Static task
static1
Behavioral task
behavioral1
Sample
9aca3a994396ac8fbedc3c4741390544c0c44d8cd2a69a6017fe637a21edfbdd.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
9aca3a994396ac8fbedc3c4741390544c0c44d8cd2a69a6017fe637a21edfbdd.exe
Resource
win10v2004-20221111-en
General
-
Target
9aca3a994396ac8fbedc3c4741390544c0c44d8cd2a69a6017fe637a21edfbdd
-
Size
268KB
-
MD5
e680065dc56ffcc7a9a61d8b8b43b7d8
-
SHA1
2fe28296d6c2eecfad592dd18dd3db17b3c23b5b
-
SHA256
9aca3a994396ac8fbedc3c4741390544c0c44d8cd2a69a6017fe637a21edfbdd
-
SHA512
1a3d8717d1ea9f5dec29c8b582d50dbf38e0134c6650b78b27b1dcfed12d858e4c609b37be41d6766b7001a0022628700393e8315bb45639dfb504f67efc8dc9
-
SSDEEP
3072:2hWQ96WXBWLvnwUrz9dsNHFJxE24YvH2HuryLxXzl6EVuU/Ov2l9SECaz//9NbBk:81XBS/UfxzxHiUY52ECaz/Hbo
Malware Config
Signatures
Files
-
9aca3a994396ac8fbedc3c4741390544c0c44d8cd2a69a6017fe637a21edfbdd.exe windows x86
e7d745c255b840b35cadd4b3a6ded70d
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetUserDefaultLangID
LocalUnlock
SetCurrentDirectoryW
CreateThread
MapViewOfFile
GetFileType
TlsAlloc
OutputDebugStringA
TerminateProcess
lstrcatA
GetDateFormatA
GetFullPathNameW
FormatMessageA
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
SetEnvironmentVariableA
GlobalFree
HeapFree
lstrcmpiW
SetLastError
WritePrivateProfileStringA
GetStringTypeA
GetConsoleMode
WritePrivateProfileStringW
UnhandledExceptionFilter
ExitProcess
InterlockedDecrement
GetEnvironmentStringsW
SetFilePointer
GetModuleFileNameA
lstrlenW
GetSystemInfo
GetTempPathA
CreateEventA
WaitForSingleObject
GetDriveTypeW
SetFileAttributesA
LocalAlloc
SetUnhandledExceptionFilter
VirtualProtect
GetLocaleInfoA
IsBadWritePtr
GetWindowsDirectoryW
GetCurrentProcessId
LoadLibraryA
Beep
GetFileSize
FatalAppExitA
GetTimeZoneInformation
SetFileAttributesW
GetTickCount
HeapAlloc
FindNextFileW
CreateProcessW
GetConsoleCP
DeleteFileW
WriteFile
CreateMutexW
GlobalHandle
GetPrivateProfileIntW
DeleteFileA
EnumSystemLocalesA
FreeEnvironmentStringsW
SetStdHandle
FindResourceExA
GetVersion
LocalReAlloc
LocalFileTimeToFileTime
GetCommandLineA
InitializeCriticalSection
MultiByteToWideChar
GetStartupInfoW
lstrlenA
GetTempPathW
WideCharToMultiByte
CreateSemaphoreA
GetEnvironmentStrings
lstrcmpiA
HeapSize
FreeEnvironmentStringsA
FindFirstFileA
GetLongPathNameA
GetCurrentDirectoryA
DuplicateHandle
SizeofResource
IsValidCodePage
GetSystemDefaultLangID
GetThreadLocale
TerminateThread
GetUserDefaultLCID
ReadFile
VirtualQuery
FreeLibrary
GetCurrentDirectoryW
FlushFileBuffers
ExitThread
CreateFileA
CompareStringW
GetDiskFreeSpaceA
QueryPerformanceFrequency
GetOEMCP
RtlUnwind
UnmapViewOfFile
TlsFree
GetPrivateProfileSectionA
GetModuleHandleA
ExpandEnvironmentStringsA
TlsSetValue
CreateMutexA
GlobalLock
lstrcmpW
WriteConsoleA
GlobalReAlloc
GetPrivateProfileIntA
InterlockedCompareExchange
lstrcpynW
CopyFileA
SetEndOfFile
FindClose
SetThreadPriority
GetModuleHandleW
GetCurrentThreadId
EnterCriticalSection
CloseHandle
GetACP
QueryPerformanceCounter
TlsGetValue
CreateDirectoryW
GetStartupInfoA
FileTimeToDosDateTime
SetHandleCount
DeleteCriticalSection
LoadResource
GetFileTime
GetStringTypeW
InterlockedIncrement
RaiseException
lstrcpyA
GetLastError
HeapCreate
CancelIo
GlobalGetAtomNameA
CompareStringA
GetCurrentThread
HeapReAlloc
IsBadCodePtr
GetProcAddress
GetSystemDirectoryA
GetSystemTime
GetPrivateProfileStringA
InterlockedExchange
GetCPInfo
Sleep
CreateFileW
VirtualFree
LeaveCriticalSection
GetFileAttributesW
LCMapStringW
OutputDebugStringW
OpenMutexA
GetProfileStringA
MulDiv
DeviceIoControl
SetErrorMode
IsBadReadPtr
GetLocalTime
LockResource
CreateEventW
GetStdHandle
GetTimeFormatA
GetWindowsDirectoryA
GetVersionExA
LoadLibraryExW
SetThreadExecutionState
GetCommandLineW
LCMapStringA
GlobalFlags
SuspendThread
IsDebuggerPresent
GlobalUnlock
GetLocaleInfoW
EnumResourceLanguagesA
MoveFileW
FileTimeToSystemTime
RemoveDirectoryA
GetFullPathNameA
LocalFree
GetCurrentProcess
FreeConsole
FindResourceA
GlobalDeleteAtom
GetVolumeInformationA
HeapDestroy
GetModuleFileNameW
IsValidLocale
lstrcpynA
GetStringTypeExA
VirtualAlloc
lstrcatW
GetConsoleOutputCP
GetFileAttributesA
GlobalAlloc
FindFirstChangeNotificationA
shell32
DragFinish
CommandLineToArgvW
SHGetMalloc
DragQueryFileA
SHChangeNotify
SHBrowseForFolderW
ord155
SHBrowseForFolderA
ShellExecuteW
SHGetDesktopFolder
SHCreateDirectoryExW
DragAcceptFiles
ExtractIconA
ExtractIconExA
ShellExecuteA
ShellExecuteExW
SHGetFolderPathW
SHGetFileInfoW
ShellExecuteExA
gdi32
PolyPolygon
SetGraphicsMode
CreateDIBPatternBrushPt
Ellipse
GetAspectRatioFilterEx
PolyBezier
GetPath
GetPolyFillMode
DeleteMetaFile
SetWindowExtEx
Pie
SetBrushOrgEx
CreateDiscardableBitmap
SetDIBitsToDevice
CreateRectRgnIndirect
RoundRect
OffsetClipRgn
RectVisible
GetArcDirection
GetTextCharacterExtra
TextOutA
EnumFontFamiliesExA
CreateDCA
DeleteEnhMetaFile
GetBitmapBits
MaskBlt
SetPixel
CreateSolidBrush
GetBitmapDimensionEx
Rectangle
CreateCompatibleBitmap
SetTextColor
SetTextJustification
EndPage
DPtoLP
ArcTo
PatBlt
SetViewportOrgEx
GetStockObject
LPtoDP
GetStretchBltMode
GetKerningPairsA
SetColorAdjustment
SetStretchBltMode
GetViewportExtEx
CreateICA
ExtCreatePen
GetDeviceCaps
DeleteDC
CreatePatternBrush
FillPath
SetBkColor
CreateEllipticRgnIndirect
SetBitmapDimensionEx
CreatePolyPolygonRgn
Escape
EndPath
PtVisible
SelectClipRgn
GetCurrentObject
GetClipBox
CreateCompatibleDC
SetPixelV
SetMapperFlags
GetRegionData
GetEnhMetaFileA
ExtSelectClipRgn
GetTextExtentPoint32W
AngleArc
ExcludeClipRect
GetCurrentPositionEx
PolyDraw
GetTextCharsetInfo
SetTextCharacterExtra
StrokeAndFillPath
GetObjectType
CreateFontIndirectW
GetMiterLimit
SetViewportExtEx
GetObjectA
SetArcDirection
PlgBlt
PolylineTo
SetPolyFillMode
FloodFill
DrawEscape
GetGlyphOutlineA
CreatePalette
CloseFigure
PathToRegion
GetClipRgn
CreateDIBitmap
OffsetViewportOrgEx
AbortPath
GetColorAdjustment
DeleteObject
UpdateColors
ScaleViewportExtEx
GetRgnBox
ModifyWorldTransform
GdiFlush
GetROP2
EndDoc
PolyBezierTo
SetAbortProc
MoveToEx
GetCharWidthA
EnumMetaFile
Chord
GetNearestColor
GetTextMetricsW
SetROP2
ExtTextOutW
UnrealizeObject
ExtTextOutA
GetCharABCWidthsFloatA
GetNearestPaletteIndex
ScaleWindowExtEx
LineTo
RealizePalette
SelectClipPath
AnimatePalette
PaintRgn
PolyPolyline
FillRgn
WidenPath
GetTextExtentPoint32A
StartDocA
CreateFontIndirectA
GetWindowExtEx
CreateBitmapIndirect
GetEnhMetaFileHeader
EnumObjects
GetCharWidthW
CreateHatchBrush
GetPixel
BitBlt
CreateDIBSection
SetRectRgn
FlattenPath
CreatePolygonRgn
CreateBitmap
CreateFontW
Polyline
CreateRoundRectRgn
SetMapMode
RestoreDC
GetObjectW
Polygon
GetFontData
GetCharABCWidthsW
GetTextFaceA
GetDIBits
StretchBlt
CreateBrushIndirect
GetMapMode
GetViewportOrgEx
PtInRegion
PlayMetaFile
SetPaletteEntries
CreateFontA
GdiComment
GetCharWidthFloatA
CombineRgn
StretchDIBits
BeginPath
CreateEllipticRgn
ResizePalette
FrameRgn
GetTextAlign
PlayMetaFileRecord
IntersectClipRect
GetBrushOrgEx
SelectObject
PlayEnhMetaFile
GetDIBColorTable
SetBoundsRect
GetBkMode
GetTextMetricsA
GetTextColor
Arc
StrokePath
SetTextAlign
CopyMetaFileA
SaveDC
ExtFloodFill
SelectPalette
GetWindowOrgEx
CreateRectRgn
SetWindowOrgEx
AbortDoc
GetBkColor
CreatePen
StartPage
SetMiterLimit
SetBkMode
OffsetRgn
advapi32
RegEnumKeyExW
OpenServiceA
RegSetValueExA
RegDeleteValueA
OpenSCManagerA
LookupAccountNameW
OpenThreadToken
RegSetValueExW
GetFileSecurityW
RegOpenKeyExW
RegSetValueW
RegOpenKeyExA
RegCloseKey
RegEnumKeyExA
RegCreateKeyExW
RegOpenKeyA
RegDeleteKeyA
RegQueryInfoKeyA
AllocateAndInitializeSid
LookupPrivilegeValueW
RegQueryValueA
OpenServiceW
GetUserNameA
CreateProcessAsUserA
GetSidLengthRequired
RegSetValueA
RegOpenCurrentUser
RegCreateKeyW
StartServiceA
SetSecurityDescriptorDacl
DuplicateTokenEx
EqualSid
RegDeleteValueW
FreeSid
DeleteAce
RegCreateKeyExA
GetTokenInformation
OpenProcessToken
GetUserNameW
GetFileSecurityA
RegEnumKeyW
StartServiceCtrlDispatcherW
RegQueryInfoKeyW
RegQueryValueExW
OpenSCManagerW
RegEnumValueW
AddAccessAllowedAce
InitializeAcl
CopySid
RegDeleteKeyW
CryptGetHashParam
RegisterServiceCtrlHandlerW
CloseServiceHandle
ConvertSidToStringSidW
AdjustTokenPrivileges
InitializeSecurityDescriptor
RegEnumValueA
RegOpenKeyW
RegCreateKeyA
DeleteService
RegQueryValueExA
RegQueryValueW
user32
DdeConnect
GetWindow
ModifyMenuA
DrawStateA
DialogBoxParamA
InsertMenuA
PostThreadMessageA
GetMenu
DefWindowProcA
GetMessageTime
SetCapture
TrackPopupMenu
GetPropA
TranslateMDISysAccel
SetWindowLongW
BeginDeferWindowPos
ReleaseCapture
IsDlgButtonChecked
IsChild
SetActiveWindow
EnableScrollBar
InflateRect
EndPaint
LoadCursorA
SetWindowRgn
WinHelpW
CreatePopupMenu
LoadImageW
InvalidateRect
MessageBoxA
InvalidateRgn
InvertRect
CloseClipboard
SendDlgItemMessageA
PostMessageW
SendMessageA
BringWindowToTop
SetWindowsHookExA
GetActiveWindow
GetMessagePos
SendMessageW
SetRect
DestroyMenu
UnregisterClassA
DefDlgProcA
AppendMenuW
ShowWindow
UpdateWindow
ScreenToClient
WindowFromPoint
PostMessageA
CharLowerA
DrawEdge
SetMenuDefaultItem
DrawTextExW
LoadIconW
CallWindowProcW
IsWindowVisible
RegisterClassExA
CreateCaret
RegisterClipboardFormatA
UnregisterHotKey
SetWindowTextA
GetLastActivePopup
AppendMenuA
SetWindowContextHelpId
DestroyWindow
DrawStateW
GetWindowRect
CreateDialogIndirectParamA
PostThreadMessageW
DrawIconEx
DrawFocusRect
MsgWaitForMultipleObjects
GetWindowRgn
GetNextDlgGroupItem
HiliteMenuItem
PostQuitMessage
IsDialogMessageW
EndDialog
MoveWindow
WindowFromDC
SetDlgItemInt
GrayStringW
GetMenuItemCount
TabbedTextOutA
GetCapture
CreateAcceleratorTableA
GetMessageW
CallNextHookEx
GetScrollRange
PeekMessageW
CreateIconIndirect
CharNextA
GetWindowTextLengthA
DestroyCaret
GetScrollInfo
GetMenuState
EnableWindow
SetPropA
CopyAcceleratorTableA
RegisterClassA
FillRect
SetFocus
ClientToScreen
DeleteMenu
CallWindowProcA
RemovePropA
GetClassInfoExW
LockWindowUpdate
LoadBitmapA
CharUpperW
DrawIcon
SetMenuItemBitmaps
CharUpperA
CopyRect
GetClassLongW
MessageBoxW
CheckRadioButton
GetSysColor
TranslateAcceleratorA
SetPropW
FindWindowA
SendMessageTimeoutW
GetMenuItemInfoA
RemoveMenu
SetClipboardData
WinHelpA
GetSystemMetrics
wsprintfA
SetTimer
KillTimer
GetSystemMenu
SetCursor
DefMDIChildProcA
TranslateMessage
TabbedTextOutW
GetMenuItemID
DrawAnimatedRects
IsIconic
DrawTextW
GetWindowDC
SetWindowLongA
GetKeyState
ScrollWindow
ShowScrollBar
MonitorFromPoint
CheckMenuItem
GetClassLongA
CharLowerW
CreateWindowExA
IsWindowEnabled
GetWindowTextA
GetMenuCheckMarkDimensions
DrawTextA
GetIconInfo
SendMessageTimeoutA
CreateWindowExW
GetSysColorBrush
OpenClipboard
GetDlgCtrlID
CopyIcon
LoadImageA
MapWindowPoints
GetDoubleClickTime
DrawTextExA
DispatchMessageA
GetKeyboardState
GetKeyNameTextA
GetDlgItem
IsZoomed
LoadCursorW
ShowCaret
MapDialogRect
UnhookWindowsHookEx
SetDlgItemTextA
GetForegroundWindow
SetWindowPos
SetWindowPlacement
SetScrollInfo
IsWindowUnicode
GetTopWindow
GetWindowPlacement
GetWindowTextW
SetParent
GetWindowTextLengthW
GetDesktopWindow
EnumWindows
PtInRect
VkKeyScanA
GetClipboardFormatNameA
GetSubMenu
GetNextDlgTabItem
RegisterWindowMessageA
LoadIconA
BeginPaint
IsMenu
IsRectEmpty
GetClientRect
GetFocus
ValidateRect
GetAsyncKeyState
GetDCEx
CreateDialogIndirectParamW
SetForegroundWindow
IntersectRect
GetWindowLongW
DeferWindowPos
SetRectEmpty
GetDlgItemTextA
ExcludeUpdateRgn
IsWindow
DrawFrameControl
GetMenuDefaultItem
ReuseDDElParam
ChildWindowFromPoint
RegisterWindowMessageW
LoadAcceleratorsW
GetMessageA
DefWindowProcW
EnableMenuItem
PeekMessageA
GetWindowLongA
WaitForInputIdle
CopyAcceleratorTableW
DestroyIcon
OffsetRect
GetDC
DdeNameService
GetMenuStringA
FrameRect
GetParent
IsDialogMessageA
ReleaseDC
GetClassInfoExA
LoadStringA
EndDeferWindowPos
GetWindowThreadProcessId
GetCursorPos
AdjustWindowRectEx
GetClassNameA
SystemParametersInfoA
GrayStringA
RedrawWindow
ole32
CoFreeUnusedLibraries
OleLockRunning
OleIsCurrentClipboard
GetRunningObjectTable
CoTreatAsClass
CLSIDFromProgID
CoTaskMemAlloc
OleSetMenuDescriptor
CoGetInterfaceAndReleaseStream
GetHGlobalFromILockBytes
ReadClassStg
RevokeDragDrop
OleUninitialize
CreateILockBytesOnHGlobal
StgIsStorageILockBytes
OleRegEnumVerbs
IsAccelerator
OleFlushClipboard
OleSave
CoDisconnectObject
OleRegGetUserType
OleTranslateAccelerator
OleDestroyMenuDescriptor
CoGetClassObject
CoRevokeClassObject
CreateGenericComposite
OleCreateLinkFromData
OleCreateMenuDescriptor
CreateFileMoniker
StringFromGUID2
RegisterDragDrop
OleRun
WriteClassStm
CoRegisterClassObject
OleGetClipboard
OleCreate
StgCreateDocfile
CoUninitialize
StringFromCLSID
OleCreateFromData
StgOpenStorage
CoInitializeEx
CreateBindCtx
GetClassFile
CoTaskMemFree
CoCreateInstance
OleSaveToStream
CoRegisterMessageFilter
CoLockObjectExternal
CoMarshalInterThreadInterfaceInStream
OleGetIconOfClass
CoReleaseMarshalData
ReadFmtUserTypeStg
CreateItemMoniker
WriteFmtUserTypeStg
StgOpenStorageOnILockBytes
OleCreateLinkToFile
ReleaseStgMedium
OleDuplicateData
OleLoad
StgCreateDocfileOnILockBytes
CLSIDFromString
SetConvertStg
CreateStreamOnHGlobal
CoCreateGuid
OleCreateFromFile
OleInitialize
CoTaskMemRealloc
CoInitialize
OleIsRunning
OleRegGetMiscStatus
CoMarshalInterface
shlwapi
PathIsUNCW
StrStrW
PathIsRootW
PathAddBackslashW
StrFormatKBSizeW
StrStrIW
StrCpyW
PathStripPathW
PathRemoveFileSpecW
PathIsDirectoryW
PathCompactPathW
PathCombineW
PathRemoveBackslashW
PathStripToRootW
PathRemoveExtensionW
PathIsFileSpecW
PathFileExistsW
PathCanonicalizeW
PathFindFileNameW
PathRelativePathToW
comctl32
ImageList_SetDragCursorImage
ImageList_Write
ord17
ImageList_EndDrag
ImageList_SetBkColor
ImageList_Add
ImageList_Destroy
ImageList_GetImageInfo
ImageList_ReplaceIcon
PropertySheetA
ImageList_GetIconSize
ImageList_DragEnter
ImageList_GetBkColor
ImageList_GetIcon
ImageList_BeginDrag
ImageList_DragShowNolock
ImageList_Create
ImageList_LoadImageA
_TrackMouseEvent
ImageList_Draw
ImageList_DragLeave
ImageList_DragMove
InitCommonControlsEx
ImageList_LoadImageW
ImageList_GetImageCount
DestroyPropertySheetPage
ImageList_Read
ImageList_SetImageCount
ImageList_SetOverlayImage
ImageList_Replace
ImageList_Remove
ImageList_AddMasked
CreatePropertySheetPageA
Sections
.text Size: 76KB - Virtual size: 75KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 92KB - Virtual size: 89KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 72KB - Virtual size: 78KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 24KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ