Static task
static1
Behavioral task
behavioral1
Sample
0960ccf8e25cbebfef8d325983548af048183f1fb025e4e67dbca68263eb1746.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
0960ccf8e25cbebfef8d325983548af048183f1fb025e4e67dbca68263eb1746.exe
Resource
win10v2004-20220812-en
General
-
Target
0960ccf8e25cbebfef8d325983548af048183f1fb025e4e67dbca68263eb1746
-
Size
2.4MB
-
MD5
b51118f1084be6ecf23def1650640463
-
SHA1
63c0548c9ec4a6e5dece42296f68c4b9fd42f3d7
-
SHA256
0960ccf8e25cbebfef8d325983548af048183f1fb025e4e67dbca68263eb1746
-
SHA512
959cffcf922f3eafec34ea5803555d524c14d1053ea4e5cbebe976e0d424b35d705330b57541454e9cf02735225f2689291ecbb9ffdca4419de02e6350e2b13f
-
SSDEEP
49152:+v809nEPkYr06TZKQCcXtwqeh4Rs+EkhFN8/nl59WbrT7jMWnbZUDwbSr3yI:N0BCkl6QQCytnehlZoF2/nl/WnT7jMWN
Malware Config
Signatures
Files
-
0960ccf8e25cbebfef8d325983548af048183f1fb025e4e67dbca68263eb1746.exe windows x86
d267adc72452c735ef494da893f77873
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
pgfltmgrlib
?GetFileDeniedCount@CPGDriver@@QAEKXZ
?GetFileDeniedW@CPGDriver@@QAEHKPAPA_WPAHPAK2PAPAPA_W@Z
?FreeFileDeniedW@CPGDriver@@QAEXPA_WKPAPA_W@Z
?GetHomePageLockerCount@CPGDriver@@QAEKXZ
?GetHomePageLockerW@CPGDriver@@QAEHKPA_WPAK0111QAE@Z
?GetHomePageLockerPluginData@CPGDriver@@QAEHKPAEPAK@Z
?SetRegistryNotify@CPGDriver@@QAEHP6GJKW4_REGISTRY_NOTIFY_CLASS@@PB_WPAX2@Z2HH@Z
?FastSetHomePageLockerW@CPGDriver@@QAEHPB_W0KQAE@Z
?SetRegistryDeniedW@CPGDriver@@QAEHPA_W0HKKPAPA_W@Z
?SaveRegistryDenied@CPGDriver@@QAEHXZ
??0CPGDriver@@QAE@XZ
??1CPGDriver@@QAE@XZ
?SetCreateProcessNotify@CPGDriver@@QAEHP6GJKKPB_W0HPAX@Z1HH@Z
?InitKernelW@CPGDriver@@QAEHXZ
?UninitKernelW@CPGDriver@@QAEXXZ
?GetRegistryDeniedCount@CPGDriver@@QAEKXZ
?GetRegistryDeniedW@CPGDriver@@QAEHKPAPA_W0PAHPAK2PAPAPA_W@Z
?FreeRegistryDeniedW@CPGDriver@@QAEXPA_W0KPAPA_W@Z
?DeleteRegistryDenied@CPGDriver@@QAEHK@Z
?SetHomePageLockerW@CPGDriver@@QAEHPB_W0KPAXKQAE@Z
?SaveFileDenied@CPGDriver@@QAEHXZ
?SaveHomePageLocker@CPGDriver@@QAEHXZ
?SetFileDeniedW@CPGDriver@@QAEHPA_WHKKPAPA_W@Z
kernel32
LocalReAlloc
CompareStringW
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
GlobalFlags
VirtualProtect
GetTempFileNameW
GetFileAttributesExW
GetFileSizeEx
GetFileTime
SetErrorMode
FindResourceExW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
ResetEvent
WaitForSingleObjectEx
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
WriteConsoleW
SetEnvironmentVariableA
FreeEnvironmentStringsW
LocalAlloc
GetCPInfo
GetOEMCP
IsValidCodePage
FindFirstFileExW
GetConsoleCP
GetDriveTypeW
GetTimeZoneInformation
ReadConsoleW
GetConsoleMode
SetFilePointerEx
GetStringTypeW
LCMapStringW
GetACP
ExitProcess
GetStdHandle
GetFileType
SetStdHandle
VirtualQuery
VirtualAlloc
QueryPerformanceFrequency
HeapQueryInformation
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
GetCommandLineA
RtlUnwind
OutputDebugStringW
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
GetEnvironmentStringsW
TlsGetValue
GetStartupInfoW
DeleteFileW
CreateProcessW
WaitForSingleObject
GetExitCodeProcess
CloseHandle
GetLastError
SizeofResource
LockResource
LoadResource
FindResourceW
CreateThread
CreateMutexW
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileStructW
WritePrivateProfileStructW
FileTimeToSystemTime
MultiByteToWideChar
WideCharToMultiByte
GetModuleFileNameW
GetTickCount
IsWow64Process
GetCurrentProcess
OpenProcess
FindFirstFileW
FindNextFileW
FindClose
CreateDirectoryW
GetTempPathW
GetModuleHandleW
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
VerSetConditionMask
VerifyVersionInfoW
GetVersionExA
SetLastError
FormatMessageW
LocalLock
LocalFree
GetLocalTime
LoadLibraryExW
GetProcAddress
FreeLibrary
CreateFileMappingW
OpenFileMappingW
MapViewOfFile
UnmapViewOfFile
GetCommandLineW
LoadLibraryW
lstrlenW
EnterCriticalSection
LeaveCriticalSection
CopyFileW
GetFileAttributesW
GetSystemInfo
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
Sleep
CreateEventW
OpenEventW
SetEvent
RemoveDirectoryW
HeapFree
HeapSize
HeapReAlloc
RaiseException
HeapAlloc
DecodePointer
GetProcessHeap
GetCurrentProcessId
TerminateProcess
TerminateThread
IsDebuggerPresent
WinExec
CreateFileW
SetFilePointer
ReadFile
SystemTimeToFileTime
GetCurrentDirectoryW
LocalFileTimeToFileTime
WriteFile
SetFileTime
GetFileSize
OutputDebugStringA
EncodePointer
GetCurrentThreadId
GetSystemDirectoryW
FreeResource
GetModuleHandleA
GlobalDeleteAtom
lstrcmpW
LoadLibraryA
GlobalAddAtomW
GlobalFindAtomW
GlobalSize
MulDiv
lstrcpyW
FlushFileBuffers
GetFullPathNameW
GetVolumeInformationW
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
lstrcmpiW
FileTimeToLocalFileTime
SystemTimeToTzSpecificLocalTime
GetVersionExW
GetCurrentThread
lstrcmpA
GetPrivateProfileIntW
SetThreadPriority
ResumeThread
GlobalGetAtomNameW
InitializeCriticalSection
TlsAlloc
user32
GetMenuStringW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
EqualRect
GetSysColor
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
BeginPaint
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
GetMenuItemCount
GetMenuItemID
SetMenu
GetMenu
GetCapture
GetKeyState
GetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
IsChild
IsMenu
IsWindow
GetClassInfoExW
RegisterClassW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
PostQuitMessage
GetClassInfoW
TrackMouseEvent
GetWindowTextW
GetMenuState
DestroyWindow
CreateWindowExW
DefWindowProcW
InflateRect
SetRectEmpty
DestroyCursor
GetMenuItemInfoW
UpdateWindow
GetWindowDC
WindowFromPoint
SetForegroundWindow
DrawIconEx
UnregisterClassW
OffsetRect
MessageBeep
DestroyCaret
CreateCaret
ShowWindow
CopyRect
SetWindowTextW
PostMessageW
CallWindowProcW
GetMenuCheckMarkDimensions
SetFocus
CheckMenuItem
GetMessageW
TranslateMessage
ShowOwnedPopups
SetTimer
InvalidateRect
AnimateWindow
IsWindowVisible
GetWindowRect
GetSubMenu
CopyImage
SendDlgItemMessageA
RealChildWindowFromPoint
GetAsyncKeyState
MapDialogRect
IntersectRect
IsZoomed
GetSystemMenu
DeleteMenu
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetMenuDefaultItem
IsRectEmpty
UpdateLayeredWindow
EnableScrollBar
UnionRect
MonitorFromPoint
InsertMenuW
AppendMenuW
RemoveMenu
DrawStateW
LoadBitmapW
DrawTextExW
GrayStringW
TabbedTextOutW
IsWindowEnabled
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
GetActiveWindow
CheckDlgButton
GetWindowRgn
GetComboBoxInfo
InvertRect
HideCaret
IsDialogMessageW
GetSysColorBrush
EnumDisplayMonitors
EnableMenuItem
GetWindowTextLengthW
SetMenuItemBitmaps
GetParent
GetClientRect
DrawEdge
ClientToScreen
SetWindowPos
KillTimer
SetClassLongW
BringWindowToTop
EnableWindow
FillRect
GetCursorPos
ScreenToClient
PtInRect
SetCursor
LoadCursorW
EnumWindows
GetWindowThreadProcessId
CopyIcon
DestroyIcon
GetDesktopWindow
SystemParametersInfoW
GetSystemMetrics
FindWindowExW
MessageBoxW
SendMessageTimeoutW
GetClassNameW
GetWindowLongW
GetClassLongW
SetWindowLongW
SetLayeredWindowAttributes
SetWindowRgn
wsprintfW
SetRect
ReleaseCapture
SetCapture
MoveWindow
SendMessageW
LoadIconW
LoadMenuW
IsIconic
DrawIcon
GetDC
GetNextDlgGroupItem
CreateMenu
SetMenuItemInfoW
CharUpperW
ShowCaret
DestroyMenu
DrawTextW
ReleaseDC
SubtractRect
GetUpdateRect
IsClipboardFormatAvailable
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
GetKeyNameTextW
IsCharLowerW
GetIconInfo
GetDoubleClickTime
PostThreadMessageW
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW
ModifyMenuW
CharUpperBuffW
RegisterClipboardFormatW
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
LoadImageW
WaitMessage
LockWindowUpdate
SetParent
SetCursorPos
CopyAcceleratorTableW
DestroyAcceleratorTable
CreateAcceleratorTableW
LoadAcceleratorsW
MapVirtualKeyW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DrawFocusRect
DrawFrameControl
FrameRect
gdi32
GetTextFaceW
SetPixelV
GetViewportOrgEx
GetWindowOrgEx
PtInRegion
GetBoundsRect
FrameRgn
FillRgn
SetPaletteEntries
ExtFloodFill
LPtoDP
GetSystemPaletteEntries
GetNearestPaletteIndex
GetPaletteEntries
CreatePalette
RoundRect
Rectangle
OffsetRgn
GetRgnBox
SetDIBColorTable
StretchBlt
SetPixel
RealizePalette
EnumFontFamiliesExW
Polyline
Polygon
CreatePolygonRgn
GetTextColor
GetBkColor
Ellipse
CreateEllipticRgn
CreateRoundRectRgn
DPtoLP
SetRectRgn
PatBlt
GetTextCharsetInfo
EnumFontFamiliesW
CreateRectRgnIndirect
CreateDIBitmap
ScaleWindowExtEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
ExtTextOutW
TextOutW
SetTextAlign
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetBkMode
SelectPalette
ExtSelectClipRgn
SelectClipRgn
SaveDC
RestoreDC
RectVisible
PtVisible
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreatePatternBrush
CreateHatchBrush
CreateBitmap
GetStockObject
GetDeviceCaps
CreateDCW
CopyMetaFileW
SetTextColor
SetBkColor
TextOutA
GetTextMetricsW
LineTo
MoveToEx
SetROP2
BitBlt
DeleteDC
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
GetTextExtentPoint32W
GetPixel
CreateFontIndirectW
DeleteObject
CombineRgn
CreateRectRgn
GetObjectW
CreateDIBSection
CreatePen
CreateSolidBrush
msimg32
AlphaBlend
TransparentBlt
winspool.drv
DocumentPropertiesW
OpenPrinterW
ClosePrinter
advapi32
SystemFunction036
RegQueryValueExW
RegCloseKey
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
GetTokenInformation
OpenProcessToken
LookupAccountNameW
GetUserNameW
GetSidSubAuthority
GetSidSubAuthorityCount
GetSidIdentifierAuthority
IsValidSid
RegEnumValueW
RegEnumKeyExW
RegOpenKeyExW
shell32
SHGetPathFromIDListW
ShellExecuteW
ExtractIconW
SHAppBarMessage
SHGetDesktopFolder
SHBrowseForFolderW
SHGetSpecialFolderLocation
SHChangeNotify
SHGetMalloc
SHGetFileInfoW
CommandLineToArgvW
DragFinish
DragQueryFileW
shlwapi
PathStripToRootW
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
PathIsUNCW
StrFormatKBSizeW
uxtheme
DrawThemeText
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemeSysColor
GetCurrentThemeName
IsAppThemed
DrawThemeParentBackground
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetThemePartSize
ole32
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
DoDragDrop
CoDisconnectObject
CoCreateGuid
CoInitializeEx
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
CoUninitialize
CoCreateInstance
CoInitialize
StringFromGUID2
oleaut32
SysAllocString
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantCopy
VarBstrFromDate
LoadTypeLi
SysFreeString
VariantInit
SysAllocStringLen
VariantClear
VariantChangeType
wininet
InternetCrackUrlW
gdiplus
GdipBitmapUnlockBits
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipReleaseDC
GdipFillRectangleI
GdipDeleteFont
GdipGetImageGraphicsContext
GdipBitmapLockBits
GdipSetSmoothingMode
GdipDrawImageRectRectI
GdipDrawImageRectI
GdipGetImageHeight
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipFree
GdipAlloc
GdipCloneImage
GdipDisposeImage
GdipImageSelectActiveFrame
GdipImageGetFrameDimensionsCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameCount
GdipGetPropertyItemSize
GdipGetPropertyItem
GdipBitmapGetPixel
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImageI
GdiplusStartup
GdiplusShutdown
GdipDrawImageRectRect
GdipDisposeImageAttributes
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipDrawString
GdipCreatePen1
GdipDeletePen
GdipDrawLineI
GdipCreateStringFormat
GdipDeleteStringFormat
GdipCreateImageAttributes
GdipSetImageAttributesColorMatrix
GdipCreateFontFamilyFromName
GdipCreateFont
GdipDeleteFontFamily
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
wintrust
WinVerifyTrust
iphlpapi
GetAdaptersInfo
psapi
GetModuleFileNameExW
GetProcessImageFileNameW
winmm
PlaySoundW
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
imm32
ImmGetContext
ImmReleaseContext
ImmGetOpenStatus
Sections
.text Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 425KB - Virtual size: 425KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 28KB - Virtual size: 53KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.gfids Size: 512B - Virtual size: 296B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tls Size: 512B - Virtual size: 9B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 81KB - Virtual size: 81KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 139KB - Virtual size: 139KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ