Static task
static1
Behavioral task
behavioral1
Sample
b321583e04385b2ee4d0edf60587ca062610b4aba420f63d87e1d61984d9dfdc.exe
Resource
win7-20220901-en
windows7-x64
Behavioral task
behavioral2
Sample
b321583e04385b2ee4d0edf60587ca062610b4aba420f63d87e1d61984d9dfdc.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
b321583e04385b2ee4d0edf60587ca062610b4aba420f63d87e1d61984d9dfdc
-
Size
364KB
-
MD5
d855ac210c4c03e82d89b2a5be8bc6b9
-
SHA1
6ade782e0287063a37c89ae6f955b78f38da2f2b
-
SHA256
b321583e04385b2ee4d0edf60587ca062610b4aba420f63d87e1d61984d9dfdc
-
SHA512
a84c087ab32b9a147e6a8fdf0f6455537d55c504ffc50d43cce4728ad51232e71eec0c9a056412275236cce8ab65e443541c2eeb524c2e42a06ba81dd46462ec
-
SSDEEP
6144:512KJVmco5eSYyz7x8mImQ+PeJDklrg7XFcRmV5jxafCewweVaa9JT5Hnr83Slxh:5YKeco0SYyz7x30ueDSgLuAVTewwHa9W
Malware Config
Signatures
Files
-
b321583e04385b2ee4d0edf60587ca062610b4aba420f63d87e1d61984d9dfdc.exe windows x86
b1139bedc75ff7f384d9b7bf89d53670
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
IsRectEmpty
GetDCEx
UnregisterHotKey
GetClassInfoExA
AdjustWindowRectEx
CreatePopupMenu
SetWindowsHookExA
LockWindowUpdate
CallWindowProcA
DrawEdge
SetMenuItemBitmaps
DefDlgProcA
LoadCursorA
GetClassInfoA
LoadImageW
RedrawWindow
SetDlgItemInt
DialogBoxParamA
SendMessageW
DefWindowProcA
IsCharLowerA
GetWindowLongA
MoveWindow
CheckMenuItem
WindowFromPoint
GetClassNameW
AppendMenuA
GetClipboardData
ScreenToClient
GetCaretBlinkTime
GetClientRect
UnionRect
GetKeyState
DrawTextExA
OffsetRect
TabbedTextOutW
UnpackDDElParam
MapWindowPoints
CharUpperA
ValidateRect
CopyAcceleratorTableA
DestroyMenu
RegisterClassA
SendMessageA
GetSysColorBrush
IsChild
FillRect
SetWindowTextA
IsWindowUnicode
EndDialog
FindWindowA
GetDlgItemTextA
MessageBeep
GetLastActivePopup
GetWindowRect
RegisterClassExW
LookupIconIdFromDirectoryEx
InvalidateRgn
UpdateWindow
PostQuitMessage
RegisterWindowMessageW
GetClassLongA
GetMenuCheckMarkDimensions
GetScrollPos
wsprintfW
ClientToScreen
DispatchMessageA
LoadIconW
GetMenuItemCount
InsertMenuA
PeekMessageA
GetMenuItemInfoA
GetFocus
KillTimer
TrackPopupMenu
SetCapture
LoadCursorW
RegisterClipboardFormatW
SetParent
InvalidateRect
SetForegroundWindow
CallWindowProcW
DeferWindowPos
CreateDialogParamW
GetActiveWindow
CharNextA
EmptyClipboard
GetDC
SetPropA
LoadStringA
BeginPaint
GetTopWindow
ReleaseDC
GetMessageA
CallNextHookEx
GetMessageTime
SetWindowsHookExW
DrawIconEx
SetWindowContextHelpId
GrayStringA
ChangeClipboardChain
DrawStateA
UnregisterClassA
CloseClipboard
PeekMessageW
GetWindow
CheckRadioButton
DrawTextW
EndPaint
GetWindowThreadProcessId
GrayStringW
GetMenuStringA
CreateWindowExW
IsWindowVisible
GetMenu
CreateWindowExA
SetMenu
LoadAcceleratorsW
wsprintfA
GetMenuState
PostThreadMessageA
RegisterClassExA
DefMDIChildProcW
IntersectRect
SetCaretPos
SystemParametersInfoW
RegisterWindowMessageA
SetFocus
TrackPopupMenuEx
AppendMenuW
CharNextW
SetClipboardData
SetWindowLongA
GetForegroundWindow
TranslateMessage
PostMessageA
GetPropA
DrawTextA
ShowWindow
GetUpdateRect
LoadBitmapA
GetTabbedTextExtentA
OpenIcon
DrawTextExW
SetDlgItemTextA
ModifyMenuW
DdeGetLastError
SetRect
SetWindowTextW
GetScrollInfo
IsWindowEnabled
SetActiveWindow
GetNextDlgGroupItem
EnableMenuItem
GetClassNameA
SubtractRect
WinHelpA
GetWindowTextA
GetWindowTextLengthA
GetDesktopWindow
GetSystemMenu
LoadBitmapW
SystemParametersInfoA
SetWindowPos
GetUserObjectInformationW
SetScrollRange
ChildWindowFromPoint
wvsprintfA
RemovePropW
FrameRect
InsertMenuItemW
CreateCaret
DestroyAcceleratorTable
UnhookWindowsHookEx
UnregisterClassW
TabbedTextOutA
WaitMessage
GetMenuItemID
InvertRect
GetParent
DestroyIcon
GetClassInfoExW
GetDlgItem
GetCursor
GetWindowPlacement
IsDialogMessageA
EnumChildWindows
EnableWindow
GetAsyncKeyState
GetSystemMetrics
PtInRect
CopyIcon
CreateDialogIndirectParamW
SetMenuItemInfoW
GetSysColor
HideCaret
GetCapture
ChildWindowFromPointEx
RemovePropA
GetDlgCtrlID
ScrollWindow
LoadMenuA
DrawFrameControl
IsIconic
SetWindowPlacement
CheckDlgButton
IsWindow
DestroyWindow
OpenClipboard
SendDlgItemMessageW
CreateDialogIndirectParamA
GetCursorPos
InflateRect
ShowCursor
SetWindowLongW
DestroyCursor
SetTimer
GetSubMenu
DrawIcon
MsgWaitForMultipleObjects
CharUpperBuffW
GetNextDlgTabItem
DrawStateW
DrawFocusRect
RegisterClipboardFormatA
SetScrollInfo
MessageBoxA
MapDialogRect
ReleaseCapture
EqualRect
SendDlgItemMessageA
FlashWindow
ShowCaret
LoadIconA
GetDialogBaseUnits
LoadStringW
ReuseDDElParam
DeleteMenu
GetWindowDC
GetWindowLongW
ModifyMenuA
GetKeyboardLayout
SetWindowRgn
CopyRect
kernel32
OpenFileMappingA
CreateMutexW
GlobalDeleteAtom
GetLocaleInfoA
GetVersionExA
GetProcessVersion
LockFile
SetEnvironmentVariableA
InterlockedDecrement
HeapDestroy
ConvertDefaultLocale
GetLocaleInfoW
SuspendThread
GetSystemTimeAsFileTime
TerminateProcess
HeapSize
SetStdHandle
GetStdHandle
lstrcpynA
CreateThread
FindFirstFileA
GetCPInfo
InitializeCriticalSectionAndSpinCount
GetDriveTypeA
ReleaseSemaphore
GetFileAttributesA
GetCommandLineA
GlobalFree
GetTickCount
FileTimeToLocalFileTime
lstrcmpiW
GetFullPathNameA
WriteFile
CloseHandle
GlobalUnlock
WaitForSingleObject
MulDiv
LCMapStringA
LocalAlloc
FindResourceA
MultiByteToWideChar
CreateFileMappingA
TlsFree
EnterCriticalSection
GetCurrentDirectoryW
EnumSystemLocalesA
GetACP
SetUnhandledExceptionFilter
SizeofResource
TlsGetValue
CompareStringA
FreeResource
VirtualQuery
InitializeCriticalSection
SetEndOfFile
GetCurrentThread
WaitForMultipleObjects
SetEnvironmentVariableW
GetStartupInfoA
UnhandledExceptionFilter
GetVolumeInformationA
GlobalFindAtomA
DeleteFileA
InterlockedExchange
DeviceIoControl
CreateFileA
GetAtomNameA
SetFileAttributesW
LoadResource
GlobalFlags
FlushFileBuffers
GlobalAlloc
Sleep
FreeEnvironmentStringsW
HeapAlloc
GetProcAddress
GetCommandLineW
ReleaseMutex
GetStringTypeW
GetTimeFormatA
QueryPerformanceCounter
HeapCreate
SetHandleCount
VirtualProtect
lstrcatA
LockResource
LeaveCriticalSection
VirtualAlloc
GlobalHandle
GetDriveTypeW
InterlockedCompareExchange
SystemTimeToTzSpecificLocalTime
GetShortPathNameA
GetDateFormatA
GetEnvironmentStringsW
GetTempPathW
GetCurrentThreadId
GetOEMCP
GetTimeZoneInformation
GetWindowsDirectoryA
GetOverlappedResult
VirtualFree
TerminateThread
CopyFileA
lstrcmpA
CompareStringW
WinExec
FindFirstFileW
SystemTimeToFileTime
GetStartupInfoW
_lclose
OpenProcess
SetFileTime
GetModuleHandleA
DeleteCriticalSection
CreateDirectoryA
ExitThread
LCMapStringW
RtlUnwind
SetEvent
LocalFileTimeToFileTime
LoadLibraryA
IsBadWritePtr
ExitProcess
IsValidLocale
GetSystemInfo
SetErrorMode
HeapFree
IsValidCodePage
FileTimeToSystemTime
lstrcpynW
GetUserDefaultLCID
MoveFileW
DebugBreak
OutputDebugStringA
GetLastError
MapViewOfFile
GetStringTypeA
WideCharToMultiByte
lstrcpyW
GetConsoleMode
FreeLibrary
lstrlenA
lstrcmpiA
GlobalLock
GetFileAttributesW
lstrlenW
FindNextFileA
GetFileSize
LockFileEx
GetPrivateProfileStringA
lstrcpyA
InterlockedIncrement
GetThreadLocale
HeapValidate
IsBadReadPtr
GetSystemTime
GetTempFileNameA
GetUserDefaultLangID
lstrcatW
GetSystemDirectoryA
GetFileType
CreateDirectoryW
GetCurrentProcessId
FindClose
CreateMutexA
ResumeThread
FormatMessageA
OpenMutexA
CreateProcessW
LoadLibraryW
SetLastError
GetExitCodeProcess
ReadFile
GetProfileStringA
GetCurrentProcess
TlsAlloc
IsDebuggerPresent
GetEnvironmentStrings
FatalAppExitA
HeapReAlloc
FreeEnvironmentStringsA
SetFilePointer
LocalFree
DuplicateHandle
GetTempPathA
DeleteFileW
TlsSetValue
IsBadCodePtr
GetVersion
GetFileTime
GetModuleFileNameA
AllocConsole
UnlockFile
GetCurrentDirectoryA
AreFileApisANSI
SetConsoleCtrlHandler
CreateFileW
WritePrivateProfileStringA
CreateProcessA
GlobalGetAtomNameA
RaiseException
GlobalReAlloc
gdi32
CreateFontIndirectW
CopyEnhMetaFileA
GetCharABCWidthsA
ExtSelectClipRgn
StartPage
GetBitmapDimensionEx
FillPath
SetColorAdjustment
GetWindowExtEx
GetTextCharacterExtra
GetObjectType
SaveDC
PolyPolygon
GetTextMetricsW
SetBkMode
SetViewportExtEx
Polygon
CreateDIBitmap
ScaleWindowExtEx
GetBoundsRect
CloseMetaFile
GetBkMode
ScaleViewportExtEx
RoundRect
Polyline
EndPath
GetStretchBltMode
StretchDIBits
CreateHalftonePalette
GetROP2
SetDIBColorTable
CreateRectRgn
GetTextColor
GetCharABCWidthsW
SetRectRgn
CreatePalette
PlayMetaFile
SetAbortProc
CopyMetaFileA
ExtCreateRegion
GetTextFaceA
UnrealizeObject
SelectObject
CreateSolidBrush
SetWindowOrgEx
OffsetRgn
CreatePolyPolygonRgn
GetTextAlign
ExtTextOutA
EqualRgn
IntersectClipRect
CreateEllipticRgn
ExcludeClipRect
GetMapMode
PaintRgn
GetClipRgn
SetBkColor
PolyDraw
SetWinMetaFileBits
LineTo
ArcTo
GetCurrentPositionEx
GetDIBits
GetArcDirection
GetStockObject
GetDCOrgEx
PolyBezierTo
CreatePenIndirect
SetBrushOrgEx
FillRgn
GetSystemPaletteEntries
MaskBlt
Rectangle
CreateCompatibleDC
ExtFloodFill
EndDoc
RectVisible
PolyPolyline
RectInRegion
SetViewportOrgEx
GetPixel
GetWindowOrgEx
SetBoundsRect
SetMapMode
OffsetWindowOrgEx
GetClipBox
BeginPath
GetViewportExtEx
UpdateColors
GetOutlineTextMetricsA
CreateBrushIndirect
GetPaletteEntries
CreateBitmap
Escape
SetTextColor
RealizePalette
GetCurrentObject
GetRegionData
GetGlyphOutlineA
GetViewportOrgEx
CreateDIBSection
CreatePen
CreateFontA
SetStretchBltMode
GetObjectA
GetObjectW
GetTextExtentPoint32W
RestoreDC
GetGlyphOutlineW
PlayMetaFileRecord
GetFontData
SetWindowExtEx
TextOutA
SetBitmapDimensionEx
DeleteObject
GetCharWidthA
GetTextMetricsA
SelectClipRgn
Ellipse
FloodFill
SetPixelV
PolyBezier
EndPage
GetRgnBox
CreateRectRgnIndirect
EnumFontFamiliesExA
DPtoLP
ExtCreatePen
ExtEscape
GdiFlush
SetMapperFlags
StrokePath
SetPolyFillMode
PtInRegion
GetTextExtentPointA
CreateCompatibleBitmap
FrameRgn
GetTextExtentExPointW
SetTextCharacterExtra
CloseFigure
GetDeviceCaps
EnumMetaFile
ResizePalette
SetPaletteEntries
GetNearestColor
MoveToEx
ExtTextOutW
StrokeAndFillPath
BitBlt
Pie
CreateICW
Chord
LPtoDP
CreateRoundRectRgn
SelectClipPath
SetROP2
CreatePolygonRgn
CreateICA
GetTextExtentPoint32A
GetTextCharsetInfo
SetGraphicsMode
OffsetClipRgn
CreateDIBPatternBrushPt
CreatePatternBrush
AbortDoc
GetTextExtentPointW
CreateFontIndirectA
GetEnhMetaFileHeader
PtVisible
EnumFontFamiliesA
CombineRgn
SetTextAlign
CreateMetaFileA
EnumFontFamiliesExW
GetTextExtentExPointA
PatBlt
SetTextJustification
Arc
GetEnhMetaFileA
StartDocA
GetCharABCWidthsFloatW
ModifyWorldTransform
DeleteDC
TextOutW
StretchBlt
CreateHatchBrush
GetNearestPaletteIndex
SelectPalette
GetPolyFillMode
OffsetViewportOrgEx
GetDIBColorTable
DeleteMetaFile
SetWorldTransform
SetDIBits
SetPixel
GetBkColor
CreateDCA
comctl32
CreateStatusWindowW
ImageList_Destroy
ImageList_DragLeave
ImageList_DragShowNolock
ImageList_Create
ImageList_Replace
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_Draw
ImageList_GetBkColor
ImageList_SetImageCount
ImageList_GetIconSize
ImageList_DrawEx
PropertySheetA
ImageList_Add
ImageList_GetImageInfo
ImageList_DragMove
ImageList_SetOverlayImage
_TrackMouseEvent
ImageList_Read
CreatePropertySheetPageW
ImageList_EndDrag
ImageList_GetIcon
ImageList_SetBkColor
ImageList_GetImageCount
ImageList_DrawIndirect
ImageList_Write
ImageList_BeginDrag
ImageList_LoadImageA
CreatePropertySheetPageA
PropertySheetW
InitCommonControlsEx
ord17
oleaut32
LoadTypeLi
ole32
OleTranslateAccelerator
CoTaskMemAlloc
CoCreateInstance
CoUninitialize
CreateFileMoniker
CoTaskMemRealloc
CoGetClassObject
CoGetMalloc
CoInitializeEx
CoRevokeClassObject
OleIsCurrentClipboard
CLSIDFromString
CreateGenericComposite
CoFreeUnusedLibraries
OleCreateLinkFromData
CreateBindCtx
CoLockObjectExternal
CreateStreamOnHGlobal
StringFromGUID2
OleRun
OleGetIconOfClass
OleDuplicateData
ReadClassStg
OleCreateLinkToFile
CreateDataAdviseHolder
StgIsStorageILockBytes
StringFromCLSID
OleIsRunning
OleCreateMenuDescriptor
ReadFmtUserTypeStg
DoDragDrop
CoTreatAsClass
StgOpenStorage
SetConvertStg
OleRegGetUserType
StgCreateDocfile
OleCreateFromFile
CreateItemMoniker
OleSetMenuDescriptor
CoSuspendClassObjects
CoRegisterMessageFilter
CoRegisterClassObject
GetHGlobalFromILockBytes
WriteFmtUserTypeStg
GetClassFile
OleSetContainedObject
CoTaskMemFree
StgOpenStorageOnILockBytes
OleLoad
RevokeDragDrop
GetHGlobalFromStream
IsAccelerator
StgCreateDocfileOnILockBytes
OleFlushClipboard
OleInitialize
WriteClassStg
ReleaseStgMedium
OleUninitialize
OleCreateStaticFromData
OleGetClipboard
OleDestroyMenuDescriptor
OleSave
CoDisconnectObject
OleLockRunning
CreateILockBytesOnHGlobal
RegisterDragDrop
CoInitialize
CreateOleAdviseHolder
CoResumeClassObjects
CLSIDFromProgID
OleCreate
OleSaveToStream
shell32
ShellExecuteA
SHGetMalloc
SHGetPathFromIDListA
DragQueryFileW
ord155
CommandLineToArgvW
ShellExecuteExA
SHGetDesktopFolder
SHBrowseForFolderA
SHGetFolderPathW
SHGetSpecialFolderPathW
ExtractIconExW
DragQueryFileA
ShellExecuteExW
DragAcceptFiles
ExtractIconW
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetFileInfoA
wininet
InternetCloseHandle
FtpPutFileA
InternetOpenA
FtpCreateDirectoryA
InternetReadFile
InternetSetStatusCallbackW
InternetQueryOptionW
HttpOpenRequestA
InternetSetOptionExA
HttpSendRequestExA
FtpGetFileA
HttpAddRequestHeadersA
InternetQueryOptionA
InternetConnectA
InternetWriteFile
InternetCanonicalizeUrlA
HttpSendRequestA
InternetAttemptConnect
HttpQueryInfoW
InternetOpenUrlA
HttpQueryInfoA
InternetSetFilePointer
InternetSetStatusCallback
InternetGetConnectedState
InternetGetLastResponseInfoW
InternetCrackUrlA
advapi32
SetSecurityDescriptorDacl
ControlService
RegQueryValueExW
EqualSid
RegOpenKeyExA
EnumServicesStatusA
RegQueryInfoKeyA
RegDeleteValueA
AdjustTokenPrivileges
RegEnumKeyExW
RegOpenKeyA
RegCreateKeyA
OpenServiceW
QueryServiceConfigA
OpenServiceA
GetSidLengthRequired
GetFileSecurityA
SetFileSecurityA
CloseServiceHandle
DeleteAce
RegEnumKeyA
RegEnumValueA
RegisterServiceCtrlHandlerA
CreateServiceA
RevertToSelf
OpenSCManagerW
RegCreateKeyW
GetTokenInformation
InitiateSystemShutdownA
GetAce
RegQueryValueA
FreeSid
CopySid
RegOpenKeyExW
RegCloseKey
DuplicateTokenEx
OpenThreadToken
QueryServiceStatus
RegSetValueA
DuplicateToken
RegEnumKeyExA
InitializeSecurityDescriptor
ImpersonateSelf
DeleteService
RegDeleteKeyA
GetUserNameA
GetLengthSid
SetEntriesInAclW
RegCreateKeyExA
AddAccessAllowedAce
RegOpenCurrentUser
OpenProcessToken
CreateProcessAsUserA
GetSecurityInfo
RegQueryValueExA
RegSetValueExW
StartServiceCtrlDispatcherA
OpenSCManagerA
RegSetValueExA
LookupPrivilegeValueA
IsValidSid
RegSetKeySecurity
comdlg32
GetOpenFileNameA
GetSaveFileNameA
PrintDlgA
GetFileTitleW
ChooseFontA
GetFileTitleA
CommDlgExtendedError
GetSaveFileNameW
GetOpenFileNameW
winspool.drv
SetJobW
OpenPrinterA
EnumPortsW
EnumJobsW
DocumentPropertiesA
SetPrinterW
OpenPrinterW
ord204
FindFirstPrinterChangeNotification
EnumPrintersW
FreePrinterNotifyInfo
SetPrinterDataW
ClosePrinter
FindNextPrinterChangeNotification
GetPrinterW
Sections
.text Size: 116KB - Virtual size: 112KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 96KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 72KB - Virtual size: 98KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 76KB - Virtual size: 73KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ