Static task
static1
Behavioral task
behavioral1
Sample
208cab99c9a73d3f09abae4084d860cbb28b70664ed3f22bab10ca373c7472ad.exe
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral2
Sample
208cab99c9a73d3f09abae4084d860cbb28b70664ed3f22bab10ca373c7472ad.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
208cab99c9a73d3f09abae4084d860cbb28b70664ed3f22bab10ca373c7472ad
-
Size
684KB
-
MD5
0aa8b4a25d01fd4842dc0f430caab1b1
-
SHA1
5b08ccd5efd4d01ea37e8502ea8894a6ed36bb82
-
SHA256
208cab99c9a73d3f09abae4084d860cbb28b70664ed3f22bab10ca373c7472ad
-
SHA512
87e497fb909ac5c12d6d593e934a9321b21f40e6504e99f7db730373bfa8d8b6c06d98866e0a6f76993889ed2250ad289187ed2fdfb4d50bd49fa4486171bb15
-
SSDEEP
12288:wOheHZYXbTlrTX9eMHFrOP93PS+P+uKQi1A5jmfkID0:daZYrTlvXTFG93PS+P0d1/sID0
Malware Config
Signatures
Files
-
208cab99c9a73d3f09abae4084d860cbb28b70664ed3f22bab10ca373c7472ad.exe windows x86
24cb14f928026857d650c9fed6b8b3bb
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
HeapDestroy
TlsFree
GetStringTypeW
GetConsoleOutputCP
CreateEventA
GlobalFlags
lstrlenW
GetProcAddress
GetProcessHeap
GetModuleFileNameW
WriteFile
HeapAlloc
UnhandledExceptionFilter
GetOverlappedResult
lstrcpynA
QueryPerformanceCounter
ConvertDefaultLocale
SetEvent
VirtualProtect
GetModuleFileNameA
CompareStringW
SetEnvironmentVariableA
GetCurrentProcessId
GetCurrentProcess
VirtualQuery
UnlockFile
GetComputerNameW
IsBadReadPtr
GetSystemDirectoryA
GetFileAttributesA
GetPrivateProfileStringA
FlushFileBuffers
LocalAlloc
ReleaseMutex
WaitForSingleObject
GetVersionExA
IsValidLocale
GetCPInfo
lstrcpynW
EnterCriticalSection
LocalFileTimeToFileTime
ReadFile
SetFileAttributesW
lstrlenA
CreateMutexA
TlsSetValue
InterlockedCompareExchange
lstrcmpW
CreateEventW
SizeofResource
GetStartupInfoA
MulDiv
LoadResource
IsValidCodePage
GetPrivateProfileIntW
FatalAppExitA
LCMapStringA
GetConsoleCP
FreeLibrary
HeapFree
SetEnvironmentVariableW
GetConsoleMode
SetLastError
SetFileTime
FreeEnvironmentStringsW
GetOEMCP
GetVersion
ExitThread
HeapCreate
GetUserDefaultLCID
GetCurrentThread
GetStdHandle
HeapSize
MoveFileA
CreateProcessA
FreeEnvironmentStringsA
GetProcessVersion
GlobalFree
GetVolumeInformationA
SetConsoleCtrlHandler
IsBadStringPtrA
GetFileTime
LoadLibraryA
GetModuleHandleW
FileTimeToLocalFileTime
LockFile
SetFilePointer
GetCurrentThreadId
GlobalFindAtomA
GetSystemTime
ResetEvent
LoadLibraryW
GetStringTypeA
GetFileType
EnumSystemLocalesA
FindResourceExA
MultiByteToWideChar
GetDiskFreeSpaceA
GetLastError
GetThreadLocale
InterlockedExchange
LocalFree
DeleteCriticalSection
GetTempFileNameA
RemoveDirectoryW
GetWindowsDirectoryW
SetStdHandle
GetLocalTime
ExitProcess
GlobalUnlock
GetLocaleInfoA
Sleep
GetVersionExW
lstrcmpiA
IsDebuggerPresent
TlsAlloc
GlobalAlloc
GlobalGetAtomNameA
GlobalReAlloc
GetFileSize
InitializeCriticalSection
FormatMessageA
FileTimeToSystemTime
LockResource
TlsGetValue
UnmapViewOfFile
OutputDebugStringW
GetStringTypeExW
DeviceIoControl
LeaveCriticalSection
GetFileInformationByHandle
SetThreadPriority
ExpandEnvironmentStringsA
LCMapStringW
FindFirstFileW
lstrcatA
SetUnhandledExceptionFilter
GetTimeZoneInformation
SetConsoleMode
GetSystemTimeAsFileTime
WriteConsoleW
IsBadCodePtr
GetEnvironmentStrings
OutputDebugStringA
OpenMutexA
RtlUnwind
LocalReAlloc
DuplicateHandle
GetTimeFormatA
CopyFileA
DebugBreak
FormatMessageW
SetHandleCount
GlobalLock
GetEnvironmentVariableA
WinExec
FindNextFileA
GetACP
GetModuleHandleA
HeapReAlloc
IsBadWritePtr
FindResourceA
SystemTimeToFileTime
SearchPathA
CreateSemaphoreA
EnumResourceLanguagesA
SetErrorMode
RaiseException
GetTempPathA
WriteConsoleA
GetCommandLineA
WideCharToMultiByte
CreateFileA
GetShortPathNameA
TerminateThread
VirtualAlloc
OpenProcess
InterlockedIncrement
GetEnvironmentStringsW
CompareFileTime
VirtualFree
GetFullPathNameA
GlobalHandle
GetProfileIntW
GetSystemInfo
GetTickCount
CloseHandle
TerminateProcess
GlobalAddAtomW
lstrcmpA
GetDriveTypeA
GetLocaleInfoW
WritePrivateProfileStringA
GetProfileStringA
CreateDirectoryA
CompareStringA
WaitForMultipleObjects
GetDateFormatA
InterlockedDecrement
GetCurrentDirectoryA
HeapValidate
FindClose
SetEndOfFile
version
GetFileVersionInfoA
VerLanguageNameA
VerQueryValueA
GetFileVersionInfoSizeA
comctl32
ImageList_GetBkColor
CreatePropertySheetPageW
ImageList_DragLeave
ord17
ImageList_Read
ImageList_DragMove
ImageList_BeginDrag
ImageList_SetOverlayImage
ImageList_DragEnter
PropertySheetA
ImageList_Remove
ImageList_GetImageInfo
InitCommonControlsEx
ImageList_Replace
ImageList_GetIcon
ImageList_DragShowNolock
ImageList_Destroy
ImageList_SetDragCursorImage
ImageList_AddMasked
ImageList_Add
ImageList_ReplaceIcon
ImageList_GetImageCount
ImageList_Write
ImageList_DrawIndirect
ImageList_LoadImageA
ImageList_EndDrag
ImageList_Draw
ImageList_Create
CreatePropertySheetPageA
ImageList_GetIconSize
DestroyPropertySheetPage
_TrackMouseEvent
ImageList_LoadImageW
gdi32
PaintRgn
CreatePatternBrush
IntersectClipRect
CloseEnhMetaFile
PlgBlt
CreatePalette
SetViewportOrgEx
PolylineTo
SetBitmapBits
OffsetRgn
GetSystemPaletteEntries
GetCurrentObject
GetTextExtentExPointW
GetPixel
ExtTextOutA
EnumFontFamiliesA
Polyline
GetStockObject
CreateFontIndirectA
SetWorldTransform
SetTextAlign
BitBlt
GetObjectA
PathToRegion
FillPath
SelectObject
SetPixelV
CreateDCA
SetROP2
SetTextJustification
SetDIBColorTable
CreateDiscardableBitmap
SelectClipRgn
RealizePalette
GetFontData
Rectangle
ExtFloodFill
OffsetWindowOrgEx
GetTextColor
SelectPalette
CreateEnhMetaFileA
GetOutlineTextMetricsA
SetPolyFillMode
CreateBitmap
CreatePen
GetDeviceCaps
StretchBlt
SetAbortProc
GetAspectRatioFilterEx
GetStretchBltMode
GetDCOrgEx
DeleteEnhMetaFile
PolyPolyline
CreateFontIndirectW
RoundRect
TextOutW
AngleArc
SetWindowOrgEx
StartDocW
GdiFlush
OffsetClipRgn
RectInRegion
OffsetViewportOrgEx
EqualRgn
FrameRgn
GetBkColor
GetCharABCWidthsFloatA
GetRegionData
SetViewportExtEx
SetBoundsRect
LineTo
GetBkMode
GetROP2
WidenPath
ExcludeClipRect
AnimatePalette
CombineRgn
SetRectRgn
CopyEnhMetaFileA
PolyPolygon
GetTextFaceA
GetViewportExtEx
GetCharWidthA
ExtTextOutW
GetClipBox
GetNearestPaletteIndex
GetTextMetricsW
PatBlt
ExtSelectClipRgn
TextOutA
FloodFill
EndPage
GetPolyFillMode
DeleteObject
UnrealizeObject
CreateCompatibleBitmap
DrawEscape
GetNearestColor
GetTextExtentPointW
CreateHatchBrush
SetPaletteEntries
StartDocA
ExtCreatePen
CreateDIBSection
CreateCompatibleDC
StrokeAndFillPath
GetRgnBox
GetViewportOrgEx
GetTextMetricsA
SetTextColor
GetTextCharsetInfo
SetDIBitsToDevice
GetCharABCWidthsA
CreateRectRgnIndirect
CreateRectRgn
CreateFontW
SetPixel
CreateEllipticRgnIndirect
AbortDoc
CreateHalftonePalette
ExtCreateRegion
GetBitmapDimensionEx
Pie
EnumObjects
GetWindowExtEx
EndPath
SetBkColor
PolyBezier
CreateDCW
SetBitmapDimensionEx
GetDIBits
StartPage
GetObjectW
DPtoLP
EnumFontFamiliesExW
CreateRoundRectRgn
Escape
GetKerningPairsA
ScaleViewportExtEx
AbortPath
SetStretchBltMode
GetMiterLimit
GetTextExtentPointA
SetDIBits
DeleteDC
GdiComment
MaskBlt
MoveToEx
SetMapMode
SetBkMode
SaveDC
Ellipse
FillRgn
Arc
SetMiterLimit
CreatePolygonRgn
CreateSolidBrush
SetBrushOrgEx
PtInRegion
GetObjectType
PtVisible
GetCharABCWidthsW
StretchDIBits
SetArcDirection
CreatePolyPolygonRgn
GetCharWidthFloatA
CreateICW
GetTextCharacterExtra
GetTextExtentPoint32W
Polygon
GetWindowOrgEx
PlayEnhMetaFile
CreateFontA
GetCurrentPositionEx
SetWindowExtEx
SelectClipPath
GetPaletteEntries
RestoreDC
EnumFontFamiliesExA
EndDoc
CreateEllipticRgn
GetColorAdjustment
RectVisible
GetTextFaceW
GetMapMode
CopyMetaFileA
CreateDIBitmap
GetClipRgn
UpdateColors
GetTextExtentPoint32A
StrokePath
PolyBezierTo
ScaleWindowExtEx
CreateBrushIndirect
GetBrushOrgEx
BeginPath
LPtoDP
winmm
mciSendStringW
waveOutUnprepareHeader
mixerOpen
mixerClose
waveOutClose
waveOutSetVolume
waveInGetErrorTextA
waveOutOpen
waveOutPrepareHeader
midiOutClose
waveOutWrite
mciSendStringA
mciGetErrorStringA
waveOutReset
waveOutRestart
midiOutOpen
midiOutShortMsg
PlaySoundA
mixerSetControlDetails
waveOutPause
shell32
ExtractIconW
ShellExecuteW
SHGetMalloc
SHGetSpecialFolderPathW
DragAcceptFiles
SHGetFolderPathA
DragQueryFileW
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHFileOperationW
ShellExecuteExW
Shell_NotifyIconW
SHCreateDirectoryExW
SHGetFileInfoA
SHBrowseForFolderW
CommandLineToArgvW
Shell_NotifyIconA
SHBrowseForFolderA
ord155
winspool.drv
GetPrinterA
ord204
EndDocPrinter
GetPrinterDriverDirectoryA
SetPrinterA
OpenPrinterA
GetPrinterW
AddPrinterDriverA
DocumentPropertiesA
ClosePrinter
DeviceCapabilitiesA
GetPrinterDriverA
AddPrinterA
DeviceCapabilitiesW
OpenPrinterW
WritePrinter
wsock32
WSACleanup
ole32
OleIsRunning
OleFlushClipboard
StgIsStorageILockBytes
OleInitialize
CoRevokeClassObject
CreateILockBytesOnHGlobal
CoCreateGuid
OleLockRunning
WriteFmtUserTypeStg
OleUninitialize
CLSIDFromProgID
StringFromGUID2
CreateFileMoniker
OleCreateMenuDescriptor
OleLoad
CoQueryProxyBlanket
OleQueryLinkFromData
OleSetContainedObject
CoLockObjectExternal
CoTaskMemRealloc
OleGetClipboard
CoTaskMemFree
CoInitializeEx
CoGetClassObject
ReadClassStg
CLSIDFromString
RevokeDragDrop
CreateBindCtx
OleRegEnumVerbs
OleIsCurrentClipboard
CreateItemMoniker
CreateGenericComposite
DoDragDrop
OleCreateFromData
OleCreateStaticFromData
IsAccelerator
StgOpenStorage
CoSetProxyBlanket
GetClassFile
OleDuplicateData
ReadFmtUserTypeStg
OleTranslateAccelerator
CoTreatAsClass
WriteClassStg
CoTaskMemAlloc
OleRegGetUserType
CoInitialize
CoInitializeSecurity
OleDestroyMenuDescriptor
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
RegisterDragDrop
SetConvertStg
CreateDataAdviseHolder
CreateStreamOnHGlobal
CreateOleAdviseHolder
CoCreateInstance
StgCreateDocfile
ReleaseStgMedium
StgIsStorageFile
OleRegGetMiscStatus
OleQueryCreateFromData
OleSetClipboard
OleRun
CoFreeUnusedLibraries
CoRegisterClassObject
StringFromCLSID
GetHGlobalFromILockBytes
GetRunningObjectTable
CoDisconnectObject
CoUninitialize
CoRegisterMessageFilter
advapi32
SetSecurityDescriptorDacl
AllocateAndInitializeSid
RegOpenCurrentUser
RegOpenKeyExW
DeleteService
StartServiceCtrlDispatcherA
ControlService
RegOpenKeyW
RegOpenKeyA
RegDeleteKeyA
OpenServiceW
RegQueryInfoKeyA
RegQueryInfoKeyW
GetFileSecurityA
RegOpenKeyExA
DeregisterEventSource
OpenSCManagerA
RegisterEventSourceA
OpenServiceA
RegCreateKeyA
RegEnumValueA
RegCloseKey
ImpersonateSelf
RegSetValueA
RegCreateKeyExA
QueryServiceStatus
RegDeleteValueA
SetServiceStatus
CreateServiceA
RegQueryValueA
CopySid
RegEnumKeyA
CloseServiceHandle
OpenProcessToken
IsValidSid
EqualSid
LookupAccountNameW
AccessCheck
IsValidSecurityDescriptor
InitiateSystemShutdownA
CryptReleaseContext
OpenThreadToken
RegEnumKeyExA
InitializeSecurityDescriptor
RegEnumKeyW
RegisterServiceCtrlHandlerA
ReportEventA
RegSetValueExA
RegDeleteKeyW
RegQueryValueExW
GetSidSubAuthorityCount
EnumServicesStatusA
GetSecurityDescriptorSacl
RegCreateKeyExW
RegSetValueExW
OpenSCManagerW
StartServiceA
SetEntriesInAclW
RegQueryValueExA
GetUserNameA
GetLengthSid
FreeSid
user32
SetTimer
RegisterClipboardFormatA
InflateRect
DeferWindowPos
MapDialogRect
AdjustWindowRectEx
GetClassNameA
GetPropW
DrawTextExA
ShowOwnedPopups
IsDialogMessageA
SetClipboardData
GetWindowRect
GetSystemMetrics
GetMenu
GetWindow
keybd_event
GetWindowRgn
SetCursor
SendMessageA
wsprintfA
LockWindowUpdate
FlashWindow
GetMenuItemInfoA
GetMenuItemID
GetKeyboardLayoutList
FrameRect
GetClassNameW
GetSubMenu
IsZoomed
GetWindowPlacement
GetCursorPos
SendMessageW
GetClassLongA
SetDlgItemTextA
IsWindowUnicode
WaitForInputIdle
IsMenu
MessageBeep
PeekMessageW
DdeFreeDataHandle
DrawEdge
IsDlgButtonChecked
GetDlgItem
SendDlgItemMessageA
wvsprintfA
InsertMenuItemA
DefWindowProcW
GetNextDlgGroupItem
InvalidateRect
SystemParametersInfoA
GetTopWindow
GetAncestor
PostMessageA
GetMenuItemInfoW
GetClassInfoA
OffsetRect
PostThreadMessageA
SetWindowPlacement
RemovePropW
CallWindowProcW
SetMenuItemBitmaps
RedrawWindow
LoadIconW
SetWindowTextA
SetMenu
TrackPopupMenu
CopyRect
GetWindowDC
SetPropW
DestroyWindow
IsIconic
UnionRect
WindowFromPoint
PostMessageW
GetParent
ValidateRect
DrawTextA
GetDlgItemInt
GetCapture
IsWindowVisible
ClientToScreen
DestroyAcceleratorTable
BeginDeferWindowPos
GetWindowLongW
RemovePropA
IsWindow
EnableWindow
LoadMenuA
DefWindowProcA
SetForegroundWindow
MoveWindow
DestroyMenu
LoadImageW
GetKeyState
LoadBitmapW
SetScrollPos
SetWindowLongA
InvertRect
TranslateMessage
RegisterClipboardFormatW
GetCaretPos
KillTimer
SetCapture
GetMessageTime
DdeCreateDataHandle
CallWindowProcA
GetMenuState
GetClientRect
LoadAcceleratorsA
GetSystemMenu
SetWindowContextHelpId
GetMenuStringA
SetWindowTextW
UpdateWindow
DrawMenuBar
GetMessageA
PeekMessageA
SendMessageTimeoutW
GetMenuItemCount
GetDC
GetSysColor
SetParent
GetSysColorBrush
ExcludeUpdateRgn
GetDoubleClickTime
SetKeyboardState
DialogBoxParamA
OpenClipboard
CopyAcceleratorTableA
SetMenuContextHelpId
GetScrollInfo
GetForegroundWindow
RegisterClassExA
SetWindowsHookExA
GetFocus
SetDlgItemInt
ScreenToClient
SetFocus
CreatePopupMenu
GetNextDlgTabItem
CheckRadioButton
GetActiveWindow
GetScrollRange
SetMenuItemInfoA
DrawStateA
PostQuitMessage
CreateWindowExW
DeleteMenu
SetMenuItemInfoW
MapWindowPoints
GetCursor
AppendMenuW
CreateDialogIndirectParamA
UnhookWindowsHookEx
IntersectRect
ShowScrollBar
ReleaseCapture
LoadCursorA
UnregisterClassA
SendMessageTimeoutA
RegisterWindowMessageW
EqualRect
TranslateMDISysAccel
CharUpperW
HideCaret
GetDlgCtrlID
BeginPaint
IsDialogMessageW
GetWindowTextA
SendDlgItemMessageW
SetWindowPos
EndDeferWindowPos
ScrollWindow
GetWindowInfo
SetActiveWindow
CheckMenuItem
GetAsyncKeyState
ReleaseDC
RegisterClassA
DrawFocusRect
TrackPopupMenuEx
DestroyIcon
BringWindowToTop
SetScrollInfo
IsClipboardFormatAvailable
DialogBoxParamW
DdeFreeStringHandle
CreateDialogIndirectParamW
ShowWindow
LoadImageA
DrawIcon
LoadBitmapA
FindWindowA
AppendMenuA
SetWindowLongW
SetRect
CreateWindowExA
EndPaint
DrawStateW
MessageBoxA
GetKeyboardState
CreateAcceleratorTableW
SetCursorPos
FillRect
CloseClipboard
RemoveMenu
EnableMenuItem
IsWindowEnabled
DrawFrameControl
GetWindowTextLengthA
DefDlgProcA
UnregisterHotKey
GetMessagePos
LoadStringA
GetWindowThreadProcessId
GetWindowLongA
GetClassInfoExA
ModifyMenuW
PtInRect
IsChild
DrawIconEx
CreateMenu
LoadIconA
GetClipboardFormatNameA
ScrollWindowEx
WinHelpW
SetMenuDefaultItem
WinHelpA
GetQueueStatus
DispatchMessageW
OpenDesktopA
RegisterClassExW
TranslateAcceleratorA
EndDialog
InvalidateRgn
ChangeClipboardChain
GetClassInfoExW
DispatchMessageA
ShowCaret
CharNextA
GetDesktopWindow
MessageBoxW
InSendMessage
Sections
.text Size: 228KB - Virtual size: 226KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 308KB - Virtual size: 307KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 112KB - Virtual size: 132KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 32KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ