4448d1d4ecb9dacc04b740f964d7b8172ee4d922d163827e8e5b6bfd758c88dd

Sharing

Copy URL Twitter E-mail

General

Target

4448d1d4ecb9dacc04b740f964d7b8172ee4d922d163827e8e5b6bfd758c88dd
Size

281KB
MD5

78d970d48024410bc833a7b8265d245e
SHA1

5919ba67bbeb24dfb57a39a8c0715814fed707a1
SHA256

4448d1d4ecb9dacc04b740f964d7b8172ee4d922d163827e8e5b6bfd758c88dd
SHA512

ae7b2e79a4d928584d9c2e6749918f006515527b050374099d981264def3decd14560b11db0ef645f8ab82328fcca6d8df5435ff910e27f24d763676ede3be2b
SSDEEP

6144:3fz9+rsabM26CPBJXl1uNgmg28RuBwraMdp:3fEpPP7XTu/g28RuyX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4448d1d4ecb9dacc04b740f964d7b8172ee4d922d163827e8e5b6bfd758c88dd

Files

4448d1d4ecb9dacc04b740f964d7b8172ee4d922d163827e8e5b6bfd758c88dd
.exe windows:5 windows x86 arch:x86

ba0b44034a5985d0f460aca0f59d71bf

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

ch375dll

CH375CloseDevice
CH375ReadData
CH375WriteData
CH375SetDeviceNotify
CH375SetTimeout
CH375OpenDevice
CH375GetDeviceName

user32

EndDialog
GetDlgItem
SetDlgItemTextW
LoadIconW
DialogBoxParamW
LoadImageW
MessageBoxW
SendMessageW
FillRect
GetDC
GetWindowLongW
SetTimer
KillTimer
ExitWindowsEx
SetWindowTextW
MessageBoxA
CheckDlgButton
IsDlgButtonChecked
GetDlgItemTextW
GetSystemMetrics
SetCursor
SetClassLongW
ClientToScreen
TrackMouseEvent
BeginPaint
EndPaint
GetClientRect
SetScrollInfo
GetScrollInfo
GetWindowRect
GetParent
GetWindowTextW
CreateMenu
AppendMenuW
EnableMenuItem
SetMenu
CreatePopupMenu
RemoveMenu
DestroyMenu
GetMessageW
PostQuitMessage
LoadCursorW
TranslateMessage
GetMenu
InvalidateRect
ShowWindow
CreateWindowExW
RegisterClassW
UpdateWindow
DefWindowProcW
CheckMenuItem
MoveWindow
DispatchMessageW
PostMessageW
DestroyWindow
CreateDialogParamW
EnableWindow
ReleaseDC

gdi32

GetBitmapBits
SetMapMode
SetWindowExtEx
SetViewportExtEx
CreateBitmap
BitBlt
DeleteDC
ExtCreatePen
SetBrushOrgEx
GetCurrentObject
GetTextCharacterExtra
GetTextAlign
SetTextCharacterExtra
SetTextAlign
GetBrushOrgEx
CreatePolygonRgn
Arc
SetArcDirection
SetPixel
GetArcDirection
FillRgn
CreateFontW
Polyline
CreatePen
TextOutW
ModifyWorldTransform
CreateSolidBrush
TextOutA
SetGraphicsMode
DeleteEnhMetaFile
SelectClipRgn
PlayEnhMetaFile
CreateRectRgn
SetWorldTransform
GetStockObject
CloseEnhMetaFile
CreateEnhMetaFileW
MoveToEx
LineTo
StretchBlt
DeleteObject
SelectObject
CreateCompatibleDC
GetObjectW

comdlg32

GetOpenFileNameW

shell32

SHBrowseForFolderW
SHGetPathFromIDListW
Shell_NotifyIconW

comctl32

CreateToolbarEx
CreateStatusWindowW
ord17

advapi32

RegOpenKeyExW
LookupPrivilegeValueW
AdjustTokenPrivileges
RegQueryValueExW
RegDeleteValueW
RegCloseKey
RegSetValueExW
OpenProcessToken

ole32

CreateStreamOnHGlobal

oleaut32

OleLoadPicture

kernel32

GetCurrentThreadId
InterlockedDecrement
GetModuleFileNameA
LoadLibraryA
InitializeCriticalSectionAndSpinCount
SetFilePointer
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetCPInfo
GetOEMCP
IsValidCodePage
LCMapStringW
GetModuleHandleA
LCMapStringA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
HeapSize
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
SetEndOfFile
GetProcessHeap
RaiseException
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
LoadLibraryW
TlsAlloc
TlsGetValue
GetConsoleMode
GetConsoleCP
ReadFile
RtlUnwind
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
WideCharToMultiByte
FreeLibrary
GetSystemDefaultLangID
GetPrivateProfileStringW
WritePrivateProfileStringW
CreateFileA
Sleep
CloseHandle
GetACP
MultiByteToWideChar
DeleteFileW
FindResourceW
LoadResource
GlobalLock
GlobalAlloc
SizeofResource
GlobalUnlock
LockResource
GetModuleFileNameW
GetLastError
CreateSemaphoreW
CreateProcessW
FindFirstFileW
FindFirstChangeNotificationW
CreateDirectoryW
WaitForSingleObject
FindCloseChangeNotification
CopyFileW
CreateFileW
FindClose
FindNextChangeNotification
FindNextFileW
GetProcAddress
GetModuleHandleW
WriteFile
GetLocalTime
RemoveDirectoryW
GetCurrentProcess
MoveFileW
ExitProcess
HeapFree
HeapAlloc
ExitThread
ResumeThread
CreateThread
GetSystemTimeAsFileTime
GetCommandLineA
GetStartupInfoA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent

Sections

.text
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 42KB - Virtual size: 483KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ba0b44034a5985d0f460aca0f59d71bf

Headers

DLL Characteristics

File Characteristics

Imports

ch375dll

user32

gdi32

comdlg32

shell32

comctl32

advapi32

ole32

oleaut32

kernel32

Sections

.text Size: 193KB - Virtual size: 192KB

.rdata Size: 24KB - Virtual size: 23KB

.data Size: 42KB - Virtual size: 483KB

.rsrc Size: 21KB - Virtual size: 20KB

.text
Size: 193KB - Virtual size: 192KB

.rdata
Size: 24KB - Virtual size: 23KB

.data
Size: 42KB - Virtual size: 483KB

.rsrc
Size: 21KB - Virtual size: 20KB