546f3c81d302a28e6fb95c43617f136ad2e59d05d0bbcc02fd1fdffd57f9ddb5

Sharing

Copy URL

Twitter E-mail

General

Target

546f3c81d302a28e6fb95c43617f136ad2e59d05d0bbcc02fd1fdffd57f9ddb5
Size

5.0MB
MD5

548a46f022b913b882065556cb3652ba
SHA1

308aa4e92e4b012136c746e4fa630fe93a5ae2a5
SHA256

546f3c81d302a28e6fb95c43617f136ad2e59d05d0bbcc02fd1fdffd57f9ddb5
SHA512

31a30bba0a44b512c6813a5de53b44ce18dd0b17fc3289835ee79a86fc25df0b988a1deaa006b628eaf8415709655b5884c1f1827c287ac74ef1af0bf4fedfd5
SSDEEP

98304:wPjgS4w3regafy7D9O5SVkgz1H22S7kUOsAf5eE0IkAPfxn8x3930+82x8nTKqVY:sm6regafIksfwJ30+8PnThY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
546f3c81d302a28e6fb95c43617f136ad2e59d05d0bbcc02fd1fdffd57f9ddb5

Files

546f3c81d302a28e6fb95c43617f136ad2e59d05d0bbcc02fd1fdffd57f9ddb5
.exe windows:6 windows x86 arch:x86

99d918197bc2ee771581d2d25b891238

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\Workspace\workspace\Qfinder_Windows_QT\storageplugandconnect\Release\StoragePlugConnect.pdb

Imports

mpr

WNetGetConnectionW

sensapi

IsNetworkAlive

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

uxtheme

IsAppThemed
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeText
GetThemeColor
GetCurrentThemeName
GetWindowTheme
GetThemeSysColor
SetWindowTheme
DrawThemeParentBackground

kernel32

GetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
HeapQueryInformation
RtlUnwind
GetTimeFormatW
GetDateFormatW
EnumSystemLocalesW
GetSystemDefaultLCID
OutputDebugStringW
GetCommandLineW
QueryPerformanceFrequency
SetStdHandle
ExitProcess
LCMapStringW
IsValidLocale
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetFilePointerEx
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
WriteConsoleW
GetVersion
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
GetFileType
GetUserDefaultLCID
GetTempFileNameW
SearchPathW
GetProfileIntW
GetTempPathW
VerifyVersionInfoW
VerSetConditionMask
GetWindowsDirectoryW
GetCurrentDirectoryW
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
VirtualProtect
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GlobalGetAtomNameW
GlobalFlags
GetPrivateProfileIntW
CompareStringA
GetCurrentThread
GetThreadLocale
GetCurrentProcess
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
DeleteFileW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
FindNextFileW
FindFirstFileW
FindClose
FileTimeToLocalFileTime
InitializeCriticalSectionAndSpinCount
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
EncodePointer
SuspendThread
SetThreadPriority
GetCurrentThreadId
lstrcmpA
LoadLibraryA
GetModuleHandleA
OutputDebugStringA
CopyFileW
FormatMessageW
GetVersionExW
LocalFree
GlobalSize
GetCurrentProcessId
WriteFile
CreateFileW
OpenMutexW
GetLogicalDrives
GetTickCount
GetProcessHeap
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
GetVersionExA
HeapSize
InitializeCriticalSectionEx
HeapFree
TerminateThread
ReleaseMutex
WritePrivateProfileStringW
GetPrivateProfileStringW
GetLastError
WideCharToMultiByte
SetLastError
SetEvent
FindResourceExW
GlobalAlloc
ResumeThread
GlobalFree
MulDiv
GlobalUnlock
GlobalLock
CreateEventW
FreeLibrary
LoadLibraryW
lstrcatW
lstrcpyW
GetModuleFileNameW
GetLocaleInfoW
EnumResourceLanguagesW
GetProcAddress
GetModuleHandleW
GetSystemDefaultLangID
GetUserDefaultLangID
Sleep
DeleteCriticalSection
InitializeCriticalSection
ResetEvent
CloseHandle
WaitForSingleObject
LeaveCriticalSection
EnterCriticalSection
lstrcmpiW
lstrlenW
FreeResource
FindResourceW
LoadResource
LockResource
SizeofResource
GetCPInfo
MultiByteToWideChar
GetCommandLineA

user32

SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
UnhookWindowsHookEx
GetTopWindow
GetClassNameW
GetClassLongW
MapWindowPoints
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
GetScrollRange
SetScrollRange
ScrollWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
SetFocus
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
SetWindowPos
DestroyWindow
IsMenu
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
RegisterWindowMessageW
CallNextHookEx
SetWindowsHookExW
ValidateRect
GetKeyState
PeekMessageW
DispatchMessageW
TranslateMessage
GetMessageW
MapVirtualKeyW
GetKeyNameTextW
GetMenuStringW
GetLastActivePopup
GetWindowThreadProcessId
IsWindowEnabled
GetNextDlgGroupItem
ReleaseCapture
GetCapture
GetDlgItem
PostQuitMessage
GetFocus
SetWindowLongW
CreateWindowExW
SetForegroundWindow
ShowWindow
TrackMouseEvent
WaitMessage
SetCapture
CharNextW
IsChild
CheckDlgButton
CharUpperW
IsWindowVisible
PostThreadMessageW
CopyAcceleratorTableW
LoadIconW
PtInRect
UpdateWindow
GetCursor
GetMessagePos
SetWindowContextHelpId
GetCursorPos
UnregisterClassW
GetWindowPlacement
IntersectRect
SystemParametersInfoA
IsIconic
GetDlgCtrlID
GetWindow
MoveWindow
AdjustWindowRectEx
EndPaint
BeginPaint
IsRectEmpty
SetRectEmpty
SetScrollPos
MapDialogRect
RegisterClipboardFormatW
ShowOwnedPopups
RealChildWindowFromPoint
BringWindowToTop
LoadAcceleratorsW
SetParent
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
CopyImage
ShowScrollBar
EqualRect
GetScrollPos
SetTimer
MessageBoxW
KillTimer
RedrawWindow
IsWindow
SetWindowTextW
IsDialogMessageW
CreateDialogIndirectParamW
EndDialog
GetWindowDC
SendDlgItemMessageA
GetAsyncKeyState
GetSystemMenu
CopyRect
GetSysColor
FillRect
DrawEdge
SetRect
GetMenuItemInfoW
DrawTextW
SystemParametersInfoW
CountClipboardFormats
SetCaretPos
GetClipboardData
GetCaretPos
DrawIconEx
DestroyIcon
GetSystemMetrics
GetDesktopWindow
GetDC
ReleaseDC
AppendMenuW
GetMenuItemCount
InsertMenuW
ModifyMenuW
GetMenuState
GetMenuItemID
CreateMenu
CreatePopupMenu
GetSysColorBrush
LoadBitmapW
RemoveMenu
DeleteMenu
GetSubMenu
EnableWindow
TabbedTextOutW
DrawTextExW
GrayStringW
DestroyCursor
DestroyMenu
GetWindowLongW
SendMessageW
GetNextDlgTabItem
GetParent
SetCursor
LoadCursorW
InvalidateRect
ClientToScreen
WindowFromPoint
GetActiveWindow
GetWindowRect
TrackPopupMenuEx
DrawMenuBar
PostMessageW
InflateRect
DrawFocusRect
GetClientRect
OffsetRect
DrawStateW
GetIconInfo
LoadImageW
LoadMenuW
FrameRect
InvalidateRgn
MessageBeep
UnionRect
LockWindowUpdate
GetMenuDefaultItem
ScreenToClient
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
SetLayeredWindowAttributes
EnumDisplayMonitors
SetClassLongW
SetWindowRgn
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
DrawFrameControl
IsZoomed
SetCursorPos
CopyIcon
DrawIcon
UpdateLayeredWindow
MonitorFromPoint
GetComboBoxInfo
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
SetMenuDefaultItem
GetDoubleClickTime
CharUpperBuffW
IsClipboardFormatAvailable
GetUpdateRect
EnumChildWindows
GetWindowRgn
SendNotifyMessageW
SubtractRect
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
FindWindowW

gdi32

GetClipBox
GetDCOrgEx
SetDIBColorTable
SetStretchBltMode
CreatePatternBrush
CreateRectRgn
ExcludeClipRect
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetROP2
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
RoundRect
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CopyMetaFileW
CreateDCW
CreateRectRgnIndirect
GetMapMode
SetRectRgn
DPtoLP
GetBkColor
GetTextMetricsW
GetTextColor
GetRgnBox
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetDIBits
CreateEllipticRgn
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
OffsetRgn
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
GetTextFaceW
StretchBlt
CreateFontW
SetTextColor
SetBkColor
CreateBitmap
GetStockObject
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
Rectangle
CombineRgn
CreateHatchBrush
PatBlt
SetPixel
GetPixel
GetObjectW
DeleteDC
DeleteObject
SelectObject
CreateDIBSection
Ellipse
GetTextExtentPoint32W
CreateFontIndirectW
CreatePen
CreateSolidBrush
GetDeviceCaps
BitBlt
CreateCompatibleBitmap
OffsetViewportOrgEx
SetPolyFillMode
CreateCompatibleDC

msimg32

AlphaBlend
TransparentBlt

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

advapi32

RegQueryValueW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
CryptAcquireContextW
CryptCreateHash
RegQueryInfoKeyW
CryptHashData
CryptDeriveKey
CryptDestroyHash
CryptEncrypt
CryptDestroyKey
CryptReleaseContext
CryptDecrypt
RegDeleteValueW
RegEnumValueW
RegOpenKeyExW
RegEnumKeyW
RegSetValueW
RegDeleteKeyW
RegEnumKeyExW

shell32

SHAppBarMessage
SHBrowseForFolderW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
DragFinish
DragQueryFileW
SHGetFileInfoW
ShellExecuteW
DragAcceptFiles

comctl32

ImageList_Draw
ImageList_GetImageCount
ImageList_GetIcon
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_GetIconSize
_TrackMouseEvent
ImageList_Add
ImageList_GetImageInfo
ImageList_Remove
InitCommonControlsEx

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
StrFormatKBSizeW
PathRemoveFileSpecW

ole32

OleCreateLinkFromData
OleCreateStaticFromData
OleCreateLinkToFile
CreateItemMoniker
CreateGenericComposite
GetHGlobalFromILockBytes
WriteClassStm
IsAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateFileMoniker
OleLockRunning
OleSetMenuDescriptor
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CoInitializeEx
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
OleCreateFromData
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CoInitialize
CoCreateInstance
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
CreateBindCtx
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemFree
CoTaskMemAlloc
OleCreateFromFile
OleLoad
OleSave
CoRevokeClassObject
OleSaveToStream
StringFromCLSID
CreateStreamOnHGlobal
OleSetContainedObject
OleGetIconOfClass
OleDraw
OleCreate
OleTranslateAccelerator

oleaut32

SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringByteLen
SysStringByteLen
SysFreeString
SysAllocStringLen
OleLoadPicture
VarBstrFromDate
OleCreateFontIndirect
SafeArrayAccessData
SafeArrayUnaccessData
LoadTypeLi
VariantCopy
VarUdateFromDate
SysAllocString

oledlg

OleUIBusyW
OleUIInsertObjectW
OleUIPasteSpecialW
OleUIObjectPropertiesW

ws2_32

connect
__WSAFDIsSet
recvfrom
WSAGetLastError
recv
send
WSAStartup
WSACleanup
socket
getpeername
getsockname
closesocket
shutdown
accept
select
inet_addr
ntohl
ntohs
getservbyname
sendto
gethostbyname
htons
htonl

gdiplus

GdipCreateFromHDC
GdipDeleteGraphics
GdipCreateCachedBitmap
GdipDrawCachedBitmap
GdipDeleteCachedBitmap
GdipSetLineColors
GdipDeleteStringFormat
GdipSetStringFormatFlags
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipFillPie
GdipMeasureString
GdipFillRectangle
GdipDrawString
GdipSetSolidFillColor
GdipDrawRectangle
GdipCreatePath
GdipDeletePath
GdipAddPathPie
GdipGetPathLastPoint
GdipResetPath
GdipAddPathLine
GdipAddPathArc
GdipFillPath
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipSaveImageToFile
GdipIsVisiblePathPoint
GdipDrawPath
GdiplusShutdown
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipCreateBitmapFromStream
GdiplusStartup
GdipCreateBitmapFromFile
GdipCreateBitmapFromHBITMAP
GdipSetPenColor
GdipDrawImageRectI
GdipCreateLineBrushI
GdipSetPenBrushFill
GdipCreateSolidFill
GdipCloneBrush
GdipDeleteBrush
GdipCreateLineBrush
GdipSetSmoothingMode
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdipCreateBitmapFromScan0
GdipFree
GdipAlloc
GdipDeletePen
GdipCreatePen1
GdipDrawPie
GdipDeleteFont
GdipCreateStringFormat
GdipSetInterpolationMode

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

comdlg32

GetFileTitleW

Sections

.text
Size: 3.8MB - Virtual size: 3.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 761KB - Virtual size: 761KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 43KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 478KB - Virtual size: 477KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 318KB - Virtual size: 318KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

99d918197bc2ee771581d2d25b891238

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

mpr

sensapi

version

uxtheme

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

oledlg

ws2_32

gdiplus

oleacc

imm32

winmm

comdlg32

Sections

.text Size: 3.8MB - Virtual size: 3.8MB

.rdata Size: 761KB - Virtual size: 761KB

.data Size: 43KB - Virtual size: 68KB

.rsrc Size: 478KB - Virtual size: 477KB

.reloc Size: 318KB - Virtual size: 318KB

.text
Size: 3.8MB - Virtual size: 3.8MB

.rdata
Size: 761KB - Virtual size: 761KB

.data
Size: 43KB - Virtual size: 68KB

.rsrc
Size: 478KB - Virtual size: 477KB

.reloc
Size: 318KB - Virtual size: 318KB