Static task
static1
Behavioral task
behavioral1
Sample
4723ab5ed01fb642eb602ff59309d4d698e6011145ca1b757bb223b5a67fe159.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
4723ab5ed01fb642eb602ff59309d4d698e6011145ca1b757bb223b5a67fe159.exe
Resource
win10v2004-en-20220113
General
-
Target
4723ab5ed01fb642eb602ff59309d4d698e6011145ca1b757bb223b5a67fe159
-
Size
2.2MB
-
MD5
79d702974c9b1588b1ad025fafad4d0a
-
SHA1
88de570baf2c2a3fcb74c952669e9867706c343f
-
SHA256
4723ab5ed01fb642eb602ff59309d4d698e6011145ca1b757bb223b5a67fe159
-
SHA512
4970fe0e9849d0f0f7dd2201d20d1345deb53a686b18304c0e16af96b369964bb79e89b3bcd84c47eb30ad0a93777ad3d66842e77bcdb80b98df3cfaba0e0f12
-
SSDEEP
24576:t63mvvBTDWbOhwezToEXElxVYXCKTKOPAZaLAY+v4bPJY9s1m8qboT9Q0wU9M1V:o+v4e3oEXErVECREAZN6HFTOfuV
Malware Config
Signatures
Files
-
4723ab5ed01fb642eb602ff59309d4d698e6011145ca1b757bb223b5a67fe159.exe windows x86
5da6c86b7a1a30d5022e8f13eb5cb458
Code Sign
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetStartupInfoW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitThread
CreateThread
HeapFree
GetSystemTimeAsFileTime
HeapAlloc
RtlUnwind
RaiseException
HeapReAlloc
ExitProcess
HeapSize
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringA
VirtualAlloc
GetConsoleCP
GetConsoleMode
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetCurrentDirectoryA
SetCurrentDirectoryA
GetDriveTypeA
GetProcessHeap
CreateFileA
SetEnvironmentVariableA
SetErrorMode
DeleteFileA
MoveFileA
FindNextFileA
FindFirstFileA
GetFileSizeEx
LocalFileTimeToFileTime
GetFileAttributesExW
GetCurrentDirectoryW
GetPrivateProfileIntW
GlobalFlags
SystemTimeToFileTime
lstrlenA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GetShortPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetThreadLocale
GetStringTypeExW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetModuleHandleA
GetDiskFreeSpaceW
GetFullPathNameW
GetFileTime
SetFileTime
GlobalGetAtomNameW
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GetCurrentProcessId
VerifyVersionInfoW
VerSetConditionMask
GetNativeSystemInfo
InterlockedDecrement
SetEvent
CreateEventW
GetCurrentProcess
SetProcessWorkingSetSize
FindFirstFileW
FindNextFileW
FindClose
LocalFree
FormatMessageW
SetLastError
GetModuleHandleW
GetFileAttributesW
lstrcpyW
SetCurrentDirectoryW
WritePrivateProfileStringW
CopyFileW
lstrcmpiW
GetTempPathW
GetTempFileNameW
MultiByteToWideChar
InitializeCriticalSection
DeleteCriticalSection
InterlockedIncrement
InterlockedExchange
lstrcpynW
lstrlenW
MoveFileExW
MoveFileW
Sleep
TerminateProcess
OpenProcess
GetLastError
SetFileAttributesW
WriteFile
CreateFileW
GetFileSize
ReadFile
MulDiv
WaitForMultipleObjects
TerminateThread
EnterCriticalSection
LeaveCriticalSection
InterlockedExchangeAdd
LoadLibraryW
GetProcAddress
FreeLibrary
GetTickCount
WideCharToMultiByte
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
WaitForSingleObject
CloseHandle
GetPrivateProfileStringW
GetModuleFileNameW
DeleteFileW
FindResourceW
LoadResource
LockResource
SizeofResource
LCMapStringW
CreateDirectoryW
user32
InsertMenuItemW
CreatePopupMenu
ShowOwnedPopups
LoadAcceleratorsW
DestroyMenu
PostQuitMessage
RedrawWindow
TranslateAcceleratorW
TranslateMDISysAccel
GetActiveWindow
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
EnableMenuItem
MoveWindow
SetWindowTextW
IsDialogMessageW
SetDlgItemTextW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetClassInfoExW
GetClassInfoW
RegisterClassW
DeferWindowPos
GetScrollInfo
SetScrollInfo
CallWindowProcW
GetMenu
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
GetLastActivePopup
MessageBoxW
WindowFromPoint
IsWindowEnabled
GetMenuState
GetMenuStringW
InsertMenuW
SetWindowPos
LoadIconW
GetKeyState
GetCursor
DrawTextW
DrawIcon
IsZoomed
GetCursorPos
DeleteMenu
SetMenuItemInfoW
SetMenuInfo
GetMenuInfo
FlashWindow
IsWindowVisible
FindWindowExW
SetRectEmpty
DestroyIcon
RemoveMenu
AppendMenuW
GetMenuItemID
GetMenuItemCount
CheckMenuItem
ModifyMenuW
OffsetRect
PostMessageW
KillTimer
SetTimer
IntersectRect
ScreenToClient
GetSysColorBrush
GetClassNameW
SetForegroundWindow
SetActiveWindow
BringWindowToTop
EnumChildWindows
GetDlgCtrlID
GetWindowThreadProcessId
GetSubMenu
LoadMenuW
AdjustWindowRectEx
GetWindowRect
GetSystemMetrics
PtInRect
ReuseDDElParam
UnpackDDElParam
SetRect
ClientToScreen
LockWindowUpdate
GetDCEx
UnregisterClassW
EmptyClipboard
SetClipboardData
CharUpperW
SetParent
GetSystemMenu
GetMenuItemInfoW
SetWindowRgn
EndPaint
BeginPaint
GetWindowDC
GrayStringW
DrawTextExW
TabbedTextOutW
TranslateMessage
ValidateRect
GetNextDlgTabItem
CreateDialogIndirectParamW
EqualRect
SystemParametersInfoW
CopyRect
EnableWindow
UnionRect
SetCursor
InflateRect
LoadCursorW
CreateWindowExW
GetDesktopWindow
GetMessageW
DispatchMessageW
DestroyWindow
UpdateLayeredWindow
UpdateWindow
SetWindowLongW
RegisterClassExW
DefWindowProcW
SendNotifyMessageW
GetWindowLongW
CloseClipboard
GetClipboardData
OpenClipboard
IsClipboardFormatAvailable
RegisterWindowMessageW
PeekMessageW
GetDlgItem
ShowWindow
FillRect
FrameRect
GetSysColor
GetParent
DrawFrameControl
GetAncestor
GetClientRect
TrackMouseEvent
IsWindow
SetCapture
GetCapture
ReleaseCapture
IsRectEmpty
GetDC
ReleaseDC
InvalidateRect
SendMessageW
EndDialog
gdi32
GetPixel
StartDocW
PtVisible
RectVisible
TextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
CreateSolidBrush
CreateEllipticRgn
LPtoDP
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
RestoreDC
SaveDC
SelectClipRgn
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
BitBlt
DPtoLP
CombineRgn
SetRectRgn
CreateRectRgn
ExtTextOutW
StretchDIBits
CreateFontW
GetCharWidthW
PatBlt
CreateRectRgnIndirect
GetTextExtentPoint32W
GetTextMetricsW
CreateBitmap
SetBkColor
GetClipBox
CreateDCW
GetBkColor
EnumFontFamiliesExW
SetTextColor
SetROP2
RoundRect
Ellipse
Rectangle
Polyline
CreatePatternBrush
SetPixel
GetDeviceCaps
SetBrushOrgEx
StretchBlt
GetStockObject
CreateCompatibleBitmap
CreateFontIndirectW
CreateDIBSection
SetDIBColorTable
GetObjectW
CreateCompatibleDC
SetBkMode
SetStretchBltMode
DeleteDC
DeleteObject
SelectObject
msimg32
AlphaBlend
comdlg32
GetFileTitleW
winspool.drv
ClosePrinter
GetJobW
OpenPrinterW
DocumentPropertiesW
advapi32
RegEnumKeyW
RegDeleteValueW
RegCreateKeyW
GetFileSecurityW
SetFileSecurityW
RegQueryValueW
RegOpenKeyW
RegSetValueExW
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegSetValueW
RegCreateKeyExW
RegCloseKey
shell32
SHGetFolderPathW
ShellExecuteW
SHCreateDirectoryExW
SHBrowseForFolderW
SHGetPathFromIDListW
SHFileOperationW
DragFinish
DragQueryFileW
SHGetFileInfoW
ExtractIconW
DragAcceptFiles
shlwapi
PathRemoveFileSpecW
StrToIntW
PathAddBackslashW
PathAppendW
PathUnquoteSpacesW
StrCmpIW
StrStrIW
SHDeleteKeyW
PathIsDirectoryW
PathRenameExtensionW
PathFindFileNameW
PathRemoveExtensionW
PathFindExtensionW
PathIsUNCW
PathFileExistsW
PathStripToRootW
ole32
CoUninitialize
CoTaskMemFree
CLSIDFromProgID
CoCreateInstance
OleRun
CoInitialize
CreateStreamOnHGlobal
CoInitializeEx
oleaut32
VariantClear
VariantInit
SysFreeString
SysAllocString
SysAllocStringLen
VariantChangeType
GetErrorInfo
urlmon
ObtainUserAgentString
gdiplus
GdipFree
GdipDisposeImage
GdipAlloc
GdipCloneImage
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipSetImagePalette
GdipCreateBitmapFromScan0
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipGetAllPropertyItems
GdipGetPropertySize
GdipGetImageVerticalResolution
GdipGetImageHorizontalResolution
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImageRawFormat
GdipGetImageFlags
GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipCreateBitmapFromStream
GdipBitmapSetResolution
GdipCreateBitmapFromFile
GdipDrawPolygonI
GdipSetPropertyItem
GdipCreatePen1
GdipFillPolygonI
GdipDeleteBrush
GdipCloneBrush
GdipCreateSolidFill
GdipSetSmoothingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipCreateLineBrushFromRectI
GdipFillRectangleI
GdipDrawImageRectI
GdipCreatePath
GdipDeletePath
GdipAddPathPolygon
GdipCreateCustomLineCap
GdipAddPathLine
GdipSetCustomLineCapBaseInset
GdipSetPenMode
GdipSetPenDashStyle
GdipSetPenDashCap197819
GdipSetPenStartCap
GdipSetPenCustomEndCap
GdipSetPenEndCap
GdipDrawLineI
GdipDrawRectangleI
GdipFillEllipseI
GdipDrawEllipseI
GdipDeleteCustomLineCap
GdipSetTextRenderingHint
GdipCloneStringFormat
GdipStringFormatGetGenericTypographic
GdipDeleteStringFormat
GdipSetStringFormatFlags
GdipGetStringFormatFlags
GdipMeasureString
GdipCreateFont
GdipGetGenericFontFamilySansSerif
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteFont
GdipSetSolidFillColor
GdipDrawString
GdipBitmapGetPixel
GdipSaveImageToFile
GdiplusShutdown
GdiplusStartup
GdipDeletePen
uxtheme
OpenThemeData
DrawThemeBackground
CloseThemeData
version
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
wininet
HttpQueryInfoW
InternetReadFile
InternetCrackUrlW
InternetOpenW
InternetSetOptionW
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
InternetCloseHandle
ws2_32
htonl
htons
ntohs
ntohl
Sections
.text Size: 1.4MB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 458KB - Virtual size: 458KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 47KB - Virtual size: 64KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 91KB - Virtual size: 90KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 122KB - Virtual size: 121KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
3qClA Size: 151KB - Virtual size: 151KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ