Bearmass
Caselist
CommonWash
Heregather
Melodycross
Woodgirl
Static task
static1
Behavioral task
behavioral1
Sample
qfr986sth.dll
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
qfr986sth.dll
Resource
win10-20220812-en
Target
qfr986sth.tar
Size
1.1MB
MD5
e6b7ec0dd1cd7b8f7c08ec2d4d369d8d
SHA1
6da00a5ce8acc27e9fef642c932153dc8f152f6b
SHA256
eae537de7f5de3a3f3eb0b5021c78cc2e951186bf8411d045eab1ac9c6cc62f8
SHA512
4a44fb582fff394d0bc6039aa392fa7164d47f8e2720f3214f4258c048715fe7ef64b0d9f35eb9ca1e8e29ab4698d0a1b1ab621dcd96cf6d00830a93a80ae623
SSDEEP
24576:Wr+fVBdzxo7RY/uuTkA+94dP2Qm4VltHR6bPYEH/e0HiD:e+fVBhxo7S/3Tn+94dP2Qm4VXxePYeHG
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
VirtualProtectEx
HeapAlloc
GetProcessHeap
OpenProcess
Sleep
GetSystemTime
CreateSemaphoreA
GetModuleFileNameA
GetModuleHandleA
GetEnvironmentVariableA
GetWindowsDirectoryA
CreateFileA
QueryPerformanceCounter
GetVersionExA
GetDateFormatA
WriteConsoleW
CreateFileW
HeapSize
ReadConsoleW
SetStdHandle
SetEnvironmentVariableW
FreeEnvironmentStringsW
WideCharToMultiByte
MultiByteToWideChar
GetStringTypeW
FormatMessageW
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetCPInfo
EncodePointer
DecodePointer
SetLastError
InitializeCriticalSectionAndSpinCount
CreateEventW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetSystemTimeAsFileTime
GetTickCount
GetModuleHandleW
GetProcAddress
CompareStringW
LCMapStringW
GetLocaleInfoW
CloseHandle
SetEvent
ResetEvent
WaitForSingleObjectEx
IsProcessorFeaturePresent
IsDebuggerPresent
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetStartupInfoW
GetCurrentProcess
TerminateProcess
GetCurrentProcessId
GetCurrentThreadId
InitializeSListHead
RaiseException
RtlUnwind
GetLastError
FreeLibrary
LoadLibraryExW
InterlockedPushEntrySList
InterlockedFlushSList
HeapFree
HeapReAlloc
ExitProcess
GetModuleHandleExW
GetModuleFileNameW
GetCurrentThread
GetStdHandle
GetFileType
GetDateFormatW
GetTimeFormatW
IsValidLocale
GetUserDefaultLCID
EnumSystemLocalesW
GetFileSizeEx
SetFilePointerEx
FlushFileBuffers
WriteFile
GetConsoleCP
GetConsoleMode
ReadFile
SetConsoleCtrlHandler
GetTimeZoneInformation
FindClose
FindFirstFileExW
FindNextFileW
IsValidCodePage
GetACP
GetOEMCP
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
OutputDebugStringW
EnumWindows
GetWindowLongW
ReleaseDC
GetClassInfoExA
DefWindowProcA
CallNextHookEx
Bearmass
Caselist
CommonWash
Heregather
Melodycross
Woodgirl
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ