Static task
static1
Behavioral task
behavioral1
Sample
75cd27b458038372350fc155b70ab95e0b8212dd02c8d35dc353a8e33f0a3da9.exe
Resource
win7-20220812-en
General
-
Target
75cd27b458038372350fc155b70ab95e0b8212dd02c8d35dc353a8e33f0a3da9
-
Size
2.7MB
-
MD5
06c84a8c0e93401cca6827775f3d99d2
-
SHA1
b2fb9de04ee2a0dbac6f8c97579fbaeb97b9f47b
-
SHA256
75cd27b458038372350fc155b70ab95e0b8212dd02c8d35dc353a8e33f0a3da9
-
SHA512
0fbcef90226ed44c0a3926f27f0ead54bafb8735bde29522d2ae39d93d56402f1710531899f4a534b760c0a73b88ae863b8cf8d6ad3e2dface630b28b8cabc4f
-
SSDEEP
49152:YotjYZFjrgd1pH9c8PHTWKv9ygJ/zn9ngzEzTtNy3k/QOJVFFf3hC:uUd1pFJDn3tE3krFfxC
Malware Config
Signatures
Files
-
75cd27b458038372350fc155b70ab95e0b8212dd02c8d35dc353a8e33f0a3da9.exe windows x86
80393056a46165e56df0693a85910c0b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetEnvironmentVariableA
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetDriveTypeA
GetCurrentDirectoryA
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
GetLocaleInfoA
InitializeCriticalSectionAndSpinCount
LCMapStringW
LCMapStringA
GetTimeZoneInformation
IsValidCodePage
GetOEMCP
SetThreadContext
GetThreadContext
FlushInstructionCache
LocalSize
lstrcpynW
GetExitCodeThread
ResetEvent
EnumResourceTypesW
EnumResourceNamesW
LoadLibraryExA
GetACP
GetCPInfo
QueryPerformanceCounter
VirtualFree
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
RtlUnwind
UnhandledExceptionFilter
VirtualQuery
VirtualAlloc
HeapReAlloc
HeapSize
CreateThread
ExitThread
GetStartupInfoW
GetFileTime
GetFileSizeEx
GetCurrentDirectoryW
GlobalFlags
GlobalGetAtomNameW
GetModuleHandleA
VirtualProtect
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
SetErrorMode
GetFullPathNameW
GetVolumeInformationW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetThreadLocale
GlobalFindAtomW
CompareStringW
GetVersionExA
GlobalAddAtomW
SetThreadPriority
GlobalDeleteAtom
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
lstrcmpW
GetPrivateProfileStringW
WritePrivateProfileStringW
LoadLibraryA
SetLastError
MulDiv
GlobalUnlock
GlobalLock
GlobalAlloc
GlobalFree
FreeResource
InterlockedCompareExchange
SetThreadLocale
lstrcmpiW
LoadLibraryExW
InterlockedDecrement
FreeLibrary
TerminateThread
GetExitCodeProcess
GetTempFileNameW
GetTempPathW
FindNextFileW
FileTimeToSystemTime
GetSystemInfo
SizeofResource
FindClose
FindFirstFileW
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
GetFileAttributesW
InterlockedIncrement
CopyFileW
MoveFileExW
OpenEventW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
TerminateProcess
OpenProcess
WriteFile
lstrlenW
GetSystemDirectoryW
GetVersionExW
GetModuleHandleW
GetUserDefaultLangID
WideCharToMultiByte
lstrlenA
MultiByteToWideChar
DeleteFileW
lstrcpyW
GetCurrentProcessId
GetCurrentThreadId
IsDebuggerPresent
lstrcatW
RaiseException
GetModuleFileNameW
SetUnhandledExceptionFilter
CreateProcessW
LocalAlloc
GetCurrentThread
GetTickCount
GetFileSize
HeapDestroy
HeapCreate
GetProcAddress
LoadLibraryW
CreateFileW
HeapFree
HeapAlloc
GetProcessHeap
ReadFile
SetFilePointer
CreateEventW
SetEvent
CreateDirectoryW
GetCurrentProcess
ResumeThread
SuspendThread
WaitForSingleObject
Sleep
EnterCriticalSection
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
LocalFree
FormatMessageW
ExitProcess
GetLastError
CreateMutexW
CloseHandle
FindResourceW
LoadResource
LockResource
user32
TrackPopupMenuEx
TrackPopupMenu
SetMenu
SetScrollPos
GetScrollPos
SetForegroundWindow
CreateWindowExW
GetClassInfoExW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
PtInRect
GetMenu
SetWindowLongW
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowThreadProcessId
MapWindowPoints
GetMessagePos
GetMessageTime
UnhookWindowsHookEx
GetTopWindow
EndDeferWindowPos
BeginDeferWindowPos
GetForegroundWindow
GetWindowTextW
GetLastActivePopup
ShowOwnedPopups
SetCursor
SetWindowsHookExW
CallNextHookEx
GetWindowTextLengthW
SetFocus
RemovePropW
GetPropW
SetPropW
GetClassLongW
GetCapture
IsChild
WinHelpW
SendDlgItemMessageA
SendDlgItemMessageW
LoadIconW
RegisterWindowMessageW
PostMessageW
EnableWindow
SendMessageW
RedrawWindow
SetTimer
GetSystemMenu
AppendMenuW
PostQuitMessage
IsWindowVisible
MessageBoxW
KillTimer
IsDialogMessageW
IsWindow
ExitWindowsEx
GetAsyncKeyState
IsIconic
DestroyIcon
GetSystemMetrics
FindWindowW
SendMessageTimeoutW
ShowWindow
CharNextW
GetParent
GetWindow
GetDesktopWindow
ReleaseDC
GetDC
GetClassNameW
FillRect
GetWindowRect
GetClientRect
GetClassInfoW
LoadStringW
MapDialogRect
InflateRect
UpdateWindow
SetWindowTextW
MoveWindow
GetMenuItemInfoW
DestroyMenu
SystemParametersInfoW
CharUpperW
UnregisterClassW
IsRectEmpty
SetWindowRgn
ClientToScreen
SetCapture
LoadCursorW
ReleaseCapture
TabbedTextOutW
DrawTextW
DrawTextExW
GrayStringW
GetWindowDC
BeginPaint
EndPaint
GetSysColorBrush
SetRect
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
IsClipboardFormatAvailable
WindowFromPoint
WaitMessage
DeleteMenu
SetRectEmpty
TranslateAcceleratorW
BringWindowToTop
CreatePopupMenu
InsertMenuItemW
LoadAcceleratorsW
ReuseDDElParam
UnpackDDElParam
RegisterClipboardFormatW
SetParent
InvalidateRect
LoadImageW
GetMessageW
TranslateMessage
DispatchMessageW
OffsetRect
GetSubMenu
GetMenuItemCount
GetKeyState
PeekMessageW
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
GetFocus
ModifyMenuW
InsertMenuW
GetMenuItemID
TranslateMDISysAccel
GetKeyboardLayoutList
GetKeyboardState
ToUnicodeEx
UnionRect
PostThreadMessageW
SetCursorPos
HideCaret
ShowCaret
GetDCEx
LockWindowUpdate
IsMenu
GetCursor
GetTabbedTextExtentA
GetWindowRgn
GetMenuDefaultItem
GetDoubleClickTime
SetClassLongW
DrawFocusRect
InvertRect
EnumWindows
IsWindowUnicode
GetWindowLongA
SetWindowLongA
DrawIconEx
CreateIconIndirect
CopyIcon
GetIconInfo
DrawStateW
LoadMenuIndirectW
LookupIconIdFromDirectoryEx
CreateIconFromResourceEx
DrawMenuBar
DrawFrameControl
DrawEdge
RegisterClassA
DefMDIChildProcW
DefMDIChildProcA
DefDlgProcW
DefDlgProcA
EnableMenuItem
CheckMenuItem
MapVirtualKeyW
CopyRect
LoadMenuW
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
SetWindowContextHelpId
SetWindowPos
GetMenuState
GetMenuStringW
SetMenuDefaultItem
EnableScrollBar
CallWindowProcA
DefWindowProcA
DefFrameProcA
DefFrameProcW
gdi32
SetRectRgn
CombineRgn
GetMapMode
CreateFontW
StretchDIBits
CreateCompatibleBitmap
EnumFontFamiliesExW
GetTextColor
GetBkColor
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
PolyBezierTo
GetCurrentPositionEx
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
TextOutW
RectVisible
GetCharWidthW
GetPixel
GetWindowExtEx
GetDeviceCaps
CreateFontIndirectW
GetObjectW
DeleteObject
CreateRectRgnIndirect
PatBlt
CreateBitmap
GetClipBox
SetTextColor
SetBkColor
CreateCompatibleDC
BitBlt
ExtTextOutW
GetTextExtentPoint32W
DPtoLP
Ellipse
SaveDC
RestoreDC
SetBkMode
SetStretchBltMode
SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
GetTextMetricsW
GetRgnBox
CreateSolidBrush
CreatePen
GetObjectType
PtVisible
GetStockObject
StretchBlt
CreateDIBSection
SetPixel
GetDIBits
Polygon
GetCurrentObject
OffsetRgn
GetTextCharsetInfo
SetBrushOrgEx
CreatePalette
CreateDIBitmap
ExtCreateRegion
Polyline
GetViewportOrgEx
GetTextAlign
GetTextExtentPoint32A
StrokePath
FillPath
StrokeAndFillPath
EndPath
CloseFigure
BeginPath
GetBitmapBits
PtInRegion
CreatePolygonRgn
RoundRect
GetWindowOrgEx
MoveToEx
SelectClipRgn
GetClipRgn
CreateRectRgn
SelectPalette
GetViewportExtEx
comdlg32
GetFileTitleW
winspool.drv
DocumentPropertiesW
ClosePrinter
OpenPrinterW
advapi32
QueryServiceStatus
RegCloseKey
OpenProcessToken
LookupPrivilegeValueW
AdjustTokenPrivileges
OpenSCManagerW
OpenServiceW
ChangeServiceConfigW
CloseServiceHandle
QueryServiceConfigW
StartServiceW
OpenThreadToken
DuplicateToken
AllocateAndInitializeSid
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegFlushKey
RegQueryInfoKeyW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
SetNamedSecurityInfoW
RegCreateKeyExW
AddAccessAllowedAceEx
InitializeSid
RegSetValueExW
RegQueryValueExW
FreeSid
AccessCheck
IsValidSecurityDescriptor
SetSecurityDescriptorOwner
SetSecurityDescriptorGroup
SetSecurityDescriptorDacl
AddAccessAllowedAce
RegOpenKeyExW
shell32
Shell_NotifyIconW
ord165
ShellExecuteW
ShellExecuteExW
ord727
SHGetFileInfoW
DragFinish
DragQueryFileW
SHGetFolderPathW
comctl32
ImageList_ReplaceIcon
ImageList_DrawIndirect
ImageList_GetImageInfo
ImageList_GetBkColor
_TrackMouseEvent
FlatSB_GetScrollProp
ImageList_GetImageCount
ImageList_Destroy
ImageList_DrawEx
ImageList_GetIconSize
InitCommonControlsEx
shlwapi
PathAppendW
PathRemoveFileSpecW
PathFindFileNameW
PathQuoteSpacesW
PathStripPathW
PathFindExtensionW
PathAddBackslashW
SHDeleteKeyW
PathStripToRootW
PathIsUNCW
PathRemoveExtensionW
oledlg
OleUIBusyW
OleUIAddVerbMenuW
ole32
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleRun
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoRevokeClassObject
OleIsCurrentClipboard
CreateStreamOnHGlobal
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CLSIDFromProgID
CoUninitialize
CoInitialize
CLSIDFromString
StringFromGUID2
CoCreateGuid
CoCreateInstance
CoInitializeSecurity
CoSetProxyBlanket
OleFlushClipboard
CoRegisterMessageFilter
CoDisconnectObject
oleaut32
VariantChangeTypeEx
SysAllocStringLen
OleCreateFontIndirect
LoadTypeLi
VarBstrFromDate
SafeArrayDestroy
VariantCopy
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringByteLen
VarDateFromStr
VarUI4FromStr
SysStringByteLen
VariantChangeType
OleLoadPicturePath
SysStringLen
VariantInit
VariantClear
SysAllocString
SysFreeString
SystemTimeToVariantTime
VariantTimeToSystemTime
VarUdateFromDate
dbghelp
ImageDirectoryEntryToData
MiniDumpWriteDump
fltlib
FilterConnectCommunicationPort
FilterSendMessage
imagehlp
ImageEnumerateCertificates
ImageGetCertificateData
ImageGetCertificateHeader
crypt32
CertVerifyCertificateChainPolicy
CertGetCertificateChain
CryptUnprotectData
CertFreeCertificateContext
CertGetNameStringW
CryptProtectData
CryptVerifyMessageSignature
CertFreeCertificateChain
wintrust
WTHelperProvDataFromStateData
WTHelperGetProvCertFromChain
WTHelperGetProvSignerFromChain
WinVerifyTrust
msi
ord224
winmm
PlaySoundW
gdiplus
GdiplusStartup
GdipCreateFromHDC
GdipDeleteGraphics
GdiplusShutdown
GdipFree
GdipAlloc
GdipLoadImageFromStream
GdipLoadImageFromStreamICM
GdipDrawImageRectI
GdipGetImageWidth
GdipGetImageHeight
GdipDisposeImage
GdipCloneImage
wininet
HttpSendRequestW
HttpOpenRequestW
InternetReadFile
InternetOpenW
InternetQueryOptionW
InternetCloseHandle
InternetSetOptionW
InternetGetLastResponseInfoW
HttpQueryInfoW
InternetConnectW
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 506KB - Virtual size: 506KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 37KB - Virtual size: 75KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 547KB - Virtual size: 546KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.7rdata Size: 72KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE