Static task
static1
Behavioral task
behavioral1
Sample
a5d6556c233c08fbc5174de4436e3d63549f4552e541726deb906b6dca7e404f.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
a5d6556c233c08fbc5174de4436e3d63549f4552e541726deb906b6dca7e404f.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
a5d6556c233c08fbc5174de4436e3d63549f4552e541726deb906b6dca7e404f
-
Size
4.2MB
-
MD5
910a29038dd9bbd6787f67ddee00aa93
-
SHA1
a0fcb070f98fe67c35ad91d814763144b3887274
-
SHA256
a5d6556c233c08fbc5174de4436e3d63549f4552e541726deb906b6dca7e404f
-
SHA512
0172235837157c55c53aba84497cc8c3b590ac2fec947cb95baf0bb103ce3a7e25992e2de3fdaac155408f51db022a3e66a945c884041e568ecdcf6378df4b67
-
SSDEEP
98304:okd493VYdvFKfX9uedSGClIbCYmfwBpCmkoG3+IWuloOdv7r/T:cKv4/9JClBfeqr3tr5nb
Malware Config
Signatures
Files
-
a5d6556c233c08fbc5174de4436e3d63549f4552e541726deb906b6dca7e404f.exe windows x86
a89569058a779518c88d8ab350539ef3
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32 kernel32
GetWindowPlacement /SC
kernel32
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapCreate
VirtualFree
QueryPerformanceCounter
UnhandledExceptionFilter
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
GetCurrentDirectoryA
GetDriveTypeA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
GetProcAddress
FreeLibrary
lstrcpyW
lstrlenW
GetLocalTime
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
SetUnhandledExceptionFilter
VirtualQuery
VirtualAlloc
VirtualProtect
HeapSize
ExitProcess
RaiseException
RtlUnwind
HeapReAlloc
GetSystemTimeAsFileTime
CreateThread
ExitThread
GetStartupInfoW
GetFileSizeEx
SetErrorMode
EnumResourceTypesW
EnumResourceNamesW
LocalSize
GetExitCodeThread
TerminateThread
LoadLibraryExW
LoadLibraryExA
CreateMutexW
GetLastError
CloseHandle
Sleep
GetVersion
GetTickCount
SizeofResource
LockResource
LoadResource
FindResourceW
MultiByteToWideChar
HeapAlloc
GetProcessHeap
HeapFree
GetModuleHandleW
lstrcatW
GetModuleFileNameW
lstrcmpiW
GetSystemDefaultLangID
CreateEventW
ResetEvent
SetEvent
WaitForSingleObject
WideCharToMultiByte
GetFileAttributesW
DeleteFileW
TerminateProcess
lstrlenA
GetUserDefaultLCID
CreateDirectoryW
CreateFileW
WriteFile
GetComputerNameW
LocalAlloc
SetFileAttributesW
CopyFileW
SetFilePointer
GetCurrentProcessId
OpenProcess
SetProcessWorkingSetSize
CreateFileMappingW
GetSystemInfo
GetFileSize
LoadLibraryW
GetFileTime
GlobalFlags
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
InterlockedIncrement
GlobalGetAtomNameW
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
ReadFile
GetThreadLocale
FindFirstFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileW
FindClose
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
SuspendThread
ResumeThread
SetThreadPriority
InterlockedDecrement
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetModuleHandleA
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
FreeResource
SetLastError
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageW
LocalFree
MulDiv
MapViewOfFile
UnmapViewOfFile
user32
CharNextW
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsW
InsertMenuItemW
SetRectEmpty
BringWindowToTop
TranslateAcceleratorW
InvalidateRgn
CopyAcceleratorTableW
SetRect
UnregisterClassW
GetMenuItemInfoW
InflateRect
GetSysColorBrush
CharUpperW
ReleaseCapture
KillTimer
SetWindowRgn
IsRectEmpty
SystemParametersInfoW
ShowOwnedPopups
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
GetMessageW
TranslateMessage
ValidateRect
GetWindowThreadProcessId
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
SetMenuItemBitmaps
WaitMessage
ModifyMenuW
MoveWindow
IsDialogMessageW
GetDlgItemTextW
CheckDlgButton
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
SetPropW
GetPropW
EnableWindow
SendMessageW
GetSystemMetrics
SetWindowLongW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
ScrollWindow
TrackPopupMenuEx
GetKeyState
SetMenu
PostThreadMessageW
GetScrollRange
SetScrollPos
GetScrollPos
GetNextDlgGroupItem
MessageBeep
DestroyIcon
RegisterClipboardFormatW
GetSystemMenu
GetMenuCheckMarkDimensions
ShowScrollBar
MessageBoxW
GetWindowLongW
SetWindowPos
GetParent
GetCursorPos
SetForegroundWindow
TrackPopupMenu
IsWindowVisible
GetAsyncKeyState
GetWindowRect
wsprintfW
DefWindowProcW
LoadCursorW
RegisterClassW
GetClientRect
FillRect
InvalidateRect
RegisterWindowMessageW
PostMessageW
SetWindowTextW
IsMenu
DestroyMenu
CreatePopupMenu
AppendMenuW
ShowWindow
LookupIconIdFromDirectoryEx
SetCapture
LoadImageW
CreateIconFromResourceEx
CreateIconIndirect
CopyIcon
GetIconInfo
GetDoubleClickTime
DrawFocusRect
GetMenuDefaultItem
SetMenuDefaultItem
SetClassLongW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetDlgCtrlID
CallWindowProcW
CopyRect
GetMenu
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindow
LoadMenuW
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetMenuStringW
GetMenuItemID
GetMenuItemCount
GetSubMenu
EnableMenuItem
SetCursor
PtInRect
GetMenuState
MapWindowPoints
IsDlgButtonChecked
EnumChildWindows
SetScrollRange
DrawStateW
DrawIconEx
SendMessageTimeoutW
DrawMenuBar
DrawFrameControl
GetClassNameW
SetDlgItemTextW
GetDlgItem
UpdateWindow
DrawIcon
IsIconic
LoadBitmapW
SetTimer
CheckMenuItem
LoadIconW
RedrawWindow
SetWindowLongA
GetWindowLongA
IsWindowUnicode
EnumWindows
EnableScrollBar
CallWindowProcA
DefWindowProcA
DefFrameProcA
DefFrameProcW
DefDlgProcA
DefDlgProcW
DefMDIChildProcA
DefMDIChildProcW
RegisterClassA
DrawEdge
gdi32
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
GetClipRgn
SelectPalette
GetObjectType
DeleteObject
CreateHatchBrush
CreateRectRgnIndirect
PatBlt
CreateEllipticRgn
DPtoLP
LPtoDP
Ellipse
GetTextExtentPoint32W
GetTextMetricsW
CreateFontIndirectW
CombineRgn
GetMapMode
GetRgnBox
GetBkColor
GetTextColor
StretchDIBits
CreatePatternBrush
SelectClipRgn
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetStretchBltMode
GetObjectW
GetStockObject
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
BitBlt
CreateSolidBrush
OffsetRgn
GetTextCharsetInfo
StretchBlt
CreateDIBSection
SetBrushOrgEx
Polygon
CreatePalette
CreateDIBitmap
GetDIBits
SetBkMode
GetDeviceCaps
GetClipBox
RestoreDC
SetTextColor
SetBkColor
CreateBitmap
SaveDC
CreatePen
comdlg32
GetFileTitleW
winspool.drv
OpenPrinterW
DocumentPropertiesW
ClosePrinter
advapi32
RegOpenKeyW
RegQueryValueExW
RegCloseKey
OpenSCManagerW
OpenServiceW
QueryServiceStatus
CloseServiceHandle
StartServiceW
ChangeServiceConfigW
RegSetValueExW
RegDeleteValueW
EnumServicesStatusW
RegQueryValueW
RegOpenKeyExW
RegEnumKeyW
RegDeleteKeyW
RegCreateKeyExW
shell32
DragQueryFileW
DragFinish
SHGetSpecialFolderPathW
ShellExecuteExW
Shell_NotifyIconW
ShellExecuteW
comctl32
InitCommonControlsEx
FlatSB_GetScrollProp
_TrackMouseEvent
ImageList_GetBkColor
ImageList_GetImageInfo
ImageList_DrawIndirect
ImageList_GetIconSize
ImageList_Destroy
oledlg
OleUIBusyW
ole32
CoRevokeClassObject
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleIsCurrentClipboard
CoTaskMemAlloc
CoTaskMemFree
CoInitializeEx
StringFromGUID2
CoUninitialize
CoCreateInstance
CoInitializeSecurity
CoInitialize
OleFlushClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
oleaut32
SystemTimeToVariantTime
VariantClear
VariantInit
SysAllocString
SysStringLen
SysFreeString
SysAllocStringByteLen
SysStringByteLen
SysAllocStringLen
VariantChangeType
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SafeArrayDestroy
OleCreateFontIndirect
OleLoadPicturePath
VariantTimeToSystemTime
rpcrt4
UuidToStringW
UuidFromStringW
RpcStringFreeW
wsock32
ioctlsocket
inet_addr
gethostbyaddr
htons
WSAStartup
Sections
.text Size: 960KB - Virtual size: 960KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ApWiFi Size: 3.3MB - Virtual size: 3.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 23KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ApWiFi Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ