Static task
static1
Behavioral task
behavioral1
Sample
953f47da45929525bbcd87604981667e6cf3d46c58f0baaf8483db6308f76c85.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
953f47da45929525bbcd87604981667e6cf3d46c58f0baaf8483db6308f76c85.dll
Resource
win10v2004-20220901-en
General
-
Target
953f47da45929525bbcd87604981667e6cf3d46c58f0baaf8483db6308f76c85
-
Size
149KB
-
MD5
d54a5d4256acd2a736d8ac445fb04870
-
SHA1
da55c9f45da3823478fc9fa0c96e38b01f1d3ec4
-
SHA256
953f47da45929525bbcd87604981667e6cf3d46c58f0baaf8483db6308f76c85
-
SHA512
71293e0654a22775b356ec98e1a0fb5896e5e8991fd37da717f033ddf20b5ec2fae1a0f5ea787c8bfc000977284be9bdc2de2ebe5f58295bfc750da7fcc7d18b
-
SSDEEP
3072:6SSnmIK72V/oHYDgZOLdDYmyVjPDyaduIoH6ot4kn/2iTwN:Q03HpovAiQ2t48h
Malware Config
Signatures
Files
-
953f47da45929525bbcd87604981667e6cf3d46c58f0baaf8483db6308f76c85.dll windows x86
a6a821f18bfb21c89cdda1c35749f7b4
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
TlsAlloc
ExpandEnvironmentStringsA
RtlUnwind
TlsSetValue
IsValidCodePage
TerminateProcess
GetWindowsDirectoryW
DeleteFileW
GetStringTypeA
WriteConsoleW
DebugBreak
GetOEMCP
RaiseException
GetDateFormatA
WaitForMultipleObjects
GetTempFileNameW
GetSystemDirectoryW
lstrcpyW
ReadFile
GetSystemDefaultLangID
DeleteCriticalSection
CreateEventW
InterlockedExchange
VerLanguageNameW
GetConsoleCP
InitializeCriticalSection
GlobalAlloc
LockResource
SetEvent
GetTickCount
ExpandEnvironmentStringsW
GetStdHandle
GetModuleHandleA
WriteFile
EnterCriticalSection
GetModuleFileNameW
GetConsoleOutputCP
GetDateFormatW
InterlockedIncrement
lstrcmpW
GetVersion
CreateThread
lstrcpynA
GetModuleHandleW
EnumSystemLocalesA
IsDebuggerPresent
FormatMessageW
LoadLibraryExW
MulDiv
MoveFileW
InitializeCriticalSectionAndSpinCount
GetTempPathW
CreateFileW
lstrlenA
GetPrivateProfileIntW
GetCPInfo
CloseHandle
FindFirstChangeNotificationW
VirtualAlloc
GetCurrentThreadId
GetFileSize
GetTimeZoneInformation
HeapDestroy
FreeLibrary
LCMapStringW
SetFilePointer
SizeofResource
IsProcessorFeaturePresent
SetEnvironmentVariableA
FindNextFileW
SetConsoleCtrlHandler
WideCharToMultiByte
FatalAppExitA
MultiByteToWideChar
GetFileAttributesW
CompareStringW
GlobalSize
SetStdHandle
GetCurrentProcess
LoadLibraryW
GetEnvironmentStringsW
Sleep
OpenEventW
GetStartupInfoA
LoadLibraryA
GetTimeFormatA
lstrlenW
WriteConsoleA
FileTimeToSystemTime
GetLocaleInfoA
GetPrivateProfileStringW
GlobalUnlock
FindCloseChangeNotification
GetStringTypeW
GetCommandLineW
GetCurrentProcessId
WritePrivateProfileSectionW
InterlockedCompareExchange
CreateFileA
InterlockedDecrement
FindResourceW
TlsGetValue
SetHandleCount
RemoveDirectoryW
LoadResource
HeapAlloc
TlsFree
WaitForSingleObject
GetLastError
IsValidLocale
LocalFree
FindFirstFileW
SystemTimeToTzSpecificLocalTime
lstrcpynW
HeapSize
CopyFileW
GlobalLock
GetSystemTimeAsFileTime
GetFileAttributesExW
VirtualFree
lstrcmpiW
GetFileType
FindClose
GetStartupInfoW
FlushInstructionCache
HeapFree
LocalAlloc
FlushFileBuffers
QueryPerformanceCounter
ExitProcess
lstrcatW
FindNextChangeNotification
SetUnhandledExceptionFilter
GetACP
GetProcessHeap
GetProcAddress
GetVersionExW
ResetEvent
UnhandledExceptionFilter
HeapCreate
GetModuleFileNameA
OutputDebugStringW
VirtualQuery
SetLastError
GetConsoleMode
GetCurrentThread
WritePrivateProfileStringW
GetUserDefaultLCID
FreeEnvironmentStringsW
CompareStringA
HeapReAlloc
CreateDirectoryW
GetLocaleInfoW
LeaveCriticalSection
LCMapStringA
GetComputerNameW
WinExec
user32
DefMDIChildProcW
SetDlgItemTextW
TranslateMessage
ReleaseCapture
GetMessageW
ModifyMenuW
FillRect
IsMenu
TranslateAcceleratorW
OffsetRect
CharNextW
SetTimer
CallNextHookEx
PostQuitMessage
LoadBitmapW
SetScrollInfo
SetScrollPos
GetWindowRect
TrackPopupMenu
IntersectRect
DrawTextW
CreateWindowExW
GetClassNameW
GetMenu
GetMonitorInfoW
FindWindowW
CharUpperBuffA
DefWindowProcW
IsClipboardFormatAvailable
SetWindowPlacement
GetMenuStringW
GetClassLongW
DragDetect
InsertMenuW
MessageBeep
PtInRect
TranslateMDISysAccel
EndDeferWindowPos
LoadImageW
GetClientRect
ShowScrollBar
DeferWindowPos
EnableMenuItem
GetSystemMetrics
WindowFromPoint
DialogBoxParamW
RegisterClassW
GetSubMenu
ClientToScreen
OpenClipboard
GetDlgCtrlID
ReleaseDC
AppendMenuW
SetCaretPos
SetMenu
GetClassInfoExW
GetParent
GetFocus
GetWindowTextW
DrawFocusRect
DrawFrameControl
SetCursor
GetWindow
LoadIconW
GetSystemMenu
LoadCursorW
GetKeyState
LockWindowUpdate
RedrawWindow
GetWindowPlacement
GetMessagePos
IsWindow
GetMenuDefaultItem
InvalidateRect
DestroyCaret
MonitorFromWindow
GetWindowTextLengthW
SetWindowPos
RegisterWindowMessageW
GetDlgItem
KillTimer
SetDlgItemInt
GetWindowLongW
UnregisterClassW
UpdateWindow
ShowWindow
GetClipboardData
EndDialog
RegisterClassExW
MoveWindow
FrameRect
SetWindowLongW
ScrollWindowEx
SetParent
LoadAcceleratorsW
SetMenuItemInfoW
SetMenuDefaultItem
CallWindowProcW
SendMessageW
LoadStringA
SetFocus
GetScrollInfo
DispatchMessageW
ScreenToClient
MessageBoxW
GetWindowThreadProcessId
GetMenuItemCount
EqualRect
wvsprintfW
DrawMenuBar
GetMenuItemInfoW
GetWindowDC
GetCursorPos
AdjustWindowRectEx
CreateCaret
CloseClipboard
BringWindowToTop
DestroyMenu
BeginPaint
GetDoubleClickTime
SystemParametersInfoW
RegisterClipboardFormatW
BeginDeferWindowPos
GetDesktopWindow
GetClassInfoW
LoadStringW
EnableWindow
GetCapture
SetWindowsHookExW
IsChild
GetDlgItemTextW
DestroyWindow
IsWindowEnabled
SetCapture
UnregisterClassA
PostMessageW
InflateRect
SetWindowTextW
SetRectEmpty
SetForegroundWindow
LoadMenuW
CharLowerW
IsWindowVisible
UnhookWindowsHookEx
GetDlgItemInt
CopyRect
SetClipboardData
TrackPopupMenuEx
PeekMessageW
ShowCaret
RemoveMenu
MapWindowPoints
CreatePopupMenu
GetActiveWindow
DrawIconEx
DrawEdge
DefFrameProcW
GetDC
EmptyClipboard
EndPaint
GetMenuItemID
GetSysColorBrush
gdi32
GetTextExtentPoint32W
CreateFontIndirectW
CreatePen
MoveToEx
SaveDC
GetTextMetricsW
DeleteObject
GetClipBox
DPtoLP
GetClipRgn
RestoreDC
Rectangle
Polyline
LPtoDP
LineTo
SetBrushOrgEx
CreatePalette
DeleteDC
RealizePalette
CreateFontW
SelectPalette
SetBkMode
ExtTextOutW
IntersectClipRect
SetViewportOrgEx
CreateBitmap
GetDeviceCaps
PatBlt
CreateCompatibleDC
SetBkColor
GetStockObject
SelectClipRgn
SelectObject
GetViewportOrgEx
SetWindowOrgEx
TextOutW
CreateRectRgn
CreateDIBSection
SetTextColor
GetObjectW
CreateSolidBrush
CreatePatternBrush
BitBlt
SetPolyFillMode
Polygon
CreateCompatibleBitmap
GetTextExtentPointW
comdlg32
GetSaveFileNameW
ChooseColorW
GetOpenFileNameW
ChooseFontW
advapi32
RegRestoreKeyW
RegEnumValueA
RegSaveKeyW
GetSecurityDescriptorControl
SetNamedSecurityInfoW
RegSetKeySecurity
RegSetValueExW
RegLoadKeyW
GetTokenInformation
GetSidSubAuthority
RegOpenKeyExW
GetLengthSid
RegConnectRegistryW
RegCloseKey
AdjustTokenPrivileges
CopySid
RegQueryValueExA
GetNamedSecurityInfoW
RegEnumKeyExW
MapGenericMask
GetUserNameW
LookupPrivilegeValueW
GetSidSubAuthorityCount
IsTextUnicode
RegGetKeySecurity
InitializeAcl
RegDeleteValueW
RegDeleteKeyW
RegReplaceKeyW
RegQueryValueExW
RegUnLoadKeyW
RegOpenKeyExA
SetSecurityDescriptorDacl
RegCreateKeyExW
RegEnumValueW
OpenProcessToken
InitializeSecurityDescriptor
GetSecurityDescriptorGroup
GetSecurityDescriptorSacl
RegQueryInfoKeyW
GetSidIdentifierAuthority
GetSecurityDescriptorDacl
GetSecurityDescriptorOwner
ole32
RegisterDragDrop
RevokeDragDrop
CoTaskMemAlloc
OleDuplicateData
ReleaseStgMedium
DoDragDrop
OleInitialize
CoCreateInstance
CoTaskMemRealloc
CoTaskMemFree
CoUninitialize
oleaut32
SystemTimeToVariantTime
VarR8FromStr
VarUI4FromStr
VarI4FromStr
VarDecFromStr
VarDecCmp
SysFreeString
comctl32
ImageList_GetImageInfo
ImageList_Create
ImageList_GetIcon
DestroyPropertySheetPage
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_Remove
PropertySheetW
_TrackMouseEvent
ImageList_Destroy
ord8
CreateStatusWindowW
CreatePropertySheetPageW
ImageList_DrawIndirect
InitCommonControlsEx
ImageList_GetImageCount
ImageList_Draw
ImageList_LoadImageW
shlwapi
PathAddExtensionW
SHSetValueW
SHGetValueW
PathFileExistsW
PathRemoveFileSpecW
SHDeleteKeyW
PathStripPathW
PathFindExtensionW
version
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
msacm32
acmDriverAddA
Sections
.text Size: 77KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 27KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 34KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ