Static task
static1
Behavioral task
behavioral1
Sample
4b14b422db39ef7346f37fab84adc43b502c125909c1250153ef9efc4986145e.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
4b14b422db39ef7346f37fab84adc43b502c125909c1250153ef9efc4986145e.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
4b14b422db39ef7346f37fab84adc43b502c125909c1250153ef9efc4986145e
-
Size
308KB
-
MD5
c7b1a66dab811e746b198c01c849cf20
-
SHA1
8c2119c8ea73f02c83f49ea7bd772b5ac12f9305
-
SHA256
4b14b422db39ef7346f37fab84adc43b502c125909c1250153ef9efc4986145e
-
SHA512
2a86657268cff8313f92d8e18dd5e90ad07d3eec08add36eefbf2cc496c3fc69b85b562d245bf2d7bacf3f8c321486d882c500ef8fcfee7dee24d2a85062dd8c
-
SSDEEP
6144:MI6ZqeRRhMFrcLfYZJnyhCwaL8K6WhNfb1lt/o:YZnR6FrcLgZdyhWL8K/T1ltQ
Malware Config
Signatures
Files
-
4b14b422db39ef7346f37fab84adc43b502c125909c1250153ef9efc4986145e.exe windows x86
8fe90f11977b3f639602a28b854a9724
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mfc42
ord1576
advapi32
RevertToSelf
InitializeSecurityDescriptor
CryptDestroyKey
CryptHashData
RegEnumKeyA
RegEnumKeyExA
OpenServiceA
CryptDestroyHash
CryptImportKey
RegSetValueExA
RegDeleteKeyW
RegCreateKeyA
RegDeleteValueA
RegDeleteValueW
RegQueryValueExW
ImpersonateSelf
CryptCreateHash
OpenSCManagerA
CopySid
RegQueryValueW
LookupPrivilegeValueA
RegEnumValueA
RegEnumValueW
RegOpenKeyExW
GetFileSecurityW
RegCloseKey
GetTokenInformation
RegSetValueW
OpenSCManagerW
CreateServiceW
RegOpenKeyA
RegCreateKeyExA
RegEnumKeyW
RegOpenKeyW
OpenProcessToken
AllocateAndInitializeSid
EqualSid
AddAce
OpenServiceW
LookupAccountNameW
CreateProcessAsUserA
CryptEncrypt
RegSetValueExW
CloseServiceHandle
QueryServiceStatus
CryptAcquireContextA
GetSecurityDescriptorDacl
RegDeleteKeyA
RegQueryInfoKeyA
GetUserNameW
RegOpenKeyExA
DuplicateToken
GetUserNameA
GetFileSecurityA
RegEnumKeyExW
RegCreateKeyExW
RegQueryValueExA
RegSetValueA
SetSecurityDescriptorDacl
RegQueryValueA
CreateServiceA
IsValidSid
kernel32
IsBadReadPtr
IsDebuggerPresent
GetModuleFileNameA
VirtualFree
HeapFree
TerminateProcess
ConvertDefaultLocale
GetPrivateProfileSectionA
CreateProcessA
GetDateFormatA
VirtualUnlock
GetFileSize
lstrcpynA
SetEnvironmentVariableA
GetProfileStringA
Sleep
GetLocaleInfoW
WinExec
GetCurrentProcessId
MoveFileExW
lstrcpyW
FatalAppExitA
VirtualQuery
IsBadCodePtr
DuplicateHandle
lstrcmpiA
WritePrivateProfileStringA
FreeEnvironmentStringsW
GetProcAddress
GetFullPathNameW
GetSystemInfo
GetFileAttributesA
GlobalUnlock
SetEvent
FindNextFileA
SetLastError
lstrlenW
GetDiskFreeSpaceW
ExitThread
CreateDirectoryA
GetFileTime
lstrcatA
FindResourceA
LoadLibraryW
LocalFree
RaiseException
IsProcessorFeaturePresent
HeapDestroy
EnumSystemLocalesA
LCMapStringA
GetACP
lstrcmpiW
WriteConsoleW
UnhandledExceptionFilter
LoadLibraryA
CreateEventA
GetTempFileNameA
ExpandEnvironmentStringsA
GetFileAttributesW
CreateEventW
CompareStringA
GetSystemDirectoryA
GetConsoleOutputCP
HeapAlloc
GlobalLock
GetCurrentThreadId
LocalFileTimeToFileTime
GetDiskFreeSpaceA
InterlockedExchange
CreateMutexA
EnumResourceLanguagesA
GlobalFree
WriteConsoleA
TlsSetValue
FileTimeToLocalFileTime
CloseHandle
GlobalDeleteAtom
SetErrorMode
InitializeCriticalSection
GetUserDefaultLCID
CreateFileW
LockFileEx
CompareFileTime
SetFilePointer
SuspendThread
GetFileType
HeapReAlloc
GetExitCodeThread
EnterCriticalSection
GetModuleHandleA
GetVersionExA
GetVersion
VirtualProtect
GetStdHandle
GetSystemTimeAsFileTime
OutputDebugStringA
FreeLibrary
lstrcpyA
lstrlenA
FlushFileBuffers
UnmapViewOfFile
LocalReAlloc
ReleaseMutex
FindResourceW
SetThreadPriority
GetLongPathNameA
DeleteFileA
SetUnhandledExceptionFilter
ExitProcess
GetDriveTypeA
GetProcessHeap
GetCPInfo
LoadResource
IsBadWritePtr
GetVolumeInformationA
GetStringTypeA
GetConsoleCP
SetEndOfFile
GlobalFindAtomA
GetCurrentDirectoryA
GetTimeZoneInformation
SetStdHandle
FlushInstructionCache
ResumeThread
GetStringTypeW
WideCharToMultiByte
SystemTimeToFileTime
RemoveDirectoryA
GetExitCodeProcess
GlobalHandle
GetStartupInfoW
SizeofResource
GetConsoleMode
lstrcmpA
InterlockedIncrement
QueryPerformanceFrequency
OpenMutexA
GetLastError
GetFullPathNameA
GetTempPathA
RtlUnwind
GetCurrentThread
WaitForMultipleObjects
TlsAlloc
GetThreadLocale
InterlockedDecrement
GetCommandLineA
GetSystemTime
LocalAlloc
RemoveDirectoryW
GlobalAlloc
IsValidCodePage
SetHandleCount
FindResourceExA
ExpandEnvironmentStringsW
GlobalFlags
CreateFileA
GlobalAddAtomA
WaitForSingleObject
TlsFree
GetModuleHandleW
DeleteCriticalSection
GetStringTypeExA
GetStartupInfoA
GetOEMCP
GetEnvironmentVariableA
FreeEnvironmentStringsA
GlobalReAlloc
GlobalGetAtomNameA
GetModuleFileNameW
SetConsoleCtrlHandler
MultiByteToWideChar
ReadFile
GetShortPathNameA
FindClose
LeaveCriticalSection
QueryPerformanceCounter
MulDiv
UnlockFile
VirtualAlloc
TlsGetValue
HeapCreate
CreateThread
ResetEvent
LockResource
HeapSize
CompareStringW
FindFirstFileW
OpenFileMappingA
IsValidLocale
GetTickCount
GetLocaleInfoA
LockFile
CopyFileW
SetFileAttributesA
GetCurrentProcess
FindFirstFileA
CopyFileA
WriteFile
GetTimeFormatA
LCMapStringW
GetEnvironmentStrings
GetEnvironmentStringsW
urlmon
URLDownloadToCacheFileA
comctl32
ImageList_DragShowNolock
ImageList_DragLeave
CreatePropertySheetPageA
ImageList_Add
ord17
ImageList_DragEnter
ImageList_Create
ImageList_GetDragImage
CreateToolbarEx
ImageList_ReplaceIcon
ImageList_Replace
InitCommonControlsEx
ImageList_Destroy
ImageList_GetIcon
PropertySheetW
ImageList_GetImageCount
ImageList_SetBkColor
ImageList_SetDragCursorImage
ImageList_Write
CreateStatusWindowW
ImageList_DragMove
ImageList_LoadImageA
_TrackMouseEvent
ImageList_Read
ImageList_EndDrag
ImageList_AddMasked
ImageList_Remove
ImageList_Merge
ImageList_Draw
ImageList_DrawEx
ImageList_GetIconSize
ImageList_GetImageInfo
PropertySheetA
user32
GetClipboardFormatNameA
DrawIcon
IsWindow
LoadBitmapA
UnhookWindowsHookEx
LoadMenuA
CopyRect
GetMenuState
GetSubMenu
CopyAcceleratorTableA
GetTopWindow
LoadMenuW
CheckDlgButton
GetClipboardData
GetSysColorBrush
LockWindowUpdate
KillTimer
GetCapture
MessageBoxA
CopyIcon
SetWindowContextHelpId
PostThreadMessageA
IsCharAlphaA
WindowFromPoint
CharLowerW
PtInRect
GetWindowLongA
GetWindowTextA
GetMenuStringW
DdeDisconnect
MonitorFromPoint
DefMDIChildProcA
DispatchMessageA
LoadCursorA
FrameRect
DrawIconEx
LoadAcceleratorsA
EndDialog
GetDCEx
SetWindowsHookExA
DialogBoxParamA
SetCapture
DragDetect
ReleaseDC
CallWindowProcA
GetMenuStringA
GetSystemMenu
BringWindowToTop
GetClassInfoW
MapDialogRect
GetMessageTime
CreateDialogIndirectParamA
FlashWindow
AdjustWindowRectEx
SetRect
IsDialogMessageA
GetWindowDC
CharUpperBuffW
RegisterWindowMessageA
BeginDeferWindowPos
DestroyCursor
SetWindowRgn
GetClipboardViewer
GetMenuItemInfoW
GetOpenClipboardWindow
RegisterClassA
IsRectEmpty
RemovePropW
GetClassInfoExA
SetForegroundWindow
IsChild
SetMenu
IsWindowUnicode
ValidateRect
RemovePropA
RegisterWindowMessageW
GetForegroundWindow
EnumWindows
GetAsyncKeyState
SetRectEmpty
LoadImageW
PostMessageA
DrawFrameControl
GetWindowPlacement
GetNextDlgGroupItem
GetDC
CheckMenuItem
ModifyMenuW
CreateWindowExA
LoadStringA
GetIconInfo
ExcludeUpdateRgn
EmptyClipboard
CreateDialogParamA
GetClientRect
SetScrollInfo
BeginPaint
GetClipboardOwner
GetSysColor
RegisterClassExA
CreateAcceleratorTableA
DestroyIcon
GetDlgItemTextA
GetClassInfoA
PostThreadMessageW
DdeInitializeA
LoadCursorW
GetWindowLongW
UnregisterHotKey
DefWindowProcA
CreateMenu
LoadAcceleratorsW
TrackPopupMenuEx
SendMessageA
GetMenuItemID
DispatchMessageW
DrawFocusRect
SetWindowLongA
IsZoomed
SetWindowPos
SetParent
TranslateMessage
GetDlgCtrlID
ModifyMenuA
GetMenuCheckMarkDimensions
GetKeyState
EnumChildWindows
GetDesktopWindow
GetDlgItem
SetDlgItemTextW
SetTimer
SetWindowPlacement
SystemParametersInfoA
GetClassInfoExW
IsDialogMessageW
GetLastActivePopup
EnableMenuItem
HideCaret
GetScrollInfo
RemoveMenu
CheckMenuRadioItem
CallNextHookEx
GetNextDlgTabItem
EndPaint
SendMessageW
GetWindowThreadProcessId
GetWindowTextW
TabbedTextOutA
GetMonitorInfoW
GetWindowTextLengthA
GetClassNameA
ShowOwnedPopups
DeferWindowPos
PostQuitMessage
EndDeferWindowPos
ReleaseCapture
SetMenuDefaultItem
GetMenuItemCount
PeekMessageA
GetParent
IsWindowVisible
GetScrollRange
ShowCaret
LoadIconW
EnableScrollBar
MapWindowPoints
SetMenuContextHelpId
DrawStateA
WaitForInputIdle
SetFocus
LoadIconA
GetWindow
IsClipboardFormatAvailable
UnionRect
GetActiveWindow
TrackPopupMenu
GetPropW
SetClipboardData
GetClassLongW
GetFocus
ShowWindow
InflateRect
IsIconic
DrawMenuBar
ClientToScreen
SetCursor
GetCursorPos
GetDialogBaseUnits
GetKeyboardLayout
InsertMenuW
IsWindowEnabled
UpdateWindow
UnregisterClassW
UnregisterClassA
wsprintfA
MapVirtualKeyExA
GetMenuItemInfoA
SetCursorPos
CharUpperW
SendDlgItemMessageA
CharUpperA
DestroyWindow
CreateWindowExW
OemToCharA
GetMenu
CloseClipboard
GetCursor
DdeUninitialize
InvalidateRect
CreatePopupMenu
MessageBoxW
CharNextA
DrawEdge
SetActiveWindow
OpenClipboard
GetSystemMetrics
GetWindowRect
SetWindowTextA
GetPropA
DrawTextExA
WinHelpA
EqualRect
IsDlgButtonChecked
SetDlgItemTextA
PeekMessageW
CallWindowProcW
DdeClientTransaction
GetMessagePos
FindWindowA
PostMessageW
DefFrameProcW
ReuseDDElParam
EnableWindow
GetClassLongA
TranslateAcceleratorA
IsMenu
DestroyAcceleratorTable
RegisterHotKey
MoveWindow
CreateCaret
DestroyMenu
ScreenToClient
MessageBeep
CreateIconIndirect
gdi32
CreateBitmap
PtVisible
SelectClipRgn
SetWindowExtEx
CreatePen
GetFontData
GetClipBox
GetROP2
GetCurrentObject
GetViewportOrgEx
CreateDiscardableBitmap
PlayEnhMetaFile
FillRgn
SetRectRgn
Polygon
GetMiterLimit
GetStockObject
UnrealizeObject
SetBitmapBits
GetBitmapBits
PatBlt
CreateFontIndirectW
GetNearestPaletteIndex
OffsetRgn
GetObjectW
DeleteMetaFile
CreateMetaFileA
SetTextColor
Polyline
CreateRoundRectRgn
CreateHalftonePalette
SetMiterLimit
RestoreDC
EndDoc
Escape
PlayMetaFileRecord
RectInRegion
GetTextFaceW
PolylineTo
GetBrushOrgEx
GetObjectA
CreateDIBSection
CreateDIBPatternBrushPt
CreatePatternBrush
SelectPalette
ExtCreatePen
ScaleWindowExtEx
GetMapMode
GdiComment
ExtTextOutW
PlayMetaFile
SetBrushOrgEx
CreateEllipticRgn
GetStretchBltMode
OffsetClipRgn
CloseMetaFile
CopyMetaFileA
GetViewportExtEx
GetDCOrgEx
GetCurrentPositionEx
GetRgnBox
MoveToEx
SaveDC
StretchDIBits
SetPaletteEntries
SetColorAdjustment
RectVisible
ExtSelectClipRgn
StretchBlt
StartDocA
CreatePenIndirect
CreateFontW
CreateHatchBrush
CreateRectRgnIndirect
CreateFontIndirectA
CreateFontA
Rectangle
GetDeviceCaps
GdiFlush
ResizePalette
GetTextMetricsA
GetBkColor
GetTextMetricsW
GetSystemPaletteEntries
SetTextJustification
SetBkMode
SetViewportExtEx
Pie
OffsetViewportOrgEx
EnumMetaFile
BitBlt
SetAbortProc
IntersectClipRect
GetClipRgn
SetPixelV
GetTextCharacterExtra
GetEnhMetaFileHeader
EnumFontFamiliesExA
PlgBlt
ExcludeClipRect
CreateRectRgn
DrawEscape
GetWindowExtEx
GetGlyphOutlineA
SetViewportOrgEx
SelectClipPath
CreateCompatibleBitmap
GetObjectType
SetBkColor
RoundRect
FillPath
EndPage
GetTextExtentPoint32A
CreateBrushIndirect
GetCharABCWidthsFloatA
GetRegionData
GetTextFaceA
WidenPath
GetAspectRatioFilterEx
SetROP2
StartPage
CombineRgn
ScaleViewportExtEx
PtInRegion
MaskBlt
GetTextAlign
SetWindowOrgEx
DeleteObject
SetMapperFlags
GetTextColor
PolyDraw
GetTextCharsetInfo
GetBkMode
TextOutW
DeleteEnhMetaFile
ExtFloodFill
Chord
CreateCompatibleDC
CreateDCA
UpdateColors
SetBoundsRect
AngleArc
AnimatePalette
EnumObjects
GetGlyphOutlineW
GetBoundsRect
TextOutA
DPtoLP
ArcTo
CreateICW
GetTextExtentPoint32W
StrokePath
SetPixel
GetNearestColor
SetDIBits
AbortDoc
LineTo
FrameRgn
SelectObject
SetPolyFillMode
SetTextAlign
FloodFill
SetDIBitsToDevice
GetCharWidthFloatA
SetArcDirection
GetColorAdjustment
Ellipse
GetCharABCWidthsFloatW
Arc
GetWindowOrgEx
AbortPath
SetDIBColorTable
CreateSolidBrush
GetKerningPairsA
ExtTextOutA
GetDIBColorTable
GetCharABCWidthsA
OffsetWindowOrgEx
CreatePalette
EnumFontFamiliesA
CreatePolyPolygonRgn
CreateDIBitmap
GetPolyFillMode
ExtCreateRegion
CreatePolygonRgn
LPtoDP
RealizePalette
GetArcDirection
GetDIBits
GetCharWidthA
CopyEnhMetaFileA
GetTextExtentPointA
GetPixel
EqualRgn
SetMapMode
DeleteDC
SetStretchBltMode
shell32
ord155
ShellExecuteA
SHBrowseForFolderW
CommandLineToArgvW
Shell_NotifyIconA
SHGetSpecialFolderLocation
ExtractIconA
SHAppBarMessage
SHGetPathFromIDListW
SHGetDesktopFolder
DragQueryFileA
SHGetPathFromIDListA
SHFileOperationA
DragFinish
SHBrowseForFolderA
SHChangeNotify
SHGetMalloc
ShellExecuteExW
ShellExecuteExA
ole32
OleUninitialize
DoDragDrop
StgOpenStorageOnILockBytes
CoUninitialize
OleCreateStaticFromData
RegisterDragDrop
CoRegisterClassObject
OleDestroyMenuDescriptor
CoFreeUnusedLibraries
CoRevokeClassObject
ReadFmtUserTypeStg
OleCreate
OleSetMenuDescriptor
ReleaseStgMedium
CoCreateGuid
OleSave
OleCreateFromFile
StgOpenStorage
OleCreateLinkFromData
StgIsStorageFile
OleInitialize
StgCreateDocfile
StgCreateDocfileOnILockBytes
CoGetClassObject
CLSIDFromProgID
CreateGenericComposite
OleDuplicateData
WriteFmtUserTypeStg
SetConvertStg
IsAccelerator
OleIsCurrentClipboard
OleSetContainedObject
OleRegGetMiscStatus
OleSetClipboard
OleGetClipboard
CoTreatAsClass
OleFlushClipboard
CoCreateInstance
OleRegGetUserType
CoLockObjectExternal
CoDisconnectObject
OleRun
CoGetMalloc
CreateDataAdviseHolder
OleQueryLinkFromData
OleSaveToStream
CreateFileMoniker
OleCreateMenuDescriptor
GetHGlobalFromILockBytes
CoTaskMemAlloc
OleRegEnumVerbs
CoInitialize
WriteClassStg
OleGetIconOfClass
CreateBindCtx
OleCreateLinkToFile
WriteClassStm
StringFromCLSID
CreateItemMoniker
CoRegisterMessageFilter
OleTranslateAccelerator
ReadClassStg
OleCreateFromData
StringFromGUID2
CreateILockBytesOnHGlobal
CLSIDFromString
CoTaskMemFree
OleLockRunning
GetRunningObjectTable
CreateStreamOnHGlobal
OleQueryCreateFromData
CoInitializeEx
Sections
.text Size: 88KB - Virtual size: 84KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 112KB - Virtual size: 108KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 76KB - Virtual size: 91KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ