0ebdddb48d3357896d114009fee8a4f3171e0e1814d1e4fa0fcd6d0888a93f4dN

Sharing

Copy URL Twitter E-mail

General

Target

0ebdddb48d3357896d114009fee8a4f3171e0e1814d1e4fa0fcd6d0888a93f4dN
Size

848KB
MD5

251eac18698a4f01ff7a717138d882a0
SHA1

1d1776cf8cb1db998510e018cf59922c7fadc216
SHA256

0ebdddb48d3357896d114009fee8a4f3171e0e1814d1e4fa0fcd6d0888a93f4d
SHA512

bdd9be6ddf15f005606beb66ab669078d1c255a362e06df62cb6ac9f3d3c04d3b434e3445c5b2f5795c5d032bdb64832530968baa8aa9d9c06b7afc391e049b0
SSDEEP

6144:pUFLoJ4qnaSrxDQLAweWSjc1aY6rIX6T1oQ4rNE:8USqnaSNDQLXziY6rILQ+y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ebdddb48d3357896d114009fee8a4f3171e0e1814d1e4fa0fcd6d0888a93f4dN

Files

0ebdddb48d3357896d114009fee8a4f3171e0e1814d1e4fa0fcd6d0888a93f4dN
.exe windows:4 windows x86 arch:x86

9102e4e9d06a509ff30f9fe37595397e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

touch32ex

_SetDevicePanelParameter@4
GetTouchMouseMode
GetTouchLanguageID
SetTouchMouseMode
GetTouchRotation
_GetConnectedCommPort@12
SetTouchRotation
_ReConnectCommPort@4
_GetFirmwareVersion@12
_GetConnectCommPortNameLength@4
_DoPivotTest@4
_IsControllerOnCommPort@4
_DisConnectCommPort@4
BlockingWaitTouchEvent
StopBlockingWait
ReadMouseData
BlockingWaitTouchPointEvent
StopBlockingWaitPoint
_GetSoundInfo@4
_IsDriverOpen@0
_GetControllerModel@12
_GetControllerType@12
_GetDevicePanelParameter@4

kernel32

SetEndOfFile
FlushFileBuffers
HeapFree
HeapAlloc
RtlUnwind
RaiseException
GetTimeZoneInformation
GetSystemTime
GetLocalTime
TerminateProcess
HeapSize
HeapReAlloc
WriteFile
SetFilePointer
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
ReadFile
CreateFileA
GetCurrentProcess
SetErrorMode
WritePrivateProfileStringA
SizeofResource
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
GetModuleFileNameA
GlobalAlloc
GetCurrentThread
lstrcmpA
GetLastError
GlobalFree
lstrcpynA
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedIncrement
InterlockedDecrement
GlobalLock
GlobalUnlock
MulDiv
SetLastError
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalFindAtomA
lstrcpyA
GetModuleHandleA
GetProcAddress
GlobalDeleteAtom
GlobalAddAtomA
SetEvent
GetExitCodeThread
CloseHandle
CreateThread
CreateEventA
Sleep
WaitForSingleObject
Beep
GetVersion
GetACP
HeapDestroy
GetStartupInfoA
GetCommandLineA
ExitProcess

user32

EndDialog
ShowOwnedPopups
CreateDialogIndirectParamA
GetClassNameA
PtInRect
GetSysColorBrush
ValidateRect
GetMessageA
InflateRect
EndDeferWindowPos
IsWindowVisible
TranslateMessage
GetTopWindow
MessageBoxA
GetParent
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
LoadStringA
GetMessageTime
MapDialogRect
GetForegroundWindow
GetWindow
OffsetRect
IntersectRect
IsIconic
GetWindowPlacement
GetWindowRect
SystemParametersInfoA
mouse_event
SetForegroundWindow
SendMessageA
LoadMenuA
ModifyMenuA
GetSubMenu
GetMenuItemID
CreatePopupMenu
GetCursorPos
TrackPopupMenu
SetMenuDefaultItem
PostQuitMessage
BeginPaint
EndPaint
PostMessageA
SetWindowPos
UpdateWindow
FindWindowA
ShowWindow
GetSystemMetrics
DestroyWindow
LoadIconA
RegisterClassExA
RegisterWindowMessageA
GetWindowDC
FillRect
FrameRect
DrawIcon
ReleaseDC
GetClientRect
CreateWindowExA
SetTimer
SetWindowLongA
DefWindowProcA
GetWindowLongA
InvalidateRect
KillTimer
EnableWindow
LoadCursorA
ClientToScreen
GetAsyncKeyState
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
DestroyMenu
GetActiveWindow
GetDesktopWindow
GetDC
TranslateAcceleratorA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
SetCursor
ReleaseCapture
LoadAcceleratorsA
SetRectEmpty
DrawTextA
GrayStringA
GetMessagePos
TabbedTextOutA
GetLastActivePopup
GetNextDlgTabItem
IsWindowEnabled
SetWindowTextA
IsDialogMessageA
MapWindowPoints
SendDlgItemMessageA
DispatchMessageA
GetSysColor
PeekMessageA
IsWindow
GetFocus
SetActiveWindow
ScreenToClient
SetFocus
AdjustWindowRectEx
BeginDeferWindowPos
EqualRect
DeferWindowPos
CallWindowProcA
CopyRect
RemovePropA
GetMenu
ExcludeUpdateRgn
ShowCaret
UnregisterClassA
HideCaret
IsWindowUnicode
DefDlgProcA
DrawFocusRect
CharNextA

gdi32

SetTextColor
SetBkColor
GetObjectA
CreateBitmap
DeleteDC
SaveDC
RestoreDC
SelectObject
SetBkMode
GetDeviceCaps
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
SetTextAlign
DeleteObject
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
CreateDIBitmap
CreateCompatibleDC
BitBlt
Rectangle
GetClipBox
GetStockObject
GetTextExtentPointA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA

shell32

DragQueryFileA
DragFinish
Shell_NotifyIconA

comctl32

ord17
CreatePropertySheetPageA
PropertySheetA
DestroyPropertySheetPage

Sections

.text
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yrdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9102e4e9d06a509ff30f9fe37595397e

Headers

File Characteristics

Imports

touch32ex

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 140KB - Virtual size: 138KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 12KB - Virtual size: 25KB

.rsrc Size: 20KB - Virtual size: 19KB

.yrdata Size: 68KB - Virtual size: 68KB

.text
Size: 140KB - Virtual size: 138KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 12KB - Virtual size: 25KB

.rsrc
Size: 20KB - Virtual size: 19KB

.yrdata
Size: 68KB - Virtual size: 68KB