Static task
static1
Behavioral task
behavioral1
Sample
0cd40971d8111f5bcbf3857070ac0971107acc8999f520c355a25c657e5a8a50.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
0cd40971d8111f5bcbf3857070ac0971107acc8999f520c355a25c657e5a8a50.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
0cd40971d8111f5bcbf3857070ac0971107acc8999f520c355a25c657e5a8a50
-
Size
750KB
-
MD5
09ed252916ceaa905a3422c511360229
-
SHA1
bf7c7d2a5c3a01eada9da376da8c967f9195306f
-
SHA256
0cd40971d8111f5bcbf3857070ac0971107acc8999f520c355a25c657e5a8a50
-
SHA512
a3b53bcdd11ded077157b8982fbe5857969fe8f105a019fb260dbf9d5980bc0c7293589e9d30ca725289b782c4df9f898018e94de02b5f253abb6cbbd6a023cc
-
SSDEEP
12288:lrBBTdoJVl/CpV/gv4J3rPE9y9p11S6eTG8JD7b64GLwpXg:3BTdonl/Cz/gQu96zQjTDZ7eCw
Malware Config
Signatures
Files
-
0cd40971d8111f5bcbf3857070ac0971107acc8999f520c355a25c657e5a8a50.exe windows x86
d19f174ec664d3ed7b0ab3c30ef19ed6
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
GetStockObject
GetCharABCWidthsFloatA
ArcTo
SelectClipRgn
GetBrushOrgEx
ResizePalette
FloodFill
GetSystemPaletteEntries
GetTextExtentPoint32W
Polyline
CreateEllipticRgn
CreateDCA
DeleteMetaFile
TextOutA
UpdateColors
GetStretchBltMode
CreateSolidBrush
GetTextAlign
SetBkMode
OffsetClipRgn
SelectClipPath
PolyPolygon
PatBlt
CreateDIBitmap
EnumFontsA
GetTextMetricsA
PathToRegion
FillRgn
ScaleWindowExtEx
StrokePath
CreateDIBPatternBrushPt
RealizePalette
GetDeviceCaps
ScaleViewportExtEx
PtInRegion
CloseMetaFile
SetTextCharacterExtra
CreateDiscardableBitmap
SetViewportOrgEx
GetCharWidthFloatA
GetPath
DeleteObject
GetPolyFillMode
SetAbortProc
SetDIBitsToDevice
PtVisible
GetTextMetricsW
GetObjectType
Rectangle
EndPage
SelectPalette
ExtCreateRegion
CreateFontA
PaintRgn
GetViewportExtEx
FlattenPath
SetROP2
DrawEscape
GetTextCharsetInfo
PolyDraw
CreateHalftonePalette
CreateICA
CreatePen
CreateCompatibleBitmap
InvertRgn
CreateCompatibleDC
GetColorAdjustment
RectVisible
WidenPath
GetNearestPaletteIndex
DeleteDC
FrameRgn
CreateHatchBrush
GetDIBits
SetPixelV
CreateEllipticRgnIndirect
CreateMetaFileA
StretchBlt
SetMapMode
CreatePolygonRgn
EnumMetaFile
AbortDoc
SetGraphicsMode
SetBitmapBits
ExtFloodFill
ResetDCA
GetRgnBox
GetCurrentPositionEx
EqualRgn
SetTextColor
CreateEnhMetaFileA
GetBkColor
ExtSelectClipRgn
EndPath
PolyBezier
Arc
RoundRect
GetFontData
RestoreDC
ExtTextOutA
OffsetRgn
GetClipBox
GetViewportOrgEx
LineTo
Escape
CreateBitmapIndirect
CreateRectRgnIndirect
EnumFontFamiliesExW
GetObjectW
GetDCOrgEx
GetClipRgn
GetTextCharacterExtra
GetTextFaceW
CreatePatternBrush
GetMiterLimit
AbortPath
Polygon
PlayMetaFile
BeginPath
CopyMetaFileA
GdiFlush
CreateDIBSection
GetBitmapBits
PlgBlt
PolyPolyline
GetTextExtentPointW
SetWindowExtEx
Chord
GetMapMode
AngleArc
CreateBitmap
ExtEscape
GetTextFaceA
GetRegionData
GetAspectRatioFilterEx
CreatePolyPolygonRgn
CreateFontIndirectA
CombineRgn
GetTextColor
LPtoDP
SetPixel
AnimatePalette
SetTextAlign
GetCharABCWidthsA
GetObjectA
OffsetWindowOrgEx
EnumFontFamiliesA
GetBkMode
GetGlyphOutlineA
CloseEnhMetaFile
GetNearestColor
SetViewportExtEx
SetStretchBltMode
OffsetViewportOrgEx
SetMiterLimit
PolylineTo
PolyBezierTo
SetMapperFlags
BitBlt
ExtCreatePen
SetTextJustification
RectInRegion
Ellipse
GetWindowOrgEx
GetTextExtentPointA
SaveDC
SetBrushOrgEx
ExcludeClipRect
GetWindowExtEx
StretchDIBits
StrokeAndFillPath
PlayMetaFileRecord
Pie
GetCharWidthA
GetCurrentObject
MaskBlt
SetPaletteEntries
EnumFontFamiliesExA
CreatePalette
SelectObject
SetPolyFillMode
UnrealizeObject
SetDIBits
SetBkColor
EndDoc
SetWindowOrgEx
TextOutW
GdiComment
DPtoLP
SetRectRgn
GetPaletteEntries
SetArcDirection
FillPath
EnumObjects
DeleteEnhMetaFile
CreateFontIndirectW
CreatePenIndirect
GetKerningPairsA
CreateRoundRectRgn
GetPixel
StartDocA
MoveToEx
SetColorAdjustment
GetArcDirection
GetTextExtentPoint32A
ExtTextOutW
StartPage
GetROP2
IntersectClipRect
CreateRectRgn
comctl32
ImageList_SetOverlayImage
ImageList_SetBkColor
ImageList_Read
ImageList_DragLeave
ImageList_Write
ImageList_Replace
ImageList_GetImageInfo
PropertySheetW
ImageList_LoadImageA
ImageList_BeginDrag
_TrackMouseEvent
ImageList_GetIconSize
ImageList_AddMasked
ImageList_GetImageCount
ImageList_Merge
ImageList_Destroy
InitCommonControlsEx
ImageList_Remove
ImageList_Create
ImageList_DragEnter
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_GetDragImage
DestroyPropertySheetPage
PropertySheetA
ImageList_Add
ImageList_DragMove
CreatePropertySheetPageA
ImageList_DragShowNolock
ord17
ImageList_GetBkColor
ImageList_EndDrag
ImageList_Draw
advapi32
GetAce
GetLengthSid
RegDeleteKeyA
OpenServiceA
ReportEventA
InitializeAcl
RegQueryValueExA
RegEnumKeyA
RegCreateKeyA
FreeSid
AddAce
DeleteAce
IsValidSid
CryptCreateHash
GetFileSecurityA
CryptDestroyHash
StartServiceA
InitializeSecurityDescriptor
GetUserNameW
DeregisterEventSource
RegCreateKeyExW
SetServiceStatus
CryptDecrypt
RegCloseKey
GetSidIdentifierAuthority
AllocateAndInitializeSid
RegisterServiceCtrlHandlerA
RegOpenKeyExA
CreateServiceA
ControlService
AddAccessAllowedAce
CryptHashData
RevertToSelf
SetSecurityDescriptorDacl
RegOpenKeyExW
RegOpenKeyA
LookupPrivilegeValueW
RegSetValueA
SetFileSecurityA
CloseServiceHandle
RegEnumValueA
GetUserNameA
ChangeServiceConfigA
CryptReleaseContext
OpenSCManagerA
RegQueryValueA
CryptAcquireContextA
CopySid
OpenThreadToken
RegisterEventSourceW
RegDeleteKeyW
DeleteService
StartServiceCtrlDispatcherA
OpenProcessToken
CryptDestroyKey
RegSetValueExA
CryptGetHashParam
AdjustTokenPrivileges
RegEnumKeyExA
RegCreateKeyExA
RegDeleteValueA
RegQueryInfoKeyA
shlwapi
SHSetValueW
PathCanonicalizeW
StrTrimW
PathFindExtensionW
StrStrIW
PathIsRootW
PathRenameExtensionW
PathCombineW
PathIsRelativeW
PathStripPathW
PathMakePrettyW
PathRemoveFileSpecW
StrCatW
PathCompactPathW
PathRemoveBackslashW
PathSetDlgItemPathW
SHDeleteValueW
PathRemoveBlanksW
PathRelativePathToW
PathMatchSpecW
user32
CreateIconFromResourceEx
ExitWindowsEx
EqualRect
SetCursor
CreateDialogIndirectParamA
GetKeyState
GetProcessWindowStation
CopyAcceleratorTableA
ReleaseDC
AdjustWindowRectEx
GetWindow
GetCapture
RemovePropW
CheckRadioButton
SetMenuDefaultItem
DispatchMessageA
OpenClipboard
GetTabbedTextExtentA
DeleteMenu
KillTimer
InsertMenuA
MapWindowPoints
SendMessageW
CopyAcceleratorTableW
CallNextHookEx
GetDCEx
GetClassNameA
wsprintfW
SetWindowLongA
SetFocus
SetCapture
DestroyIcon
UnregisterClassA
HideCaret
GetKeyboardLayout
GetDC
SetActiveWindow
OffsetRect
ValidateRect
GetMenuDefaultItem
GetMenuItemID
LoadAcceleratorsW
SendDlgItemMessageA
LoadCursorA
GetClassInfoExW
SetDlgItemTextA
OpenWindowStationA
IsDialogMessageA
CreateIconIndirect
GetDlgItem
TrackPopupMenuEx
MessageBeep
SetClassLongW
GetSysColor
GetWindowTextLengthA
GetClientRect
SetWindowPos
GetScrollRange
PostThreadMessageA
UnhookWindowsHookEx
TranslateMessage
FillRect
RegisterHotKey
ScrollDC
SetWindowsHookExA
SubtractRect
LoadIconA
GetWindowDC
GetMenuCheckMarkDimensions
GetClassInfoA
GetWindowTextLengthW
GetParent
TranslateAcceleratorA
GetAsyncKeyState
IsWindowVisible
ExcludeUpdateRgn
GetMonitorInfoW
ScrollWindow
GetCursorPos
GetScrollInfo
DrawFocusRect
DrawTextW
ScreenToClient
SendMessageA
DestroyMenu
GetIconInfo
RegisterWindowMessageW
MessageBoxW
TranslateAcceleratorW
RegisterClipboardFormatA
GetMenuState
CharLowerA
OemToCharA
DrawEdge
GetSystemMenu
InsertMenuItemW
GetPropA
SetWindowTextA
DdeConnect
RegisterClassExA
DialogBoxParamA
ModifyMenuW
GetClassLongA
SetCursorPos
FindWindowA
EndDialog
SetUserObjectSecurity
GetWindowThreadProcessId
UnregisterClassW
IsIconic
DefFrameProcW
GetTopWindow
SetTimer
GetMessageTime
CreateMenu
IntersectRect
SetDlgItemInt
EnableWindow
CreateWindowExW
DrawMenuBar
CloseClipboard
GetSysColorBrush
MessageBoxA
DrawIconEx
GetNextDlgTabItem
GetMenu
GetSubMenu
IsWindow
CopyIcon
GetMenuStringA
CallWindowProcA
CharUpperA
SetWindowPlacement
GetMenuItemCount
GetDlgItemInt
CreatePopupMenu
DrawIcon
IsWindowEnabled
SendDlgItemMessageW
IsWindowUnicode
IsRectEmpty
LoadMenuW
LoadStringW
IsDlgButtonChecked
GetClassNameW
GetKeyboardState
PtInRect
SetScrollInfo
InflateRect
GetDlgCtrlID
GetUpdateRect
GetMonitorInfoA
GetMessagePos
BeginPaint
ShowWindow
MapDialogRect
IsClipboardFormatAvailable
ReuseDDElParam
keybd_event
CharNextA
SetScrollPos
DestroyCursor
SystemParametersInfoW
UnpackDDElParam
SetPropA
DefWindowProcA
EnableScrollBar
PostMessageA
SetWindowContextHelpId
EnableMenuItem
GetDesktopWindow
CreateWindowExA
GetSystemMetrics
ChildWindowFromPoint
CopyRect
SetMenu
DestroyAcceleratorTable
RemoveMenu
SetWindowsHookExW
DestroyWindow
OpenDesktopA
GetLastActivePopup
LoadStringA
wsprintfA
GetFocus
TranslateMDISysAccel
SetParent
AppendMenuA
MsgWaitForMultipleObjects
SetRectEmpty
GetMessageW
IsMenu
InvertRect
CreateAcceleratorTableW
CreateDialogParamA
InvalidateRect
ShowCaret
EmptyClipboard
AttachThreadInput
SystemParametersInfoA
SetScrollRange
TabbedTextOutA
GetWindowTextA
GetMessageA
DialogBoxParamW
WindowFromPoint
ClipCursor
EndPaint
GetUserObjectInformationA
MoveWindow
CheckMenuItem
PeekMessageA
LoadBitmapA
TrackPopupMenu
RemovePropA
GetForegroundWindow
RegisterClassExW
LoadMenuA
ReleaseCapture
GetWindowRect
GetPropW
SetWindowRgn
BeginDeferWindowPos
InsertMenuItemA
DrawFrameControl
DrawTextA
GetClipboardFormatNameA
GetWindowPlacement
SetForegroundWindow
GetActiveWindow
SetWindowTextW
GetWindowLongW
WaitMessage
SetRect
SetProcessWindowStation
RegisterWindowMessageA
GetUserObjectSecurity
EndDeferWindowPos
RegisterClassA
PostMessageW
FrameRect
SetClipboardData
PostQuitMessage
ModifyMenuA
comdlg32
PrintDlgW
GetSaveFileNameW
CommDlgExtendedError
PrintDlgA
GetFileTitleA
ChooseColorA
GetOpenFileNameA
GetOpenFileNameW
ChooseFontW
kernel32
GetLocaleInfoA
WritePrivateProfileStringW
VirtualFree
SetHandleCount
FindClose
InitializeCriticalSection
GetCPInfo
FileTimeToLocalFileTime
GetCommandLineW
GetEnvironmentStrings
HeapFree
GetTickCount
GetFullPathNameW
UnhandledExceptionFilter
GetUserDefaultLCID
LocalFree
RtlUnwind
SetFileAttributesW
LoadLibraryA
SetFileTime
MulDiv
GetTempPathA
lstrcpyW
GetFileAttributesW
GetProcessHeap
GetLocalTime
AreFileApisANSI
ReadFile
ResumeThread
GetCommandLineA
CloseHandle
IsBadStringPtrW
OpenMutexA
GetModuleHandleA
GetDiskFreeSpaceExA
FindNextFileA
GlobalReAlloc
SetStdHandle
CreateMutexW
FreeEnvironmentStringsW
SetEnvironmentVariableA
lstrcmpW
GetSystemDirectoryA
LoadLibraryExW
GetCurrentThreadId
HeapReAlloc
FindFirstFileW
GetDiskFreeSpaceExW
HeapDestroy
GetFileSize
GetFileTime
CopyFileW
TlsFree
GetFullPathNameA
UnlockFile
FreeResource
lstrcpyA
lstrcatW
GetEnvironmentStringsW
InterlockedDecrement
SetLastError
LocalReAlloc
UnmapViewOfFile
SizeofResource
Process32Next
WaitForMultipleObjectsEx
GetSystemInfo
GlobalAddAtomW
WideCharToMultiByte
CreateFileA
RemoveDirectoryW
GetStringTypeExA
FormatMessageW
WaitForSingleObject
GlobalFindAtomA
SetCurrentDirectoryA
GlobalHandle
lstrlenA
DeleteFileA
GetCurrentDirectoryA
lstrcmpiA
WinExec
CompareStringA
FreeLibrary
GetPrivateProfileIntA
SetEvent
CreateThread
FindNextFileW
SetFilePointer
WriteFile
GetTempFileNameA
OpenEventA
GetSystemTime
LockResource
GetModuleFileNameW
VirtualProtect
TerminateProcess
GetOEMCP
GetPrivateProfileSectionA
InterlockedCompareExchange
SetUnhandledExceptionFilter
GetProfileStringA
GetDateFormatA
InterlockedExchange
HeapSize
TlsSetValue
VirtualQuery
GetCurrentProcess
lstrlenW
OpenFile
CreateSemaphoreW
GetTempFileNameW
DeleteCriticalSection
WriteConsoleA
TlsGetValue
ExitThread
GetDriveTypeA
GlobalUnlock
GetConsoleOutputCP
FormatMessageA
GetVolumeNameForVolumeMountPointW
GetStartupInfoA
GlobalAlloc
SetCurrentDirectoryW
GetConsoleCP
CreateDirectoryW
FreeEnvironmentStringsA
_lwrite
DeviceIoControl
SystemTimeToFileTime
GetACP
GetVersion
CreateMutexA
CreateProcessA
CopyFileA
GlobalAddAtomA
CompareFileTime
DuplicateHandle
GlobalGetAtomNameA
GetStdHandle
LoadResource
lstrcpynA
GetCurrentThread
HeapAlloc
GlobalFlags
SetEndOfFile
GetStringTypeA
LockFile
GetLocaleInfoW
IsBadCodePtr
lstrcmpA
MultiByteToWideChar
LCMapStringW
GetSystemTimeAsFileTime
IsDebuggerPresent
LoadLibraryW
MapViewOfFile
GetStartupInfoW
GetStringTypeW
FindFirstFileA
ExitProcess
GetEnvironmentVariableA
GetConsoleMode
LeaveCriticalSection
GetPrivateProfileStringA
GetVersionExA
GetModuleFileNameA
HeapCreate
FlushFileBuffers
InterlockedIncrement
MoveFileA
FindResourceW
GetCurrentProcessId
SetErrorMode
GetFileInformationByHandle
EnumSystemLocalesA
GetVersionExW
TlsAlloc
QueryPerformanceFrequency
IsBadStringPtrA
GetLastError
WaitForMultipleObjects
WritePrivateProfileStringA
GetFileType
FatalAppExitA
GetTimeZoneInformation
RaiseException
GlobalLock
VirtualAlloc
Sleep
EnumResourceLanguagesA
QueryPerformanceCounter
SuspendThread
CompareStringW
IsBadReadPtr
LCMapStringA
IsBadWritePtr
EnterCriticalSection
GlobalFree
GetProcAddress
CreateFileW
LocalAlloc
GlobalDeleteAtom
crypt32
CryptQueryObject
CertGetNameStringW
CertVerifySubjectCertificateContext
CryptVerifyMessageSignature
CryptGetMessageCertificates
CryptMsgGetParam
CertFindCertificateInStore
CertCloseStore
ole32
SetConvertStg
CLSIDFromProgID
ReadFmtUserTypeStg
StringFromGUID2
OleCreateFromFile
IsAccelerator
ReadClassStg
StgIsStorageFile
CoRegisterMessageFilter
CreateItemMoniker
OleCreate
GetRunningObjectTable
OleSetContainedObject
StgCreateDocfile
StgCreateDocfileOnILockBytes
OleRegEnumVerbs
OleQueryLinkFromData
ReleaseStgMedium
CoLoadLibrary
OleSetMenuDescriptor
CoReleaseMarshalData
StringFromCLSID
CoRegisterClassObject
OleCreateLinkFromData
CreateILockBytesOnHGlobal
CreateFileMoniker
OleSaveToStream
OleFlushClipboard
CoInitialize
GetHGlobalFromILockBytes
DoDragDrop
CreateStreamOnHGlobal
StgOpenStorageOnILockBytes
OleUninitialize
OleCreateMenuDescriptor
CoDisconnectObject
CoTreatAsClass
CoLockObjectExternal
OleDestroyMenuDescriptor
OleDuplicateData
CoRevokeClassObject
CoGetInterfaceAndReleaseStream
CoMarshalInterface
OleRegGetMiscStatus
OleGetClipboard
CoGetMalloc
CoCreateInstance
CoTaskMemAlloc
WriteClassStm
CoGetClassObject
CLSIDFromString
RegisterDragDrop
OleQueryCreateFromData
OleLoad
CoFreeUnusedLibraries
CoUninitialize
OleIsCurrentClipboard
WriteFmtUserTypeStg
StgOpenStorage
OleRegGetUserType
WriteClassStg
CoMarshalInterThreadInterfaceInStream
CoTaskMemFree
OleSetClipboard
OleInitialize
OleCreateLinkToFile
OleGetIconOfClass
OleRun
OleLockRunning
OleSave
OleTranslateAccelerator
CoCreateGuid
winmm
mixerGetID
mixerGetControlDetailsA
waveOutWrite
waveInReset
timeEndPeriod
mmioCreateChunk
waveInClose
mmioDescend
mciSendStringA
mixerGetLineInfoA
mixerGetLineControlsA
mciSendCommandA
mmioWrite
waveInOpen
waveOutPrepareHeader
waveInUnprepareHeader
waveOutPause
waveInAddBuffer
waveOutGetDevCapsA
waveInGetNumDevs
PlaySoundW
waveInPrepareHeader
mmioClose
waveOutOpen
waveOutRestart
mmioOpenA
waveInMessage
mixerGetDevCapsW
waveInStart
mixerSetControlDetails
waveOutGetNumDevs
waveInStop
waveOutReset
mciGetErrorStringA
mmioRead
Sections
.text Size: 68KB - Virtual size: 67KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 472KB - Virtual size: 472KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 114KB - Virtual size: 121KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 94KB - Virtual size: 94KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ