SetEnvironmentVariableA
MultiByteToWideChar
lstrlenA
GetFileType
CopyFileA
GetLastError
FormatMessageA
OutputDebugStringA
CreateFileA
SetFilePointer
WriteFile
GetStringTypeW
CloseHandle
WideCharToMultiByte
HeapAlloc
HeapFree
ExitProcess
GetCommandLineA
GetStartupInfoA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindNextFileA
FindFirstFileA

user32

IsDlgButtonChecked
PostMessageA
SetFocus
GetWindowTextLengthA
CharUpperBuffA
ShowWindow
DestroyWindow
EnableWindow
FindWindowExA
EnumChildWindows
GetWindowTextA
GetDlgItem
SendMessageA
SetDlgItemTextA
GetDlgItemTextA
SetWindowTextA
LoadIconA
CheckDlgButton
SendDlgItemMessageA
LoadStringA
MessageBoxA
CharUpperA
DialogBoxParamA
DefWindowProcA
EndDialog

comdlg32

GetSaveFileNameA

advapi32

RegDeleteKeyA
RegQueryValueExA
RegEnumValueA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
CloseServiceHandle
OpenServiceA
DeleteService
RegCloseKey
OpenSCManagerA
CreateServiceA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA

comctl32

InitCommonControlsEx
ord17

cfgmgr32

CM_Get_Sibling
CM_Get_Child
CM_Reenumerate_DevNode
CM_Locate_DevNodeA
CM_Get_DevNode_Status
CM_Get_Device_IDA
CM_Get_Parent

setupapi

SetupDiOpenDeviceInfoA
SetupDiSetSelectedDevice
SetupDiCallClassInstaller
SetupDiGetSelectedDriverA
SetupDiGetINFClassA
SetupDiBuildDriverInfoList
SetupDiCreateDeviceInfoList
SetupDiEnumDriverInfoA
SetupDiGetDriverInfoDetailA
SetupDiDestroyDriverInfoList
SetupDiDestroyDeviceInfoList
SetupDiSetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceInstallParamsA
SetupDiSetDeviceInstallParamsA
SetupDiGetDeviceRegistryPropertyA
SetupDiOpenDevRegKey

netnowiodll

CloseGENPort
OpenGENPort
FindCH38XCard
CH38xWriteEEPROM
CH38xReadEEPROM

Sections

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 44KB - Virtual size: 1.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0e6e5d82b10ae95eb774c44f17feb9dd

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

shell32

comctl32

cfgmgr32

setupapi

netnowiodll

Sections

.text Size: 80KB - Virtual size: 77KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 44KB - Virtual size: 1.2MB

.rsrc Size: 176KB - Virtual size: 176KB

.text
Size: 80KB - Virtual size: 77KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 44KB - Virtual size: 1.2MB

.rsrc
Size: 176KB - Virtual size: 176KB