3d236e7606d065ae91e5e16a83169532b41290ba612000d20ee4124338f4c44f

Sharing

Copy URL

Twitter E-mail

General

Target

3d236e7606d065ae91e5e16a83169532b41290ba612000d20ee4124338f4c44f
Size

2.0MB
MD5

56d750b59b4e7a2a5c3866c18b8bfda5
SHA1

95e9e65f7c479a403e30ebf8f2af1aabce6bc04b
SHA256

3d236e7606d065ae91e5e16a83169532b41290ba612000d20ee4124338f4c44f
SHA512

8d1a83b8e0dafdc6d058d0dc60f3bcd3844fd2c58e179ff5b2007349a13dd3eb8c7089b7489855f6deb7555fdf09cf3e3b7e5c16052d8b06c4a6c6e3530fb1b6
SSDEEP

49152:+3D0aSMKIahuAKxtseEC4sF5Z6EH2soigq8b+lNaX3cj+X2bNRq54X7HaantYX:C3SMKIahuNtUCXF5Z6EH2sRUb+lNaX3L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d236e7606d065ae91e5e16a83169532b41290ba612000d20ee4124338f4c44f

Files

3d236e7606d065ae91e5e16a83169532b41290ba612000d20ee4124338f4c44f
.exe windows:6 windows x86 arch:x86

9d2607fcfe1136a07d61adb239f32e64

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\BuildAgent_2021.2.2\work\ca71a79ad5332f7c\Src\Applets\Release\x86\LCDMedia.pdb

Imports

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

winmm

waveOutOpen
mixerGetNumDevs
mixerOpen
mixerClose
mixerGetLineInfoW
mixerGetID
mixerGetLineControlsW
mixerGetControlDetailsW
mixerSetControlDetails
PlaySoundW
waveOutClose

psapi

EnumProcesses
GetProcessImageFileNameW

kernel32

SetUnhandledExceptionFilter
TerminateProcess
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
ReadConsoleW
SetFilePointerEx
UnhandledExceptionFilter
LCMapStringW
WriteConsoleW
SetEnvironmentVariableA
VirtualFree
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetTickCount
Sleep
MulDiv
LoadResource
LockResource
GetStartupInfoW
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
GlobalFree
FindResourceW
FindResourceExW
FreeResource
LocalAlloc
LocalFree
WideCharToMultiByte
SetThreadLocale
GetUserDefaultLangID
CloseHandle
GetLastError
CreateMutexW
CreateEventW
OpenEventW
OutputDebugStringW
MultiByteToWideChar
GetStdHandle
GetFileType
SetStdHandle
GetSystemTimeAsFileTime
GetModuleHandleExW
ExitProcess
ExitThread
IsProcessorFeaturePresent
IsDebuggerPresent
RtlUnwind
GetCommandLineW
SearchPathW
GetProfileIntW
GetTempPathW
GetTempFileNameW
VerifyVersionInfoW
VerSetConditionMask
lstrcpyW
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
SetErrorMode
GetWindowsDirectoryW
VirtualQuery
VirtualAlloc
GetSystemInfo
SizeofResource
HeapQueryInformation
CreateFileW
ReadFileEx
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetFullPathNameW
GetFileSize
FlushFileBuffers
DeleteFileW
GetCurrentDirectoryW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
CompareStringW
GlobalFlags
GlobalGetAtomNameW
GetCurrentProcessId
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
FileTimeToSystemTime
FindFirstFileW
FindClose
FileTimeToLocalFileTime
VirtualProtect
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
ResumeThread
SetThreadPriority
lstrcmpA
GlobalFindAtomW
GlobalAddAtomW
GlobalDeleteAtom
GetSystemDirectoryW
EncodePointer
LoadLibraryW
LoadLibraryA
GetModuleHandleA
OutputDebugStringA
CopyFileW
FormatMessageW
CreateProcessW
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
CancelIo
lstrcmpiW
lstrcmpW
LoadLibraryExW
GetModuleFileNameW
FreeLibrary
FlushInstructionCache
GetCurrentThreadId
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
SetLastError
RaiseException
DecodePointer
GetProcAddress
OpenProcess
GetModuleHandleW
GetVersionExW
ReleaseMutex
GetVersion
CreateThread
WaitForSingleObjectEx
WaitForSingleObject
SetEvent
SleepEx

user32

GetKeyboardLayout
PostThreadMessageW
IsZoomed
GetComboBoxInfo
TrackMouseEvent
MonitorFromPoint
UpdateLayeredWindow
IsMenu
SetWindowRgn
DrawFrameControl
DrawStateW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
SetParent
GetSystemMenu
UnionRect
NotifyWinEvent
HideCaret
EnableScrollBar
MessageBeep
GetIconInfo
IsRectEmpty
DrawFocusRect
GetNextDlgGroupItem
ReuseDDElParam
UnpackDDElParam
OffsetRect
SetRectEmpty
InsertMenuItemW
TranslateAcceleratorW
LoadAcceleratorsW
BringWindowToTop
GetMenuDefaultItem
CreatePopupMenu
WindowFromPoint
WaitMessage
CharUpperW
DestroyIcon
DeleteMenu
CopyImage
SystemParametersInfoW
GetMenuItemInfoW
DestroyMenu
RealChildWindowFromPoint
LoadMenuW
GetSysColorBrush
GetWindowThreadProcessId
SendDlgItemMessageA
MapDialogRect
GetAsyncKeyState
SetCursor
ShowOwnedPopups
TranslateMessage
GetMessageW
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
IsWindowEnabled
CheckDlgButton
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
SetWindowsHookExW
GetTopWindow
GetClassLongW
IsCharLowerW
MapWindowPoints
DefFrameProcW
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
SetActiveWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgCtrlID
ModifyMenuW
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
RegisterClassW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
LoadBitmapW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
IntersectRect
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextW
CopyRect
MapVirtualKeyW
GetKeyNameTextW
UnhookWindowsHookEx
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringW
GetClassInfoW
GetCursorPos
GetLastActivePopup
LoadCursorW
GetWindow
GetDesktopWindow
SetWindowLongW
GetWindowLongW
ScreenToClient
ClientToScreen
GetWindowTextLengthW
SetWindowTextW
RedrawWindow
InvalidateRgn
EndPaint
BeginPaint
DestroyAcceleratorTable
CreateAcceleratorTableW
ReleaseCapture
SetCapture
SetFocus
CharNextW
GetDlgItem
SetWindowPos
MoveWindow
MapVirtualKeyExW
SetRect
LockWindowUpdate
ToUnicodeEx
GetKeyboardState
CopyAcceleratorTableW
SetCursorPos
SetClassLongW
GetDoubleClickTime
GetWindowRgn
DestroyCursor
DestroyWindow
IsChild
CreateWindowExW
GetClassInfoExW
CreateMenu
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
EqualRect
DefMDIChildProcW
RegisterClassExW
UnregisterClassW
CallWindowProcW
DefWindowProcW
DrawMenuBar
CharUpperBuffW
MessageBoxW
RegisterClipboardFormatW
SendMessageA
GetWindowTextW
LoadImageW
LoadIconW
DrawIcon
KillTimer
SetTimer
IsIconic
PostQuitMessage
GetClassNameW
GetForegroundWindow
UnregisterDeviceNotification
RegisterDeviceNotificationW
PostMessageW
GetParent
PtInRect
GetWindowRect
ReleaseDC
GetDC
UpdateWindow
GetFocus
IsWindow
DrawEdge
RegisterWindowMessageW
InflateRect
GetSysColor
GetClientRect
InvalidateRect
GetSystemMetrics
EnableWindow
SendMessageW
FindWindowW
SetForegroundWindow
ShowWindow
FrameRect
DrawIconEx
InvertRect
DrawTextExW
FillRect
SetMenuDefaultItem
IsWindowVisible
CopyIcon

gdi32

CreateRectRgnIndirect
PatBlt
CreateBitmap
CreateHatchBrush
CreatePatternBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
PtVisible
RectVisible
RestoreDC
SaveDC
ExtSelectClipRgn
SelectPalette
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
TextOutW
ExtTextOutW
SetViewportExtEx
SetWindowExtEx
SetWindowOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateDCW
SetRectRgn
DPtoLP
GetTextMetricsW
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
GetRgnBox
OffsetRgn
CreateRoundRectRgn
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
GetTextFaceW
CopyMetaFileW
GetDeviceCaps
CreateCompatibleBitmap
GetTextExtentPoint32W
GetCurrentObject
GetBkColor
GdiFlush
CreateDIBSection
SetBkColor
GetStockObject
SetTextColor
SetMapMode
SetBkMode
CreateFontIndirectW
MoveToEx
Rectangle
LineTo
CreateSolidBrush
CreatePen
OffsetViewportOrgEx
SetViewportOrgEx
SelectClipRgn
DeleteObject
CreateRectRgn
SelectObject
DeleteDC
CreateCompatibleDC
CombineRgn
GetObjectW
BitBlt

msimg32

AlphaBlend
TransparentBlt

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegDeleteValueW
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyExA
RegQueryValueExA
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyW
RegEnumValueW
ConvertStringSidToSidW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
InitializeAcl
GetSecurityDescriptorDacl
AddAccessAllowedAce

shell32

SHBrowseForFolderW
SHGetFileInfoW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteW
SHAppBarMessage
DoEnvironmentSubstW
DragFinish
DragQueryFileW

comctl32

ImageList_GetBkColor
ImageList_SetBkColor
ImageList_GetImageInfo

shlwapi

PathFindExtensionW
PathFindFileNameW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
SHSetValueW
PathRemoveFileSpecW

uxtheme

GetCurrentThemeName
DrawThemeText
DrawThemeBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeParentBackground
OpenThemeData
CloseThemeData
GetThemeColor
GetThemePartSize
GetWindowTheme
GetThemeSysColor
IsAppThemed

ole32

CoCreateInstance
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CLSIDFromString
CreateStreamOnHGlobal
CoInitialize
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleRun
CoGetClassObject
CLSIDFromProgID
CoTaskMemRealloc
OleInitialize
OleUninitialize
OleLockRunning
OleDuplicateData
ReleaseStgMedium
CoCreateGuid
CoDisconnectObject
CoInitializeEx
DoDragDrop
StringFromGUID2

oleaut32

VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocStringLen
SysFreeString
SysAllocString
VariantChangeType
OleCreateFontIndirect
LoadRegTypeLi
LoadTypeLi
VarUI4FromStr
VariantClear
VariantInit

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailW
SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces

hid

HidD_FreePreparsedData
HidD_GetPreparsedData
HidD_GetAttributes
HidP_GetUsages
HidP_GetCaps
HidD_GetHidGuid

gdiplus

GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdiplusShutdown
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromStream
GdipBitmapUnlockBits
GdipCloneImage
GdipFillPath
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateLineBrushFromRectI
GdipCreateSolidFill
GdipDeleteBrush
GdipAddPathArcI
GdipAddPathLineI
GdipClosePathFigure
GdipDeletePath
GdipCreatePath
GdipFree
GdipAlloc
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipSetInterpolationMode
GdipDisposeImage
GdipDrawImageRectI

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 351KB - Virtual size: 351KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 29KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 162KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9d2607fcfe1136a07d61adb239f32e64

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

version

winmm

psapi

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

setupapi

hid

gdiplus

oleacc

imm32

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 351KB - Virtual size: 351KB

.data Size: 29KB - Virtual size: 70KB

.rsrc Size: 162KB - Virtual size: 164KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 351KB - Virtual size: 351KB

.data
Size: 29KB - Virtual size: 70KB

.rsrc
Size: 162KB - Virtual size: 164KB