Static task
static1
Behavioral task
behavioral1
Sample
4b24941b390c5b54bee9653139107e36bf8186034b23c7fabda53349804dffe5.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
4b24941b390c5b54bee9653139107e36bf8186034b23c7fabda53349804dffe5.exe
Resource
win10v2004-20220901-en
General
-
Target
4b24941b390c5b54bee9653139107e36bf8186034b23c7fabda53349804dffe5
-
Size
748KB
-
MD5
a30f67a5fb4de0a433d2450b27fab306
-
SHA1
3a17c19b9fdaff4fb2caaae1223ff95a8ccc89ff
-
SHA256
4b24941b390c5b54bee9653139107e36bf8186034b23c7fabda53349804dffe5
-
SHA512
833caa4fcb0900ded15bc9acb737c4d2fd7eb7dcc5b5fb1569b1586cb1bd85f565003a6bf8721f917f308393eb46a2a161f508770b504d9c8d59b69020f06a52
-
SSDEEP
12288:b2zRlm0UYzq6luGfOqVc0aeAJaLOAulMulX7I6bawW7DrCkeboqY1MyYjveXp9nz:b0+Yzq2VV+MLOAsMgXTba97DjebobMF4
Malware Config
Signatures
Files
-
4b24941b390c5b54bee9653139107e36bf8186034b23c7fabda53349804dffe5.exe windows x86
a989b03009c18af52f0412141888bb6d
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
Escape
Chord
SetStretchBltMode
GetNearestPaletteIndex
EnumFontFamiliesA
GetBkColor
CreateMetaFileA
ExtCreatePen
GetObjectType
GetAspectRatioFilterEx
ResizePalette
SetWorldTransform
CreateRoundRectRgn
SetROP2
PolyDraw
CreateRectRgnIndirect
GetStockObject
WidenPath
GetMapMode
GetDCOrgEx
GetClipRgn
GetTextExtentPointA
ExtTextOutA
StretchBlt
GetBoundsRect
SetAbortProc
SetBkMode
LineTo
PaintRgn
DeleteDC
SetViewportOrgEx
SetPixelV
GetObjectA
RoundRect
SetWindowExtEx
GetColorAdjustment
UnrealizeObject
GetPath
GetTextFaceA
GetCharWidthA
TextOutA
LPtoDP
CreateRectRgn
PtVisible
CreateBrushIndirect
GetClipBox
SetMapMode
CopyMetaFileA
PathToRegion
SetPixel
OffsetClipRgn
GetTextColor
GetTextMetricsA
ExtTextOutW
CreateFontIndirectA
PatBlt
FloodFill
SaveDC
DeleteObject
CreatePatternBrush
GdiComment
GetPaletteEntries
SetTextAlign
SetBitmapDimensionEx
StartDocW
UpdateColors
CreateDiscardableBitmap
CreateDIBitmap
CreatePolyPolygonRgn
CreatePalette
EndDoc
CreateFontA
MaskBlt
FrameRgn
GetNearestColor
Polygon
EnumFontFamiliesExA
CloseFigure
OffsetWindowOrgEx
BitBlt
GetTextCharsetInfo
GetKerningPairsA
StartPage
CreateFontW
SetViewportExtEx
EnumObjects
GetTextExtentExPointA
ExcludeClipRect
ExtSelectClipRgn
GetCurrentPositionEx
FillRgn
GetArcDirection
Polyline
StartDocA
IntersectClipRect
GdiFlush
ModifyWorldTransform
GetCharABCWidthsW
PlgBlt
PlayEnhMetaFile
GetTextExtentPoint32W
GetViewportOrgEx
SelectClipRgn
SetDIBitsToDevice
SetDIBits
GetDIBits
CreateDCA
GetCharABCWidthsFloatA
SetPaletteEntries
SetColorAdjustment
CreateBitmapIndirect
EndPage
SetMapperFlags
DrawEscape
SelectObject
MoveToEx
SetBoundsRect
Arc
DPtoLP
DeleteMetaFile
FlattenPath
GetRegionData
RectVisible
RestoreDC
GetDeviceCaps
PtInRegion
CreateEllipticRgn
GetPixel
CreatePen
SetTextJustification
CreateDIBPatternBrushPt
CreatePolygonRgn
TranslateCharsetInfo
SetBkColor
CreatePenIndirect
StretchDIBits
ExtCreateRegion
SetBrushOrgEx
GetWindowOrgEx
GetROP2
RealizePalette
SetPolyFillMode
Rectangle
SetRectRgn
AngleArc
Pie
EqualRgn
PlayMetaFile
PolyBezier
GetCharWidthFloatA
CreateDIBSection
StrokePath
SelectClipPath
ArcTo
FillPath
PolyBezierTo
ScaleWindowExtEx
CombineRgn
CreateCompatibleBitmap
GetRgnBox
GetBrushOrgEx
GetPolyFillMode
SetTextColor
CloseMetaFile
GetBitmapDimensionEx
GetViewportExtEx
CreateCompatibleDC
OffsetViewportOrgEx
CreateSolidBrush
GetTextExtentPoint32A
GetWindowExtEx
GetMiterLimit
Ellipse
AbortDoc
PlayMetaFileRecord
GetStretchBltMode
GetBkMode
ResetDCA
ScaleViewportExtEx
OffsetRgn
CreateHalftonePalette
GetCharABCWidthsA
GetTextAlign
SelectPalette
CreateFontIndirectW
SetWindowOrgEx
CreateHatchBrush
SetMiterLimit
ExtFloodFill
SetTextCharacterExtra
GetCurrentObject
AnimatePalette
TextOutW
EnumMetaFile
GetGlyphOutlineA
CreateBitmap
AbortPath
shell32
SHGetSpecialFolderLocation
SHFileOperationA
SHBrowseForFolderW
DragFinish
DragQueryFileA
Shell_NotifyIconW
SHBrowseForFolderA
SHGetPathFromIDListW
SHGetSpecialFolderPathW
ShellExecuteExW
SHFileOperationW
ord155
SHGetDesktopFolder
SHGetMalloc
ShellExecuteA
DragAcceptFiles
SHGetFolderPathW
SHGetPathFromIDListA
SHChangeNotify
oleaut32
LoadTypeLi
user32
OffsetRect
IsCharLowerA
OpenClipboard
IsCharLowerW
GetPropA
PostQuitMessage
LockWindowUpdate
GetMenu
CreateDialogIndirectParamW
UnionRect
GetKeyNameTextW
TabbedTextOutA
EndDialog
LoadBitmapA
PostThreadMessageW
GetDoubleClickTime
SetDlgItemInt
DrawEdge
DeferWindowPos
CreateMenu
wsprintfA
SetCursorPos
CheckMenuItem
UnpackDDElParam
GetWindowRect
MessageBoxA
GetMenuItemID
BringWindowToTop
GetIconInfo
SetMenuDefaultItem
InsertMenuW
GetSubMenu
SetWindowTextW
ModifyMenuW
GetMenuState
SetRect
MapWindowPoints
SetClassLongW
ChildWindowFromPoint
FindWindowExA
UnhookWindowsHookEx
SetForegroundWindow
GetSysColor
GetNextDlgTabItem
CallWindowProcW
RegisterWindowMessageW
CallNextHookEx
PostMessageA
PostMessageW
BeginPaint
WaitMessage
SetWindowLongA
IsChild
CopyIcon
GetClassInfoExA
MessageBeep
FindWindowA
SetMenu
WindowFromPoint
TranslateMessage
SetDlgItemTextW
GetUpdateRect
RegisterClassA
IsDlgButtonChecked
AttachThreadInput
GetMenuItemInfoA
DrawIcon
IsZoomed
CharUpperW
EnumChildWindows
GetParent
SetWindowsHookExA
FrameRect
IsWindowUnicode
HideCaret
GetScrollInfo
InvalidateRect
GetSystemMetrics
SetFocus
RegisterClassExA
ClientToScreen
ShowCursor
ModifyMenuA
DispatchMessageW
RegisterHotKey
GetTopWindow
IsRectEmpty
GetDC
GetKeyNameTextA
PtInRect
GetDlgItem
TranslateMDISysAccel
PeekMessageA
AppendMenuA
SetActiveWindow
SetDlgItemTextA
GetMenuDefaultItem
MapVirtualKeyExW
GetMessageW
MessageBoxW
PostThreadMessageA
InvertRect
SystemParametersInfoW
DrawTextW
ReleaseDC
RegisterClipboardFormatW
CreateDialogParamW
ScrollWindowEx
IsWindow
DefFrameProcW
SetRectEmpty
GetAsyncKeyState
SetWindowsHookExW
UnregisterClassA
TranslateAcceleratorW
GetKeyState
GetForegroundWindow
SetScrollPos
TrackMouseEvent
GetClassNameW
SetPropA
IsIconic
ReuseDDElParam
GetCursorPos
CopyRect
DdePostAdvise
SetMenuItemBitmaps
ReleaseCapture
GetMenuItemCount
SetWindowTextA
SetWindowContextHelpId
SetWindowRgn
SetParent
RegisterClipboardFormatA
CharNextA
DefWindowProcA
LoadStringW
CheckRadioButton
SetScrollRange
ScreenToClient
GetKeyboardState
GetMessageA
GetFocus
CharNextW
CreateDialogIndirectParamA
SendMessageA
CreateWindowExA
LoadIconA
GetClipboardData
DestroyCursor
GetWindowDC
CharUpperA
DestroyCaret
CreatePopupMenu
DestroyAcceleratorTable
RemovePropA
WinHelpW
GetDlgCtrlID
GetSystemMenu
EndPaint
RegisterWindowMessageA
LoadBitmapW
ShowScrollBar
LoadIconW
ValidateRgn
CreateIconIndirect
AdjustWindowRectEx
GetSysColorBrush
GetScrollPos
SubtractRect
IntersectRect
DrawIconEx
GetWindowTextLengthA
GetClassLongA
CreateWindowExW
UpdateWindow
LoadCursorA
EqualRect
DefMDIChildProcA
DrawTextExW
ShowCaret
SetCapture
TrackPopupMenu
EnableScrollBar
DestroyMenu
DrawFocusRect
ValidateRect
MoveWindow
GetActiveWindow
DdeGetLastError
GetClientRect
CallWindowProcA
EnableMenuItem
GetMessagePos
LoadImageA
AppendMenuW
SetMenuItemInfoW
GetWindowLongA
GetMessageTime
InflateRect
SetClipboardData
FillRect
KillTimer
GetWindowTextW
GetWindowThreadProcessId
GetDlgItemInt
GetWindowPlacement
IsWindowVisible
WinHelpA
SystemParametersInfoA
SetWindowPos
ScrollWindow
DrawStateA
GetLastActivePopup
LoadMenuW
EnableWindow
DefWindowProcW
GetDCEx
GetPropW
TrackPopupMenuEx
GetClassNameA
RemoveMenu
GetWindowTextA
SetTimer
ShowOwnedPopups
ShowWindow
IsWindowEnabled
LoadStringA
GetClassInfoA
GetDesktopWindow
DrawTextA
ExitWindowsEx
InsertMenuA
GetClassInfoExW
SendDlgItemMessageA
DispatchMessageA
DestroyWindow
SendMessageW
DefDlgProcA
GetCapture
GetMenuStringA
RedrawWindow
GrayStringA
GetWindow
kernel32
HeapFree
FreeLibrary
IsValidCodePage
TlsFree
OpenProcess
SetHandleInformation
GetTempFileNameA
GetDateFormatA
GetStringTypeA
GetModuleHandleW
QueryPerformanceCounter
GetLocalTime
CreateEventA
RemoveDirectoryW
GetUserDefaultLCID
IsDebuggerPresent
lstrcmpA
SetUnhandledExceptionFilter
GetCommandLineW
IsBadReadPtr
FindFirstFileA
InterlockedCompareExchange
CreateFileMappingW
GetLongPathNameW
CompareStringW
GetStdHandle
CreateProcessW
GetTimeZoneInformation
GetVersionExA
QueryDosDeviceA
FileTimeToLocalFileTime
GetEnvironmentStringsW
LoadLibraryA
FlushFileBuffers
CopyFileA
InterlockedDecrement
GlobalFindAtomA
GetShortPathNameW
OpenMutexA
TlsGetValue
GlobalReAlloc
GlobalAlloc
GetFileSize
LocalReAlloc
GetConsoleOutputCP
GetModuleFileNameW
GetCurrentDirectoryA
CreateMutexW
VirtualAlloc
IsBadWritePtr
WriteConsoleA
FreeEnvironmentStringsW
GlobalHandle
SetEvent
SetConsoleCtrlHandler
FindResourceA
EnumSystemLocalesA
GetCurrentProcessId
GetEnvironmentVariableA
GetPrivateProfileStringW
VirtualQuery
GetCurrentThread
WritePrivateProfileStringA
FindNextChangeNotification
WaitForMultipleObjects
WriteFile
lstrcpyA
ExitThread
GetStringTypeW
CloseHandle
GetTickCount
SearchPathA
GlobalFree
UnhandledExceptionFilter
GetTempPathA
GetCurrentThreadId
GetFileInformationByHandle
GetProcAddress
GetDiskFreeSpaceExA
ResetEvent
FindNextFileA
LeaveCriticalSection
TerminateProcess
GetEnvironmentStrings
GetFileType
SetLastError
RtlUnwind
GetStartupInfoW
GlobalGetAtomNameA
LCMapStringA
lstrlenA
GetLastError
MulDiv
FreeEnvironmentStringsA
GlobalSize
HeapSize
GlobalAddAtomA
InterlockedExchange
HeapAlloc
GetComputerNameA
ReleaseMutex
WaitForSingleObject
GetSystemDirectoryA
WriteConsoleW
CreateFileA
GetConsoleCP
CreateThread
GetSystemTimeAsFileTime
SizeofResource
FileTimeToDosDateTime
GetProcessHeap
IsValidLocale
GetFileAttributesA
GlobalLock
lstrcatA
GetLocaleInfoA
FindClose
GetOEMCP
DeleteFileA
GetLongPathNameA
GlobalDeleteAtom
SetFilePointer
GetExitCodeThread
GetProfileStringA
GetCommandLineA
LockResource
SetConsoleTitleW
WritePrivateProfileStringW
GetFileTime
lstrcmpiW
CreateDirectoryA
MultiByteToWideChar
GetConsoleMode
CreateFileW
ReadFile
LCMapStringW
FileTimeToSystemTime
VirtualFree
GetTimeFormatA
SetFileAttributesW
SetThreadPriority
SetStdHandle
GetStartupInfoA
WideCharToMultiByte
lstrcmpiA
VirtualProtect
LocalAlloc
TlsAlloc
CompareStringA
SetCurrentDirectoryA
SetHandleCount
GetFullPathNameA
FindCloseChangeNotification
SetErrorMode
HeapReAlloc
SetFileTime
CreateProcessA
FindFirstFileW
FormatMessageA
SetEnvironmentVariableA
RaiseException
GetSystemInfo
GetCPInfo
Sleep
GetTempPathW
lstrlenW
HeapCreate
GlobalFlags
GetModuleHandleA
ExitProcess
ResumeThread
lstrcpynA
InterlockedIncrement
GlobalUnlock
GetProcessVersion
GetCurrentProcess
lstrcpynW
IsBadStringPtrA
GetLocaleInfoW
CreateMutexA
GetShortPathNameA
GetACP
GetNumberFormatA
DeleteCriticalSection
GetWindowsDirectoryA
GetPrivateProfileIntA
PeekNamedPipe
GetThreadLocale
EnterCriticalSection
ConvertDefaultLocale
LoadResource
LocalFree
GetSystemDefaultLangID
GetModuleFileNameA
GetVersionExW
FatalAppExitA
GetPrivateProfileIntW
InitializeCriticalSection
DuplicateHandle
IsBadCodePtr
LockFileEx
HeapDestroy
TlsSetValue
comctl32
ImageList_Remove
DestroyPropertySheetPage
ImageList_GetBkColor
ImageList_ReplaceIcon
ImageList_SetDragCursorImage
ImageList_Add
CreatePropertySheetPageA
ImageList_SetBkColor
ord17
ImageList_AddMasked
ImageList_DragMove
ImageList_SetImageCount
ImageList_EndDrag
ImageList_SetOverlayImage
PropertySheetA
ImageList_Create
ImageList_DragShowNolock
ImageList_GetImageCount
ImageList_Merge
ImageList_GetImageInfo
ImageList_BeginDrag
ImageList_Destroy
ImageList_GetIconSize
ImageList_DragLeave
_TrackMouseEvent
ImageList_DragEnter
ImageList_GetIcon
ImageList_DrawEx
ImageList_GetDragImage
ImageList_LoadImageA
ImageList_Draw
InitCommonControlsEx
ImageList_Replace
advapi32
RegDeleteKeyA
MapGenericMask
CreateProcessAsUserA
RegOpenKeyA
RegQueryValueW
GetAclInformation
RegOpenKeyExW
RegEnumKeyExA
RegEnumValueA
AddAccessAllowedAce
InitializeAcl
RegCloseKey
InitiateSystemShutdownA
QueryServiceConfigA
AdjustTokenPrivileges
GetAce
OpenServiceW
RegSetValueExA
DeleteAce
OpenSCManagerA
CloseServiceHandle
SetSecurityDescriptorDacl
RegSetValueExW
RegDeleteValueA
RegQueryInfoKeyA
EqualSid
CryptAcquireContextA
ControlService
GetLengthSid
OpenServiceA
RegCreateKeyExA
GetSidSubAuthorityCount
GetFileSecurityA
ConvertStringSecurityDescriptorToSecurityDescriptorW
RevertToSelf
RegQueryValueA
AddAce
GetTokenInformation
CryptDecrypt
RegEnumKeyA
SetFileSecurityA
OpenThreadToken
RegisterEventSourceW
GetSidIdentifierAuthority
OpenProcessToken
OpenSCManagerW
LookupPrivilegeValueA
DuplicateTokenEx
CryptCreateHash
InitializeSecurityDescriptor
AccessCheck
RegOpenKeyExA
RegSetValueA
DeregisterEventSource
GetSidSubAuthority
RegCreateKeyExW
RegCreateKeyA
CryptDeriveKey
CryptHashData
GetSecurityDescriptorDacl
RegQueryValueExA
AllocateAndInitializeSid
Sections
.text Size: 104KB - Virtual size: 101KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 472KB - Virtual size: 470KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 140KB - Virtual size: 146KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ