Static task
static1
Behavioral task
behavioral1
Sample
8256fb70454da346b588b8d884ef5ffc0631c1dceeee515a0c92989d36dedd10.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
8256fb70454da346b588b8d884ef5ffc0631c1dceeee515a0c92989d36dedd10.exe
Resource
win10v2004-20220414-en
General
-
Target
8256fb70454da346b588b8d884ef5ffc0631c1dceeee515a0c92989d36dedd10
-
Size
1.3MB
-
MD5
66afe24b36275f561cf6318653aaa6f4
-
SHA1
94f4bdd9e38b17fac52471936cf7173d37cd001e
-
SHA256
8256fb70454da346b588b8d884ef5ffc0631c1dceeee515a0c92989d36dedd10
-
SHA512
4b99387f9b0b01ee25d0f728c735cb7d2f564602eb934b4ef7898e6ad532f2ccb304ed99ea9eab93bacfdcb81d01911ca0a0a5ebc75e4f92200ec760238bb582
-
SSDEEP
24576:R7/uYWqiVx17vxaOQmDNJ9hTlJumkiwiJmNXXDJQKBLoTwbhOignbKP:sYPiVPvx62zn/unQmNHBLC8pUKP
Malware Config
Signatures
Files
-
8256fb70454da346b588b8d884ef5ffc0631c1dceeee515a0c92989d36dedd10.exe windows x86
941cde1b327f6f578d5ebcf667dcf31b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTimeZoneInformation
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
LCMapStringA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoW
CompareStringW
SetEnvironmentVariableA
CreateFileW
GetACP
IsValidCodePage
GetConsoleCP
VirtualFree
HeapCreate
GetFileType
GetStdHandle
SetHandleCount
HeapSize
RaiseException
HeapReAlloc
RtlUnwind
GetStartupInfoA
GetCommandLineA
Sleep
GetConsoleMode
SetConsoleMode
ReadConsoleInputA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapAlloc
HeapFree
ExitThread
SetErrorMode
GetCurrentDirectoryA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetFileSizeEx
LocalFileTimeToFileTime
GetFileAttributesExA
FileTimeToLocalFileTime
GetShortPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
lstrcmpiA
GetStringTypeExA
DeleteFileA
MoveFileA
GetModuleHandleW
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
SystemTimeToFileTime
FileTimeToSystemTime
GetThreadLocale
GlobalFlags
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalReAlloc
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
InterlockedExchange
GetTickCount
GetModuleFileNameW
GetProfileIntA
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
lstrcmpA
InterlockedIncrement
InterlockedDecrement
CopyFileA
GlobalSize
FormatMessageA
LocalFree
lstrlenW
GetModuleFileNameA
GetCurrentThreadId
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
FreeLibrary
lstrcmpW
GetVersionExA
GetCurrentProcessId
GlobalGetAtomNameA
GlobalAddAtomA
SetLastError
lstrlenA
GetProcAddress
LoadLibraryA
FreeResource
MultiByteToWideChar
FindResourceA
LockResource
SizeofResource
CloseHandle
DeviceIoControl
LocalAlloc
VirtualAlloc
GetLastError
SetConsoleTitleA
GetEnvironmentVariableA
ReadFile
GetExitCodeProcess
GetConsoleWindow
CreateEventA
WideCharToMultiByte
GlobalAlloc
GetProcessTimes
GetSystemTimeAsFileTime
WaitForSingleObject
GetCurrentProcess
LoadResource
FindResourceW
CreateFileA
ExitProcess
GetModuleHandleA
GlobalFree
GlobalUnlock
MulDiv
LCMapStringW
GlobalLock
GetProcessHeap
user32
IsIconic
InsertMenuItemA
GetMenuItemID
GetMenuItemCount
GetClassInfoA
GetMenu
GetLastActivePopup
BringWindowToTop
PostMessageA
SetMenu
GetWindow
ShowWindow
GetWindowLongA
TranslateAcceleratorA
IsZoomed
BeginDeferWindowPos
EndDeferWindowPos
GetDlgCtrlID
SetParent
GetSystemMenu
DeleteMenu
SetRectEmpty
CopyRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetParent
ModifyMenuA
EnableMenuItem
CheckMenuItem
EndPaint
DestroyWindow
SetCursor
CloseClipboard
GetWindowRect
TrackPopupMenu
GetWindowDC
DdeGetLastError
KillTimer
DrawTextA
DrawIconEx
LoadStringA
CopyImage
GetFocus
IsClipboardFormatAvailable
SetActiveWindow
EnumDisplaySettingsA
IsWindowEnabled
wsprintfA
DrawIcon
CopyAcceleratorTableA
CreateMenu
SetFocus
GetWindowTextLengthA
SendMessageA
BeginPaint
PtInRect
UnpackDDElParam
GetUpdateRect
GetForegroundWindow
SetWindowContextHelpId
GetWindowTextA
ReleaseCapture
SetRect
SetWindowLongA
MessageBoxA
CreateWindowExA
GetDCEx
EmptyClipboard
GetMenuState
GetRawInputDeviceInfoA
GetDlgItem
EndDialog
DefWindowProcA
GetDesktopWindow
SetWindowPos
GetCursorPos
SetLayeredWindowAttributes
CreatePopupMenu
IsDlgButtonChecked
WindowFromDC
AppendMenuA
IsWindow
OpenClipboard
GetSystemMetrics
IsWindowVisible
SetWindowTextA
LoadImageA
SetClipboardData
DestroyMenu
ReleaseDC
ChildWindowFromPointEx
LoadAcceleratorsA
GetClassNameA
GetWindowPlacement
LoadCursorA
EnumDisplayDevicesA
GetDialogBaseUnits
GetRawInputDeviceList
ClientToScreen
FillRect
GetSubMenu
LoadMenuA
MessageBeep
GetClientRect
DrawFocusRect
InflateRect
OffsetRect
IntersectRect
GetSysColor
SystemParametersInfoA
CallWindowProcA
SetScrollInfo
GetScrollInfo
DeferWindowPos
ScreenToClient
AdjustWindowRectEx
SetPropA
RegisterClassA
GetClassInfoExA
ShowScrollBar
SetForegroundWindow
GetScrollPos
SetScrollPos
UpdateWindow
EnableWindow
GetCapture
PeekMessageA
LoadIconA
GetActiveWindow
GetWindowThreadProcessId
WinHelpA
TrackPopupMenuEx
ReuseDDElParam
GetScrollRange
SetScrollRange
ScrollWindow
MapWindowPoints
GetMessagePos
GetMessageTime
UnhookWindowsHookEx
GetTopWindow
DispatchMessageA
RemovePropA
DestroyIcon
UnregisterClassA
InvalidateRect
GetDC
GetTabbedTextExtentA
PostThreadMessageA
WaitMessage
CharUpperA
GetPropA
LockWindowUpdate
GetKeyState
EqualRect
RegisterClipboardFormatA
IsRectEmpty
WindowFromPoint
GetSysColorBrush
SetCursorPos
ShowOwnedPopups
PostQuitMessage
GetMenuItemInfoA
TranslateMessage
ValidateRect
CreateDialogIndirectParamA
GetNextDlgTabItem
SetTimer
SetWindowRgn
DestroyCursor
GetMessageA
SetCapture
SendNotifyMessageA
InSendMessage
IsDialogMessageA
SetDlgItemTextA
GetMenuStringA
InsertMenuA
RemoveMenu
GrayStringA
DrawTextExA
TabbedTextOutA
RedrawWindow
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcA
DefFrameProcA
RegisterWindowMessageA
SendDlgItemMessageA
IsChild
SetWindowsHookExA
CallNextHookEx
GetClassLongA
CreateIconIndirect
gdi32
GetDIBits
StretchBlt
CreateFontA
DeleteDC
SetTextColor
PatBlt
BitBlt
CreateBitmap
GetTextMetricsA
GetTextExtentPoint32A
GetCharWidthA
StretchDIBits
GetClipBox
SetBkColor
SaveDC
SetPolyFillMode
SetROP2
SetStretchBltMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
StartDocA
PtVisible
RectVisible
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
SetBkMode
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
SetMapMode
CreatePatternBrush
CreatePen
CopyMetaFileA
CreateDCA
GetWindowOrgEx
Rectangle
GetViewportOrgEx
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
CreateEllipticRgn
Ellipse
CreateFontIndirectA
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetBkColor
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextColor
GetTextAlign
GetTextFaceA
GetTextExtentPointA
DeleteObject
SelectObject
EnumFontFamiliesExA
GetMapMode
CreateCompatibleDC
AddFontResourceExW
CreateBitmapIndirect
SelectPalette
SetPixelV
SetTextAlign
GetObjectA
GetStockObject
SwapBuffers
RestoreDC
CreateSolidBrush
TextOutA
LPtoDP
CreateHatchBrush
GetDeviceCaps
SetBrushOrgEx
CreateCompatibleBitmap
UnrealizeObject
DPtoLP
ScaleViewportExtEx
RealizePalette
CreateHalftonePalette
comdlg32
GetOpenFileNameA
ChooseColorA
FindTextA
GetFileTitleA
winspool.drv
ClosePrinter
DocumentPropertiesA
GetJobA
OpenPrinterA
advapi32
RegOpenKeyA
RegCloseKey
RegSetValueA
RegDeleteValueA
RegSetValueExA
RegCreateKeyA
RegCreateKeyExA
RegQueryValueA
RegOpenKeyExA
RegDeleteKeyA
GetFileSecurityA
SetFileSecurityA
RegEnumKeyA
RegQueryValueExA
shell32
ExtractIconA
SHGetFileInfoA
Shell_NotifyIconA
DragFinish
SHGetSpecialFolderLocation
SHGetLocalizedName
ord727
ord179
ord256
SHAppBarMessage
SHGetDesktopFolder
DragAcceptFiles
DragQueryFileA
ord74
comctl32
CreatePropertySheetPageA
shlwapi
PathIsUNCA
PathStripToRootA
PathFindFileNameA
PathRemoveExtensionA
PathFindExtensionA
PathUnquoteSpacesA
SHStrDupA
PathRemoveFileSpecW
oledlg
ord3
ord6
ord5
ord4
ord9
ord11
ord12
ord8
ord1
ole32
CoLockObjectExternal
GetRunningObjectTable
OleIsRunning
StgIsStorageFile
StgOpenStorage
CreateFileMoniker
StgCreateDocfile
CreateGenericComposite
CreateItemMoniker
OleGetIconOfClass
OleCreateLinkToFile
OleCreateFromFile
OleSetContainedObject
GetHGlobalFromILockBytes
StgOpenStorageOnILockBytes
OleLoad
OleCreate
OleCreateStaticFromData
OleRun
OleCreateFromData
OleSaveToStream
WriteClassStm
OleSave
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries
OleDuplicateData
CoTaskMemAlloc
CreateBindCtx
CoTreatAsClass
CoRegisterMessageFilter
OleDestroyMenuDescriptor
OleQueryCreateFromData
OleSetMenuDescriptor
OleGetClipboard
RegisterDragDrop
CoRegisterClassObject
CoRevokeClassObject
OleCreateLinkFromData
OleUninitialize
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CoUnmarshalInterface
CoTaskMemFree
CreateStreamOnHGlobal
StringFromCLSID
RevokeDragDrop
ReleaseStgMedium
OleCreateMenuDescriptor
OleInitialize
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
StgCreateDocfileOnILockBytes
CoCreateInstance
IsAccelerator
OleTranslateAccelerator
DoDragDrop
CoInitializeEx
CoUninitialize
OleLockRunning
CoDisconnectObject
oleaut32
SysStringByteLen
SysAllocStringLen
VariantClear
SysFreeString
SysStringLen
VariantChangeType
VariantInit
LoadTypeLi
SysAllocString
psapi
GetProcessMemoryInfo
avifil32
AVIFileRelease
avicap32
capCreateCaptureWindowA
winmm
waveInGetNumDevs
waveInGetDevCapsA
waveOutGetDevCapsA
waveOutGetNumDevs
version
GetFileVersionInfoA
GetFileVersionInfoSizeA
gdiplus
GdipCloneImage
GdipSaveImageToFile
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromFile
GdipDisposeImage
GdipAlloc
GdipFree
GdiplusShutdown
GdiplusStartup
opengl32
glMatrixMode
glViewport
glLoadIdentity
glRenderMode
wglGetCurrentDC
glOrtho
glEndList
glu32
gluLookAt
oleacc
LresultFromObject
CreateStdAccessibleObject
setupapi
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiOpenDeviceInterfaceRegKey
uxtheme
GetThemeInt
IsThemeDialogTextureEnabled
ord61
powrprof
CanUserWritePwrScheme
ntdsapi
DsUnquoteRdnValueA
tapi32
phoneGetLamp
dwmapi
DwmSetWindowAttribute
DwmEnableMMCSS
DwmDetachMilContent
ord102
DwmSetPresentParameters
Sections
.text Size: 450KB - Virtual size: 449KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 112KB - Virtual size: 111KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 14KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 771KB - Virtual size: 771KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ