Static task
static1
Behavioral task
behavioral1
Sample
dc7695b79ee2561877bcb3292d2ca752a3ed241c7b1df3e5348c40894c133652.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
dc7695b79ee2561877bcb3292d2ca752a3ed241c7b1df3e5348c40894c133652.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
dc7695b79ee2561877bcb3292d2ca752a3ed241c7b1df3e5348c40894c133652
-
Size
207KB
-
MD5
22fdbc6e649fa5b1c2b29403684f0ad8
-
SHA1
1121c3293034ffbd61bca34b2f7a082e1ca6ecd4
-
SHA256
dc7695b79ee2561877bcb3292d2ca752a3ed241c7b1df3e5348c40894c133652
-
SHA512
ede1b042fd5c6d69cd96f2050b6ef39191102e99bccef67bc52f10dfc110baf0d62ca99f7d96ffc2f1b5f39785e5a16f2c794eb0953e5d89773e9bd8e25d2c4e
-
SSDEEP
6144:MPrOOMZaPfvzaIR+F/p/uwONct43j92U:MZXvzk9pGHNu4B2U
Malware Config
Signatures
Files
-
dc7695b79ee2561877bcb3292d2ca752a3ed241c7b1df3e5348c40894c133652.exe windows x86
87531c7a69d2dfb65c6834cf59d02462
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
xtp1501lib80u
?GetCategories@CXTPPropertyGrid@@QBEPAVCXTPPropertyGridItems@@XZ
?SetTheme@CXTPPropertyGrid@@QAEXW4XTPPropertyGridPaintTheme@@@Z
?SetVariableItemsHeight@CXTPPropertyGrid@@QAEXH@Z
?GetAt@CXTPPropertyGridItems@@QBEPAVCXTPPropertyGridItem@@H@Z
??0CXTPPropertyGridItemBool@@QAE@PBGHPAH@Z
??1CXTPPropertyGridItemBool@@UAE@XZ
?SetBool@CXTPPropertyGridItemBool@@UAEXH@Z
??1CXTPPropertyGrid@@UAE@XZ
?SetCheckBoxStyle@CXTPPropertyGridItemBool@@QAEXH@Z
?SetValue@CXTPPropertyGridItemBool@@MAEXV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?OnBeforeInsert@CXTPPropertyGridItemBool@@MAEXXZ
??0CXTPPropertyGrid@@QAE@XZ
?OnKeyDown@CXTPPropertyGridItemOption@@MAEHI@Z
?OnDeselect@CXTPPropertyGridItemOption@@MAEXXZ
?GetRuntimeClass@CXTPPropertyGridItemOption@@UBEPAUCRuntimeClass@@XZ
?OnDrawItemValue@CXTPPropertyGridItemBool@@MAEHAAVCDC@@VCRect@@@Z
?GetViewValue@CXTPPropertyGridItemBool@@MAE?AV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@XZ
?OnLButtonDown@CXTPPropertyGridItemBool@@MAEHIVCPoint@@@Z
?OnKeyDown@CXTPPropertyGridItemBool@@MAEHI@Z
?OnInpaceControlFocus@CXTPPropertyGridItemOption@@MAEHH@Z
?OnLButtonDown@CXTPPropertyGridItemOption@@MAEHIVCPoint@@@Z
?OnLButtonDblClk@CXTPPropertyGridItemOption@@MAEXIVCPoint@@@Z
?OnDrawItemValue@CXTPPropertyGridItemOption@@MAEHAAVCDC@@VCRect@@@Z
?MeasureItem@CXTPPropertyGridItemOption@@MAEXPAUtagMEASUREITEMSTRUCT@@@Z
?SetValue@CXTPPropertyGridItemOption@@MAEXV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?OnBeforeInsert@CXTPPropertyGridItemOption@@MAEXXZ
?SetOption@CXTPPropertyGridItemOption@@QAEXH@Z
??1CXTPPropertyGridItemOption@@UAE@XZ
?BindToBool@CXTPPropertyGridItemBool@@UAEXPAH@Z
?OnLButtonDblClk@CXTPPropertyGridItemBool@@MAEXIVCPoint@@@Z
?GetThisClass@CXTPPropertyGridItemBool@@SGPAUCRuntimeClass@@XZ
?GetRuntimeClass@CXTPPropertyGridItemBool@@UBEPAUCRuntimeClass@@XZ
?GetAccessibleChildCount@CXTPAccessible@@UAEJPAJ@Z
?GetAccessibleChild@CXTPAccessible@@UAEJUtagVARIANT@@PAPAUIDispatch@@@Z
?GetAccessibleHelp@CXTPAccessible@@UAEJUtagVARIANT@@PAPAG@Z
?GetAccessibleHelpTopic@CXTPAccessible@@UAEJPAPAGUtagVARIANT@@PAJ@Z
?GetAccessibleKeyboardShortcut@CXTPAccessible@@UAEJUtagVARIANT@@PAPAG@Z
?GetAccessibleFocus@CXTPAccessible@@UAEJPAUtagVARIANT@@@Z
?GetAccessibleSelection@CXTPAccessible@@UAEJPAUtagVARIANT@@@Z
?GetAccessibleDefaultAction@CXTPAccessible@@UAEJUtagVARIANT@@PAPAG@Z
?AccessibleNavigate@CXTPAccessible@@UAEJJUtagVARIANT@@PAU2@@Z
?AccessibleDoDefaultAction@CXTPAccessible@@UAEJUtagVARIANT@@@Z
?PutAccessibleName@CXTPAccessible@@UAEJUtagVARIANT@@PAG@Z
?GetThisClass@CXTPPropertyGridItemOption@@SGPAUCRuntimeClass@@XZ
?GetRuntimeClass@CXTPPropertyGridItem@@UBEPAUCRuntimeClass@@XZ
?GetInterfaceMap@CXTPPropertyGridItem@@MBEPBUAFX_INTERFACEMAP@@XZ
?GetAccessibleValue@CXTPPropertyGridItem@@MAEJUtagVARIANT@@PAPAG@Z
?AccessibleSelect@CXTPPropertyGridItem@@MAEJJUtagVARIANT@@@Z
?GetAccessible@CXTPPropertyGridItem@@MAEPAVCCmdTarget@@XZ
?GetAccessibleState@CXTPPropertyGridItem@@MAEJUtagVARIANT@@PAU2@@Z
?AccessibleHitTest@CXTPPropertyGridItem@@MAEJJJPAUtagVARIANT@@@Z
?AccessibleLocation@CXTPPropertyGridItem@@MAEJPAJ000UtagVARIANT@@@Z
?GetAccessibleRole@CXTPPropertyGridItem@@MAEJUtagVARIANT@@PAU2@@Z
?GetAccessibleName@CXTPPropertyGridItem@@MAEJUtagVARIANT@@PAPAG@Z
?GetAccessibleDescription@CXTPPropertyGridItem@@MAEJUtagVARIANT@@PAPAG@Z
?GetAccessibleParent@CXTPPropertyGridItem@@MAEJPAPAUIDispatch@@@Z
?OnInpaceControlFocus@CXTPPropertyGridItem@@MAEHH@Z
?OnCaptionChanged@CXTPPropertyGridItem@@MAEXXZ
?PutAccessibleValue@CXTPAccessible@@UAEJUtagVARIANT@@PAG@Z
?OnBeforeInsert@CXTPPropertyGridItem@@MAEXXZ
?SetEditText@CXTPPropertyGridItem@@MAEXABV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?GetInplaceList@CXTPPropertyGridItem@@MAEAAVCXTPPropertyGridInplaceList@@XZ
?OnInplaceButtonDown@CXTPPropertyGridItem@@MAEXPAVCXTPPropertyGridInplaceButton@@@Z
?OnAddChildItem@CXTPPropertyGridItem@@MAEXXZ
?OnLButtonUp@CXTPPropertyGridItem@@MAEXIVCPoint@@@Z
?OnLButtonDown@CXTPPropertyGridItem@@MAEHIVCPoint@@@Z
?OnLButtonDblClk@CXTPPropertyGridItem@@MAEXIVCPoint@@@Z
?OnChar@CXTPPropertyGridItem@@MAEHI@Z
?OnDeselect@CXTPPropertyGridItem@@MAEXXZ
?OnSelect@CXTPPropertyGridItem@@MAEXXZ
?GetEditStyle@CXTPPropertyGridItem@@UBEKXZ
?OnValidateEdit@CXTPPropertyGridItem@@UAEXXZ
?OnCancelEdit@CXTPPropertyGridItem@@UAEXXZ
?OnAfterEdit@CXTPPropertyGridItem@@UAEHAAV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?OnRequestEdit@CXTPPropertyGridItem@@UAEHXZ
?IsInplaceButtonVisible@CXTPPropertyGridItem@@UBEHPAVCXTPPropertyGridInplaceButton@@@Z
?SetFocusToInplaceControl@CXTPPropertyGridItem@@UAEXXZ
?GetInplaceEdit@CXTPPropertyGridItem@@UAEAAVCXTPPropertyGridInplaceEdit@@XZ
?GetViewValue@CXTPPropertyGridItem@@UAE?AV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@XZ
?ResetValue@CXTPPropertyGridItem@@UAEXXZ
?IsValueChanged@CXTPPropertyGridItem@@UBEHXZ
?MeasureItem@CXTPPropertyGridItem@@UAEXPAUtagMEASUREITEMSTRUCT@@@Z
?OnMergeItemConstraint@CXTPPropertyGridItem@@UAE?AVCSize@@PAVCDC@@PAVCXTPPropertyGridItemConstraint@@@Z
?OnDrawItemConstraint@CXTPPropertyGridItem@@UAEXPAVCDC@@PAVCXTPPropertyGridItemConstraint@@VCRect@@H@Z
?OnValueChanged@CXTPPropertyGridItem@@UAEXV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?SetValue@CXTPPropertyGridItem@@UAEXV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?GetValueRect@CXTPPropertyGridItem@@UAE?AVCRect@@XZ
?Expand@CXTPPropertyGridItem@@QAEXXZ
?AddChildItem@CXTPPropertyGridItem@@QAEPAV1@PAV1@@Z
?IsAllowEdit@CXTPPropertyGridItem@@UBEHXZ
?SetFlags@CXTPPropertyGridItem@@QAEXI@Z
?SetReadOnly@CXTPPropertyGridItem@@UAEXH@Z
?SetDescription@CXTPPropertyGridItem@@QAEXPBG@Z
??1CXTPPropertyGridItem@@UAE@XZ
??0CXTPPropertyGridItem@@QAE@PBG0PAV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@@Z
?GetBool@CXTPPropertyGridItemBool@@UBEHXZ
?AddCategory@CXTPPropertyGrid@@QAEPAVCXTPPropertyGridItem@@PBGPAV2@@Z
?OnKeyDown@CXTPPropertyGridItem@@MAEHI@Z
?OnIndexChanged@CXTPPropertyGridItem@@MAEXXZ
?SetVisible@CXTPPropertyGridItem@@MAEXH@Z
?GetCount@CXTPPropertyGridItems@@QBEJXZ
?HasChilds@CXTPPropertyGridItem@@QBEHXZ
?GetReadOnly@CXTPPropertyGridItem@@UBEHXZ
?GetValue@CXTPPropertyGridItem@@QBE?AV?$CStringT@GV?$StrTraitMFC_DLL@GV?$ChTraitsCRT@G@ATL@@@@@ATL@@XZ
?OnDrawItemValue@CXTPPropertyGridItem@@UAEHAAVCDC@@VCRect@@@Z
?OnRButtonDown@CXTPPropertyGridItem@@MAEXIVCPoint@@@Z
??0CXTPPropertyGridItemOption@@QAE@PBGHPAH@Z
?OnConstraintsChanged@CXTPPropertyGridItem@@MAEXXZ
mfc110u
ord6219
ord13732
ord989
ord14488
ord6220
ord14489
ord6218
ord14487
ord11821
ord11820
ord1985
ord4031
ord9248
ord12375
ord12374
ord296
ord286
ord1039
ord3210
ord3316
ord3317
ord13958
ord4883
ord4905
ord4862
ord4870
ord4874
ord4878
ord4858
ord12095
ord12097
ord2164
ord3202
ord3109
ord2251
ord4754
ord946
ord12057
ord12089
ord8062
ord12077
ord5789
ord3794
ord7169
ord13263
ord6723
ord7847
ord12364
ord14287
ord7789
ord12779
ord4093
ord14415
ord7770
ord14409
ord2432
ord5233
ord8169
ord7844
ord4528
ord12697
ord12760
ord10278
ord12085
ord8230
ord1463
ord7505
ord8314
ord5638
ord996
ord12006
ord3882
ord11962
ord2628
ord5806
ord13524
ord12860
ord11555
ord6739
ord14416
ord7771
ord14410
ord3000
ord4433
ord9541
ord5664
ord4441
ord4886
ord4853
ord4847
ord4891
ord4901
ord4866
ord4895
ord1729
ord1720
ord1724
ord1716
ord1707
ord13699
ord3211
ord9106
ord10847
ord6840
ord12058
ord8816
ord14408
ord11774
ord3780
ord11927
ord8990
ord11564
ord11563
ord5528
ord10133
ord10129
ord10131
ord10132
ord10130
ord2707
ord8055
ord10100
ord3247
ord3250
ord13577
ord6091
ord6000
ord6359
ord6436
ord4821
ord3824
ord2335
ord2194
ord6700
ord4177
ord1437
ord8986
ord3348
ord3349
ord4033
ord10317
ord11233
ord10860
ord8891
ord1104
ord9060
ord2706
ord13573
ord6089
ord11969
ord10883
ord8070
ord266
ord1106
ord884
ord1382
ord3639
ord6403
ord461
ord12011
ord9085
ord7347
ord265
ord9059
ord10095
ord8064
ord5285
ord7563
ord7573
ord7572
ord5832
ord5109
ord5287
ord5131
ord5401
ord9200
ord5635
ord5425
ord5128
ord316
ord1040
ord4774
ord1502
ord1504
ord10224
ord2355
msvcr110
memmove
_findnext64i32
_findclose
_purecall
_findfirst64i32
fputc
??1bad_cast@std@@UAE@XZ
??0bad_cast@std@@QAE@PBD@Z
??0bad_cast@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABV01@@Z
_unlock_file
ungetc
strtok_s
fgetpos
_fseeki64
fflush
fgetc
fsetpos
setvbuf
_lock_file
memcpy_s
fwrite
fclose
free
malloc
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
_CxxThrowException
__CxxFrameHandler3
memcpy
sscanf
memset
sprintf_s
strpbrk
_XcptFilter
__crtGetShowWindowMode
_amsg_exit
__wgetmainargs
__set_app_type
exit
_exit
_cexit
_configthreadlocale
__setusermatherr
_initterm_e
_initterm
_wcmdln
_fmode
_commode
_lock
_unlock
_calloc_crt
__dllonexit
_onexit
??1type_info@@UAE@XZ
?terminate@@YAXXZ
_crt_debugger_hook
__crtUnhandledException
__crtTerminateProcess
__crtSetUnhandledExceptionFilter
_invoke_watson
_controlfp_s
_except_handler4_common
memchr
kernel32
WideCharToMultiByte
MultiByteToWideChar
EncodePointer
DecodePointer
IsDebuggerPresent
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetCurrentThreadId
GetSystemTimeAsFileTime
VirtualQuery
IsProcessorFeaturePresent
user32
GetClientRect
DrawIcon
LoadIconW
RegisterWindowMessageW
GetWindowRect
GetSystemMetrics
SendMessageW
IsIconic
EnableWindow
gdi32
GetObjectW
comctl32
InitCommonControlsEx
oleaut32
VariantTimeToSystemTime
SystemTimeToVariantTime
msvcp110
?_Winerror_map@std@@YAPBDH@Z
?_Syserror_map@std@@YAPBDH@Z
?_Xbad_alloc@std@@YAXXZ
?_Xout_of_range@std@@YAXPBD@Z
?_Xlength_error@std@@YAXPBD@Z
?_BADOFF@std@@3_JB
??1_Lockit@std@@QAE@XZ
??0_Lockit@std@@QAE@H@Z
?_Getgloballocale@locale@std@@CAPAV_Locimp@12@XZ
?_Fiopen@std@@YAPAU_iobuf@@PBDHH@Z
?id@?$codecvt@DDH@std@@2V0locale@2@A
??_7?$basic_istream@DU?$char_traits@D@std@@@std@@6B@
?_Getcat@?$codecvt@DDH@std@@SAIPAPBVfacet@locale@2@PBV42@@Z
?_Init@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXXZ
?getloc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QBE?AVlocale@2@XZ
??0?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAE@XZ
?unshift@?$codecvt@DDH@std@@QBEHAAHPAD1AAPAD@Z
??0?$basic_istream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
??0?$basic_ios@DU?$char_traits@D@std@@@std@@IAE@XZ
?_Pninc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEPADXZ
?setg@?$basic_streambuf@DU?$char_traits@D@std@@@std@@IAEXPAD00@Z
?out@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?in@?$codecvt@DDH@std@@QBEHAAHPBD1AAPBDPAD3AAPAD@Z
?_Add_vtordisp1@?$basic_istream@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_istream@DU?$char_traits@D@std@@@std@@UAE@XZ
?setstate@?$basic_ios@DU?$char_traits@D@std@@@std@@QAEXH_N@Z
?_Add_vtordisp2@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_ios@DU?$char_traits@D@std@@@std@@UAE@XZ
?xsputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPBD_J@Z
?xsgetn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JPAD_J@Z
?showmanyc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAE_JXZ
??1?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAE@XZ
?always_noconv@codecvt_base@std@@QBE_NXZ
??Bid@locale@std@@QAEIXZ
?sbumpc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?sgetc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?snextc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHXZ
?_Ipfx@?$basic_istream@DU?$char_traits@D@std@@@std@@QAE_N_N@Z
??_7?$basic_ostream@DU?$char_traits@D@std@@@std@@6B@
?uncaught_exception@std@@YA_NXZ
?sputn@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAE_JPBD_J@Z
?_Osfx@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEXXZ
?sputc@?$basic_streambuf@DU?$char_traits@D@std@@@std@@QAEHD@Z
?flush@?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV12@XZ
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAV01@AAV01@@Z@Z
?_Add_vtordisp2@?$basic_ostream@DU?$char_traits@D@std@@@std@@UAEXXZ
??1?$basic_ostream@DU?$char_traits@D@std@@@std@@UAE@XZ
??0?$basic_ostream@DU?$char_traits@D@std@@@std@@QAE@PAV?$basic_streambuf@DU?$char_traits@D@std@@@1@_N@Z
?_Add_vtordisp1@?$basic_ios@DU?$char_traits@D@std@@@std@@UAEXXZ
?endl@std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@1@AAV21@@Z
?_Ios_base_dtor@ios_base@std@@CAXPAV12@@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@P6AAAVios_base@1@AAV21@@Z@Z
??6?$basic_ostream@DU?$char_traits@D@std@@@std@@QAEAAV01@H@Z
?setw@std@@YA?AU?$_Smanip@_J@1@_J@Z
?_Lock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?_Unlock@?$basic_streambuf@DU?$char_traits@D@std@@@std@@UAEXXZ
?imbue@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEXABVlocale@2@@Z
?setbuf@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEPAV12@PAD_J@Z
?sync@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
?uflow@?$basic_streambuf@DU?$char_traits@D@std@@@std@@MAEHXZ
??_7ios_base@std@@6B@
??_7?$basic_ios@DU?$char_traits@D@std@@@std@@6B@
Sections
.text Size: 85KB - Virtual size: 85KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 32KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 69KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 44KB - Virtual size: 45KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
rvjdtml Size: - Virtual size: 4KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE