Static task
static1
Behavioral task
behavioral1
Sample
b107dd91189a908264ca57f5bf730092b74e887240b29d764df814392660757d.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
b107dd91189a908264ca57f5bf730092b74e887240b29d764df814392660757d.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
b107dd91189a908264ca57f5bf730092b74e887240b29d764df814392660757d
-
Size
82KB
-
MD5
415422be4e93618483e9cc6bdcf47811
-
SHA1
9c87dfc21e81b45c4e62c8876f2dafd74e8b6029
-
SHA256
b107dd91189a908264ca57f5bf730092b74e887240b29d764df814392660757d
-
SHA512
7db925834e3a0d87012005848bfc72b562916c863f7eb8445089cf6b79062260d483873ea51200f1da49262e4b54502127c6ac3d07e547faa05ebd862f7b5d2e
-
SSDEEP
1536:veeT0elF7GcMHj0KjyJq1VrO+XDzWcCfgRR8zR8/JDDYfffbIuT:RQY7TUIMr5DzWcMgRySJDYHfsuT
Malware Config
Signatures
Files
-
b107dd91189a908264ca57f5bf730092b74e887240b29d764df814392660757d.exe windows x86
15d34163bc05c0e14b166ccdbe3fb78e
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
EndUpdateResourceW
SetStdHandle
RtlFillMemory
WaitNamedPipeW
lstrcpy
SetFileAttributesA
GetFileAttributesExA
SetFileApisToOEM
LocalCompact
WritePrivateProfileStringA
SetConsoleWindowInfo
UnregisterWait
HeapValidate
GetConsoleDisplayMode
CreateTimerQueue
PeekConsoleInputA
CancelTimerQueueTimer
BindIoCompletionCallback
LoadLibraryExW
AssignProcessToJobObject
GetLongPathNameA
BackupRead
CompareFileTime
Heap32ListFirst
IsValidLanguageGroup
GetPrivateProfileStructA
IsBadHugeReadPtr
ReadDirectoryChangesW
SetComputerNameW
GlobalUnlock
VirtualProtectEx
CreateEventA
GetPrivateProfileSectionNamesA
PurgeComm
GetProcessTimes
GetProcessHeap
ExpandEnvironmentStringsA
GetVolumeInformationA
SetConsoleCP
VerLanguageNameA
SetSystemTimeAdjustment
SetFilePointer
lstrcmp
SetSystemTime
GetTimeFormatA
EnumResourceTypesW
UnlockFileEx
FillConsoleOutputCharacterW
IsDBCSLeadByteEx
LocalFree
IsBadStringPtrW
MoveFileExW
EnumLanguageGroupLocalesW
HeapDestroy
GetAtomNameW
GetSystemTimeAdjustment
RtlZeroMemory
HeapSize
FlushInstructionCache
GetNumberFormatW
DeleteFiber
SetPriorityClass
QueryDosDeviceW
EnumUILanguagesW
GetPriorityClass
GetComputerNameExW
SetThreadPriority
EnumSystemLocalesW
DeleteTimerQueueEx
EnumResourceNamesA
WritePrivateProfileStructA
CreatePipe
CommConfigDialogW
DeleteCriticalSection
FillConsoleOutputCharacterA
SwitchToThread
GetCurrentConsoleFont
CreateFileW
FindFirstVolumeW
GetCPInfoExA
GetNumberFormatA
lstrcmpiA
GetProcessHeaps
SwitchToFiber
ConnectNamedPipe
SetConsoleTitleW
GlobalAddAtomW
_lread
EnumSystemCodePagesA
SearchPathA
CreateMailslotW
InitializeCriticalSection
SetCurrentDirectoryA
CreateDirectoryA
SetHandleInformation
SetCommState
GetDriveTypeA
VerifyVersionInfoW
SetProcessShutdownParameters
CreateTimerQueueTimer
SetConsoleDisplayMode
WriteConsoleOutputW
GetOEMCP
GetPrivateProfileStringA
VirtualFree
DisconnectNamedPipe
InterlockedExchange
GetProfileStringA
WritePrivateProfileStringW
CopyFileA
EnumSystemLocalesA
IsValidCodePage
Thread32Next
GetDateFormatW
SetupComm
GetCurrentDirectoryA
GetConsoleCursorInfo
LocalFileTimeToFileTime
FindFirstVolumeMountPointW
IsBadCodePtr
GetShortPathNameW
SetWaitableTimer
WaitForDebugEvent
LocalReAlloc
VerLanguageNameW
GetCommModemStatus
SetConsoleCursorPosition
GetFullPathNameA
BuildCommDCBW
WriteTapemark
QueryDosDeviceA
CreateFileA
DeleteVolumeMountPointW
AddConsoleAliasA
GlobalDeleteAtom
SetLocaleInfoA
SetSystemPowerState
Module32FirstW
CommConfigDialogA
GetCPInfo
InterlockedCompareExchange
EnumDateFormatsExW
GetConsoleFontSize
LoadResource
GetConsoleAliasW
GetSystemInfo
GetShortPathNameA
OutputDebugStringA
GlobalGetAtomNameW
VirtualUnlock
SetInformationJobObject
lstrcmpiW
GetNumberOfConsoleMouseButtons
LockResource
GetProfileSectionA
GlobalHandle
GlobalUnWire
OpenWaitableTimerA
SearchPathW
HeapWalk
FreeLibrary
OpenSemaphoreA
CreateMailslotA
FoldStringW
EnumSystemLanguageGroupsA
GetConsoleWindow
DisableThreadLibraryCalls
CreateHardLinkW
lstrcpynA
CreateToolhelp32Snapshot
MapUserPhysicalPagesScatter
lstrcmpi
GetConsoleAliasesLengthW
DeleteTimerQueueTimer
CallNamedPipeW
CancelDeviceWakeupRequest
SetThreadLocale
_lopen
CreateSemaphoreW
GetWindowsDirectoryW
FindClose
UpdateResourceA
WaitForMultipleObjectsEx
ProcessIdToSessionId
SetEvent
CreateIoCompletionPort
GetDefaultCommConfigW
GetProfileIntW
WriteFileGather
SetEnvironmentVariableW
RtlMoveMemory
LockFile
IsBadReadPtr
GetSystemWindowsDirectoryW
ReadConsoleInputW
lstrcmpA
GetFileAttributesA
SetDefaultCommConfigA
SetComputerNameExA
HeapUnlock
FreeLibraryAndExitThread
GetConsoleAliasExesLengthW
EnumCalendarInfoExW
DefineDosDeviceA
FindNextVolumeA
EnumResourceNamesW
EnumDateFormatsW
_lwrite
GetStringTypeExW
GetLocaleInfoA
DeleteFileW
TlsAlloc
GetCommandLineW
GetOverlappedResult
SetVolumeLabelA
GetModuleHandleW
EnterCriticalSection
GetPrivateProfileIntW
OpenProcess
EnumDateFormatsA
GetCPInfoExW
FlushViewOfFile
TransmitCommChar
VerifyVersionInfoA
SleepEx
WriteConsoleInputW
CreateFiber
WriteFileEx
SetThreadIdealProcessor
GetSystemTimeAsFileTime
GetEnvironmentVariableW
GetSystemDirectoryA
SetConsoleCtrlHandler
GetPrivateProfileSectionA
GetConsoleAliasesLengthA
SetFileAttributesW
PulseEvent
EnumCalendarInfoA
WriteConsoleOutputAttribute
LocalAlloc
QueueUserWorkItem
WriteProcessMemory
WriteConsoleOutputCharacterW
GetLocalTime
FindAtomW
GetFileTime
WriteConsoleInputA
GetProfileSectionW
OpenFileMappingA
GetConsoleAliasExesA
LoadLibraryExA
GetThreadPriority
RtlUnwind
GetComputerNameExA
Heap32First
UnhandledExceptionFilter
FreeResource
SetConsoleTextAttribute
GetVolumeNameForVolumeMountPointA
DosDateTimeToFileTime
GlobalMemoryStatusEx
GetCurrentThreadId
MultiByteToWideChar
CopyFileExW
CreateProcessA
GlobalAlloc
LocalSize
LoadModule
IsBadHugeWritePtr
WritePrivateProfileSectionW
CreateTapePartition
GetVolumePathNameA
CompareStringA
EnumDateFormatsExA
WideCharToMultiByte
GetTimeFormatW
WritePrivateProfileStructW
GlobalFree
CreateMutexW
CreateNamedPipeW
ReadConsoleW
MoveFileWithProgressW
Beep
VirtualFreeEx
HeapFree
GetProcAddress
GetNamedPipeInfo
WaitForMultipleObjects
WaitNamedPipeA
lstrcpyA
GetFileInformationByHandle
GetTempPathW
CreateRemoteThread
GetProcessWorkingSetSize
DeleteFileA
Process32Next
EnumLanguageGroupLocalesA
SetCriticalSectionSpinCount
GetDriveTypeW
OpenMutexW
FormatMessageW
GetSystemPowerStatus
SetCommTimeouts
FindCloseChangeNotification
GetDefaultCommConfigA
lstrcpyW
GetConsoleCP
ReleaseSemaphore
GetCurrencyFormatW
ClearCommError
GlobalFindAtomA
GetComputerNameA
GetUserDefaultLCID
ContinueDebugEvent
SizeofResource
CreateDirectoryExW
RemoveDirectoryA
GetPrivateProfileStringW
FindResourceW
ResetEvent
FileTimeToLocalFileTime
CopyFileW
GetExitCodeThread
FindFirstFileW
GetCommConfig
GetConsoleTitleW
IsValidLocale
OpenEventA
HeapAlloc
SetMessageWaitingIndicator
VerSetConditionMask
GetProcessPriorityBoost
Thread32First
IsProcessorFeaturePresent
LocalShrink
SetVolumeMountPointW
EnumSystemCodePagesW
EnumTimeFormatsA
GetStringTypeW
ReadProcessMemory
UnmapViewOfFile
BuildCommDCBA
GetThreadContext
ScrollConsoleScreenBufferA
PrepareTape
lstrlenA
OutputDebugStringW
FindResourceExA
GetFileType
GetCalendarInfoW
SetHandleCount
GetPrivateProfileSectionW
FillConsoleOutputAttribute
GetHandleInformation
LocalLock
GetThreadPriorityBoost
GetDiskFreeSpaceA
VirtualAlloc
GetWindowsDirectoryA
LoadLibraryA
user32
BeginPaint
SetWindowTextA
GetMenuCheckMarkDimensions
SetWindowLongA
WinHelpW
SetCursorPos
GetClassLongA
IsWindowVisible
SetWindowsHookA
GetAsyncKeyState
IsCharAlphaNumericA
GetClipboardOwner
PtInRect
DrawEdge
PostQuitMessage
GetClipboardSequenceNumber
MessageBoxIndirectA
LockWindowUpdate
SetUserObjectSecurity
ChildWindowFromPointEx
RemoveMenu
GetWindowRect
CharNextExA
EnumWindowStationsW
CharUpperBuffA
CharToOemW
GetAncestor
ScrollWindowEx
DdeFreeDataHandle
GetWindowModuleFileNameA
CreateIconFromResourceEx
DdeDisconnectList
DdeConnectList
DrawAnimatedRects
DestroyCursor
SetWindowContextHelpId
CharToOemBuffW
DefDlgProcA
GetMessageW
GetWindowDC
SetMenuDefaultItem
IsCharUpperW
GetClipboardData
DlgDirSelectExW
GetCursor
LoadAcceleratorsA
GetWindow
DdeClientTransaction
LoadStringA
GetSysColorBrush
CheckDlgButton
CharNextW
IsDialogMessageW
ArrangeIconicWindows
VkKeyScanExA
DefWindowProcW
RegisterWindowMessageA
GetMenuItemInfoW
GetMessageExtraInfo
DefFrameProcA
DdeInitializeW
IsDlgButtonChecked
DdeAbandonTransaction
DdeAddData
EndMenu
SendMessageTimeoutW
GetMenuState
GetUserObjectInformationW
WindowFromDC
SetThreadDesktop
LoadMenuA
ShowCaret
LoadIconA
DefFrameProcW
EndDeferWindowPos
SetMenuItemInfoW
SetScrollInfo
DeferWindowPos
GetWindowTextA
SwapMouseButton
SetKeyboardState
GetMenuStringW
wsprintfW
CreateWindowExW
GetUpdateRect
IsRectEmpty
InsertMenuA
VkKeyScanExW
ClientToScreen
SetMessageQueue
DdePostAdvise
GetClassInfoExW
IMPSetIMEW
MenuItemFromPoint
CallMsgFilterA
LoadKeyboardLayoutW
UnhookWindowsHookEx
CharUpperBuffW
RegisterClassA
ShowScrollBar
GetDlgItemTextW
DefMDIChildProcA
EnableMenuItem
RemovePropW
GetScrollRange
SetForegroundWindow
LoadKeyboardLayoutA
DefWindowProcA
MessageBeep
GetDCEx
OemToCharBuffW
GetMenuItemRect
PackDDElParam
DrawStateW
SetActiveWindow
UnionRect
DdeCreateStringHandleA
GetMouseMovePointsEx
SetCursor
CascadeWindows
GetWindowLongA
CharLowerA
IsChild
PeekMessageA
SystemParametersInfoW
UserHandleGrantAccess
OemToCharW
DrawTextW
DialogBoxIndirectParamA
CreateDialogIndirectParamW
GetClientRect
EnableScrollBar
IMPQueryIMEA
LoadStringW
ModifyMenuW
GetMessageA
EnumDisplaySettingsExA
SendNotifyMessageW
InSendMessage
SetPropW
InsertMenuW
EnumWindows
CallWindowProcW
GetKeyState
DdeQueryConvInfo
SetWindowRgn
ChangeDisplaySettingsW
EnumClipboardFormats
GetClassInfoA
CopyRect
CallMsgFilterW
GetWindowTextW
mouse_event
EnumWindowStationsA
RealGetWindowClassW
GetMenuDefaultItem
SetSystemCursor
GetCapture
GetThreadDesktop
SendInput
EnumDisplayMonitors
IMPSetIMEA
DrawTextExA
UpdateLayeredWindow
DdeSetUserHandle
GetClassLongW
CreateMDIWindowW
SetLastErrorEx
OpenDesktopA
GetScrollBarInfo
CallNextHookEx
EnumDesktopsW
LookupIconIdFromDirectory
CopyImage
DdeQueryStringA
GetMenuStringA
GetSystemMenu
ScrollDC
IsDialogMessageA
DdeEnableCallback
SetClipboardData
GetGuiResources
ChangeMenuW
FreeDDElParam
GetGUIThreadInfo
ReleaseDC
CopyAcceleratorTableA
WaitMessage
FrameRect
GetOpenClipboardWindow
MonitorFromPoint
SetMenu
MonitorFromWindow
GetCursorInfo
EditWndProc
FindWindowW
DestroyCaret
GetMessageTime
LoadCursorA
SetPropA
CreatePopupMenu
HideCaret
DdeFreeStringHandle
CreateCaret
VkKeyScanA
SetClassLongA
IsWindow
SetDlgItemTextA
MoveWindow
TrackPopupMenuEx
RegisterClipboardFormatA
CountClipboardFormats
TileWindows
ActivateKeyboardLayout
LoadImageA
GetAltTabInfo
PostThreadMessageA
ChangeDisplaySettingsExW
SendDlgItemMessageA
RegisterClassW
InvalidateRgn
IsCharAlphaW
GetProcessDefaultLayout
GetWindowModuleFileNameW
IsCharAlphaNumericW
CreateWindowExA
GetClassWord
FindWindowA
OemToCharBuffA
InsertMenuItemA
OpenIcon
SetShellWindow
DeregisterShellHookWindow
MapVirtualKeyW
InsertMenuItemW
GetKeyboardType
SetWindowsHookExW
CreateAcceleratorTableW
DestroyMenu
DrawIcon
FindWindowExW
GetLastActivePopup
DlgDirListComboBoxW
DdeDisconnect
OemKeyScan
CloseDesktop
GetClipCursor
SetSysColors
GetKeyboardLayoutList
SetRect
GetDlgItemInt
BroadcastSystemMessageA
DefDlgProcW
SetWindowsHookW
GetProcessWindowStation
ToUnicode
TabbedTextOutW
BringWindowToTop
GetUserObjectInformationA
ShowOwnedPopups
DdeSetQualityOfService
GetMonitorInfoA
ValidateRect
ChildWindowFromPoint
SetScrollRange
IMPGetIMEA
GetKBCodePage
OpenClipboard
EnumThreadWindows
AnyPopup
DdeKeepStringHandle
GetIconInfo
GetCursorPos
DlgDirListA
SendDlgItemMessageW
GetAltTabInfoA
TranslateAcceleratorA
CharPrevW
IsHungAppWindow
GetMenuBarInfo
BroadcastSystemMessage
MessageBoxW
MsgWaitForMultipleObjectsEx
GetMenuItemID
DialogBoxParamA
GetComboBoxInfo
SetWindowPos
IsZoomed
IsDialogMessage
DdeImpersonateClient
SetDebugErrorLevel
SetDeskWallpaper
GetWindowModuleFileName
CopyAcceleratorTableW
PostThreadMessageW
IMPQueryIMEW
GetNextDlgGroupItem
UnloadKeyboardLayout
CreateIconFromResource
GetDialogBaseUnits
DrawFocusRect
MapDialogRect
ChangeClipboardChain
CreateAcceleratorTableA
SetWindowsHookExA
ClipCursor
GetMenu
GetWindowTextLengthW
DeleteMenu
DrawFrameControl
RegisterWindowMessageW
SetClassWord
GetScrollPos
LoadCursorFromFileW
DragDetect
ScreenToClient
EndPaint
UnregisterClassW
ChangeDisplaySettingsA
SetProcessDefaultLayout
GetKeyboardState
RegisterDeviceNotificationA
MessageBoxA
SubtractRect
msvcrt
memcpy
comdlg32
ReplaceTextW
GetOpenFileNameW
CommDlgExtendedError
ReplaceTextA
ChooseColorW
GetOpenFileNameA
GetSaveFileNameA
PrintDlgA
PrintDlgExA
ChooseColorA
PrintDlgW
advapi32
RegOpenKeyExA
shell32
ShellAboutW
SHCreateDirectoryExW
SHGetMalloc
SHGetSettings
SHQueryRecycleBinA
CommandLineToArgvW
SHFileOperation
SHCreateDirectoryExA
SHInvokePrinterCommandW
SHGetFileInfoA
DragAcceptFiles
Shell_NotifyIconW
WOWShellExecute
ShellExecuteEx
DoEnvironmentSubstW
SHGetDesktopFolder
SHGetFileInfoW
SHInvokePrinterCommandA
DragQueryFileAorW
SHGetDiskFreeSpaceA
SHCreateProcessAsUserW
DuplicateIcon
ShellExecuteW
SHFileOperationA
DragQueryFile
SHGetDiskFreeSpaceExW
Shell_NotifyIconA
SHGetIconOverlayIndexW
SHGetIconOverlayIndexA
FindExecutableW
ExtractAssociatedIconA
SHEmptyRecycleBinW
SHGetSpecialFolderPathA
DragQueryPoint
DoEnvironmentSubstA
SHChangeNotify
ShellAboutA
DragQueryFileW
ExtractAssociatedIconExW
SHLoadNonloadedIconOverlayIdentifiers
SHGetDataFromIDListA
shlwapi
StrChrIW
StrChrIA
StrCmpNW
StrRChrIA
StrRStrIA
StrCmpNIW
StrCmpNIA
StrRChrA
StrChrA
StrCmpNA
comctl32
FlatSB_GetScrollProp
_TrackMouseEvent
ImageList_LoadImage
ImageList_Add
CreateStatusWindow
ImageList_SetOverlayImage
ord3
ord6
PropertySheetA
ImageList_Read
CreatePropertySheetPageA
ImageList_SetFilter
ImageList_LoadImageA
CreatePropertySheetPage
ImageList_SetBkColor
ImageList_GetImageRect
ImageList_Destroy
InitializeFlatSB
DestroyPropertySheetPage
ord14
ImageList_Draw
FlatSB_SetScrollPos
ImageList_Remove
UninitializeFlatSB
FlatSB_SetScrollProp
DrawStatusTextW
PropertySheet
PropertySheetW
FlatSB_GetScrollInfo
ImageList_DrawIndirect
ImageList_Create
ImageList_SetIconSize
ord15
ImageList_DragEnter
ImageList_GetIcon
ImageList_LoadImageW
InitCommonControlsEx
ImageList_Merge
Sections
.text Size: 54KB - Virtual size: 53KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 21KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ