Static task
static1
Behavioral task
behavioral1
Sample
9567fdc1b67fcbe6e16d6098253150ef08e36da124c59585e0aa2fe0c450f5a2.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
9567fdc1b67fcbe6e16d6098253150ef08e36da124c59585e0aa2fe0c450f5a2.exe
Resource
win10v2004-20220812-en
General
-
Target
9567fdc1b67fcbe6e16d6098253150ef08e36da124c59585e0aa2fe0c450f5a2
-
Size
804KB
-
MD5
6b9225312dd6824d29c9763308e1fa50
-
SHA1
764af0bad4dacfdb2802723b6eda1e7d8a830cdf
-
SHA256
9567fdc1b67fcbe6e16d6098253150ef08e36da124c59585e0aa2fe0c450f5a2
-
SHA512
0576b82dfd10fc426c27a1b279ef07abeaf6f4b647f9a33c975da5f5f1268a4409888f132cd9445bbb0e2ccb787772c63ab39017b05dda884c79856506ae4ffe
-
SSDEEP
12288:OC5/kXZsNOt94SJ7YE3fdKasuNwzeC8wYTHOTERZPw4rf:2ASNDLczeVV
Malware Config
Signatures
Files
-
9567fdc1b67fcbe6e16d6098253150ef08e36da124c59585e0aa2fe0c450f5a2.exe windows x86
65d580dcd5de0259dcc1c8ae2ae2a42a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
rpcrt4
UuidFromStringW
version
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
gdiplus
GdiplusShutdown
GdipCloneBrush
GdipAlloc
GdipCreateFont
GdipDrawString
GdipSetTextRenderingHint
GdipCreateFromHDC
GdipCreateSolidFill
GdipDeleteFont
GdipDeleteFontFamily
GdipCreateFontFamilyFromName
GdipDeleteGraphics
GdipFree
GdiplusStartup
GdipDeleteBrush
nvexpbar
ord7
g_sEBI
CloseThemeData
OpenThemeData
DrawThemeParentBackground
IsThemeBackgroundPartiallyTransparent
DrawThemeText
GetThemeBackgroundContentRect
DrawThemeBackground
IsThemeActive
ord2
ord1
ord8
kernel32
FileTimeToSystemTime
SystemTimeToFileTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SetErrorMode
GetPrivateProfileIntW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetCurrentDirectoryW
GetStartupInfoW
RtlUnwind
GlobalFlags
HeapReAlloc
IsBadReadPtr
GetSystemTimeAsFileTime
TerminateProcess
HeapSize
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentProcessId
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
GetOEMCP
GetCPInfo
IsBadCodePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
GetTempPathW
GetProfileIntW
SearchPathW
GetTickCount
GetCurrentThread
lstrcmpA
lstrcmpiA
ConvertDefaultLocale
EnumResourceLanguagesW
GetVersion
GlobalGetAtomNameW
GetShortPathNameW
GetVolumeInformationW
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetStringTypeExW
DeleteFileW
MoveFileW
GlobalAlloc
GetDiskFreeSpaceW
GetFullPathNameW
GetTempFileNameW
GetFileTime
SetFileTime
GlobalFree
WideCharToMultiByte
GlobalLock
GlobalUnlock
SetLastError
FreeResource
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
lstrlenA
GetModuleHandleA
lstrcmpW
GetVersionExA
LoadLibraryA
FindResourceExW
OpenMutexW
GetProcAddress
CreateMutexW
GetUserDefaultLCID
SetThreadLocale
GetSystemDirectoryW
ReleaseMutex
FormatMessageW
LocalFree
GetLocalTime
CreateFileW
GetComputerNameW
CloseHandle
GetFileAttributesW
GetLocaleInfoW
FindFirstFileW
FindClose
lstrcatW
GetModuleHandleW
LoadLibraryExW
MultiByteToWideChar
GetModuleFileNameW
SizeofResource
LoadLibraryW
FreeLibrary
MulDiv
FindResourceW
LoadResource
LockResource
InterlockedDecrement
InterlockedIncrement
lstrcpynW
lstrcmpiW
HeapAlloc
GetProcessHeap
HeapFree
GetCurrentProcess
FlushInstructionCache
GetLastError
LeaveCriticalSection
EnterCriticalSection
lstrcpyW
lstrlenW
GetVersionExW
GetLocaleInfoA
GetACP
InterlockedExchange
GetCurrentThreadId
GetThreadLocale
DeleteCriticalSection
InitializeCriticalSection
RaiseException
ExitProcess
user32
SetWindowContextHelpId
RegisterClipboardFormatW
DestroyCursor
LockWindowUpdate
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
PostThreadMessageW
CreateMenu
GetTabbedTextExtentA
GetMessageW
TranslateMessage
ValidateRect
GetActiveWindow
CreateDialogIndirectParamW
EndDialog
GetWindowDC
GrayStringW
DrawTextExW
TabbedTextOutW
SetMenuItemBitmaps
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
SetDlgItemTextW
GetCapture
GetClassInfoExW
SetPropW
GetPropW
RemovePropW
SendDlgItemMessageW
SendDlgItemMessageA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageW
GetTopWindow
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
MessageBoxW
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
GetMenu
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetClassInfoW
SetWindowPlacement
IntersectRect
SystemParametersInfoA
GetWindowPlacement
DrawFocusRect
CallWindowProcW
BeginDeferWindowPos
EndDeferWindowPos
GetClassLongW
GetSystemMetrics
ReleaseCapture
SetCapture
GetDCEx
GetSystemMenu
SystemParametersInfoW
FillRect
LoadImageW
MapDialogRect
SetFocus
SetParent
FindWindowW
IsIconic
SetForegroundWindow
SetWindowTextW
GetCursorPos
GetKeyState
OffsetRect
IsChild
InflateRect
DestroyMenu
LoadMenuIndirectW
GetMenuItemInfoW
DeleteMenu
WindowFromPoint
ScreenToClient
RegisterWindowMessageW
CharLowerW
IsWindowEnabled
GetClassNameW
GetNextDlgTabItem
GetFocus
SetMenu
LoadMenuW
RemoveMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
AppendMenuW
CreatePopupMenu
EnumDisplaySettingsW
GetWindow
GetDesktopWindow
wsprintfW
CopyRect
GetWindowTextLengthW
GetWindowTextW
DrawTextW
RegisterClassW
DefWindowProcW
BeginPaint
EndPaint
IsRectEmpty
GetDlgCtrlID
SendMessageW
GetWindowRect
EnableWindow
UnregisterClassW
PostMessageW
PtInRect
DrawFrameControl
SetWindowRgn
GetClientRect
IsWindowVisible
RedrawWindow
SetTimer
KillTimer
InvalidateRect
LoadBitmapW
GetDlgItem
SetWindowPos
GetWindowLongW
CreateWindowExW
GetParent
UpdateWindow
TrackMouseEvent
SetCursor
DestroyIcon
CreateDialogParamW
WinHelpW
GetDC
ReleaseDC
GetDialogBaseUnits
IsDialogMessageW
MoveWindow
ShowWindow
SetWindowLongW
ShowOwnedPopups
PostQuitMessage
IsZoomed
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsW
InsertMenuItemW
BringWindowToTop
CharNextW
DestroyWindow
SetRect
LoadIconW
DrawIconEx
UnhookWindowsHookEx
LoadCursorW
GetSysColorBrush
RegisterClassExW
GetSysColor
SetWindowsHookExW
IsWindow
CallNextHookEx
ClientToScreen
TranslateAcceleratorW
SetRectEmpty
CharUpperW
GetMenuStringW
DrawIcon
InsertMenuW
gdi32
PatBlt
SetBkColor
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutW
Escape
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ExtSelectClipRgn
CreatePatternBrush
CreateDIBSection
CreatePen
CreateDCW
CreateRectRgnIndirect
SetRectRgn
CreateEllipticRgn
LPtoDP
Ellipse
StretchDIBits
GetCharWidthW
CreateFontW
StartPage
EndPage
SetAbortProc
AbortDoc
GetViewportOrgEx
Rectangle
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextExtentPoint32A
GetWindowOrgEx
MoveToEx
LineTo
SetDIBitsToDevice
SetViewportOrgEx
GetTextColor
EnumFontFamiliesW
ExtTextOutW
CreateCompatibleBitmap
OffsetWindowOrgEx
DeleteDC
GetClipBox
BitBlt
CreateCompatibleDC
SetBkMode
SetTextColor
GetTextFaceW
GetTextMetricsW
GetTextExtentPointW
DeleteObject
EndDoc
StartDocW
DPtoLP
GetDeviceCaps
FrameRgn
GetRgnBox
CombineRgn
CreateRoundRectRgn
CreatePolygonRgn
CreateRectRgn
GetObjectW
CreateFontIndirectW
CreateSolidBrush
GetTextExtentPoint32W
SelectObject
GetStockObject
IntersectClipRect
ExcludeClipRect
SetStretchBltMode
SetROP2
SetPolyFillMode
RestoreDC
SaveDC
GetBkColor
CreateBitmap
GetMapMode
SetMapMode
SetTextAlign
msimg32
AlphaBlend
comdlg32
PrintDlgW
GetOpenFileNameW
GetSaveFileNameW
CommDlgExtendedError
GetFileTitleW
winspool.drv
DocumentPropertiesW
ClosePrinter
OpenPrinterW
GetJobW
advapi32
RegEnumKeyW
RegDeleteValueW
RegCloseKey
RegCreateKeyExW
RegOpenKeyExW
RegSetValueExW
RegQueryInfoKeyW
RegEnumKeyExW
RegQueryValueExW
RegEnumValueW
RegQueryValueExA
RegOpenKeyExA
SetFileSecurityW
RegCreateKeyW
RegQueryValueW
RegDeleteKeyW
RegOpenKeyW
RegSetValueW
GetFileSecurityW
shell32
ShellExecuteW
ShellExecuteExW
SHGetFileInfoW
DragFinish
DragQueryFileW
ExtractIconW
ExtractAssociatedIconW
comctl32
ImageList_ReplaceIcon
ImageList_Add
ImageList_Create
ord17
ImageList_Destroy
ImageList_Draw
ImageList_GetImageInfo
shlwapi
PathFindFileNameW
SHGetValueW
SHSetValueW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
oledlg
OleUIBusyW
ole32
CoTaskMemRealloc
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromProgID
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
StringFromCLSID
CLSIDFromString
StringFromGUID2
CoRegisterClassObject
CoRevokeClassObject
CoGetMalloc
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
oleaut32
SysFreeString
VarUI4FromStr
SysAllocString
SysAllocStringLen
SysStringLen
LoadRegTypeLi
LoadTypeLi
UnRegisterTypeLi
RegisterTypeLi
VariantClear
VariantChangeType
VariantInit
VariantCopy
SafeArrayDestroy
SystemTimeToVariantTime
OleCreateFontIndirect
Sections
.text Size: 396KB - Virtual size: 392KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 108KB - Virtual size: 107KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 16KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 212KB - Virtual size: 209KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.irdata Size: 68KB - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE