Static task
static1
Behavioral task
behavioral1
Sample
a2672cebd572ccc4b92f37879de918d8266801de29f7365d915e5b4a9d6cfbe3.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
a2672cebd572ccc4b92f37879de918d8266801de29f7365d915e5b4a9d6cfbe3.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
a2672cebd572ccc4b92f37879de918d8266801de29f7365d915e5b4a9d6cfbe3
-
Size
328KB
-
MD5
ef96990fc6f1ae7f3eb75286ffc0bfe0
-
SHA1
df9d892cc6de11d88e47a47a7a409ababc650b3a
-
SHA256
a2672cebd572ccc4b92f37879de918d8266801de29f7365d915e5b4a9d6cfbe3
-
SHA512
2e467e75614af3266fe29585569ee8d54b01dd6035165a64cac0c07303d831323c39e12c94aaf8bec1d02008d955e9b609b6c1953e98dd020b9db5d08630c359
-
SSDEEP
6144:qyb+OQJOPhhqjemHMdbo/7kawvI1oTkEVOXlB:qyaOyOPhiMdbo/YaAfT1VclB
Malware Config
Signatures
Files
-
a2672cebd572ccc4b92f37879de918d8266801de29f7365d915e5b4a9d6cfbe3.exe windows x86
c1850dd3c34df490ca2d67a1d176e3b5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
comdlg32
GetSaveFileNameW
GetFileTitleA
GetOpenFileNameW
GetFileTitleW
ChooseColorW
CommDlgExtendedError
GetSaveFileNameA
PrintDlgW
GetOpenFileNameA
advapi32
CloseServiceHandle
RegDeleteValueA
RegOpenKeyExW
GetLengthSid
EqualSid
RegOpenCurrentUser
RegDeleteValueW
RegQueryValueW
AddAce
RegQueryInfoKeyW
ControlService
GetFileSecurityA
SetFileSecurityA
RegEnumKeyExA
MapGenericMask
CreateProcessAsUserA
RegCreateKeyW
RegSetValueExA
RegCreateKeyA
SetEntriesInAclW
RegQueryValueExA
RegCloseKey
DeleteAce
StartServiceA
RegisterEventSourceW
GetUserNameW
CryptAcquireContextA
AdjustTokenPrivileges
RegCreateKeyExW
RegCreateKeyExA
RegQueryValueExW
QueryServiceStatus
SetSecurityDescriptorDacl
RegQueryValueA
AccessCheck
GetSidLengthRequired
OpenThreadToken
RegEnumKeyW
DeleteService
ImpersonateSelf
RegDeleteKeyA
InitializeAcl
RegOpenKeyExA
RegOpenKeyA
CreateServiceA
RevertToSelf
RegQueryInfoKeyA
RegEnumKeyA
RegEnumKeyExW
CryptGetHashParam
GetTokenInformation
StartServiceCtrlDispatcherA
FreeSid
OpenProcessToken
OpenSCManagerA
RegSetValueA
SetFileSecurityW
RegSetValueExW
RegDeleteKeyW
RegEnumValueA
GetUserNameA
InitializeSecurityDescriptor
user32
DdeFreeStringHandle
GetClassLongW
ShowWindow
GetWindowRgn
SetWindowContextHelpId
GetKeyNameTextA
FrameRect
LoadStringW
SetMenu
GetSystemMetrics
DialogBoxParamW
SetParent
GetWindow
InsertMenuA
DestroyCursor
GetClientRect
PostThreadMessageA
CreateDialogIndirectParamA
GetWindowTextLengthA
LoadImageA
EnableMenuItem
RegisterWindowMessageA
SetActiveWindow
AttachThreadInput
UnpackDDElParam
DispatchMessageA
SendMessageTimeoutA
RegisterHotKey
FindWindowW
BeginDeferWindowPos
InsertMenuW
EqualRect
IsDlgButtonChecked
SetScrollPos
SetCursor
MessageBoxW
ExcludeUpdateRgn
WinHelpA
GetMessageA
CharToOemA
GetNextDlgTabItem
GetClassNameA
CheckMenuItem
IsDialogMessageA
GetUpdateRect
ReleaseDC
CallWindowProcA
RedrawWindow
SetTimer
GetFocus
CreateIconFromResourceEx
PeekMessageW
DrawIconEx
UnionRect
GetKeyState
IsDialogMessageW
GetDCEx
RemoveMenu
GetClipboardData
GetWindowRect
ReleaseCapture
RegisterClipboardFormatA
GetClassInfoExA
CreateIconIndirect
GetSubMenu
MapVirtualKeyA
IsWindow
CheckRadioButton
OpenClipboard
GetMenuItemCount
SetCursorPos
GetDlgCtrlID
HideCaret
TrackPopupMenu
SendMessageW
GetWindowTextW
CharNextA
FillRect
IsWindowVisible
GetMessageW
LoadAcceleratorsW
BringWindowToTop
IsWindowEnabled
GetDlgItemTextA
RemovePropW
LoadCursorA
OffsetRect
GetWindowTextA
LoadMenuA
InflateRect
GetMenuCheckMarkDimensions
GetScrollInfo
GetWindowTextLengthW
SetWindowRgn
GetMenuItemID
MapDialogRect
ModifyMenuW
MapVirtualKeyW
SetScrollInfo
InvalidateRect
EmptyClipboard
GetWindowDC
DrawMenuBar
GetWindowLongA
GetMenuItemInfoA
PostQuitMessage
ModifyMenuA
RegisterClassExA
GetClassNameW
MessageBoxA
FlashWindow
MessageBeep
DispatchMessageW
SetScrollRange
GetScrollRange
DestroyMenu
DrawFocusRect
DrawEdge
EndPaint
PostMessageA
SetWindowLongW
LoadBitmapW
SetCapture
MoveWindow
UpdateWindow
GetMenu
SetForegroundWindow
LoadIconA
DefWindowProcW
GetDialogBaseUnits
SetWindowPos
DefWindowProcA
SetWindowsHookExA
GrayStringA
GetNextDlgGroupItem
TranslateAcceleratorW
SetWindowLongA
DrawStateW
IsClipboardFormatAvailable
GetTopWindow
UnhookWindowsHookEx
CharLowerW
EnumWindows
TranslateMessage
DrawTextW
RegisterClassA
SystemParametersInfoA
DrawIcon
IsMenu
WaitForInputIdle
GetMenuStringA
SetFocus
PtInRect
GetDlgItem
ScrollWindow
DeleteMenu
AppendMenuA
EndDialog
keybd_event
GetWindowLongW
GetSysColorBrush
DeferWindowPos
LoadIconW
WindowFromPoint
DrawTextExA
DestroyAcceleratorTable
wsprintfW
GetCursorPos
IntersectRect
MsgWaitForMultipleObjects
KillTimer
ShowCaret
CreateMenu
LoadCursorW
SetDlgItemTextA
GetAsyncKeyState
GetForegroundWindow
CreatePopupMenu
GetWindowThreadProcessId
GetScrollPos
MapWindowPoints
SetWindowTextA
UnregisterClassA
DestroyIcon
GetCapture
InvalidateRgn
GetMenuState
CreateDialogParamW
FindWindowA
SendMessageA
CopyRect
EndDeferWindowPos
SetRect
SetRectEmpty
TabbedTextOutA
CharUpperA
TrackPopupMenuEx
SetWindowsHookExW
CheckMenuRadioItem
BeginPaint
GetActiveWindow
SetMenuItemBitmaps
GetMessagePos
ValidateRect
ScreenToClient
PostMessageW
GetParent
ShowCursor
CreateDialogIndirectParamW
CharLowerBuffA
GetClassInfoA
RemovePropA
DefMDIChildProcA
GetSysColor
ClientToScreen
GetDesktopWindow
EnableWindow
SetPropA
DrawFrameControl
SetClipboardData
LoadStringA
IsIconic
IsChild
CopyImage
GetKeyboardLayoutList
IsRectEmpty
GetWindowPlacement
CreateWindowExW
DestroyWindow
ShowScrollBar
LoadBitmapA
SendDlgItemMessageA
CallNextHookEx
UnregisterHotKey
GetDC
wsprintfA
ReuseDDElParam
DrawTextA
TranslateAcceleratorA
GetPropA
RegisterWindowMessageW
CreateWindowExA
GetClassLongA
RegisterClassW
kernel32
FindFirstFileA
EnumSystemLocalesA
FindNextFileW
lstrcpyA
LocalLock
GetCommandLineA
GetThreadLocale
GetStringTypeW
GetDiskFreeSpaceA
SetPriorityClass
GlobalReAlloc
GetLogicalDriveStringsA
CreateProcessW
lstrcmpW
IsBadWritePtr
GetFullPathNameA
GetEnvironmentVariableA
QueryPerformanceCounter
CreateProcessA
CreateDirectoryA
GetEnvironmentStrings
GetEnvironmentVariableW
GetFileSize
FatalAppExitA
SuspendThread
GlobalHandle
SetLastError
GetEnvironmentStringsW
WritePrivateProfileStringA
GetStdHandle
FileTimeToSystemTime
CreateThread
DeleteCriticalSection
FreeEnvironmentStringsA
GlobalUnlock
WriteConsoleW
LCMapStringW
SetErrorMode
WideCharToMultiByte
SetStdHandle
GlobalGetAtomNameA
GetTimeZoneInformation
ExitProcess
GetFileType
GlobalAlloc
InterlockedIncrement
FormatMessageA
GetCurrentDirectoryA
InterlockedExchange
SetEndOfFile
FindResourceA
CreateFileW
WritePrivateProfileSectionA
GetCurrentThread
FindFirstFileW
SetConsoleCtrlHandler
GetVolumeInformationA
CreateFileA
GetTempFileNameA
HeapSize
VirtualAlloc
GetProcAddress
GetSystemDefaultLangID
lstrcmpA
IsBadReadPtr
CreateEventA
GetLogicalDrives
MapViewOfFile
UnhandledExceptionFilter
GetCurrentProcess
GetModuleFileNameW
ReleaseSemaphore
LocalFree
lstrcpynA
GetSystemDirectoryA
GlobalLock
GetTempPathA
TlsAlloc
MulDiv
lstrcmpiW
GetFileInformationByHandle
GetConsoleMode
HeapDestroy
LockFile
GetShortPathNameA
DeleteFileA
GetFileAttributesW
TlsFree
SetFilePointer
MoveFileA
GetVersion
SetFileAttributesW
RtlUnwind
WriteFile
InterlockedDecrement
CreateDirectoryW
GetCommandLineW
WinExec
GetLocaleInfoA
Sleep
GetModuleFileNameA
lstrcatA
GetLocalTime
VirtualQuery
GetThreadPriority
GetConsoleOutputCP
GetPrivateProfileIntA
GetOEMCP
HeapFree
GetTimeFormatA
SetEnvironmentVariableW
FormatMessageW
TerminateProcess
GetFileTime
SetConsoleTitleW
GetACP
FreeLibrary
HeapCreate
lstrcpyW
EnterCriticalSection
VirtualProtect
_lclose
GetStringTypeA
RaiseException
ExitThread
GetFileAttributesA
GetCPInfo
FreeEnvironmentStringsW
OpenMutexA
LoadResource
GetProcessHeap
WriteConsoleA
LCMapStringA
IsBadStringPtrA
DebugBreak
UnlockFile
IsDebuggerPresent
GetDriveTypeA
GlobalFindAtomA
GetUserDefaultLCID
VirtualFree
GlobalAddAtomA
TlsGetValue
IsValidLocale
SetEvent
LeaveCriticalSection
WritePrivateProfileStringW
GetModuleHandleA
GetLongPathNameA
lstrlenA
FlushFileBuffers
GetModuleHandleW
GetVersionExA
GetStartupInfoA
SizeofResource
GetCurrentThreadId
HeapReAlloc
SetEnvironmentVariableA
WaitForSingleObject
SystemTimeToFileTime
GetStartupInfoW
IsValidCodePage
SetFileTime
CreateMutexA
FileTimeToLocalFileTime
GetConsoleCP
GetLastError
GetLocaleInfoW
CompareStringA
GetSystemTime
SetFileAttributesA
DeleteFileW
OpenProcess
LockResource
ExpandEnvironmentStringsA
LoadLibraryA
GetTickCount
TlsSetValue
MoveFileW
GetWindowsDirectoryA
IsBadCodePtr
CloseHandle
lstrlenW
lstrcmpiA
GetDateFormatA
GetCurrentDirectoryW
SetHandleCount
HeapAlloc
GlobalFree
SetUnhandledExceptionFilter
InitializeCriticalSection
RemoveDirectoryA
SetThreadPriority
CopyFileA
CompareStringW
GlobalSize
ReadFile
GetCurrentProcessId
FreeResource
GetSystemTimeAsFileTime
LocalAlloc
MultiByteToWideChar
GetProfileStringA
comctl32
ImageList_Add
InitCommonControlsEx
ImageList_Duplicate
ImageList_EndDrag
ImageList_Create
_TrackMouseEvent
ImageList_Draw
ImageList_GetImageInfo
ImageList_Write
ImageList_Merge
ImageList_DragMove
ImageList_Destroy
DestroyPropertySheetPage
ImageList_Remove
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_SetDragCursorImage
CreatePropertySheetPageA
ImageList_DragEnter
CreateToolbarEx
ImageList_DragLeave
ImageList_GetIconSize
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_GetDragImage
PropertySheetA
ImageList_LoadImageA
ord17
ImageList_Copy
ImageList_AddMasked
ImageList_Read
ImageList_DrawEx
ImageList_GetIcon
gdi32
GetTextFaceW
SetMapMode
GetCharWidthFloatA
GetGlyphOutlineA
BeginPath
ScaleWindowExtEx
GetCurrentObject
StretchDIBits
GetTextExtentPoint32A
CreatePenIndirect
StartDocA
EnumMetaFile
ExtFloodFill
GetViewportOrgEx
SetDIBits
DrawEscape
FillRgn
LineTo
SetDIBitsToDevice
Polyline
GetStretchBltMode
EnumFontFamiliesExA
PlayMetaFileRecord
AnimatePalette
PlgBlt
GetTextAlign
SetViewportExtEx
CreateBitmap
GetRgnBox
GetColorAdjustment
CreateRectRgnIndirect
ExcludeClipRect
GetPixel
SetTextCharacterExtra
GetTextCharsetInfo
GetBitmapBits
SetROP2
GetTextMetricsA
ExtCreatePen
GetCharWidthA
SetViewportOrgEx
EndDoc
PlayEnhMetaFile
ExtTextOutA
Ellipse
SelectPalette
CreateRoundRectRgn
RealizePalette
CreateDIBitmap
GetTextColor
LPtoDP
GetBkColor
GetEnhMetaFileA
SetGraphicsMode
GetTextMetricsW
ResizePalette
GetTextExtentPointA
CombineRgn
CreateBitmapIndirect
SetMiterLimit
GetTextFaceA
GetMiterLimit
WidenPath
GetKerningPairsA
OffsetRgn
CreateDiscardableBitmap
GetDCOrgEx
ExtTextOutW
PolyBezierTo
SetWindowExtEx
CreateDIBPatternBrushPt
GetViewportExtEx
GetSystemPaletteEntries
AbortPath
CreateEllipticRgn
CreateBrushIndirect
DeleteObject
TextOutW
PtInRegion
CreatePen
UpdateColors
PolyBezier
SetPolyFillMode
GetCharABCWidthsW
CreatePatternBrush
GetObjectW
EnumEnhMetaFile
Chord
CreateDIBSection
FrameRgn
Arc
SelectObject
SetPixelV
GetBrushOrgEx
GetNearestColor
GetCurrentPositionEx
ExtSelectClipRgn
CreateFontIndirectA
CreateICW
ScaleViewportExtEx
UnrealizeObject
SelectClipRgn
CreateHalftonePalette
SetPaletteEntries
SetBkColor
SetRectRgn
PolyDraw
CreateCompatibleDC
GetFontData
CreateFontA
PtVisible
PathToRegion
GetMetaFileA
GdiComment
CreatePolygonRgn
SaveDC
AngleArc
Escape
PolylineTo
GetObjectA
GetStockObject
StartPage
CreatePalette
ExtCreateRegion
GetWindowOrgEx
RectVisible
ArcTo
ResetDCA
SetAbortProc
SetTextAlign
PatBlt
SetTextColor
GetClipRgn
GetWindowExtEx
SetColorAdjustment
OffsetViewportOrgEx
GetNearestPaletteIndex
SetBitmapDimensionEx
PaintRgn
GetOutlineTextMetricsA
CreateHatchBrush
GetRegionData
SetArcDirection
GetBoundsRect
CreateCompatibleBitmap
EndPage
PolyPolygon
RoundRect
SetPixel
SetWorldTransform
GetPolyFillMode
SetTextJustification
EndPath
GetGraphicsMode
SetMapperFlags
CreateDCA
ModifyWorldTransform
MaskBlt
GetClipBox
GetDIBits
SetBkMode
Rectangle
SetBrushOrgEx
PlayMetaFile
GetTextExtentPoint32W
SetBoundsRect
FloodFill
Polygon
SetStretchBltMode
TextOutA
EqualRgn
PolyPolyline
GetMapMode
GetCharABCWidthsFloatA
GetAspectRatioFilterEx
SetEnhMetaFileBits
DPtoLP
CreateRectRgn
GetDeviceCaps
DeleteDC
MoveToEx
GetPaletteEntries
GetBkMode
CreateICA
GetObjectType
BitBlt
IntersectClipRect
RestoreDC
RectInRegion
SetDIBColorTable
CreateSolidBrush
CopyMetaFileA
GetBitmapDimensionEx
EnumFontFamiliesExW
CreateEllipticRgnIndirect
EnumObjects
StretchBlt
wininet
HttpAddRequestHeadersW
HttpSendRequestA
InternetConnectW
FtpOpenFileW
HttpOpenRequestA
InternetCrackUrlA
HttpSendRequestExA
InternetOpenW
InternetGetLastResponseInfoW
InternetCloseHandle
HttpQueryInfoA
InternetConnectA
InternetSetFilePointer
FtpFindFirstFileW
InternetQueryOptionW
InternetAttemptConnect
InternetWriteFile
HttpOpenRequestW
InternetCrackUrlW
InternetCheckConnectionW
HttpAddRequestHeadersA
InternetCheckConnectionA
FtpGetFileSize
InternetQueryDataAvailable
InternetReadFile
InternetTimeToSystemTimeW
Sections
.text Size: 92KB - Virtual size: 91KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 104KB - Virtual size: 103KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 80KB - Virtual size: 96KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 48KB - Virtual size: 46KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ