ccb29f471090ed3d4cb04b02da7cd02a77065f0c83815a42f760dd52ac85f86b

Sharing

Copy URL

Twitter E-mail

General

Target

ccb29f471090ed3d4cb04b02da7cd02a77065f0c83815a42f760dd52ac85f86b
Size

516KB
MD5

90a0a48132798f4d1d6b48ac8c60ab85
SHA1

7974fb99ba2424fe0e25dbb395dfcd56d3ac3f56
SHA256

ccb29f471090ed3d4cb04b02da7cd02a77065f0c83815a42f760dd52ac85f86b
SHA512

f9a4e8ee5be948aed7c421255d1aec837f8064ef94a74f9c6426fe0803b9d29641903b87803946ac39177c7a7693b0ae89f737d8f60c0484229c575496c9d546
SSDEEP

6144:C2EDd8WLxQD9vzWbeMAPla/shOffPv818DUx2wlB:fvWk9vz41OlQsQuN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ccb29f471090ed3d4cb04b02da7cd02a77065f0c83815a42f760dd52ac85f86b

Files

ccb29f471090ed3d4cb04b02da7cd02a77065f0c83815a42f760dd52ac85f86b
.exe windows:4 windows x86 arch:x86

5516484df543a33e8bb79852f9ac3590

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

controlcan

VCI_ReadErrInfo
VCI_OpenDevice
VCI_InitCAN
VCI_CloseDevice
VCI_StartCAN
VCI_Receive
VCI_Transmit

kernel32

GetCPInfo
GetOEMCP
GetTickCount
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetStartupInfoA
GetCommandLineA
ExitProcess
RaiseException
HeapAlloc
HeapFree
GetACP
ExitThread
TerminateProcess
HeapReAlloc
HeapSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetProcessVersion
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
InterlockedDecrement
GetLastError
TlsGetValue
GetProfileStringA
MultiByteToWideChar
lstrlenA
LocalFree
Sleep
GetPrivateProfileStringA
GetModuleFileNameA
FreeLibrary
GetProcAddress
LoadLibraryA
WritePrivateProfileStringA
SetCurrentDirectoryA
CreateDirectoryA
CloseHandle
SetEvent
LeaveCriticalSection
PurgeComm
SetCommState
BuildCommDCBA
GetCommState
SetCommMask
SetCommTimeouts
CreateFileA
EnterCriticalSection
InitializeCriticalSection
ResetEvent
CreateEventA
GetCommMask
ClearCommError
WaitCommEvent
WaitForMultipleObjects
ResumeThread
SuspendThread
FormatMessageA
GetOverlappedResult
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
SizeofResource
SetErrorMode
GetFileTime
GetFileSize
GetFileAttributesA
DeleteCriticalSection
GlobalFlags
GlobalAlloc
lstrcmpA
GetCurrentThread
SetThreadPriority
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GlobalFree
LockResource
FindResourceA
LoadResource
MulDiv
GetModuleHandleA
SetLastError
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
lstrcpyA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
DuplicateHandle
lstrcpynA
lstrcmpiA
InterlockedIncrement
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenW
WideCharToMultiByte
GlobalLock
GlobalUnlock
WaitForSingleObject
GetExitCodeThread
TerminateThread
CreateThread
ReadFile
WriteFile

user32

InvalidateRect
PostThreadMessageA
SetRect
CopyAcceleratorTableA
GetSysColorBrush
LoadCursorA
GetDesktopWindow
PtInRect
GetClassNameA
InflateRect
DestroyMenu
LoadStringA
MapDialogRect
SetWindowContextHelpId
SetCursor
PostQuitMessage
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
CharNextA
wvsprintfA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
CopyRect
IsWindowVisible
GetNextDlgGroupItem
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgCtrlID
MessageBoxA
ReleaseDC
GetDC
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
RegisterClipboardFormatA
PostMessageA
MessageBeep
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
DefDlgProcA
IsWindowUnicode
SendMessageA
EnableWindow
GetParent
KillTimer
SetTimer
LoadIconA
LoadImageA
AppendMenuA
GetSystemMenu
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
wsprintfA
CharUpperA
ScreenToClient
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
IsWindowEnabled
GetDlgItem
GetWindowLongA
DestroyWindow
CreateDialogIndirectParamA
IsWindow
GetTopWindow
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow

gdi32

ScaleWindowExtEx
GetClipBox
IntersectClipRect
DeleteObject
SetWindowExtEx
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetObjectA
CreateBitmap
GetTextColor
GetBkColor
PatBlt
GetMapMode
DPtoLP
LPtoDP
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetBkMode
SetBkColor
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetTextExtentPointA
CreateDIBitmap

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

comctl32

ImageList_Destroy
ord17
ImageList_ReplaceIcon
ImageList_Create

oledlg

ord8

ole32

CoTaskMemAlloc
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
OleRun
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoInitialize

olepro32

ord253

oleaut32

VariantClear
VariantChangeType
VariantInit
SysAllocString
VariantCopy
SysAllocStringByteLen
VarBstrFromCy
SysAllocStringLen
SysStringLen
VariantTimeToSystemTime
GetErrorInfo
SysFreeString

ws2_32

closesocket
WSAStartup
WSACleanup
gethostbyname
connect
send
recv
shutdown
socket
WSAGetLastError
htons
select

Sections

.text
Size: 200KB - Virtual size: 196KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5516484df543a33e8bb79852f9ac3590

Headers

File Characteristics

Imports

controlcan

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

comctl32

oledlg

ole32

olepro32

oleaut32

ws2_32

Sections

.text Size: 200KB - Virtual size: 196KB

.rdata Size: 48KB - Virtual size: 47KB

.data Size: 16KB - Virtual size: 32KB

.rsrc Size: 248KB - Virtual size: 245KB

.text
Size: 200KB - Virtual size: 196KB

.rdata
Size: 48KB - Virtual size: 47KB

.data
Size: 16KB - Virtual size: 32KB

.rsrc
Size: 248KB - Virtual size: 245KB