Static task
static1
Behavioral task
behavioral1
Sample
9be6a9f95107e53b662af8279a98b42eb24ac46980df5563aa922c64cb837278.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
9be6a9f95107e53b662af8279a98b42eb24ac46980df5563aa922c64cb837278.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
General
-
Target
9be6a9f95107e53b662af8279a98b42eb24ac46980df5563aa922c64cb837278
-
Size
305KB
-
MD5
dd1eb623862ea470e3c503e0c4cda4da
-
SHA1
fbeb9efe11ab13f8256a43a8b3b2ebc38af7c692
-
SHA256
9be6a9f95107e53b662af8279a98b42eb24ac46980df5563aa922c64cb837278
-
SHA512
ece5c0219cccbfb20e7f526d52142b4bebdade0403442d5cddb61d98919a6ef3fc781d98b38657e730357f45a18f83457e9db9b1ab9b54a26f2633adab11e95e
-
SSDEEP
6144:1ST8CNJYIKIQW3yJZSS79XawZ3CHpzskl+ZfwvJf:1wNNMZSGpawZaAkl+ZfwvJ
Malware Config
Signatures
Files
-
9be6a9f95107e53b662af8279a98b42eb24ac46980df5563aa922c64cb837278.exe windows x86
c0580c7d80acbd2040cae65794a34ee5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
GetBkColor
SetBitmapDimensionEx
GetPolyFillMode
GetPaletteEntries
GetClipRgn
FrameRgn
GetCharWidthA
CreateHatchBrush
AbortDoc
GetStockObject
CreateFontIndirectW
Ellipse
CreateEnhMetaFileA
TranslateCharsetInfo
GetGlyphOutlineA
DeleteMetaFile
GetBitmapBits
CreateMetaFileA
GetDIBColorTable
DrawEscape
GetTextCharacterExtra
CreateDiscardableBitmap
CreateCompatibleDC
CloseEnhMetaFile
GetDeviceCaps
EqualRgn
PtVisible
SetDIBits
ResizePalette
SetArcDirection
SelectObject
CombineRgn
StretchBlt
CreateFontW
GetKerningPairsA
CreatePolygonRgn
PolyBezierTo
GetAspectRatioFilterEx
GetClipBox
Arc
GetTextMetricsA
GetPixel
GetBrushOrgEx
SetTextAlign
CreateHalftonePalette
CreateRoundRectRgn
CopyMetaFileA
CopyMetaFileW
SetBkMode
InvertRgn
GetBoundsRect
GetTextMetricsW
FloodFill
EndPage
GetTextExtentPointA
SetAbortProc
GetObjectA
SetTextColor
SetROP2
EnumFontFamiliesA
FlattenPath
GetBkMode
CreateBrushIndirect
GetNearestColor
ExtCreatePen
GetTextExtentPoint32A
ExtCreateRegion
DeleteEnhMetaFile
BitBlt
SetPixel
PolyPolygon
GetTextCharsetInfo
GetBitmapDimensionEx
SetViewportExtEx
CreateDIBitmap
CreatePen
GetArcDirection
SetPaletteEntries
GetTextColor
Rectangle
PatBlt
Escape
CreateDCW
GetSystemPaletteEntries
ExtSelectClipRgn
PlayMetaFile
FillRgn
GetViewportExtEx
CreateFontA
CreateDCA
GetObjectW
PtInRegion
GetMapMode
ResetDCA
RestoreDC
EndDoc
GetTextExtentExPointA
SaveDC
GetCurrentPositionEx
GetCharABCWidthsA
CloseFigure
CreateDIBSection
GetCharWidthFloatA
OffsetRgn
GetPath
ExtTextOutA
GetViewportOrgEx
UpdateColors
EnumFontsW
GetCharABCWidthsFloatA
EnumObjects
CreateCompatibleBitmap
GetStretchBltMode
RoundRect
TextOutW
AnimatePalette
SetMiterLimit
LineTo
SetRectRgn
LPtoDP
ExtEscape
CreatePalette
AngleArc
ScaleViewportExtEx
GetWindowExtEx
CreatePenIndirect
CreateSolidBrush
SetBrushOrgEx
CreateBitmap
GetObjectType
CloseMetaFile
SelectClipPath
SetTextCharacterExtra
GetRegionData
SetStretchBltMode
SetMapMode
CreateICA
GetTextExtentPoint32W
DeleteObject
OffsetViewportOrgEx
GetTextAlign
MaskBlt
SetWindowOrgEx
StrokeAndFillPath
SetWindowExtEx
ExtFloodFill
CreatePatternBrush
ScaleWindowExtEx
GetOutlineTextMetricsA
StartPage
SetPolyFillMode
CreateRectRgnIndirect
GetRgnBox
GetTextFaceA
MoveToEx
CreateBitmapIndirect
PlgBlt
PaintRgn
CreateRectRgn
StartDocA
StretchDIBits
UnrealizeObject
SetViewportOrgEx
Chord
WidenPath
CreateFontIndirectA
GetEnhMetaFileHeader
GetCharWidthW
IntersectClipRect
SetWinMetaFileBits
GetMiterLimit
PolylineTo
StrokePath
SetBoundsRect
SelectPalette
RealizePalette
GetDIBits
PolyBezier
Pie
GetColorAdjustment
GdiComment
SelectClipRgn
ExcludeClipRect
OffsetWindowOrgEx
RectInRegion
SetBkColor
EnumFontFamiliesExA
DeleteDC
AbortPath
Polyline
DPtoLP
Polygon
SetPixelV
RectVisible
TextOutA
PlayEnhMetaFile
GetNearestPaletteIndex
comdlg32
GetSaveFileNameA
ChooseColorW
PrintDlgA
CommDlgExtendedError
GetOpenFileNameA
PageSetupDlgA
GetOpenFileNameW
GetSaveFileNameW
GetFileTitleA
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueW
VerLanguageNameA
VerQueryValueA
comctl32
ImageList_DragShowNolock
CreatePropertySheetPageA
ImageList_GetImageCount
ImageList_SetOverlayImage
ImageList_BeginDrag
ImageList_Add
DestroyPropertySheetPage
ImageList_Merge
ImageList_EndDrag
ImageList_GetIcon
ImageList_Remove
_TrackMouseEvent
ImageList_Replace
ImageList_Read
ImageList_GetDragImage
ImageList_ReplaceIcon
ImageList_DragLeave
ImageList_Write
ImageList_Destroy
PropertySheetA
ord17
ImageList_Draw
ImageList_GetBkColor
ImageList_DragEnter
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_Create
ImageList_SetBkColor
CreateStatusWindowW
ImageList_GetImageInfo
InitCommonControlsEx
ImageList_AddMasked
ImageList_DragMove
ole32
StgOpenStorage
OleDestroyMenuDescriptor
OleRegGetMiscStatus
WriteFmtUserTypeStg
CoFreeUnusedLibraries
StgCreateDocfileOnILockBytes
OleIsCurrentClipboard
CoLoadLibrary
ProgIDFromCLSID
OleIsRunning
CoInitialize
GetRunningObjectTable
StgOpenStorageOnILockBytes
CoDisconnectObject
ReleaseStgMedium
CoRegisterClassObject
CreateBindCtx
OleRegEnumVerbs
OleRegGetUserType
CreateGenericComposite
CoTreatAsClass
CreateStreamOnHGlobal
OleCreateMenuDescriptor
CoLockObjectExternal
CoGetInterfaceAndReleaseStream
CoUninitialize
CoSuspendClassObjects
IsAccelerator
OleUninitialize
CoTaskMemAlloc
OleDuplicateData
OleGetClipboard
OleRun
OleLockRunning
DoDragDrop
OleInitialize
CoRevokeClassObject
CLSIDFromString
CreateItemMoniker
GetClassFile
CoGetMalloc
WriteClassStm
CreateFileMoniker
CoRegisterMessageFilter
RegisterDragDrop
GetHGlobalFromILockBytes
CoResumeClassObjects
CoCreateGuid
CoCreateInstance
CreateDataAdviseHolder
OleSetContainedObject
CoGetClassObject
CoTaskMemRealloc
RevokeDragDrop
OleCreateFromData
CoTaskMemFree
CLSIDFromProgID
StringFromCLSID
OleSetClipboard
OleCreateStaticFromData
SetConvertStg
StgIsStorageILockBytes
WriteClassStg
OleTranslateAccelerator
OleFlushClipboard
StgCreateDocfile
ReadFmtUserTypeStg
OleLoad
StringFromGUID2
ReadClassStg
CreateOleAdviseHolder
CreateILockBytesOnHGlobal
kernel32
GetModuleFileNameA
GetStringTypeExA
QueryPerformanceCounter
GetEnvironmentStrings
GetPrivateProfileStringA
GetProfileIntW
LocalAlloc
GetLastError
UnlockFile
DuplicateHandle
FindNextFileW
SetHandleCount
GetCPInfo
GetTempFileNameW
VirtualAlloc
FindClose
IsDebuggerPresent
HeapFree
WritePrivateProfileStringA
SystemTimeToFileTime
GetSystemTime
GetProcAddress
GetTimeFormatA
GetSystemTimeAsFileTime
FileTimeToLocalFileTime
InitializeCriticalSection
ResumeThread
SetEndOfFile
GetWindowsDirectoryA
GlobalFlags
CreateDirectoryA
OpenEventA
IsValidCodePage
TlsGetValue
OutputDebugStringA
ResetEvent
ReleaseMutex
GetSystemInfo
GetTempFileNameA
GetFullPathNameW
GetFileAttributesA
GlobalGetAtomNameA
GetEnvironmentVariableW
ExitProcess
GetDriveTypeA
CopyFileA
GlobalAlloc
VirtualQuery
GetStartupInfoA
VirtualFree
GetFileAttributesW
GetConsoleOutputCP
HeapCreate
CreateMutexA
FreeLibrary
LockFile
lstrcmpiA
LCMapStringA
EnumSystemLocalesA
GetConsoleCP
GlobalHandle
LCMapStringW
UnhandledExceptionFilter
GetFileTime
IsBadWritePtr
GetProcessHeap
SetUnhandledExceptionFilter
GlobalReAlloc
EnumResourceLanguagesA
GetDriveTypeW
LoadLibraryA
HeapReAlloc
SetEnvironmentVariableA
WriteFile
WriteConsoleW
InterlockedIncrement
CreateThread
GetDateFormatA
CompareStringW
GlobalMemoryStatus
UnmapViewOfFile
SetThreadPriority
MapViewOfFile
CreateDirectoryW
GetCommandLineW
RaiseException
CloseHandle
InterlockedExchange
ExitThread
GetWindowsDirectoryW
GetStringTypeW
DeleteFileA
SetFilePointer
EnterCriticalSection
lstrcatW
InterlockedDecrement
GetCurrentProcessId
GetLocalTime
SetEvent
lstrcmpW
FreeEnvironmentStringsW
GetCurrentThread
GetLocaleInfoW
FormatMessageW
FindFirstFileA
GetVolumeInformationA
LoadResource
GetOEMCP
FileTimeToSystemTime
lstrcmpA
GlobalSize
SetErrorMode
GetFullPathNameA
GetLocaleInfoA
AllocConsole
GetACP
GetFileSize
GetVersionExW
GetCurrentThreadId
GetModuleHandleA
GetPrivateProfileIntA
MultiByteToWideChar
GetExitCodeProcess
GetEnvironmentStringsW
GetCurrentDirectoryA
SuspendThread
lstrcpynA
WriteConsoleA
LoadLibraryExW
CreateFileW
CreateEventA
OpenMutexA
SetProcessWorkingSetSize
GetPrivateProfileSectionA
lstrlenW
InterlockedCompareExchange
GetTickCount
SetFileAttributesW
GetNumberFormatW
lstrlenA
VirtualProtect
GetStdHandle
CompareStringA
GetCurrentProcess
IsValidLocale
FlushFileBuffers
FindNextFileA
ReadFile
WaitForMultipleObjects
FreeResource
FatalAppExitA
SetLastError
TlsFree
GlobalFindAtomA
HeapDestroy
CompareFileTime
GlobalDeleteAtom
HeapAlloc
WaitForSingleObject
GetTimeZoneInformation
DeleteCriticalSection
GetEnvironmentVariableA
GetModuleFileNameW
GetConsoleMode
FindFirstFileW
DeviceIoControl
LeaveCriticalSection
LockResource
GetVersion
GetThreadLocale
DeleteFileW
RtlUnwind
FreeEnvironmentStringsA
GetVersionExA
GetStringTypeA
GlobalUnlock
lstrcmpiW
GetModuleHandleW
SetStdHandle
GetCommandLineA
GetUserDefaultLCID
TerminateProcess
HeapSize
CreateProcessA
CreateProcessW
Sleep
GetStartupInfoW
CreateToolhelp32Snapshot
GlobalFree
WideCharToMultiByte
FormatMessageA
SizeofResource
CreateFileA
LocalReAlloc
GlobalAddAtomW
lstrcpyW
TlsSetValue
TlsAlloc
IsBadCodePtr
GetFileType
FindResourceExA
LocalFree
IsBadReadPtr
oleaut32
LoadTypeLi
user32
GetActiveWindow
DestroyCursor
GetKeyState
IntersectRect
CheckRadioButton
DialogBoxParamW
GetScrollPos
DispatchMessageA
DrawEdge
PostQuitMessage
OpenClipboard
CallNextHookEx
DrawTextExW
DdeDisconnect
AppendMenuA
DefMDIChildProcA
GetWindowTextLengthA
GetWindowRect
ReleaseCapture
SetCursor
LoadMenuW
DdeUninitialize
GetMenuStringA
GetCapture
wsprintfA
SendMessageW
DefWindowProcW
SetWindowPlacement
DestroyWindow
DefFrameProcA
GetKeyNameTextA
GetUserObjectInformationA
GetSubMenu
GetClassInfoExA
DeferWindowPos
SetMenuItemInfoA
CreateIconFromResourceEx
PostThreadMessageA
DrawStateA
LoadIconW
CopyRect
GetDC
CreateAcceleratorTableA
GetScrollInfo
GetWindowTextA
ValidateRect
GetMenuDefaultItem
OpenDesktopA
MoveWindow
FrameRect
TabbedTextOutA
DefDlgProcA
SetWindowContextHelpId
ShowOwnedPopups
GetMenuItemInfoW
GetClientRect
RegisterClipboardFormatA
WinHelpW
InflateRect
FindWindowA
OffsetRect
DrawTextA
SetWindowRgn
DdeClientTransaction
PtInRect
GetFocus
MapVirtualKeyA
CreatePopupMenu
RegisterClassA
SetDlgItemTextA
ReuseDDElParam
FindWindowW
MapWindowPoints
SetActiveWindow
wsprintfW
SetParent
LoadStringA
SetCapture
SystemParametersInfoW
EndPaint
GetClassInfoExW
GetSystemMetrics
IsDialogMessageW
SetDlgItemInt
CreateDialogIndirectParamA
IsMenu
KillTimer
LoadImageW
GetMenuItemInfoA
GetDlgItemInt
GetForegroundWindow
BeginPaint
SetScrollPos
LoadMenuA
ExcludeUpdateRgn
GetMenuState
CallWindowProcW
ShowWindow
CreateDialogIndirectParamW
SetPropA
IsDialogMessageA
CopyAcceleratorTableW
FillRect
IsChild
GetWindowLongW
ClientToScreen
InvalidateRgn
GetMenuItemID
GetScrollRange
GetClipboardData
InvalidateRect
IsZoomed
IsRectEmpty
DestroyMenu
EnableWindow
AppendMenuW
CharNextA
GetWindow
ScreenToClient
GetIconInfo
SetMenuDefaultItem
GetMenuCheckMarkDimensions
CreateDialogParamW
DrawTextExA
UnregisterClassA
InsertMenuItemA
CloseWindow
GetWindowDC
RegisterWindowMessageA
RemovePropA
GrayStringA
GrayStringW
DeleteMenu
TrackPopupMenu
ShowScrollBar
PeekMessageA
GetClassNameW
LoadCursorW
InsertMenuW
InsertMenuItemW
TrackPopupMenuEx
TabbedTextOutW
CreateIconIndirect
GetMenuItemCount
EnumChildWindows
UnregisterClassW
GetLastActivePopup
MonitorFromWindow
HideCaret
GetMessageTime
WindowFromPoint
ChildWindowFromPoint
UnpackDDElParam
GetClassNameA
OemToCharBuffA
CreateMenu
AdjustWindowRectEx
GetClassLongA
SetRectEmpty
CreateWindowExW
SetTimer
PostMessageA
SetWindowTextW
IsWindow
CheckMenuItem
DrawIconEx
GetTopWindow
IsWindowVisible
SetForegroundWindow
CharToOemA
SetRect
IsIconic
ModifyMenuA
GetDCEx
GetDesktopWindow
GetNextDlgTabItem
GetParent
LoadIconA
SetScrollRange
SystemParametersInfoA
IsWindowEnabled
GetDlgItemTextA
GetWindowPlacement
LoadBitmapA
RedrawWindow
ScrollWindow
GetWindowTextLengthW
UnhookWindowsHookEx
MapDialogRect
DrawIcon
SetWindowLongA
MessageBeep
GetWindowLongA
GetMessagePos
DestroyCaret
ReleaseDC
GetSystemMenu
GetSysColorBrush
CreateWindowExA
SetClipboardData
SendMessageA
GetMessageW
SetWindowPos
SetFocus
SetWindowsHookExA
DefWindowProcA
CopyAcceleratorTableA
RegisterClassW
GetDlgItem
PostThreadMessageW
CopyIcon
GetDlgCtrlID
MessageBoxA
TranslateAcceleratorA
CallWindowProcA
DrawFrameControl
SetScrollInfo
UpdateWindow
IsClipboardFormatAvailable
wvsprintfA
LoadCursorA
ShowCaret
EqualRect
SendDlgItemMessageA
GetAsyncKeyState
GetCursorPos
SetMenuItemBitmaps
SetWindowTextA
EnableMenuItem
GetWindowThreadProcessId
RegisterClassExA
DestroyIcon
GetSysColor
GetClassInfoA
DrawFocusRect
InSendMessage
LoadImageA
TranslateMessage
SetDlgItemTextW
SetCursorPos
GetPropA
RemoveMenu
EndDialog
CloseClipboard
shell32
ExtractIconA
ord155
DragFinish
SHGetPathFromIDListW
ExtractIconW
SHChangeNotify
DragQueryFileA
CommandLineToArgvW
ShellExecuteExW
SHGetSpecialFolderLocation
ShellExecuteW
DragAcceptFiles
SHGetMalloc
SHBrowseForFolderW
ShellExecuteA
SHBrowseForFolderA
DragQueryFileW
SHFileOperationA
SHGetFileInfoA
Sections
.text Size: 80KB - Virtual size: 80KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 86KB - Virtual size: 85KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 90KB - Virtual size: 106KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 48KB - Virtual size: 47KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ