CS DC55 Update_HV-KB432L_UKPB_K45_BY816_20190813[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

CS DC55 Update_HV-KB432L_UKPB_K45_BY816_20190813.zip
Size

1.8MB
MD5

6bd4755844950d273fc6b357c58f98f7
SHA1

dadbe4c7a01e6f9845c60f5c6cd29dd7a9af6a0f
SHA256

441e926a9e1c84fc098f9820d5315cd8b44fa7d0eb1fd5bff6739ebe452802aa
SHA512

4b6e316ca8ac92d9f0e9a0ebd1360b9ba65659145488649a4157d99041cc15f3ac18fb8af5327bc49c20cc5bb9eed017ef694a2ce82d81477ef23d5c61208c9b
SSDEEP

49152:DfDGyGzWDk5fUTmjbJVUOX/ldk/C7AppnDZzSGdXat:jDSzWCfUmjbXU2U/CsDvm

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/BY_ISP_TOOL.exe
unpack001/UpdateCodeTool.mtp

Files

CS DC55 Update_HV-KB432L_UKPB_K45_BY816_20190813.zip
.zip
BY_ISP_TOOL.exe
.exe windows:5 windows x86 arch:x86

835e957fe9469ecac8dda6e60de5936c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\VSProj\C++\SH25F273_MP_TOOL - Clear EEPROM - 副本\SH25F273_MP_TOOL - Clear EEPROM - 萵掛\Release\BY_ISP_TOOL.pdb

Imports

setupapi

SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW

hid

HidD_GetPreparsedData
HidP_GetCaps
HidD_FreePreparsedData
HidD_SetFeature
HidD_GetFeature
HidD_GetHidGuid
HidD_GetAttributes

kernel32

FindResourceW
CreateFileW
GetLastError
CloseHandle
Sleep
GetModuleFileNameW
GetPrivateProfileIntW
GetPrivateProfileStringW
GetVersionExW
CreateMutexW
InitializeCriticalSection
DeleteCriticalSection
WaitForSingleObject
LoadResource
CreateEventW
MultiByteToWideChar
LockResource
WritePrivateProfileStringW
SetEvent
InterlockedDecrement
InitializeCriticalSectionAndSpinCount
WideCharToMultiByte
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
GlobalFree
LocalFree
MulDiv
FormatMessageW
CopyFileW
SetLastError
GetFileAttributesW
OutputDebugStringA
GetVersion
GetModuleHandleA
GetModuleHandleW
GetProcAddress
LoadLibraryA
LoadLibraryW
SetThreadPriority
SizeofResource
LeaveCriticalSection
EnterCriticalSection
GetSystemDefaultLangID
OpenEventW
FileTimeToLocalFileTime
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
SetEnvironmentVariableA
GetTimeZoneInformation
LCMapStringW
SetFilePointerEx
GetStringTypeW
lstrlenA
HeapAlloc
HeapQueryInformation
HeapSize
HeapReAlloc
HeapFree
ReadConsoleW
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
GetConsoleMode
GetConsoleCP
WaitForSingleObjectEx
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
GetProcessHeap
SetStdHandle
GetSystemTimeAsFileTime
WriteConsoleW
OutputDebugStringW
GetFileType
GetStdHandle
VirtualQuery
VirtualAlloc
GetModuleFileNameA
ExitThread
CreateThread
ExitProcess
RaiseException
RtlUnwind
GetSystemInfo
HeapValidate
IsProcessorFeaturePresent
IsDebuggerPresent
GetModuleHandleExW
GetCommandLineW
SearchPathW
GetTempPathW
VerifyVersionInfoW
VerSetConditionMask
GetTickCount
GetTempFileNameW
GetFileSizeEx
GetFileAttributesExW
lstrcpyW
GetWindowsDirectoryW
FindResourceExW
lstrcmpiW
GetCurrentProcess
GetHandleInformation
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
DeleteFileW
GetCurrentDirectoryW
VirtualProtect
GetProfileIntW
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetErrorMode
InterlockedIncrement
GetThreadLocale
FileTimeToSystemTime
GetAtomNameW
GetCurrentProcessId
lstrcmpA
GetCurrentThread
InterlockedExchange
GlobalGetAtomNameW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeResource
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
DecodePointer
EncodePointer
ResumeThread
SuspendThread
GetFileTime

user32

TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
EmptyClipboard
SetClipboardData
CloseClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
RegisterClipboardFormatW
GetIconInfo
DrawIconEx
UnregisterClassW
ReuseDDElParam
LoadImageW
TranslateAcceleratorW
CharUpperW
DestroyIcon
MessageBeep
CopyAcceleratorTableW
CharNextW
LoadAcceleratorsW
WaitMessage
GetAsyncKeyState
ReleaseCapture
SetRectEmpty
UnpackDDElParam
GetClipboardFormatNameW
GetClipboardFormatNameA
RealChildWindowFromPoint
CopyImage
SystemParametersInfoW
DestroyMenu
GetWindowThreadProcessId
SetCursor
GetCursorPos
TranslateMessage
GetMessageW
PostQuitMessage
SendDlgItemMessageA
MapVirtualKeyW
GetKeyNameTextW
EndDialog
CreateDialogIndirectParamW
GetMenuCheckMarkDimensions
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetClassNameW
GetClassLongW
EqualRect
CopyRect
GetSysColor
MessageBoxW
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ScrollWindow
TrackPopupMenu
SetMenu
GetMenu
GetKeyState
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
DestroyWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
NotifyWinEvent
MapDialogRect
LoadIconW
GetComboBoxInfo
GetWindow
GetLastActivePopup
GetTopWindow
SetParent
GetDesktopWindow
WindowFromPoint
MapWindowPoints
ScreenToClient
ClientToScreen
HideCaret
SetWindowContextHelpId
GetWindowRect
GetClientRect
EnableScrollBar
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
LockWindowUpdate
RedrawWindow
InvalidateRgn
ValidateRect
InvalidateRect
GetWindowRgn
SetWindowRgn
GetUpdateRect
EndPaint
BeginPaint
ReleaseDC
GetWindowDC
GetDC
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
UpdateWindow
GetSystemMenu
DrawMenuBar
KillTimer
SetTimer
SetCapture
GetCapture
GetActiveWindow
OpenClipboard
GetNextDlgTabItem
GetNextDlgGroupItem
IsZoomed
BringWindowToTop
IsIconic
IsWindowVisible
ShowOwnedPopups
GetSystemMetrics
RegisterDeviceNotificationW
SubtractRect
UnionRect
IntersectRect
IsChild
PostThreadMessageW
PostMessageW
IsDialogMessageW
GetParent
SetWindowLongW
GetWindowLongW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
IsWindowEnabled
OffsetRect
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
SetCursorPos
SetClassLongW
GetDoubleClickTime
CopyIcon
CharUpperBuffW
IsRectEmpty
EnableWindow
GetFocus
DefMDIChildProcW
TranslateMDISysAccel
IsClipboardFormatAvailable
DestroyCursor
PtInRect
LoadCursorW
InflateRect
SetRect
IsMenu
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
DrawEdge
DrawFrameControl
LoadMenuW
CreateMenu
CreatePopupMenu
CheckMenuItem
EnableMenuItem
ModifyMenuW
DeleteMenu
SetMenuItemBitmaps
InsertMenuItemW
GetMenuItemInfoW
SetMenuItemInfoW
GetMenuDefaultItem
SetMenuDefaultItem
DrawIcon
DrawTextW
DrawTextExW
GrayStringW
DrawStateW
TabbedTextOutW
GetSysColorBrush
DrawFocusRect
FillRect
FrameRect
InvertRect
LoadBitmapW
SendMessageW
IsWindow
ShowWindow
MoveWindow
SetWindowPos
GetDlgItem
CheckDlgButton
GetDlgCtrlID
SetFocus
DefFrameProcW

gdi32

CreateDCW
CopyMetaFileW
GetStockObject
CreateSolidBrush
CreatePen
CreatePatternBrush
CreateRectRgn
CreateRectRgnIndirect
CreateRoundRectRgn
Ellipse
Escape
ExtFloodFill
FillRgn
FrameRgn
GetBkColor
GetBoundsRect
GetMapMode
GetNearestPaletteIndex
GetObjectType
GetPaletteEntries
GetPixel
GetRgnBox
GetTextColor
GetTextExtentPoint32W
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
OffsetRgn
PatBlt
PtInRegion
PtVisible
RectVisible
Rectangle
RealizePalette
RoundRect
SelectObject
SetPaletteEntries
SetPixel
SetPixelV
StretchBlt
SetRectRgn
GetTextMetricsW
GetDeviceCaps
GetObjectW
TextOutW
ExtTextOutW
CreatePolygonRgn
DPtoLP
LPtoDP
Polygon
Polyline
GetTextFaceW
SetBkColor
SetTextColor
DeleteDC
DeleteObject
ExcludeClipRect
GetClipBox
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
EnumFontFamiliesExW
GetSystemPaletteEntries
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateDIBSection
SetDIBColorTable
BitBlt
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateCompatibleDC
CreateEllipticRgn
CreateFontIndirectW
CreateFontW
CreateHatchBrush
CreatePalette

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RevertToSelf
SetThreadToken
RegEnumKeyExW
RegEnumValueW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegCloseKey
OpenThreadToken

shell32

DragQueryFileW
SHGetFileInfoW
DragFinish
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
SHBrowseForFolderW
ShellExecuteW

comctl32

InitCommonControlsEx

shlwapi

PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathFindFileNameW
PathFindExtensionW

uxtheme

IsAppThemed
DrawThemeText
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
GetThemeColor
GetCurrentThemeName
GetThemeSysColor
GetWindowTheme
DrawThemeBackground
CloseThemeData
OpenThemeData
GetThemePartSize

ole32

OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoRevokeClassObject
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
StringFromGUID2
CoInitialize
CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CreateStreamOnHGlobal
CoUninitialize
OleCreateMenuDescriptor
ReleaseStgMedium
OleDuplicateData
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
DoDragDrop
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
CoInitializeEx
OleDestroyMenuDescriptor
OleLockRunning
CoCreateGuid

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
VarBstrFromDate
SysFreeString
SysAllocStringLen
VariantInit
VariantClear
VariantChangeType
SysAllocString
SysStringLen
SafeArrayDestroy
VariantCopy

oledlg

OleUIBusyW

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

gdiplus

GdipDeleteGraphics
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipDrawImageI
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusShutdown
GdiplusStartup
GdipFree
GdipAlloc
GdipCreateBitmapFromHBITMAP
GdipCreateFromHDC
GdipSetInterpolationMode
GdipGetImagePalette
GdipDrawImageRectI

imm32

ImmGetContext
ImmReleaseContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 453KB - Virtual size: 453KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 49KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 155KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 578KB - Virtual size: 577KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
UpdateCodeTool.mtp
.exe windows:4 windows x86 arch:x86

fb53c2c07866e45420e010301e52e207

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\MY WORK\PH_TOOL\貝盈更新工具\UpdateTool\sh25f273_mp_tool-自動燒寫工具-貝盈定制-20151021(支持WIN8.1)\SH25F273_MP_TOOL\release\SH25F273_MP_TOOL.pdb

Imports

setupapi

SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsW

hid

HidD_GetAttributes
HidP_GetCaps
HidD_FreePreparsedData
HidD_SetFeature
HidD_GetFeature
HidD_GetHidGuid
HidD_GetPreparsedData

kernel32

GetFileAttributesW
GetFileTime
HeapFree
HeapAlloc
GetProcessHeap
GetStartupInfoW
RtlUnwind
HeapReAlloc
RaiseException
ExitProcess
ExitThread
CreateThread
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetCurrentProcess
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
GetTimeZoneInformation
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
CreateFileA
SetEnvironmentVariableA
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
FileTimeToLocalFileTime
GlobalFlags
InterlockedIncrement
FileTimeToSystemTime
GetThreadLocale
lstrlenA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GetCurrentProcessId
SuspendThread
ResumeThread
SetThreadPriority
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
GetModuleHandleA
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
LoadLibraryW
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
MulDiv
WideCharToMultiByte
lstrlenW
FreeLibrary
SetLastError
GetModuleHandleW
GetProcAddress
InterlockedDecrement
SetEvent
WritePrivateProfileStringW
GetSystemDefaultLangID
MultiByteToWideChar
CreateEventW
WaitForSingleObject
DeleteCriticalSection
InitializeCriticalSection
CreateMutexW
GetVersionExW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetModuleFileNameW
Sleep
CloseHandle
GetLastError
CreateFileW
FindResourceW
LoadResource
LockResource
SizeofResource
LeaveCriticalSection
EnterCriticalSection
GetTickCount
SetErrorMode
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
GetEnvironmentStringsW

user32

GetNextDlgGroupItem
MessageBeep
CharUpperW
RegisterClipboardFormatW
PostThreadMessageW
LoadCursorW
GetSysColorBrush
UnregisterClassW
DestroyMenu
GetWindowThreadProcessId
SetCursor
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageA
WinHelpW
InvalidateRgn
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
GetKeyState
SetForegroundWindow
IsWindowVisible
UpdateWindow
GetMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
EqualRect
CopyRect
DefWindowProcW
CallWindowProcW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetWindowTextLengthW
GetWindowTextW
GetFocus
GetParent
SetWindowPos
SetFocus
SetRect
IsRectEmpty
CopyAcceleratorTableW
CharNextW
IsWindowEnabled
ShowWindow
ReleaseCapture
SetCapture
IsChild
MoveWindow
SetWindowLongW
GetDlgCtrlID
IsWindow
SetWindowTextW
GetWindowLongW
IsDialogMessageW
SendDlgItemMessageW
GetDlgItem
GetWindow
UnhookWindowsHookEx
PostMessageW
PtInRect
RegisterDeviceNotificationW
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
SetTimer
GetWindowRect
AppendMenuW
GetSystemMenu
LoadIconW
MessageBoxW
EnableWindow
SendMessageW
InvalidateRect
UnregisterClassA

gdi32

ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
RectVisible
SetWindowExtEx
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
PtVisible
GetWindowExtEx
GetViewportExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutW
GetDeviceCaps
GetStockObject
CreateSolidBrush
CreateFontIndirectW
CreateRectRgnIndirect
CreateFontW
DeleteObject
SetMapMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
GetObjectW
SetBkColor
SetTextColor
GetClipBox
TextOutW

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
OpenPrinterW
ClosePrinter

advapi32

RegSetValueExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyW

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

oledlg

OleUIBusyW

ole32

OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CLSIDFromProgID

oleaut32

SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysStringLen
VariantCopy
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString

Sections

.text
Size: 240KB - Virtual size: 238KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

835e957fe9469ecac8dda6e60de5936c

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

setupapi

hid

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

oleacc

gdiplus

imm32

winmm

Sections

.text Size: 3.0MB - Virtual size: 3.0MB

.rdata Size: 453KB - Virtual size: 453KB

.data Size: 49KB - Virtual size: 97KB

.rsrc Size: 155KB - Virtual size: 154KB

.reloc Size: 578KB - Virtual size: 577KB

fb53c2c07866e45420e010301e52e207

Headers

File Characteristics

PDB Paths

Imports

setupapi

hid

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 240KB - Virtual size: 238KB

.rdata Size: 64KB - Virtual size: 60KB

.data Size: 36KB - Virtual size: 67KB

.rsrc Size: 156KB - Virtual size: 153KB

.text
Size: 3.0MB - Virtual size: 3.0MB

.rdata
Size: 453KB - Virtual size: 453KB

.data
Size: 49KB - Virtual size: 97KB

.rsrc
Size: 155KB - Virtual size: 154KB

.reloc
Size: 578KB - Virtual size: 577KB

.text
Size: 240KB - Virtual size: 238KB

.rdata
Size: 64KB - Virtual size: 60KB

.data
Size: 36KB - Virtual size: 67KB

.rsrc
Size: 156KB - Virtual size: 153KB