Static task
static1
Behavioral task
behavioral1
Sample
fabfca1bb9cffd9e437727d98eacc605fcb3cb68134743b4d3b5180a545b1b1e.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
fabfca1bb9cffd9e437727d98eacc605fcb3cb68134743b4d3b5180a545b1b1e.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
fabfca1bb9cffd9e437727d98eacc605fcb3cb68134743b4d3b5180a545b1b1e
-
Size
300KB
-
MD5
e2d1de92beb2496797acdb257f6bd8ea
-
SHA1
a4cd52ed85abc01e0983ffa0117a3a72ee8f0c34
-
SHA256
fabfca1bb9cffd9e437727d98eacc605fcb3cb68134743b4d3b5180a545b1b1e
-
SHA512
00c2e31d4f976b3cfbf3e124ec6377dda786486fbdfdda7100bb9a8fc3c03aa3a78d7bcfd13ca90ca9fc8bd19cba17739c3c1814113014e3cd492ee1d51f0824
-
SSDEEP
6144:+VZQjYBRoRzUwO5JgzuGZAKEQCytBKtV:+PQ3gGXmhyO
Malware Config
Signatures
Files
-
fabfca1bb9cffd9e437727d98eacc605fcb3cb68134743b4d3b5180a545b1b1e.exe windows x86
2a74970de62af78e53ae9cb88c2a317e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
version
GetFileVersionInfoW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoA
VerQueryValueA
shell32
SHGetDesktopFolder
SHGetFileInfoA
SHGetPathFromIDListA
DragFinish
SHGetSpecialFolderLocation
ExtractIconA
Shell_NotifyIconA
DragQueryFileA
SHBrowseForFolderA
SHGetSpecialFolderPathA
ord155
SHAppBarMessage
SHGetMalloc
Shell_NotifyIconW
ShellExecuteA
SHGetSpecialFolderPathW
ShellExecuteExA
SHChangeNotify
DragAcceptFiles
gdi32
SetPixelV
CreateFontIndirectA
PolyPolyline
FloodFill
GetTextColor
PolyBezier
GetRegionData
CombineRgn
GetMapMode
GetBkColor
EnumFontFamiliesExA
SetPixelFormat
Ellipse
GetCurrentObject
CreateRectRgn
GetBitmapBits
SelectObject
DescribePixelFormat
GetGlyphOutlineA
PlayMetaFileRecord
SetDCBrushColor
GetWindowExtEx
CreateEllipticRgnIndirect
FrameRgn
SetColorAdjustment
FillRgn
GetTextExtentPoint32A
GetTextMetricsW
SelectClipRgn
SetROP2
GetTextFaceA
FillPath
ExtSelectClipRgn
IntersectClipRect
GetROP2
GetPaletteEntries
Chord
StartPage
CloseEnhMetaFile
GetCharWidthW
BitBlt
DPtoLP
ExcludeClipRect
CreateFontW
CreateDCA
GetOutlineTextMetricsA
FlattenPath
PolyDraw
SetBkMode
CreateEllipticRgn
GetPath
GetPolyFillMode
SetBitmapBits
MoveToEx
GetDeviceCaps
CloseMetaFile
CreateFontA
PaintRgn
Escape
Polygon
ExtFloodFill
CreateFontIndirectW
EndDoc
OffsetWindowOrgEx
PtVisible
DeleteObject
SetTextJustification
GetClipBox
StretchDIBits
SetBrushOrgEx
UpdateColors
CreateSolidBrush
SwapBuffers
DeleteEnhMetaFile
CreateMetaFileA
GetStretchBltMode
CopyMetaFileA
Rectangle
ExtTextOutW
StretchBlt
TextOutA
LPtoDP
Polyline
GetWindowOrgEx
SelectClipPath
RestoreDC
GetBoundsRect
StartDocA
SaveDC
CreatePalette
CreatePen
SetAbortProc
GetArcDirection
RectVisible
SetPolyFillMode
EndPage
SetBkColor
SetPixel
GetTextExtentPointA
SetTextCharacterExtra
DeleteDC
ScaleWindowExtEx
SetViewportExtEx
GetTextCharsetInfo
GetTextExtentExPointW
GetTextMetricsA
GetCharABCWidthsW
GetObjectType
Arc
CreateBitmapIndirect
CreateHalftonePalette
OffsetRgn
SetDCPenColor
PtInRegion
GetRgnBox
GetPixel
CreatePolyPolygonRgn
GetNearestColor
ExtCreateRegion
GetViewportExtEx
CreateICA
SetStretchBltMode
GetFontData
ChoosePixelFormat
GetClipRgn
CreateRoundRectRgn
MaskBlt
DeleteMetaFile
RoundRect
ExtTextOutA
ExtCreatePen
GetBkMode
SetWindowOrgEx
SetWinMetaFileBits
CreateRectRgnIndirect
EnumFontFamiliesExW
ResizePalette
GetDCOrgEx
CreatePatternBrush
CreateDIBitmap
CreateDIBPatternBrushPt
CreateBitmap
GetObjectW
EnumMetaFile
SetWindowExtEx
SetRectRgn
GetViewportOrgEx
GetStockObject
RectInRegion
CreateBrushIndirect
SetDIBitsToDevice
ArcTo
SetTextAlign
GetObjectA
TextOutW
SetBoundsRect
SetGraphicsMode
GetBitmapDimensionEx
CreateHatchBrush
CreateCompatibleDC
SelectPalette
OffsetViewportOrgEx
OffsetClipRgn
ScaleViewportExtEx
PolyBezierTo
GetTextExtentPoint32W
GdiFlush
SetViewportOrgEx
SetPaletteEntries
CreateCompatibleBitmap
StrokePath
SetMapMode
Pie
GetCharWidthA
GetCharABCWidthsA
SetMapperFlags
PolyPolygon
CreateDIBSection
SetBitmapDimensionEx
LineTo
GetTextAlign
PatBlt
GetNearestPaletteIndex
CreatePolygonRgn
SetDIBits
GetDIBits
RealizePalette
AbortDoc
SetTextColor
CreateEnhMetaFileA
advapi32
RegDeleteKeyA
CryptReleaseContext
GetFileSecurityA
LookupPrivilegeValueA
RegConnectRegistryA
RegCreateKeyExA
CryptCreateHash
RegQueryValueExW
GetAclInformation
OpenProcessToken
GetLengthSid
AccessCheck
CryptHashData
RevertToSelf
RegSetValueExW
IsValidSecurityDescriptor
DuplicateToken
CryptDecrypt
SetSecurityDescriptorDacl
RegQueryValueA
GetUserNameA
CryptAcquireContextA
StartServiceA
RegQueryInfoKeyA
DeregisterEventSource
InitializeSecurityDescriptor
GetFileSecurityW
OpenSCManagerA
CreateServiceA
SetFileSecurityA
CloseServiceHandle
RegSetValueA
RegCreateKeyExW
AddAccessAllowedAce
RegEnumKeyExA
RegCloseKey
RegOpenKeyExW
SetServiceStatus
RegOpenKeyExA
OpenThreadToken
DeleteService
GetTokenInformation
RegSetValueExA
RegQueryValueExA
RegOpenKeyA
FreeSid
StartServiceCtrlDispatcherA
AdjustTokenPrivileges
OpenServiceA
CryptDeriveKey
CopySid
RegCreateKeyA
RegOpenCurrentUser
CryptGetHashParam
ControlService
AllocateAndInitializeSid
EqualSid
InitializeAcl
RegEnumValueA
RegEnumKeyA
RegDeleteValueA
RegisterEventSourceA
ole32
CoGetClassObject
CoCreateInstanceEx
DoDragDrop
CoDisconnectObject
CreateFileMoniker
CoRevokeClassObject
OleUninitialize
OleRun
CoSetProxyBlanket
CoSuspendClassObjects
CoRegisterMessageFilter
OleDuplicateData
CoCreateInstance
GetHGlobalFromILockBytes
CoResumeClassObjects
OleRegEnumVerbs
CoRegisterClassObject
CoTaskMemRealloc
CreateDataAdviseHolder
OleSaveToStream
CoMarshalInterThreadInterfaceInStream
CoQueryProxyBlanket
CoTaskMemAlloc
CLSIDFromString
CreateStreamOnHGlobal
OleLockRunning
CoTaskMemFree
OleTranslateAccelerator
ReadClassStg
OleSetClipboard
CreateILockBytesOnHGlobal
IsAccelerator
CreateItemMoniker
OleRegGetMiscStatus
CoGetInterfaceAndReleaseStream
WriteClassStg
StringFromGUID2
StringFromCLSID
CreateGenericComposite
StgCreateDocfile
OleCreateMenuDescriptor
RegisterDragDrop
OleInitialize
RevokeDragDrop
CoInitializeSecurity
CoInitialize
GetHGlobalFromStream
StgOpenStorageOnILockBytes
CLSIDFromProgID
StgIsStorageILockBytes
CreateBindCtx
ReleaseStgMedium
CoTreatAsClass
OleCreateFromData
WriteClassStm
StgOpenStorage
CoFreeUnusedLibraries
StgIsStorageFile
GetClassFile
OleDestroyMenuDescriptor
CoInitializeEx
StgCreateDocfileOnILockBytes
OleFlushClipboard
CoGetMalloc
OleGetClipboard
CoCreateGuid
CoUninitialize
OleCreateStaticFromData
kernel32
RemoveDirectoryA
GetCommandLineW
CreateMutexA
GetSystemTimeAsFileTime
LCMapStringA
GetStdHandle
GetFileTime
GlobalReAlloc
GlobalFlags
CreateEventA
lstrcmpiA
GetStringTypeA
ExitProcess
FileTimeToSystemTime
InterlockedDecrement
SetHandleCount
GetExitCodeProcess
ResumeThread
lstrcatA
GetFileAttributesW
GetLocaleInfoW
CreateEventW
LeaveCriticalSection
CopyFileA
GlobalHandle
LocalReAlloc
GlobalFindAtomA
GetTempPathW
DebugBreak
SetFilePointer
lstrlenA
FatalAppExitA
OpenMutexA
MulDiv
MoveFileA
CompareStringW
GetStringTypeW
InterlockedIncrement
GetThreadLocale
GetCurrentProcessId
HeapFree
GetVersion
GetUserDefaultLCID
InterlockedExchange
SetFileAttributesA
CompareFileTime
ResetEvent
LCMapStringW
FlushFileBuffers
GlobalGetAtomNameA
GetEnvironmentStrings
GetFileAttributesA
GetPrivateProfileSectionA
GetCurrentThread
GetProcAddress
GetPrivateProfileStringA
OpenProcess
ReleaseMutex
GetTimeFormatA
GetTickCount
SizeofResource
GetComputerNameA
GetCommandLineA
GetLocaleInfoA
WriteConsoleA
lstrcpyW
CreateThread
RaiseException
HeapSize
LocalAlloc
GetConsoleMode
MultiByteToWideChar
FreeLibrary
WideCharToMultiByte
QueryPerformanceCounter
LocalFileTimeToFileTime
LoadResource
WriteFile
GetWindowsDirectoryA
LocalFree
SetThreadPriority
VirtualAlloc
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
FreeResource
MapViewOfFile
DeleteFileA
SetLastError
SetFileTime
FindFirstFileA
SuspendThread
GetOEMCP
GetDateFormatA
GetTempFileNameW
GetSystemInfo
TlsAlloc
SetConsoleCtrlHandler
HeapCreate
SetEnvironmentVariableA
lstrcmpiW
GlobalGetAtomNameW
GetLastError
SetStdHandle
EnumResourceLanguagesA
IsBadWritePtr
IsBadReadPtr
LockResource
RtlUnwind
EnumSystemLocalesA
GetFileType
FindNextFileA
GetTempPathA
GetFileSize
GetLocalTime
WaitForMultipleObjects
UnhandledExceptionFilter
WritePrivateProfileStringA
GetEnvironmentVariableA
GetModuleFileNameA
VirtualFree
GetModuleHandleW
lstrlenW
HeapReAlloc
GetCurrentThreadId
CreateProcessA
LoadLibraryA
WaitForSingleObject
SetEndOfFile
TlsSetValue
GetPrivateProfileIntA
DeleteCriticalSection
FormatMessageA
_lclose
VirtualQuery
IsValidLocale
CloseHandle
InterlockedCompareExchange
CompareStringA
GetACP
GetVersionExA
UnlockFile
GetCPInfo
lstrcpyA
TlsFree
GlobalFree
lstrcpynA
GetTimeZoneInformation
IsBadStringPtrA
GetConsoleOutputCP
Sleep
GetTempFileNameA
FindClose
GetSystemDirectoryA
IsValidCodePage
FindCloseChangeNotification
GetModuleHandleA
ExitThread
GetPrivateProfileIntW
CreateDirectoryA
GetModuleFileNameW
WriteConsoleW
lstrcmpA
HeapAlloc
SetEvent
GetProcessHeap
GlobalLock
DuplicateHandle
FindNextChangeNotification
GetProcessVersion
LoadLibraryW
GetSystemTime
GlobalUnlock
GetCurrentProcess
GetStartupInfoA
CreateProcessW
GetEnvironmentStringsW
SetErrorMode
LockFile
EnterCriticalSection
lstrcmpW
GetDriveTypeA
GetCurrentDirectoryA
HeapDestroy
GetVersionExW
FileTimeToLocalFileTime
TerminateProcess
SystemTimeToFileTime
CreateFileA
GetFullPathNameA
TlsGetValue
_lopen
GetProfileStringA
FreeEnvironmentStringsA
GetConsoleCP
GlobalDeleteAtom
_lread
GlobalAlloc
GetDiskFreeSpaceExA
FindResourceA
ReadFile
IsDebuggerPresent
VirtualProtect
InitializeCriticalSection
comctl32
ImageList_DrawEx
ImageList_Draw
DestroyPropertySheetPage
ImageList_LoadImageA
ImageList_BeginDrag
CreatePropertySheetPageW
ImageList_SetOverlayImage
ImageList_Read
PropertySheetW
ImageList_GetIcon
ImageList_GetImageInfo
CreatePropertySheetPageA
ImageList_GetImageCount
ImageList_Remove
InitCommonControlsEx
ImageList_GetBkColor
ImageList_AddMasked
ImageList_Write
ImageList_SetBkColor
ImageList_Replace
_TrackMouseEvent
ImageList_DragEnter
PropertySheetA
ImageList_DragLeave
ImageList_Destroy
ImageList_Create
ImageList_SetDragCursorImage
ord17
ImageList_Add
ImageList_SetImageCount
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_Duplicate
oleaut32
LoadTypeLi
user32
wsprintfA
GetAsyncKeyState
DrawFrameControl
CheckRadioButton
GetSystemMenu
CallNextHookEx
RegisterWindowMessageA
GetClassLongW
SetFocus
IsWindowEnabled
DrawEdge
LoadStringA
GetDlgItemInt
GetSubMenu
GetDlgItemTextA
CreatePopupMenu
SetTimer
EnableScrollBar
IsClipboardFormatAvailable
DestroyAcceleratorTable
RegisterHotKey
IsIconic
CharNextA
SystemParametersInfoW
InflateRect
DispatchMessageW
GetWindowLongA
TrackPopupMenuEx
GetMessagePos
CreateDialogIndirectParamA
ReleaseDC
SetRect
GetDlgItem
RegisterClassExA
SetCapture
SetDlgItemTextA
FindWindowA
FillRect
LoadIconA
SetActiveWindow
EndPaint
DefDlgProcA
GetWindowTextA
DdeCreateDataHandle
DestroyMenu
PeekMessageW
EmptyClipboard
SetRectEmpty
GetMessageW
GetMenu
MessageBoxA
LockWindowUpdate
GetScrollPos
SetPropW
DrawStateW
SetWindowLongA
ValidateRect
IsDialogMessageA
GetNextDlgTabItem
ClientToScreen
RegisterClipboardFormatA
DdeUninitialize
OpenClipboard
LoadIconW
DdeFreeStringHandle
InvalidateRect
SetClipboardData
CheckMenuItem
DestroyCursor
GetForegroundWindow
SetWindowPos
ShowCaret
DrawTextExA
CreateAcceleratorTableA
DeleteMenu
GetOpenClipboardWindow
SystemParametersInfoA
DdeClientTransaction
IsZoomed
CreateMenu
DrawFocusRect
WaitMessage
GetDC
DragDetect
GetCapture
GetFocus
FrameRect
CheckMenuRadioItem
UnhookWindowsHookEx
HideCaret
CheckDlgButton
GetWindowDC
InvertRect
ShowScrollBar
GetSysColor
TranslateMessage
DestroyIcon
EnableMenuItem
GetPropA
IsWindow
GetClassLongA
AppendMenuA
ExcludeUpdateRgn
GetMenuItemCount
PostMessageA
SetMenuItemBitmaps
DestroyWindow
AdjustWindowRectEx
EnumChildWindows
GetActiveWindow
DialogBoxParamW
CreateWindowExW
DrawMenuBar
DefFrameProcA
TabbedTextOutA
CopyRect
GetMessageA
GetTabbedTextExtentA
GetMenuItemID
TrackPopupMenu
SetCursor
DeferWindowPos
UnregisterClassA
GetWindowTextLengthA
DrawIconEx
UnregisterClassW
MessageBoxW
GetMessageTime
GetMenuItemInfoW
ScrollWindow
GetMenuItemInfoA
PtInRect
ShowWindow
UnionRect
KillTimer
CharLowerA
GetDlgCtrlID
LoadMenuW
GetMenuDefaultItem
LoadCursorW
GetWindowTextLengthW
DrawIcon
UnpackDDElParam
OffsetRect
IsWindowUnicode
wsprintfW
GetWindowRect
SetScrollRange
GetCursorPos
SetMenuItemInfoW
InsertMenuA
BringWindowToTop
LoadImageA
TranslateAcceleratorA
GetUpdateRect
GetScrollInfo
CreateWindowExA
DdeDisconnect
CharUpperA
SendDlgItemMessageW
SendDlgItemMessageA
PostMessageW
ModifyMenuA
GetClipboardOwner
GetMenuState
AppendMenuW
ScreenToClient
GetClipboardViewer
GetParent
SendMessageW
LoadCursorA
CharUpperBuffA
GetClientRect
SetPropA
SetWindowRgn
GetDlgItemTextW
SendMessageA
WinHelpA
MessageBeep
MapDialogRect
SetWindowLongW
GetWindow
GetClassInfoExA
SetMenuDefaultItem
CreateDialogIndirectParamW
ChildWindowFromPoint
SetForegroundWindow
MapVirtualKeyA
GetWindowLongW
GetTopWindow
PostQuitMessage
RemovePropA
ReleaseCapture
CopyAcceleratorTableA
RegisterClassW
IsMenu
CharUpperW
LoadStringW
SetParent
GetMenuCheckMarkDimensions
LoadBitmapA
RegisterClassA
RedrawWindow
CharToOemA
GetClassInfoExW
IsDlgButtonChecked
IsChild
GetLastActivePopup
DrawTextA
SetWindowContextHelpId
IntersectRect
ClipCursor
LoadBitmapW
CallWindowProcW
CloseClipboard
SetScrollPos
PeekMessageA
LoadMenuA
RemovePropW
BeginPaint
PostThreadMessageA
MapWindowPoints
GetClassNameA
GetClassInfoA
GetMonitorInfoW
SetWindowsHookExA
GetSystemMetrics
IsWindowVisible
GrayStringA
WindowFromPoint
CallWindowProcA
FlashWindow
SetWindowTextA
GetWindowPlacement
RegisterClassExW
EnableWindow
DefWindowProcW
GetWindowThreadProcessId
GetKeyState
ToAsciiEx
RemoveMenu
InvalidateRgn
TranslateAcceleratorW
CreateIconIndirect
shlwapi
PathRemoveBackslashA
PathSkipRootA
PathAppendA
PathIsUNCServerA
PathFileExistsA
PathRenameExtensionA
PathStripToRootA
UrlUnescapeA
SHDeleteKeyA
PathGetDriveNumberA
PathAddBackslashA
PathIsUNCA
PathRemoveExtensionA
PathIsDirectoryA
PathIsRootA
PathFindFileNameA
PathFindExtensionA
PathIsUNCServerShareA
PathBuildRootA
PathIsURLA
Sections
.text Size: 92KB - Virtual size: 91KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 100KB - Virtual size: 96KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 107KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ