Static task
static1
Behavioral task
behavioral1
Sample
644c213a29a8047ce662b7d1149df897d7a634a9abb4b0a36d3f4c5a4f3d6dbb.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
644c213a29a8047ce662b7d1149df897d7a634a9abb4b0a36d3f4c5a4f3d6dbb.exe
Resource
win10v2004-20220812-en
General
-
Target
644c213a29a8047ce662b7d1149df897d7a634a9abb4b0a36d3f4c5a4f3d6dbb
-
Size
1.5MB
-
MD5
f2bf472008773df1dff2dc937f45380d
-
SHA1
bc8d116a310d2d63423b5d993f004f22075efdeb
-
SHA256
644c213a29a8047ce662b7d1149df897d7a634a9abb4b0a36d3f4c5a4f3d6dbb
-
SHA512
3690abecd4bcd69c375a71fa584200ac33d5aa17f2d996ae0c15e9923bd4b3b0d603989e8bb797409d34a8aa8f556214148a620021b19f3a0f179d6a14a9082e
-
SSDEEP
24576:DTHE174hZ7f6Zcgng//6USgbcRElJc8qYCu:y73cgng36+YG75DCu
Malware Config
Signatures
Files
-
644c213a29a8047ce662b7d1149df897d7a634a9abb4b0a36d3f4c5a4f3d6dbb.exe windows x86
72fbb3cb33cf792a8023f3e138306ff5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
opengl32
glDeleteTextures
wglGetProcAddress
glVertex2f
glRotated
glTexCoord2fv
glGenTextures
glNewList
glEndList
glCallList
glVertex3f
glGetIntegerv
wglUseFontOutlinesA
glCopyTexSubImage2D
glSelectBuffer
glRenderMode
glInitNames
glPushName
glGenLists
glDeleteLists
glVertex3d
glColor3ub
glFrustum
glClear
glColor3f
glFinish
wglGetCurrentDC
wglCreateContext
glShadeModel
glClearColor
glClearDepth
glHint
glLightfv
glColor4f
glGetString
glFogi
glFogfv
glFogf
wglGetCurrentContext
wglMakeCurrent
wglDeleteContext
glViewport
glMatrixMode
glLoadIdentity
glNormal3f
glTexCoord2f
glVertex3fv
glPushMatrix
glScalef
glTranslatef
glRotatef
glPopMatrix
glEnd
glEnable
glBindTexture
glDisable
glBegin
glTexParameteri
glTexImage2D
glu32
gluPickMatrix
gluLookAt
gluPerspective
gluScaleImage
gluQuadricDrawStyle
gluNewQuadric
gluCylinder
gluBuild2DMipmaps
winmm
PlaySoundA
waveOutSetVolume
kernel32
FindNextFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCurrentThread
lstrcmpA
GetPrivateProfileIntA
GlobalFlags
LocalAlloc
InitializeCriticalSection
TlsAlloc
DeleteCriticalSection
GlobalHandle
TlsFree
LeaveCriticalSection
GlobalReAlloc
EnterCriticalSection
TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
GetFileAttributesA
GetFileTime
SetErrorMode
GetCurrentDirectoryA
GetTickCount
RtlUnwind
RaiseException
HeapFree
HeapAlloc
ExitProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapReAlloc
SetStdHandle
GetFileType
GetFullPathNameA
GetSystemTime
GetLocalTime
GetACP
HeapSize
SetUnhandledExceptionFilter
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
DuplicateHandle
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
CreateEventA
GetProfileStringA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
CreateFileW
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetTimeZoneInformation
GetCurrentProcess
CloseHandle
ReadFile
GetFileSize
CreateFileA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetTempPathA
FindResourceA
LockResource
LoadResource
WaitForSingleObject
FreeLibrary
LoadLibraryA
GetWindowsDirectoryA
lstrcpyA
WinExec
lstrlenA
lstrcatA
FreeEnvironmentStringsA
DeleteFileA
WriteFile
SizeofResource
GlobalFree
GlobalAlloc
GetSystemDirectoryA
GetLastError
CreateMutexA
GlobalUnlock
GlobalLock
GetProcAddress
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
GetModuleFileNameA
lstrcpynA
GetThreadLocale
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
MulDiv
SetLastError
GetVersion
user32
CopyAcceleratorTableA
LoadStringA
GetSysColorBrush
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
CharUpperA
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
LoadMenuA
GetDesktopWindow
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
GetMessageA
TranslateMessage
ValidateRect
CharNextA
EndPaint
BeginPaint
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
DispatchMessageA
GetFocus
SetFocus
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
CreateWindowExA
ReleaseDC
GetWindowDC
IsWindow
GetClientRect
LoadBitmapA
GetSystemMetrics
UnregisterClassA
HideCaret
ShowCaret
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetNextDlgGroupItem
RegisterClipboardFormatA
PostThreadMessageA
AdjustWindowRectEx
SetForegroundWindow
GetWindow
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
GetWindowRect
EnableWindow
SetTimer
InvalidateRect
FrameRect
FillRect
CopyRect
LoadIconA
LoadImageA
GetIconInfo
GetWindowLongA
DrawStateA
OffsetRect
DrawFocusRect
InflateRect
GetSysColor
WindowFromPoint
ClientToScreen
PostMessageA
GetParent
SendMessageA
LoadCursorA
ToAscii
GetKeyboardState
GetKeyNameTextA
KillTimer
PeekMessageA
AppendMenuA
DestroyWindow
GetDlgItem
IsWindowEnabled
DrawIconEx
GetCursorPos
GrayStringA
DrawTextA
TabbedTextOutA
GetWindowTextA
SetRect
UpdateWindow
SetMenu
DestroyMenu
SetWindowPos
MessageBoxA
CopyIcon
GetDC
SetWindowLongA
PtInRect
ReleaseCapture
RedrawWindow
SetCapture
MessageBeep
GetClassNameA
SetCursor
CreatePopupMenu
RegisterClassA
gdi32
StretchBlt
CreateCompatibleBitmap
GetBkColor
DPtoLP
LPtoDP
PtVisible
RectVisible
ExtTextOutA
Escape
GetClipBox
SetTextColor
SetBkColor
DeleteDC
SaveDC
RestoreDC
SetBkMode
SetROP2
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
MoveToEx
LineTo
GetDIBits
GetTextExtentPointA
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
PatBlt
GetMapMode
GetTextExtentPoint32A
CreateFontIndirectA
GetStockObject
SetBrushOrgEx
CreateBitmap
CreateBrushIndirect
SelectObject
SwapBuffers
ChoosePixelFormat
SetPixelFormat
GetPixelFormat
DescribePixelFormat
CreatePen
RoundRect
Rectangle
DeleteObject
CreateFontA
GetTextColor
BitBlt
GetObjectA
CreateCompatibleDC
Ellipse
TextOutA
CreateDIBitmap
GdiFlush
SetDIBits
CreateDIBSection
CreateSolidBrush
comdlg32
GetFileTitleA
ChooseColorA
GetSaveFileNameA
GetOpenFileNameA
winspool.drv
OpenPrinterA
DocumentPropertiesA
ClosePrinter
advapi32
RegQueryValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegCreateKeyExA
RegCloseKey
shell32
DragQueryFileA
DragFinish
ShellExecuteA
comctl32
_TrackMouseEvent
ImageList_AddMasked
ord17
ImageList_Destroy
ImageList_Create
oledlg
ord8
ole32
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleFlushClipboard
OleIsCurrentClipboard
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
CoRevokeClassObject
CoTaskMemFree
olepro32
ord253
oleaut32
VariantTimeToSystemTime
VariantClear
VariantCopy
SysAllocString
SysAllocStringByteLen
VariantChangeType
VarDateFromStr
SysFreeString
SysAllocStringLen
SysStringLen
msvfw32
MCIWndCreateA
Sections
.text Size: 372KB - Virtual size: 371KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 64KB - Virtual size: 61KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 216KB - Virtual size: 11.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 912KB - Virtual size: 908KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ