Static task
static1
Behavioral task
behavioral1
Sample
7acd64fa03055e0f010c2d6fa17dd624ee8291b51625319d12d8dbdc28261326.exe
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral2
Sample
7acd64fa03055e0f010c2d6fa17dd624ee8291b51625319d12d8dbdc28261326.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
General
-
Target
7acd64fa03055e0f010c2d6fa17dd624ee8291b51625319d12d8dbdc28261326
-
Size
272KB
-
MD5
a852488787e52bfa538a0e0f886cb730
-
SHA1
25df8bfd188aeaa195078fa0413018adf4e8d235
-
SHA256
7acd64fa03055e0f010c2d6fa17dd624ee8291b51625319d12d8dbdc28261326
-
SHA512
c916882d24301abf1a420ab5011149c4d909993b83f13c582ccb32c9fc4dfe3955be7434ef68f54e2fb605543b5f07b2e491a911b4315d142bdd6667a08a820c
-
SSDEEP
6144:TnN4Tslm2gM3MUC1REPpfYP4yQrTcddOEJOXUXoVX8e:rN4om2gIMNSVY6aJOXOKX
Malware Config
Signatures
Files
-
7acd64fa03055e0f010c2d6fa17dd624ee8291b51625319d12d8dbdc28261326.exe windows x86
092bc6aded5bfe3c06e4749f4efe474b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
UnionRect
SendDlgItemMessageA
DrawIcon
CloseClipboard
GetMenuItemCount
InsertMenuW
CreateIconIndirect
EmptyClipboard
LoadCursorA
IsIconic
ReleaseCapture
WinHelpA
LoadAcceleratorsA
GetClassInfoExW
DrawTextA
SetWindowsHookExA
LoadImageW
SetCursor
GetFocus
ExcludeUpdateRgn
ValidateRect
AppendMenuA
SetWindowPos
GetScrollPos
GetScrollRange
ReuseDDElParam
CreateWindowExW
GetActiveWindow
SetWindowsHookExW
CreateDialogIndirectParamW
TranslateMessage
GetMenuCheckMarkDimensions
GetMessageA
ModifyMenuW
GetPropW
WindowFromDC
GetWindowThreadProcessId
CopyImage
CharUpperA
GetWindowLongA
SetDlgItemInt
GetSystemMenu
TrackPopupMenu
SubtractRect
IsDialogMessageA
InflateRect
RedrawWindow
LoadAcceleratorsW
IsWindowEnabled
EndPaint
InvalidateRect
TabbedTextOutA
DefWindowProcW
WindowFromPoint
FindWindowA
SetMenu
IsWindow
SetWindowContextHelpId
BeginPaint
DeleteMenu
CallWindowProcA
DrawFrameControl
SetMenuDefaultItem
GetNextDlgTabItem
SetTimer
SetPropA
SystemParametersInfoW
GetKeyState
GetCapture
IsZoomed
MessageBoxW
CreateWindowExA
GetTopWindow
PostMessageW
MoveWindow
CheckMenuItem
SetWindowTextW
DestroyWindow
ShowOwnedPopups
CopyIcon
keybd_event
GetDlgItem
GetLastActivePopup
GetWindowRect
RegisterClassExA
GetSubMenu
GetCursorPos
DestroyIcon
CreateMenu
GetWindow
LoadImageA
SetScrollRange
EnableWindow
EnableMenuItem
IsRectEmpty
GetDlgCtrlID
SetParent
InvalidateRgn
RemovePropA
UpdateWindow
DestroyAcceleratorTable
MsgWaitForMultipleObjects
PostMessageA
SetActiveWindow
MapDialogRect
ScrollWindow
GetMenuItemInfoW
ModifyMenuA
BeginDeferWindowPos
CreateAcceleratorTableA
GetClassNameA
GetClipboardData
GetClipboardFormatNameA
SetCapture
ClientToScreen
ChildWindowFromPointEx
ShowWindow
DrawTextExA
CharUpperBuffA
GetMenuState
OffsetRect
MessageBeep
SetFocus
IntersectRect
GetUpdateRect
GetKeyNameTextA
RemoveMenu
GetSystemMetrics
DispatchMessageW
ShowCaret
KillTimer
AdjustWindowRectEx
RegisterClipboardFormatA
OpenClipboard
GetWindowTextA
SystemParametersInfoA
GetClientRect
CreateDialogIndirectParamA
GetParent
GetMenuDefaultItem
IsDialogMessageW
GetMessageTime
GetTabbedTextExtentA
UnpackDDElParam
IsDlgButtonChecked
FillRect
RegisterClassA
DialogBoxParamA
IsWindowUnicode
DefDlgProcA
GetDesktopWindow
MapWindowPoints
RegisterWindowMessageA
AttachThreadInput
GetDlgItemInt
GetClassInfoA
DrawStateW
UnhookWindowsHookEx
SetCaretPos
CallNextHookEx
DeferWindowPos
SendMessageA
GetDCEx
LoadCursorW
CheckDlgButton
LoadMenuA
CreatePopupMenu
IsChild
SetMenuItemBitmaps
EndDeferWindowPos
GetSysColor
SetRect
ScreenToClient
CharPrevA
GetClassInfoExA
SetWindowLongW
DefWindowProcA
IsClipboardFormatAvailable
ReleaseDC
LoadStringA
SetForegroundWindow
CopyRect
SetClassLongA
EndDialog
GetWindowPlacement
GetWindowTextLengthA
IsWindowVisible
LoadMenuW
MessageBoxA
GetWindowDC
SendMessageW
CallWindowProcW
ValidateRgn
SendDlgItemMessageW
BringWindowToTop
DrawMenuBar
FindWindowW
PostThreadMessageA
GetMenu
wsprintfA
PeekMessageA
UnregisterClassA
IsMenu
DrawIconEx
PtInRect
RemovePropW
PostThreadMessageW
GetMessagePos
GetMenuStringA
DrawFocusRect
GetCaretPos
SetWindowRgn
GetMenuItemID
ShowCursor
InsertMenuItemW
SetRectEmpty
GetSysColorBrush
SetDlgItemTextA
GetMenuItemInfoA
CharNextA
GetForegroundWindow
GetPropA
InsertMenuA
LoadBitmapA
FrameRect
MonitorFromPoint
CharLowerA
DefMDIChildProcA
SetClipboardData
SetWindowLongA
LockWindowUpdate
PostQuitMessage
GetDC
GetWindowRgn
GrayStringA
SetWindowTextA
MenuItemFromPoint
DispatchMessageA
GetWindowLongW
RegisterClassExW
DestroyMenu
EqualRect
DdeCreateDataHandle
LoadStringW
gdi32
GetPolyFillMode
SetWindowExtEx
CreatePolygonRgn
ExcludeClipRect
PlayEnhMetaFile
PtVisible
CreateDIBSection
EnumFontFamiliesExW
EnumFontFamiliesExA
SetDIBColorTable
GetDCOrgEx
GetWindowExtEx
SetBkColor
SetWorldTransform
GetStockObject
CloseEnhMetaFile
GetRegionData
CreateDCW
SetTextCharacterExtra
FrameRgn
SetPolyFillMode
CreateDIBitmap
CreateBrushIndirect
GetTextExtentPointA
EnumMetaFile
RectVisible
GetMapMode
ScaleWindowExtEx
CreateDIBPatternBrushPt
Arc
ExtEscape
GetEnhMetaFilePaletteEntries
TextOutA
GetPath
SetGraphicsMode
GetObjectW
PtInRegion
StartDocW
CopyMetaFileA
RoundRect
Rectangle
UnrealizeObject
EnumFontFamiliesW
CreateEllipticRgnIndirect
GetViewportExtEx
EndPath
CreateBitmap
SetMapperFlags
SelectObject
Polygon
CreateSolidBrush
CreateRectRgnIndirect
Ellipse
Polyline
StrokePath
PolyPolyline
SetBkMode
CreateFontIndirectW
RealizePalette
CreateEllipticRgn
SetTextAlign
CreateCompatibleDC
CreateFontIndirectA
GetBkColor
DeleteDC
SetWindowOrgEx
GetObjectA
LineTo
SetWinMetaFileBits
PolylineTo
GetClipBox
GetTextColor
ExtCreateRegion
GetNearestPaletteIndex
GetTextExtentPointW
SetPixel
StartDocA
CreateEnhMetaFileA
CreatePen
ArcTo
SetColorAdjustment
CreateFontW
PolyBezier
GetGlyphOutlineW
DeleteObject
CreateHalftonePalette
GetGlyphOutlineA
StretchDIBits
SaveDC
BeginPath
ExtTextOutA
CreateDCA
MoveToEx
GetTextCharsetInfo
GetEnhMetaFileHeader
SetPaletteEntries
EqualRgn
GetDIBColorTable
StartPage
PathToRegion
SetStretchBltMode
CreateCompatibleBitmap
GetBoundsRect
EnumFontFamiliesA
GetCurrentObject
LPtoDP
SelectClipRgn
GetTextFaceW
GetObjectType
GetTextMetricsA
GetTextAlign
SetArcDirection
SetViewportExtEx
GetCurrentPositionEx
PolyBezierTo
FlattenPath
SetTextJustification
PlayMetaFileRecord
ExtFloodFill
AbortDoc
GetClipRgn
SetBrushOrgEx
Escape
GetNearestColor
PaintRgn
GetTextExtentExPointW
CreateBitmapIndirect
ExtCreatePen
GetFontData
OffsetRgn
GetCharABCWidthsW
GetDIBits
GetBkMode
FillPath
PatBlt
CreatePenIndirect
FillRgn
GetTextFaceA
RestoreDC
SelectPalette
Pie
GetCharWidthA
EndPage
SetViewportOrgEx
DPtoLP
SetAbortProc
SetEnhMetaFileBits
CreateRectRgn
TextOutW
CreatePalette
RectInRegion
PlayMetaFile
GetPaletteEntries
StretchBlt
GetViewportOrgEx
SetROP2
GetWindowOrgEx
ScaleViewportExtEx
SetRectRgn
GetBitmapBits
GetTextMetricsW
GetROP2
Chord
DeleteEnhMetaFile
BitBlt
OffsetViewportOrgEx
SetTextColor
PolyDraw
GetCharABCWidthsFloatW
GetTextExtentPoint32A
CreateICA
GetTextExtentPoint32W
CreateRoundRectRgn
SetMapMode
OffsetWindowOrgEx
CreateFontA
ResizePalette
CombineRgn
CreateMetaFileA
CreatePatternBrush
GetArcDirection
CloseMetaFile
GetSystemPaletteEntries
StrokeAndFillPath
GetStretchBltMode
IntersectClipRect
OffsetClipRgn
ExtSelectClipRgn
SetDIBitsToDevice
EndDoc
GetRgnBox
GetDeviceCaps
ExtTextOutW
GetPixel
InvertRgn
GdiFlush
CreateHatchBrush
ole32
GetHGlobalFromStream
CoCreateGuid
OleUninitialize
OleCreateStaticFromData
OleGetIconOfClass
CoRevokeClassObject
StringFromGUID2
OleGetClipboard
CoCreateInstance
OleIsRunning
WriteFmtUserTypeStg
OleFlushClipboard
CoImpersonateClient
CoTaskMemFree
ReadFmtUserTypeStg
StgCreateDocfileOnILockBytes
CoUninitialize
OleRun
CreateFileMoniker
CoTaskMemAlloc
OleCreateLinkToFile
CoResumeClassObjects
OleSetMenuDescriptor
OleCreateFromFile
CreateStreamOnHGlobal
StringFromCLSID
CreateOleAdviseHolder
GetRunningObjectTable
CoSuspendClassObjects
CoFreeUnusedLibraries
CoDisconnectObject
OleCreateLinkFromData
CLSIDFromProgID
DoDragDrop
CoGetClassObject
CoTaskMemRealloc
OleLoad
CoInitializeSecurity
RevokeDragDrop
WriteClassStm
SetConvertStg
CoRegisterMessageFilter
StgIsStorageFile
ReleaseStgMedium
CoInitializeEx
OleSave
CoQueryProxyBlanket
CoSetProxyBlanket
CreateILockBytesOnHGlobal
ReadClassStg
OleInitialize
CLSIDFromString
CreateGenericComposite
OleCreateFromData
StgCreateDocfile
CoGetInterfaceAndReleaseStream
CoInitialize
CreateBindCtx
CoRegisterClassObject
OleCreate
CoLockObjectExternal
OleDuplicateData
OleIsCurrentClipboard
kernel32
DeleteFileA
PulseEvent
CreateDirectoryA
UnmapViewOfFile
InitializeCriticalSection
Sleep
GetCurrentThreadId
TlsSetValue
FindResourceA
ReadFile
FlushInstructionCache
InterlockedExchange
CompareStringW
WritePrivateProfileStringA
GlobalSize
SizeofResource
EnterCriticalSection
HeapFree
MoveFileW
TlsGetValue
FileTimeToSystemTime
CreateMutexA
FreeLibrary
ReleaseMutex
InterlockedIncrement
IsBadReadPtr
GetModuleHandleW
GetCommandLineW
SetErrorMode
MulDiv
GetModuleHandleA
EnumSystemLocalesA
lstrcmpW
GetStringTypeW
SetEnvironmentVariableA
IsDBCSLeadByte
VirtualAlloc
GetFileSize
GetStartupInfoW
LCMapStringW
FindClose
GetSystemTimeAsFileTime
GetExitCodeProcess
CopyFileA
GetConsoleMode
SetFileAttributesA
GetPrivateProfileSectionA
GetFileType
GetFullPathNameW
FreeEnvironmentStringsA
FlushFileBuffers
MultiByteToWideChar
lstrcmpiW
GetVolumeInformationW
TlsFree
GetVersion
LoadResource
GlobalGetAtomNameA
FreeResource
VirtualProtect
GlobalFindAtomA
SetEndOfFile
GetVersionExW
FindFirstFileA
SetLastError
GetTimeZoneInformation
lstrcpynA
LoadLibraryA
GetConsoleCP
GetDiskFreeSpaceA
GetUserDefaultLCID
LocalFree
GetLocalTime
LoadLibraryW
SystemTimeToFileTime
FormatMessageA
_lopen
DeleteFileW
CreateFileA
GetLogicalDriveStringsA
GetLocaleInfoA
InterlockedDecrement
LoadLibraryExA
IsValidLocale
lstrcpynW
FileTimeToLocalFileTime
GetDateFormatA
LockResource
SetUnhandledExceptionFilter
lstrcmpA
QueryPerformanceCounter
ConvertDefaultLocale
DeleteCriticalSection
GetACP
SetStdHandle
TlsAlloc
CreateProcessW
GetPrivateProfileIntW
SetEvent
LocalReAlloc
GetEnvironmentVariableW
SetCurrentDirectoryA
GetEnvironmentStrings
GetSystemInfo
LCMapStringA
HeapDestroy
LockFile
GetEnvironmentVariableA
OpenMutexA
DebugBreak
GetCommandLineA
DuplicateHandle
RaiseException
GetProfileStringA
lstrcpyA
GetConsoleOutputCP
GetDiskFreeSpaceExA
GetCurrentDirectoryA
HeapSize
GlobalHandle
GetCurrentProcess
TerminateProcess
GetModuleFileNameW
DeviceIoControl
CreateFileMappingA
UnlockFile
FatalAppExitA
WriteConsoleA
QueryPerformanceFrequency
HeapAlloc
WaitForSingleObject
IsBadCodePtr
IsValidCodePage
MoveFileA
GetProcAddress
GetStringTypeA
GetStdHandle
ReleaseSemaphore
GetLongPathNameA
GetCPInfo
IsDebuggerPresent
GetFullPathNameA
ExitThread
FindResourceExA
GetPrivateProfileIntA
CreateThread
GetThreadPriority
LeaveCriticalSection
IsBadStringPtrW
GlobalFlags
HeapReAlloc
GetTimeFormatA
GetDriveTypeA
GlobalUnlock
ExitProcess
GetFileAttributesA
CloseHandle
CreateSemaphoreA
GetOEMCP
WriteFile
lstrcmpiA
InterlockedCompareExchange
LocalLock
GetShortPathNameW
GetLastError
GetSystemTime
GlobalLock
GetModuleFileNameA
SetFilePointer
RtlUnwind
GetExitCodeThread
CreateProcessA
WideCharToMultiByte
GetVersionExA
GlobalDeleteAtom
GetWindowsDirectoryA
FreeEnvironmentStringsW
CompareStringA
IsBadWritePtr
GetCurrentThread
VirtualQuery
CompareFileTime
lstrlenW
lstrlenA
GlobalAlloc
GetEnvironmentStringsW
VirtualFree
GetFileAttributesW
SetFileTime
GetTickCount
GlobalReAlloc
UnhandledExceptionFilter
GetCurrentProcessId
CreateDirectoryW
GetFileInformationByHandle
OpenProcess
CreateEventA
GlobalFree
FindNextFileA
lstrcatA
SetHandleCount
HeapCreate
GetStartupInfoA
comctl32
InitCommonControlsEx
ImageList_Create
CreatePropertySheetPageW
ImageList_GetIcon
ImageList_EndDrag
ImageList_GetImageInfo
ImageList_DrawEx
DestroyPropertySheetPage
ImageList_DragShowNolock
PropertySheetA
ImageList_Remove
ImageList_Replace
ord17
ImageList_SetDragCursorImage
ImageList_Write
ImageList_AddMasked
ImageList_Draw
ImageList_Read
ImageList_GetBkColor
ImageList_GetImageCount
ImageList_SetBkColor
ImageList_LoadImageA
ImageList_Add
ImageList_GetIconSize
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_SetOverlayImage
ImageList_DragMove
ImageList_BeginDrag
ImageList_DragLeave
_TrackMouseEvent
ImageList_DragEnter
CreatePropertySheetPageA
oleaut32
LoadTypeLi
comdlg32
ChooseColorA
GetFileTitleA
PrintDlgA
PageSetupDlgA
FindTextA
GetOpenFileNameA
GetSaveFileNameA
ReplaceTextA
ChooseFontA
winspool.drv
FreePrinterNotifyInfo
DocumentPropertiesA
EndDocPrinter
EndPagePrinter
OpenPrinterA
DocumentPropertiesW
WritePrinter
OpenPrinterW
StartPagePrinter
ClosePrinter
ord204
FindFirstPrinterChangeNotification
EnumPrintersA
AbortPrinter
GetJobW
FindNextPrinterChangeNotification
SetPrinterDataW
SetJobW
StartDocPrinterW
EnumPortsW
advapi32
AccessCheck
RegDeleteKeyA
CloseServiceHandle
RegEnumValueA
GetUserNameW
CryptDestroyKey
CryptImportKey
RegDeleteKeyW
RegSetValueExA
RegSetValueW
RegEnumKeyExW
AllocateAndInitializeSid
CryptCreateHash
LookupPrivilegeValueW
RegSetValueA
CryptReleaseContext
CryptDeriveKey
RegEnumKeyA
RegOpenKeyExW
OpenSCManagerW
RegQueryInfoKeyA
OpenServiceW
RegDeleteValueA
OpenProcessToken
RegQueryValueExW
RegQueryValueExA
CryptGetHashParam
RegCreateKeyExA
OpenSCManagerA
GetFileSecurityW
CryptEncrypt
InitializeAcl
RegCloseKey
StartServiceA
RegCreateKeyExW
CryptAcquireContextA
RegEnumValueW
QueryServiceStatus
GetTokenInformation
RegSetValueExW
RegOpenKeyA
CryptHashData
RegEnumKeyW
RegQueryValueA
CryptDestroyHash
RegEnumKeyExA
EqualSid
CryptDecrypt
RegOpenKeyExA
SetSecurityDescriptorDacl
StartServiceW
shell32
SHGetSpecialFolderLocation
ShellExecuteExA
SHAppBarMessage
ord155
DragAcceptFiles
SHGetSpecialFolderPathW
ShellExecuteA
Shell_NotifyIconA
ShellExecuteExW
SHGetDesktopFolder
DragQueryFileA
DragFinish
SHGetPathFromIDListA
ExtractIconA
SHFileOperationA
SHGetFileInfoA
SHBrowseForFolderW
SHGetMalloc
SHChangeNotify
Sections
.text Size: 68KB - Virtual size: 65KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 88KB - Virtual size: 85KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 110KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 24KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ