Static task
static1
Behavioral task
behavioral1
Sample
c251c8dfb1695cc29d161e0ceb062fb38faeea65da825501c8079926a5efd19a.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
c251c8dfb1695cc29d161e0ceb062fb38faeea65da825501c8079926a5efd19a.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
c251c8dfb1695cc29d161e0ceb062fb38faeea65da825501c8079926a5efd19a
-
Size
235KB
-
MD5
62cfc4ad626bf417e271a11fb3e6090a
-
SHA1
4e3c76be237d72fa91fd1ffba11482ca4683578c
-
SHA256
c251c8dfb1695cc29d161e0ceb062fb38faeea65da825501c8079926a5efd19a
-
SHA512
d3762e46b701d02fe9baf0779c56ca377c3bc3cce2de8dab2f3761ffd63fd999a391c5f87aff7094538226abcde55dad9724e94222c2adf4506a29adef31b190
-
SSDEEP
6144:nVM3UbTXHjfZEUWuVY7DD9sOWHtLV4jP42E2p4MvFymUS1atyu8oV3Zr0:n+3UbTXD9RVYz9sO0yg23ZvFnxRu8Et
Malware Config
Signatures
Files
-
c251c8dfb1695cc29d161e0ceb062fb38faeea65da825501c8079926a5efd19a.exe windows x86
a86eeb235d3f382e515c1042fe978478
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
FindNextChangeNotification
GlobalUnfix
GetShortPathNameW
EnumResourceLanguagesA
FreeConsole
GetCurrentDirectoryA
GetUserDefaultLCID
GetComputerNameA
TlsGetValue
WaitForMultipleObjects
OpenFileMappingA
AddAtomA
SetSystemTimeAdjustment
InitializeCriticalSection
GetAtomNameA
GetProfileStringW
OpenMutexW
SearchPathA
FreeEnvironmentStringsW
ReadConsoleInputW
EnumTimeFormatsA
WriteConsoleW
WriteConsoleOutputA
PeekConsoleInputA
OpenEventW
FileTimeToSystemTime
lstrcmpA
WritePrivateProfileSectionW
ReadProcessMemory
GetCurrentDirectoryW
IsValidCodePage
EnumResourceNamesW
HeapSize
PeekConsoleInputW
LoadResource
SetConsoleCursorInfo
FillConsoleOutputCharacterW
ResetEvent
GetProcAddress
FoldStringW
FindCloseChangeNotification
LocalFree
SetEvent
SetCurrentDirectoryW
GetSystemDirectoryW
DeleteAtom
LocalFlags
WaitNamedPipeW
GetConsoleOutputCP
CreateMailslotW
GetConsoleCP
RemoveDirectoryA
FlushInstructionCache
LoadLibraryExA
GetLogicalDriveStringsA
GetNamedPipeHandleStateA
GetLocaleInfoA
EnumResourceNamesA
GetStartupInfoW
GetSystemTime
LocalCompact
GetConsoleTitleA
ReadFileScatter
GetCurrencyFormatA
GetEnvironmentVariableW
GetMailslotInfo
lstrcpynW
LoadLibraryW
WaitForDebugEvent
CreateDirectoryA
MultiByteToWideChar
GetProfileSectionA
GetStringTypeA
FindFirstFileA
WaitForSingleObjectEx
GetModuleFileNameW
VirtualFree
FreeLibraryAndExitThread
ExitThread
GetLogicalDriveStringsW
ReadFileEx
DosDateTimeToFileTime
ReleaseSemaphore
GetPrivateProfileSectionNamesA
GetExitCodeProcess
DeleteFileA
GetCalendarInfoW
GetConsoleScreenBufferInfo
GetTempPathW
GetPrivateProfileStringA
BeginUpdateResourceA
GetNamedPipeHandleStateW
IsDebuggerPresent
VirtualUnlock
GlobalFindAtomW
GetProfileIntA
HeapLock
CompareFileTime
CreateTapePartition
GetLargestConsoleWindowSize
WriteProfileStringW
SetTimeZoneInformation
GlobalFlags
SetEnvironmentVariableA
GetHandleInformation
RtlZeroMemory
GlobalAddAtomW
GetProcessTimes
MoveFileW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileSectionNamesW
WritePrivateProfileStructA
SetConsoleScreenBufferSize
lstrcpyW
ExpandEnvironmentStringsA
GetStringTypeW
SetThreadContext
InterlockedCompareExchange
SetFilePointer
CreateDirectoryExA
DebugActiveProcess
InterlockedDecrement
GetLocaleInfoW
SetCriticalSectionSpinCount
TryEnterCriticalSection
lstrcmp
GetAtomNameW
GetFileAttributesW
AllocConsole
UpdateResourceW
FindAtomA
GlobalFindAtomA
EnterCriticalSection
Toolhelp32ReadProcessMemory
EnumTimeFormatsW
OpenWaitableTimerA
VirtualQueryEx
GetProfileIntW
SetConsoleOutputCP
WinExec
SuspendThread
WriteProfileStringA
ReadConsoleOutputCharacterW
EnumDateFormatsW
TlsFree
ConnectNamedPipe
RtlMoveMemory
WriteConsoleInputA
OpenEventA
GlobalDeleteAtom
ReadConsoleOutputW
CreateFileW
PeekNamedPipe
EnumCalendarInfoExA
GetProcessVersion
CreateWaitableTimerA
WriteConsoleInputW
OutputDebugStringA
LocalLock
TerminateThread
Sleep
GetStringTypeExW
SetThreadExecutionState
GetCommandLineA
WideCharToMultiByte
HeapWalk
FileTimeToDosDateTime
UnmapViewOfFile
OpenWaitableTimerW
WaitNamedPipeA
GetConsoleCursorInfo
LocalReAlloc
UpdateResourceA
GetDiskFreeSpaceW
FileTimeToLocalFileTime
TransactNamedPipe
CopyFileExA
SetThreadPriority
GetDiskFreeSpaceExA
SearchPathW
GetTempFileNameW
OpenFileMappingW
SetCurrentDirectoryA
PulseEvent
FindFirstFileExA
GetFullPathNameA
GetShortPathNameA
GlobalGetAtomNameA
SetPriorityClass
GetPrivateProfileIntW
CopyFileA
EnumSystemLocalesW
FindNextFileW
SetEnvironmentVariableW
CreateDirectoryExW
WriteConsoleOutputW
ExpandEnvironmentStringsW
GetPrivateProfileStructW
LoadModule
OpenFile
FindResourceW
GetNumberFormatW
GetPrivateProfileSectionA
CreateFileA
Thread32First
GetConsoleTitleW
ReadConsoleOutputA
UnlockFileEx
WriteFileGather
GlobalFree
GetPrivateProfileStructA
VirtualAllocEx
EnumSystemCodePagesW
GetTempFileNameA
VirtualProtectEx
GetSystemDefaultLangID
DeleteFiber
GetThreadPriorityBoost
Heap32ListFirst
FindAtomW
FindFirstChangeNotificationA
GetTimeZoneInformation
ResetWriteWatch
SetFileTime
GlobalAlloc
OpenSemaphoreW
WriteConsoleA
ReleaseMutex
GetVersion
GetThreadSelectorEntry
SetVolumeLabelW
ReadConsoleOutputCharacterA
EnumResourceTypesW
GetVersionExA
lstrcmpiA
GetDateFormatW
MapViewOfFileEx
GetModuleHandleW
GetVolumeInformationA
LocalAlloc
CommConfigDialogA
GlobalReAlloc
FormatMessageA
LockResource
SetLocaleInfoW
LockFileEx
CreateProcessW
Heap32Next
GetNumberFormatA
CreateFileMappingW
FillConsoleOutputAttribute
GetCompressedFileSizeW
DeleteCriticalSection
SetConsoleCursorPosition
lstrcpy
lstrcmpW
FindResourceA
UnhandledExceptionFilter
EnumDateFormatsA
FreeLibrary
WritePrivateProfileSectionA
WriteFileEx
CreateEventW
WriteConsoleOutputAttribute
IsValidLocale
GetProcessPriorityBoost
Module32Next
LocalHandle
SleepEx
LeaveCriticalSection
WaitForSingleObject
CreateEventA
GetSystemDefaultLCID
GetFileAttributesExA
AddAtomW
FindFirstFileW
WaitForMultipleObjectsEx
GetStartupInfoA
FindResourceExA
DuplicateHandle
WriteFile
GlobalUnWire
CreateSemaphoreA
WritePrivateProfileStringA
ConvertDefaultLocale
EnumSystemCodePagesA
DisconnectNamedPipe
GlobalWire
GetThreadPriority
GetFileSize
GetProcessShutdownParameters
EnumResourceLanguagesW
GetCompressedFileSizeA
Thread32Next
RemoveDirectoryW
CreateConsoleScreenBuffer
lstrcpyA
FlushViewOfFile
TlsSetValue
CreateFileMappingA
FoldStringA
EscapeCommFunction
FindClose
EnumDateFormatsExA
GetComputerNameW
EnumCalendarInfoExW
CreatePipe
TlsAlloc
BeginUpdateResourceW
GetTimeFormatA
Process32Next
WriteConsoleOutputCharacterW
DeleteFileW
UnlockFile
GetNumberOfConsoleMouseButtons
GetPrivateProfileIntA
FreeResource
ReadDirectoryChangesW
GetLongPathNameA
HeapUnlock
DefineDosDeviceW
LoadLibraryExW
lstrcatW
SetEndOfFile
OutputDebugStringW
lstrcat
GetACP
RtlFillMemory
GetConsoleMode
GetDiskFreeSpaceA
SetWaitableTimer
EnumResourceTypesA
GetCalendarInfoA
CreateNamedPipeA
WriteProcessMemory
GetProfileStringA
EnumSystemLocalesA
FindFirstChangeNotificationW
GlobalUnlock
GetPriorityClass
FreeEnvironmentStringsA
WaitCommEvent
GetWindowsDirectoryW
SetSystemTime
SetConsoleCP
ContinueDebugEvent
FindFirstFileExW
InitializeCriticalSectionAndSpinCount
GetThreadLocale
ReadFile
GetLastError
GetWriteWatch
DeviceIoControl
CreateThread
VirtualProtect
CreateMailslotA
MoveFileA
GlobalFix
CreateProcessA
GetVolumeInformationW
lstrlenW
OpenMutexA
SetComputerNameW
SetConsoleCtrlHandler
CreateMutexA
MapViewOfFile
SetConsoleTextAttribute
GetDiskFreeSpaceExW
FindNextFileA
OpenSemaphoreA
EnumCalendarInfoW
OpenProcess
MoveFileExA
GetThreadTimes
ReadConsoleInputA
LocalUnlock
GetFileType
FlushFileBuffers
GetDriveTypeA
lstrlen
DebugBreak
GlobalLock
GetNumberOfConsoleInputEvents
GetFullPathNameW
GetUserDefaultLangID
SetConsoleTitleW
VirtualLock
CreateWaitableTimerW
CompareStringA
WriteProfileSectionW
MoveFileExW
DisableThreadLibraryCalls
SetComputerNameA
GetThreadContext
GetCommandLineW
GetFileInformationByHandle
LockFile
GetSystemDirectoryA
HeapCompact
EnumDateFormatsExW
lstrcpynA
GlobalCompact
SetLocaleInfoA
VirtualFreeEx
FlushConsoleInputBuffer
LocalFileTimeToFileTime
SystemTimeToFileTime
lstrcmpiW
InitAtomTable
SetThreadLocale
GetStdHandle
GetLogicalDrives
SetLocalTime
HeapDestroy
lstrcmpi
EraseTape
SystemTimeToTzSpecificLocalTime
GetProfileSectionW
GetEnvironmentStringsA
SetFileAttributesW
SetVolumeLabelA
GlobalMemoryStatus
GetExitCodeThread
GetCurrencyFormatW
GetFileAttributesA
GlobalAddAtomA
CreateDirectoryW
SetFileAttributesA
InterlockedExchangeAdd
lstrcpyn
InterlockedIncrement
lstrcatA
CloseHandle
GetFileTime
SetConsoleWindowInfo
FillConsoleOutputCharacterA
CommConfigDialogW
SetThreadAffinityMask
CreateNamedPipeW
DefineDosDeviceA
ReadConsoleA
GetEnvironmentVariableA
lstrlenA
ReadConsoleOutputAttribute
SetConsoleTitleA
GetEnvironmentStrings
SetHandleCount
SignalObjectAndWait
LocalShrink
GetTempPathA
GetEnvironmentStringsW
GetTimeFormatW
MulDiv
Heap32ListNext
GetQueuedCompletionStatus
wininet
GopherCreateLocatorW
FtpDeleteFileA
IsUrlCacheEntryExpiredW
InternetReadFileExW
HttpCheckDavCompliance
FtpGetFileA
InternetGetConnectedStateExA
FtpRenameFileA
IncrementUrlCacheHeaderData
InternetSetFilePointer
InternetUnlockRequestFile
FtpCreateDirectoryW
HttpSendRequestA
InternetConnectW
GetUrlCacheEntryInfoW
InternetShowSecurityInfoByURLW
FtpFindFirstFileW
InternetTimeToSystemTimeA
DeleteUrlCacheEntryW
RetrieveUrlCacheEntryFileA
InternetGetCookieW
InternetGetLastResponseInfoW
InternetGetConnectedState
HttpSendRequestExW
GetUrlCacheEntryInfoExA
InternetWriteFileExW
GopherGetAttributeA
InternetFindNextFileA
InternetSetOptionExA
ShowClientAuthCerts
SetUrlCacheEntryInfoA
GopherCreateLocatorA
CreateUrlCacheEntryA
SetUrlCacheConfigInfoA
InternetTimeFromSystemTime
FindFirstUrlCacheEntryExW
InternetOpenW
GopherGetAttributeW
InternetCombineUrlA
InternetWriteFileExA
FindFirstUrlCacheEntryExA
InternetConfirmZoneCrossingA
InternetConfirmZoneCrossingW
InternetCreateUrlW
InternetSetDialState
HttpEndRequestA
InternetGetConnectedStateEx
UpdateUrlCacheContentPath
RetrieveUrlCacheEntryStreamA
InternetGetCertByURLA
InternetAlgIdToStringW
InternetCombineUrlW
InternetTimeToSystemTimeW
DeleteUrlCacheContainerW
DeleteIE3Cache
SetUrlCacheGroupAttributeA
FtpDeleteFileW
InternetCanonicalizeUrlA
FtpCommandA
FtpPutFileW
InternetDialA
FindFirstUrlCacheEntryA
GopherGetLocatorTypeA
GopherFindFirstFileA
InternetGoOnlineW
InternetSetOptionA
CreateUrlCacheContainerW
DeleteUrlCacheGroup
InternetTimeToSystemTime
GopherFindFirstFileW
InternetReadFileExA
FindFirstUrlCacheContainerW
InternetWriteFile
UnlockUrlCacheEntryFileW
GopherOpenFileW
UrlZonesDetach
FindNextUrlCacheContainerW
InternetCrackUrlA
InternetSetCookieA
InternetOpenUrlA
InternetAutodialHangup
InternetSecurityProtocolToStringW
FtpRenameFileW
LoadUrlCacheContent
InternetGoOnlineA
DeleteUrlCacheEntryA
CreateUrlCacheGroup
InternetCheckConnectionA
HttpSendRequestW
InternetSetOptionExW
HttpEndRequestW
InternetFortezzaCommand
InternetShowSecurityInfoByURL
InternetCreateUrlA
HttpQueryInfoA
FreeUrlCacheSpaceA
InternetGetLastResponseInfoA
FtpGetFileSize
GetUrlCacheConfigInfoW
UnlockUrlCacheEntryStream
InternetCloseHandle
InternetSetOptionW
FtpOpenFileA
InternetGetCertByURL
UnlockUrlCacheEntryFile
SetUrlCacheGroupAttributeW
InternetFindNextFileW
IsHostInProxyBypassList
GetUrlCacheGroupAttributeW
SetUrlCacheEntryGroup
FindNextUrlCacheEntryW
ShowX509EncodedCertificate
SetUrlCacheConfigInfoW
InternetOpenA
IsUrlCacheEntryExpiredA
InternetSetCookieW
DetectAutoProxyUrl
FreeUrlCacheSpaceW
ShowCertificate
FtpSetCurrentDirectoryA
InternetHangUp
InternetErrorDlg
DeleteUrlCacheEntry
HttpOpenRequestA
HttpQueryInfoW
GopherOpenFileA
gdi32
GetPixel
FrameRgn
EqualRgn
PaintRgn
CreateCompatibleDC
SetPaletteEntries
GetCharacterPlacementW
BeginPath
SetWindowExtEx
GetColorSpace
CreateDIBPatternBrush
FixBrushOrgEx
GetTextFaceW
RectVisible
CreateHalftonePalette
CreatePenIndirect
PtVisible
CreateBitmap
PlayMetaFileRecord
GetCurrentObject
ExtFloodFill
SelectObject
EndDoc
GetClipBox
GetCharABCWidthsW
GetEnhMetaFileA
RestoreDC
StretchBlt
MaskBlt
GetCharWidth32W
GetKerningPairsW
GetCharWidth32A
SetBitmapDimensionEx
StrokeAndFillPath
user32
GetMenuItemInfoA
DrawIcon
MapVirtualKeyExW
Sections
.text Size: 119KB - Virtual size: 119KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 99KB - Virtual size: 98KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ