fe833efd42b0db809bef25614d6bca4bc87ef6497b53146bb4cca379da0a5f9f

Sharing

Copy URL Twitter E-mail

General

Target

fe833efd42b0db809bef25614d6bca4bc87ef6497b53146bb4cca379da0a5f9f
Size

2.0MB
MD5

a9891d5fefd0295541e2416d43ffc696
SHA1

64148e031b09b9229a1e0adb480af890b256530a
SHA256

fe833efd42b0db809bef25614d6bca4bc87ef6497b53146bb4cca379da0a5f9f
SHA512

cef181f331bd46943bd7c2fe9c7d0eb6019cd535165db75f704e3ca4bfab1bfa385ad5d15b2e0149f6dc52663007fb97327cb2215752e70737cb213b8ba4c22b
SSDEEP

49152:jmcnHSvw5iMCtLg5cCSyB86oFTW/UL8Al2GXprQP:jmcnyvzBtLgmCSyB86o1W/UL8Al2GXp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fe833efd42b0db809bef25614d6bca4bc87ef6497b53146bb4cca379da0a5f9f

Files

fe833efd42b0db809bef25614d6bca4bc87ef6497b53146bb4cca379da0a5f9f
.dll windows:6 windows x86 arch:x86

b0878943bc1280f664d3157c75337773

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

D:\wen\5寸\USBHID5inch\XTJZFiveInchUsb\Release\XTJZFiveInch.pdb

Imports

hidapi

hid_error
hid_close
hid_read_timeout
hid_write
hid_open_path
hid_free_enumeration
hid_enumerate
hid_exit
hid_init

kernel32

GetEnvironmentStringsW
FindNextFileW
GetOEMCP
GetACP
IsValidCodePage
GetTempPathW
GetLastError
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
InitializeCriticalSectionEx
DeleteCriticalSection
WaitForSingleObject
FreeLibrary
GetProcAddress
LoadResource
LockResource
SizeofResource
FindResourceW
LoadLibraryW
MultiByteToWideChar
WideCharToMultiByte
CloseHandle
SetEvent
CreateEventW
GetModuleFileNameW
GetModuleHandleW
GetPrivateProfileStringW
WritePrivateProfileStringW
DecodePointer
RaiseException
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
SetEnvironmentVariableW
GetProcessHeap
FreeEnvironmentStringsW
SwitchToThread
LCMapStringW
GetStringTypeW
GetCPInfo
GetDriveTypeA
WriteConsoleW
DeviceIoControl
RtlUnwind
InterlockedFlushSList
GetSystemInfo
VirtualAlloc
VirtualQuery
CreateThread
ExitThread
FreeLibraryAndExitThread
GetModuleHandleExW
GetFileType
QueryPerformanceFrequency
GetCommandLineA
GetCommandLineW
HeapQueryInformation
SetStdHandle
ExitProcess
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetStdHandle
GetLocalTime
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
GetUserDefaultLCID
IsValidLocale
EnumSystemLocalesW
GetConsoleOutputCP
GetTimeZoneInformation
FindFirstFileExW
OutputDebugStringW
SetLastError
GlobalAlloc
CreateFileA
GetTempFileNameW
Sleep
SearchPathW
GetProfileIntW
GetTickCount
VerifyVersionInfoW
VerSetConditionMask
GetWindowsDirectoryW
FindResourceExW
lstrcpyW
SystemTimeToTzSpecificLocalTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
VirtualProtect
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
CreateFileW
DeleteFileW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryW
GlobalFindAtomW
LoadLibraryA
FreeResource
GetSystemDirectoryW
EncodePointer
SetErrorMode
GlobalFlags
FileTimeToSystemTime
GlobalGetAtomNameW
CompareStringW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
GlobalAddAtomW
GetPrivateProfileIntW
GlobalSize
lstrcmpW
lstrcmpA
GlobalDeleteAtom
LoadLibraryExW
GetModuleHandleA
GetVersionExW
GetCurrentThread
OutputDebugStringA
ResumeThread
SetThreadPriority
GetCurrentThreadId
CopyFileW
FormatMessageW
MulDiv
LocalFree
GlobalFree
GlobalUnlock
GlobalLock

user32

LockWindowUpdate
SetRect
CopyAcceleratorTableW
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
WaitMessage
PostThreadMessageW
GetComboBoxInfo
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
MonitorFromPoint
UpdateLayeredWindow
UnionRect
DrawIcon
FrameRect
CopyIcon
SetCursorPos
BringWindowToTop
GetSystemMenu
IsZoomed
DrawFrameControl
DrawEdge
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
SetParent
SetWindowRgn
EnumDisplayMonitors
SetLayeredWindowAttributes
LoadMenuW
GetKeyNameTextW
MapVirtualKeyW
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
MessageBeep
GetIconInfo
DrawIconEx
IsRectEmpty
DrawFocusRect
WindowFromPoint
ReleaseCapture
SetCapture
GetNextDlgGroupItem
LoadImageW
TrackMouseEvent
MapDialogRect
GetAsyncKeyState
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
SetMenuDefaultItem
SetRectEmpty
SendDlgItemMessageA
GetMenuItemInfoW
DestroyMenu
CharUpperW
DestroyIcon
InvalidateRect
KillTimer
SetTimer
DeleteMenu
SystemParametersInfoW
CopyImage
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
GetTopWindow
GetClassLongW
EqualRect
MapWindowPoints
AdjustWindowRectEx
GetClientRect
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
RegisterWindowMessageW
RealChildWindowFromPoint
GetClassNameW
GetDesktopWindow
PtInRect
GetWindowRect
IsDialogMessageW
GetDoubleClickTime
ModifyMenuW
RegisterClipboardFormatW
CharUpperBuffW
IsClipboardFormatAvailable
GetUpdateRect
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
DispatchMessageA
OffsetRect
GetWindow
SetWindowLongW
SetWindowTextW
SetFocus
GetDlgCtrlID
CheckDlgButton
GetDlgItem
SetWindowPos
MoveWindow
ShowWindow
IsWindow
IntersectRect
InflateRect
CopyRect
GetWindowTextLengthW
GetWindowTextW
LoadCursorW
GetSysColorBrush
GetSystemMetrics
UnhookWindowsHookEx
GetLastActivePopup
GetWindowThreadProcessId
GetWindowLongW
MessageBoxW
IsWindowEnabled
EnableWindow
SetCursor
ShowOwnedPopups
PostQuitMessage
PostMessageW
CallNextHookEx
SetWindowsHookExW
GetCursorPos
ValidateRect
GetKeyState
GetActiveWindow
IsWindowVisible
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
LoadBitmapW
GetParent
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
SendMessageW
FillRect
GetSysColor
ScreenToClient
ClientToScreen
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
UnregisterClassW
PeekMessageA
SetClassLongW

gdi32

CreateRectRgn
CreateSolidBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreatePatternBrush
CreateFontIndirectW
CreateRectRgnIndirect
PatBlt
SetRectRgn
DPtoLP
GetTextExtentPoint32W
GetTextMetricsW
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
Rectangle
GetRgnBox
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
CreatePen
CreateHatchBrush
CreateBitmap
BitBlt
CreateDCW
CopyMetaFileW
DeleteDC
DeleteObject
CreateDIBSection
GetObjectW
CreateCompatibleDC
SelectObject
CombineRgn
GetDeviceCaps
SetDIBColorTable

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey

shell32

SHGetFileInfoW
ShellExecuteW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
DragQueryFileW
DragFinish
SHAppBarMessage
SHBrowseForFolderW

shlwapi

PathFindExtensionW
PathStripToRootW
PathRemoveFileSpecW
StrFormatKBSizeW
PathIsUNCW
PathFindFileNameW

uxtheme

OpenThemeData
GetThemePartSize
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
GetWindowTheme
GetCurrentThemeName
GetThemeColor
DrawThemeText
DrawThemeBackground
CloseThemeData
DrawThemeParentBackground

ole32

RegisterDragDrop
RevokeDragDrop
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
CoInitializeEx
CoDisconnectObject
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc

oleaut32

SysFreeString
VariantInit
VarBstrFromDate
VariantChangeType
VariantCopy
VariantClear
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocStringLen
LoadTypeLi
SysAllocString

gdiplus

GdipAlloc
GdiplusShutdown
GdipCloneImage
GdipDisposeImage
GdipSaveImageToFile
GdipCreateBitmapFromScan0
GdiplusStartup
GdipFree
GdipBitmapLockBits
GdipCreateBitmapFromHBITMAP
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromStream
GdipDrawImageI
GdipDeleteGraphics
GdipBitmapSetPixel
GdipBitmapGetPixel
GdipBitmapUnlockBits
GdipGetImageEncodersSize
GdipCreateBitmapFromFile
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipGetImageEncoders

oleacc

LresultFromObject
CreateStdAccessibleObject
AccessibleObjectFromWindow

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Exports

Exports

CloseComDevice
CloseScreenCom
ComChineseLauguage
ComCloseGetPictureTimer
ComEnglishLauguage
ComFindPicture
ComOpenGetPictureTimer
ComRe_Write
ComSendAdvantageImage
ComSetBackGroundAdv
ComSetLogoBackgroundImage
ComSetPictureSavePath
ComSetSignBackgroundImage
ComSignOK
ComWhiteScreen
OpenComDevice
OpenFigCom
OpenScreenCom
QuitFigCom

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 349KB - Virtual size: 349KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 23KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0878943bc1280f664d3157c75337773

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

hidapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

Exports

Exports

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.rdata Size: 349KB - Virtual size: 349KB

.data Size: 23KB - Virtual size: 178KB

.rsrc Size: 12KB - Virtual size: 12KB

.reloc Size: 138KB - Virtual size: 137KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.rdata
Size: 349KB - Virtual size: 349KB

.data
Size: 23KB - Virtual size: 178KB

.rsrc
Size: 12KB - Virtual size: 12KB

.reloc
Size: 138KB - Virtual size: 137KB