Static task
static1
Behavioral task
behavioral1
Sample
a208e7d79b76715746a334cfd697da1c73ef841048e876a55e365a6dad252e1d.exe
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral2
Sample
a208e7d79b76715746a334cfd697da1c73ef841048e876a55e365a6dad252e1d.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
General
-
Target
a208e7d79b76715746a334cfd697da1c73ef841048e876a55e365a6dad252e1d
-
Size
332KB
-
MD5
b6bffe5d2433e5c8e90096b75ec9e8b8
-
SHA1
e33b6715b9421a4175bb5c3917871186dd52ebfb
-
SHA256
a208e7d79b76715746a334cfd697da1c73ef841048e876a55e365a6dad252e1d
-
SHA512
6cab47214fc1baf789544eda1623d437a9e045fd622488d3d9e423ec52760046396090510aa3e1523b7fe3d3bac183495ff9dc97c2793739fb66ce94670849b0
-
SSDEEP
6144:BFZDKNOmajS9yaoTBG0EYMQRXUI6W+b1e8ID:B7DKQmajeU7HrZKW78
Malware Config
Signatures
Files
-
a208e7d79b76715746a334cfd697da1c73ef841048e876a55e365a6dad252e1d.exe windows x86
8f4964c195a18f9003336e21abeefab4
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
oleaut32
LoadTypeLi
ole32
CreateItemMoniker
WriteFmtUserTypeStg
OleGetClipboard
CoTaskMemAlloc
OleIsCurrentClipboard
OleSetClipboard
OleInitialize
CreateFileMoniker
CoGetClassObject
CoCreateInstance
StgCreateDocfileOnILockBytes
OleSave
CoRegisterClassObject
CreateGenericComposite
OleLockRunning
CLSIDFromString
CoTaskMemFree
OleRun
OleCreateFromFile
OleCreateLinkFromData
CreateDataAdviseHolder
ReadFmtUserTypeStg
StringFromCLSID
CreateStreamOnHGlobal
OleTranslateAccelerator
OleCreateLinkToFile
ReleaseStgMedium
StgOpenStorage
CoGetMalloc
OleIsRunning
CoRegisterMessageFilter
GetHGlobalFromILockBytes
RevokeDragDrop
CoUninitialize
CoRevokeClassObject
MkParseDisplayName
CoCreateGuid
OleDuplicateData
SetConvertStg
OleSaveToStream
CLSIDFromProgID
CreateBindCtx
StgCreateDocfile
CoTreatAsClass
OleCreate
OleSetMenuDescriptor
RegisterDragDrop
StgOpenStorageOnILockBytes
OleUninitialize
IsAccelerator
OleRegGetUserType
WriteClassStm
OleCreateMenuDescriptor
CoInitialize
CoFreeUnusedLibraries
CoTaskMemRealloc
OleDestroyMenuDescriptor
CreateILockBytesOnHGlobal
OleGetIconOfClass
OleCreateFromData
user32
InvalidateRect
DefWindowProcW
DrawTextExA
CharUpperA
GetDesktopWindow
ClientToScreen
EndPaint
RegisterWindowMessageA
UnionRect
GetDlgItem
DrawIcon
GetClassInfoExA
TranslateMessage
SetWindowRgn
DrawEdge
DefDlgProcA
SystemParametersInfoA
IsChild
DrawStateW
KillTimer
GetTopWindow
GetWindowRgn
SetWindowTextA
LoadBitmapA
GetDlgCtrlID
SetCursorPos
CopyIcon
MessageBoxA
SetDlgItemInt
SetFocus
BringWindowToTop
SetCaretPos
InsertMenuItemW
CallWindowProcA
RegisterClassW
DestroyWindow
UnpackDDElParam
DrawTextA
CreateWindowExA
SetClipboardViewer
PtInRect
SendMessageW
IsIconic
GetSysColor
CheckRadioButton
SetMenuItemInfoW
MapWindowPoints
ReleaseCapture
GetWindow
SetPropA
SendDlgItemMessageA
GetMessageW
GetClassNameW
GetMenuItemID
ChildWindowFromPoint
GetSubMenu
ScreenToClient
WinHelpA
GetTabbedTextExtentA
GetMenuStringW
SetParent
SetWindowsHookExW
PeekMessageW
CreateWindowExW
GetActiveWindow
GetFocus
BeginDeferWindowPos
UnhookWindowsHookEx
GetMenuState
wsprintfA
GetUpdateRect
UnregisterClassW
CreateIconIndirect
LoadIconW
DlgDirSelectExA
SetRectEmpty
SetMenuDefaultItem
DestroyIcon
SetMenuItemBitmaps
SetWindowsHookExA
CreatePopupMenu
FillRect
SetScrollPos
GetDCEx
EndDialog
EnableWindow
GetWindowPlacement
RegisterClipboardFormatA
ReuseDDElParam
GetWindowTextW
GetDC
GetWindowDC
ChangeClipboardChain
GetMenuItemInfoA
FindWindowA
WinHelpW
ShowCaret
DispatchMessageW
GrayStringA
LoadCursorW
GetUpdateRgn
LoadStringW
SetForegroundWindow
GetSystemMetrics
SetMenu
EnableMenuItem
SetClassLongW
DrawIconEx
CreateDialogIndirectParamA
GetClassNameA
ExcludeUpdateRgn
MapVirtualKeyExA
RegisterClassA
IsWindowEnabled
TrackPopupMenu
MoveWindow
SetScrollRange
IsDialogMessageA
OffsetRect
DefFrameProcA
GetScrollPos
EmptyClipboard
SetWindowContextHelpId
IsZoomed
PostQuitMessage
MessageBeep
LoadStringA
ValidateRect
DefMDIChildProcA
IsDialogMessageW
GetMenu
IsWindowUnicode
GetWindowRect
TranslateAcceleratorA
CreateMenu
GetNextDlgTabItem
LoadCursorA
GetClassLongA
GetClientRect
LoadImageW
TranslateMDISysAccel
ReleaseDC
LoadMenuIndirectA
SetWindowLongA
RemovePropA
SetDlgItemTextW
SetPropW
GetScrollRange
GetPropA
DispatchMessageA
PostMessageA
GetMessageA
RegisterClipboardFormatW
SetClipboardData
AppendMenuA
EqualRect
DestroyCursor
SetRect
GetMenuItemCount
SetClassLongA
IntersectRect
ShowWindow
SetActiveWindow
TabbedTextOutA
GetAncestor
RegisterClassExA
IsDlgButtonChecked
SetCursor
DlgDirListComboBoxA
AdjustWindowRectEx
IsWindowVisible
InsertMenuW
HideCaret
IsClipboardFormatAvailable
UnregisterClassA
GetMessagePos
GetWindowTextLengthW
DeleteMenu
GetKeyNameTextW
DrawFrameControl
GetSystemMenu
GetMenuContextHelpId
LockWindowUpdate
ModifyMenuA
EndDeferWindowPos
SetCapture
PeekMessageA
SendMessageA
LoadImageA
RegisterWindowMessageW
DefWindowProcA
GetMenuCheckMarkDimensions
CheckMenuItem
GetWindowContextHelpId
GetWindowTextLengthA
GetCursorPos
OpenClipboard
DrawMenuBar
WindowFromPoint
InvertRect
GetScrollInfo
DlgDirListA
IsWindow
GetMenuDefaultItem
GetForegroundWindow
SetDlgItemTextA
LoadMenuA
GetWindowLongA
MapVirtualKeyW
DestroyAcceleratorTable
IsMenu
CallNextHookEx
SetWindowPos
SetTimer
ShowScrollBar
GetWindowTextA
SetMenuItemInfoA
IsRectEmpty
DestroyMenu
ArrangeIconicWindows
InflateRect
GetAsyncKeyState
GetParent
GetLastActivePopup
LoadIconA
CopyAcceleratorTableA
PostThreadMessageA
DlgDirSelectComboBoxExA
DeferWindowPos
ValidateRgn
SetWindowPlacement
DrawTextExW
GetSysColorBrush
SetWindowLongW
MapDialogRect
UpdateWindow
RedrawWindow
GetKeyState
GetCapture
CopyRect
InsertMenuA
OpenIcon
BeginPaint
InsertMenuItemA
DrawFocusRect
kernel32
GetCurrentThreadId
GlobalAlloc
TlsAlloc
GetCommandLineW
GetModuleFileNameA
FreeEnvironmentStringsA
GetLastError
GetCurrentProcess
WritePrivateProfileStringA
GetFileType
GetFileSize
_lread
FindFirstFileA
GetEnvironmentStringsW
GetDateFormatA
CreateMutexA
GlobalFree
GetTempPathA
GetModuleFileNameW
ExpandEnvironmentStringsA
SetFilePointer
CreateFileMappingA
GetExitCodeProcess
GlobalDeleteAtom
GetEnvironmentStrings
FindNextFileA
InterlockedExchange
ResetEvent
UnhandledExceptionFilter
GetLocalTime
GlobalFlags
GetFileAttributesW
lstrcmpA
GetStartupInfoA
MultiByteToWideChar
GetTickCount
ReadFile
GetCommandLineA
GlobalHandle
EnumResourceLanguagesA
DeleteFileA
LeaveCriticalSection
FindResourceA
GetLocaleInfoA
GetTimeZoneInformation
ResumeThread
FindResourceExW
HeapDestroy
GetStartupInfoW
InterlockedIncrement
GetModuleHandleA
IsBadReadPtr
GetVolumeInformationA
OpenFile
SetUnhandledExceptionFilter
GetProcAddress
SetFileAttributesA
SizeofResource
GetShortPathNameA
GetStringTypeA
GetVersionExA
GetConsoleOutputCP
lstrcpynA
MulDiv
SetLastError
GlobalUnlock
WriteConsoleA
GetCurrentProcessId
_lwrite
GetExitCodeThread
GetTimeFormatA
GlobalReAlloc
WriteFile
WaitForSingleObject
ExitThread
WriteConsoleW
IsBadCodePtr
GetPrivateProfileStringA
LockFile
GlobalFindAtomW
CopyFileA
CompareStringW
FatalAppExitA
FileTimeToLocalFileTime
LocalLock
GetProcessVersion
GetSystemTimeAsFileTime
GetConsoleCP
FindNextFileW
FileTimeToSystemTime
CreateDirectoryA
TlsSetValue
IsValidCodePage
lstrcmpW
TlsGetValue
DeviceIoControl
SearchPathA
TerminateProcess
UnlockFile
GetPrivateProfileIntA
LoadResource
lstrcpyW
GetSystemInfo
SetConsoleCtrlHandler
GetOEMCP
SetCurrentDirectoryA
LockResource
RemoveDirectoryA
FindResourceExA
FormatMessageA
InterlockedDecrement
ExitProcess
LocalFileTimeToFileTime
HeapAlloc
GetUserDefaultLCID
CloseHandle
SetErrorMode
SetEndOfFile
EnumSystemLocalesA
SetHandleCount
FindResourceW
IsBadWritePtr
HeapReAlloc
LCMapStringW
lstrcpyA
VirtualProtect
FreeEnvironmentStringsW
IsBadStringPtrA
CreateFileA
CreateThread
LocalReAlloc
LoadLibraryA
ReleaseMutex
VirtualQuery
FlushFileBuffers
LocalFree
GetFullPathNameW
GetDriveTypeA
CompareStringA
GetProcessHeap
_lcreat
IsDebuggerPresent
GetACP
WideCharToMultiByte
GetLocaleInfoW
SystemTimeToFileTime
SetEnvironmentVariableA
GetFileAttributesA
Sleep
GetThreadLocale
GlobalFindAtomA
OutputDebugStringW
FreeLibrary
DeleteCriticalSection
IsValidLocale
GlobalGetAtomNameA
lstrcmpiA
EnterCriticalSection
MoveFileA
GlobalAddAtomW
GetFileTime
SetThreadPriority
GetEnvironmentVariableA
CreateEventA
LocalAlloc
GetCurrentThread
SetStdHandle
GetFullPathNameA
GlobalLock
lstrlenW
GetDiskFreeSpaceA
SetFileTime
GetStringTypeW
VirtualFree
OpenMutexA
InitializeCriticalSection
lstrlenA
GetVersion
GetCPInfo
RtlUnwind
ConvertDefaultLocale
LCMapStringA
RaiseException
UnmapViewOfFile
HeapSize
GetFileSizeEx
FlushInstructionCache
HeapFree
VirtualAlloc
CompareFileTime
GlobalAddAtomA
lstrcatA
LoadLibraryW
DuplicateHandle
QueryPerformanceCounter
TlsFree
GetStdHandle
GetSystemDirectoryA
HeapCreate
GetConsoleMode
lstrcatW
GetProfileStringA
SetEvent
gdi32
DPtoLP
GetDIBits
GetMiterLimit
DeleteDC
CreateDIBSection
OffsetRgn
ExtCreatePen
AbortDoc
CreateRectRgn
SetPolyFillMode
SetColorAdjustment
PlayEnhMetaFile
GetTextExtentExPointW
GetCurrentObject
RoundRect
GetObjectA
StartDocA
GetBkMode
GetKerningPairsA
GetPolyFillMode
CreatePatternBrush
Ellipse
GetCharWidthA
FrameRgn
StretchBlt
AngleArc
Escape
Arc
CreateFontIndirectW
GetCharABCWidthsFloatA
CreateEllipticRgn
GetRegionData
SetBitmapBits
PolyPolyline
ExtFloodFill
GetDCOrgEx
PlayMetaFileRecord
GetAspectRatioFilterEx
SelectClipRgn
BeginPath
SetMapperFlags
GetPath
CreateCompatibleDC
SetTextAlign
LineTo
CreateFontIndirectA
GetEnhMetaFileHeader
GetDeviceCaps
CreateFontA
CreateEllipticRgnIndirect
StretchDIBits
SetBoundsRect
CloseFigure
GetROP2
FlattenPath
GetTextExtentPoint32W
GetCurrentPositionEx
DeleteEnhMetaFile
GetTextCharsetInfo
CreateSolidBrush
Pie
SetTextColor
PolyBezier
IntersectClipRect
SetStretchBltMode
SetWindowExtEx
CloseEnhMetaFile
LPtoDP
GetRgnBox
CopyMetaFileW
GetEnhMetaFileW
ExtTextOutW
ExcludeClipRect
SelectClipPath
SelectPalette
TextOutW
GetTextExtentExPointA
EnumFontFamiliesExA
EnumMetaFile
GetWindowOrgEx
CreateMetaFileA
GetTextExtentPoint32A
GetStretchBltMode
EqualRgn
SetTextJustification
GetPaletteEntries
SetDIBits
CreateFontW
GetCharWidthW
Chord
CreatePalette
PtVisible
GetObjectW
GetCharWidthFloatA
GetBrushOrgEx
GetOutlineTextMetricsA
PtInRegion
GetObjectType
SetViewportExtEx
RealizePalette
Polyline
Rectangle
RestoreDC
Polygon
PatBlt
OffsetViewportOrgEx
GetTextColor
AbortPath
GetBoundsRect
EnumFontFamiliesA
ExtSelectClipRgn
CloseMetaFile
GetViewportExtEx
GetWindowExtEx
RectInRegion
GetTextFaceA
CreateDCA
CreateDIBitmap
SetViewportOrgEx
EndDoc
CreateBitmap
SetMapMode
WidenPath
GetTextExtentPointW
CreatePolygonRgn
EndPath
GdiComment
TextOutA
SetAbortProc
CreateEnhMetaFileA
GetStockObject
SetRectRgn
CreateRectRgnIndirect
SetArcDirection
CopyMetaFileA
GetTextExtentPointA
PolyDraw
GetEnhMetaFileA
GetTextAlign
StartPage
SelectObject
BitBlt
DrawEscape
GetTextMetricsW
CreateDCW
CreatePen
ScaleViewportExtEx
GetNearestColor
PlgBlt
CombineRgn
ResizePalette
CreateRoundRectRgn
SetBrushOrgEx
PolyBezierTo
GetCharWidth32W
GetViewportOrgEx
GetPixel
GetClipBox
AnimatePalette
SetWindowOrgEx
StartDocW
EnumObjects
ModifyWorldTransform
MoveToEx
FillPath
CreateCompatibleBitmap
EnumFontFamiliesExW
SetMiterLimit
RectVisible
SetPaletteEntries
GetNearestPaletteIndex
ArcTo
GetColorAdjustment
OffsetClipRgn
DeleteObject
GdiFlush
CreateHalftonePalette
SetBkColor
GetFontData
GetBkColor
SetBkMode
ExtCreateRegion
EndPage
PolylineTo
CreateDiscardableBitmap
GetSystemPaletteEntries
GetMapMode
SaveDC
SetROP2
GetTextMetricsA
ScaleWindowExtEx
SetPixel
UnrealizeObject
ExtTextOutA
CreateDIBPatternBrushPt
CreateHatchBrush
SetPixelV
advapi32
CreateServiceA
StartServiceA
GetUserNameW
OpenServiceW
RegCreateKeyExW
ControlService
RegOpenCurrentUser
GetFileSecurityW
FreeSid
AdjustTokenPrivileges
RegOpenKeyExA
InitializeAcl
RegSetValueExW
RegEnumKeyExA
InitiateSystemShutdownA
CryptReleaseContext
RegQueryValueW
RegQueryValueExW
GetSidSubAuthority
RegCloseKey
RegSetValueExA
RegEnumKeyA
OpenServiceA
RegQueryValueA
AllocateAndInitializeSid
SetSecurityDescriptorGroup
LookupPrivilegeValueA
RegCreateKeyExA
EqualSid
RegDeleteKeyA
GetLengthSid
RegDeleteKeyW
SetSecurityDescriptorDacl
RegSetValueA
RegQueryValueExA
GetSidSubAuthorityCount
GetFileSecurityA
OpenSCManagerW
RevertToSelf
RegOpenKeyA
CopySid
QueryServiceStatus
RegEnumKeyW
GetSidIdentifierAuthority
SetEntriesInAclW
RegOpenKeyExW
DeleteService
RegSetKeySecurity
RegQueryInfoKeyW
OpenProcessToken
RegEnumValueA
GetTokenInformation
RegCreateKeyA
ImpersonateSelf
CloseServiceHandle
GetUserNameA
RegQueryInfoKeyA
RegDeleteValueA
InitializeSecurityDescriptor
GetAclInformation
GetSecurityDescriptorDacl
CryptAcquireContextA
SetSecurityDescriptorOwner
comctl32
ImageList_Replace
CreatePropertySheetPageW
_TrackMouseEvent
ImageList_Destroy
ImageList_SetBkColor
ImageList_DragEnter
ImageList_GetImageInfo
ImageList_Add
ImageList_Create
ImageList_Merge
ImageList_DragMove
ImageList_DrawIndirect
ImageList_DragLeave
ImageList_SetOverlayImage
ImageList_AddMasked
InitCommonControlsEx
ImageList_SetDragCursorImage
ImageList_Remove
ImageList_GetDragImage
CreatePropertySheetPageA
ImageList_BeginDrag
ImageList_EndDrag
ImageList_GetBkColor
ImageList_Draw
ImageList_ReplaceIcon
ImageList_DragShowNolock
ImageList_LoadImageA
ImageList_GetIconSize
ImageList_GetIcon
ImageList_GetImageCount
ord17
ImageList_DrawEx
PropertySheetA
winspool.drv
AbortPrinter
EnumJobsA
StartPagePrinter
OpenPrinterA
StartDocPrinterW
GetPrinterDriverDirectoryA
AddPrinterA
EnumPrintersA
ord204
DocumentPropertiesA
DeviceCapabilitiesA
AddPrinterDriverA
OpenPrinterW
EndPagePrinter
ClosePrinter
DocumentPropertiesW
Sections
.text Size: 76KB - Virtual size: 75KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 92KB - Virtual size: 90KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 90KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 72KB - Virtual size: 71KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ