Static task
static1
Behavioral task
behavioral1
Sample
972b6b4081322ee0f1d0469d1dfc8c5cae620f77b4c03e5d78222a61e761ebea.exe
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral2
Sample
972b6b4081322ee0f1d0469d1dfc8c5cae620f77b4c03e5d78222a61e761ebea.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
General
-
Target
972b6b4081322ee0f1d0469d1dfc8c5cae620f77b4c03e5d78222a61e761ebea
-
Size
377KB
-
MD5
65bba0833c6890b78d77ec7faab959c3
-
SHA1
d0031d6adf223841fcb2a020ab0559265ebb7559
-
SHA256
972b6b4081322ee0f1d0469d1dfc8c5cae620f77b4c03e5d78222a61e761ebea
-
SHA512
00d6512da04358b99fe027145a2e324521cddea1b845d4a33a88939810fe4f0a505587d7d60fc4f01d1ccd80fa8764f2c03501185e3201b1302d0ad72a34f857
-
SSDEEP
6144:WDKpsstP9JDKG98qoD5+8BwOYdbqcQXYMOwegzLi:WDKO2lkfD5S3MJq
Malware Config
Signatures
Files
-
972b6b4081322ee0f1d0469d1dfc8c5cae620f77b4c03e5d78222a61e761ebea.exe windows x86
57d171e0e7becb1ab9aacff1a9780a04
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
EnumResourceNamesW
HeapValidate
ReadConsoleA
Heap32ListNext
DeleteFileA
MoveFileExA
CreateTapePartition
SuspendThread
SetConsoleScreenBufferSize
GlobalFindAtomA
GetPrivateProfileStructW
SetConsoleOutputCP
FreeEnvironmentStringsW
GetVersionExW
GetThreadTimes
GetThreadPriority
FillConsoleOutputAttribute
GetFullPathNameA
CopyFileExA
UpdateResourceW
TlsAlloc
DefineDosDeviceA
GetShortPathNameW
GetStringTypeW
lstrcpyW
ResetWriteWatch
MoveFileA
ReadConsoleOutputCharacterA
GetACP
RtlMoveMemory
OpenWaitableTimerW
OpenSemaphoreA
GetProfileSectionW
GetConsoleCursorInfo
WriteConsoleW
LoadLibraryW
GlobalHandle
CreateMailslotW
CommConfigDialogW
SetFilePointer
GlobalGetAtomNameA
DebugBreak
GetConsoleScreenBufferInfo
GetCurrentDirectoryA
InitAtomTable
DosDateTimeToFileTime
EnumCalendarInfoExW
FlushConsoleInputBuffer
ContinueDebugEvent
GetModuleHandleW
InterlockedCompareExchange
GetProcessAffinityMask
GetSystemDefaultLCID
HeapUnlock
LoadResource
FindNextFileA
lstrlenW
RemoveDirectoryW
wsock32
WSAGetLastError
recv
getprotobynumber
ord1111
accept
ord1000
ord1141
ord1115
ord1112
ord1142
getservbyname
WSAAsyncGetProtoByName
ord1110
send
ord1113
ord1118
shutdown
closesocket
WSACancelAsyncRequest
bind
__WSAFDIsSet
WSASetLastError
getsockopt
getsockname
WSAStartup
ord1106
listen
WSAUnhookBlockingHook
ord1109
WSACancelBlockingCall
ord1117
socket
select
WSASetBlockingHook
inet_addr
sendto
connect
WSAAsyncGetHostByName
htons
ioctlsocket
ord1140
WEP
ord1107
ord1120
getprotobyname
WSAAsyncGetHostByAddr
ord1108
WSAAsyncSelect
ord1114
ord1116
ord1130
shell32
DoEnvironmentSubstW
ExtractAssociatedIconW
DragQueryFileAorW
SHGetPathFromIDListA
SHEmptyRecycleBinW
ExtractIconExW
ShellAboutA
SHGetInstanceExplorer
ExtractIconW
FindExecutableW
InternalExtractIconListA
RealShellExecuteExA
SHGetNewLinkInfo
SHUpdateRecycleBinIcon
SheGetDirA
RealShellExecuteW
RealShellExecuteExW
CheckEscapesW
ExtractIconEx
SHGetFileInfoW
FreeIconList
SHGetPathFromIDList
ExtractIconExA
SHBrowseForFolderA
SHAppBarMessage
SHGetSpecialFolderPathA
ShellHookProc
SHGetDiskFreeSpaceA
ShellExecuteA
DragQueryPoint
ExtractAssociatedIconExW
ExtractAssociatedIconExA
SHGetDataFromIDListW
DragQueryFileW
SHGetSpecialFolderPathW
SHFileOperation
DuplicateIcon
ShellExecuteExA
SHFreeNameMappings
CommandLineToArgvW
SHInvokePrinterCommandA
DragAcceptFiles
SHGetDataFromIDListA
SHQueryRecycleBinA
SHBrowseForFolderW
SHQueryRecycleBinW
SHGetMalloc
SHFormatDrive
DragQueryFileA
FindExecutableA
ShellExecuteW
DoEnvironmentSubstA
SHGetDesktopFolder
ShellExecuteEx
SHGetFileInfoA
SHBrowseForFolder
SHGetSpecialFolderLocation
ShellExecuteExW
DragFinish
InternalExtractIconListW
DragQueryFile
ExtractIconA
SHGetPathFromIDListW
SHInvokePrinterCommandW
SHChangeNotify
SHGetFileInfo
SHGetSettings
SHFileOperationA
ShellAboutW
SheChangeDirA
SHLoadInProc
SheSetCurDrive
SheChangeDirExW
gdi32
GetOutlineTextMetricsA
GetSystemPaletteEntries
CreateCompatibleDC
SetTextCharacterExtra
FloodFill
GetTextExtentExPointW
SetDIBColorTable
CreateICA
AngleArc
PolylineTo
EndDoc
EndPath
CreateFontIndirectW
SetMapperFlags
SetICMMode
SetBrushOrgEx
SetROP2
SetMagicColors
UnrealizeObject
DescribePixelFormat
CreateMetaFileA
DrawEscape
AnimatePalette
GetBkMode
GetCharacterPlacementW
StrokePath
Chord
CreateEnhMetaFileW
FillPath
CreateCompatibleBitmap
LineDDA
GetMetaFileW
DeleteObject
GetMetaFileBitsEx
CreateEllipticRgn
CancelDC
CopyMetaFileA
SelectObject
GetCharWidth32A
WidenPath
OffsetViewportOrgEx
GetPixelFormat
GdiPlayJournal
GetPaletteEntries
CreateColorSpaceA
ScaleWindowExtEx
ChoosePixelFormat
PlayEnhMetaFile
RemoveFontResourceW
Ellipse
CreateBitmapIndirect
GetCharABCWidthsFloatA
SetBitmapBits
GetViewportExtEx
GetGraphicsMode
ColorMatchToTarget
GetRandomRgn
ScaleViewportExtEx
SelectClipPath
DPtoLP
CreateDiscardableBitmap
SetDIBitsToDevice
SetViewportOrgEx
Polygon
SetStretchBltMode
gdiPlaySpoolStream
GetCharWidthFloatA
CreateSolidBrush
SaveDC
GetEnhMetaFilePaletteEntries
LineTo
GetViewportOrgEx
RectVisible
GetTextExtentPoint32W
ColorCorrectPalette
GetLogColorSpaceW
GetCharABCWidthsA
GetTextExtentPointA
RectInRegion
GetICMProfileW
SetMetaFileBitsEx
GdiPlayScript
PatBlt
ArcTo
GetEnhMetaFileDescriptionA
BeginPath
CombineRgn
CreateRoundRectRgn
PolyDraw
CreatePolyPolygonRgn
GetMiterLimit
CreateRectRgn
GetDeviceCaps
GetDCOrgEx
SetPixel
GetKerningPairsA
GetCharWidthFloatW
GetNearestPaletteIndex
SelectPalette
GetColorAdjustment
StretchBlt
AbortPath
FlattenPath
CreateDIBSection
PolyBezier
GetDIBits
CreateFontW
AddFontResourceW
GetEnhMetaFileHeader
GetSystemPaletteUse
ExtSelectClipRgn
SetEnhMetaFileBits
OffsetClipRgn
UpdateICMRegKeyW
PlayEnhMetaFileRecord
GetTextFaceA
PlgBlt
GetEnhMetaFileW
Arc
RestoreDC
GetMapMode
EnumFontFamiliesExW
GetRegionData
GetTextExtentExPointA
GetTextExtentPoint32A
CopyMetaFileW
CreatePenIndirect
GetStockObject
SwapBuffers
MoveToEx
SetICMProfileW
GetTextAlign
CreateBitmap
PolyTextOutW
PlayMetaFile
CreateHalftonePalette
FillRgn
UpdateICMRegKeyA
BitBlt
EnumFontFamiliesExA
GetNearestColor
PaintRgn
DeleteColorSpace
GetFontData
SetRectRgn
SetLayout
GetMetaRgn
SetSystemPaletteUse
PtVisible
SetWindowOrgEx
GetPath
EnumFontFamiliesW
CreatePalette
CreateEnhMetaFileA
StrokeAndFillPath
CreateDIBPatternBrush
SetFontEnumeration
GetEnhMetaFileA
GetBitmapBits
GetDIBColorTable
GetOutlineTextMetricsW
GetPolyFillMode
ExtCreateRegion
EndPage
CreateColorSpaceW
SetDeviceGammaRamp
AddFontResourceA
GetArcDirection
CreateFontA
ExcludeClipRect
CreateBrushIndirect
GetBoundsRect
SetMapMode
GetICMProfileA
AbortDoc
DeleteDC
EnumFontFamiliesA
GetObjectW
SetTextAlign
SetTextColor
PtInRegion
GetBkColor
GetKerningPairs
UpdateColors
EnumEnhMetaFile
TranslateCharsetInfo
GetLogColorSpaceA
GdiFlush
GetCharacterPlacementA
GetObjectType
SetTextJustification
DeleteEnhMetaFile
SetPixelV
CloseMetaFile
GetCharABCWidthsW
CreateDIBPatternBrushPt
CombineTransform
ResetDCA
SetICMProfileA
IntersectClipRect
SelectClipRgn
StartPage
CreatePolygonRgn
GetTextColor
ResetDCW
PathToRegion
GetRasterizerCaps
GetObjectA
GetCharWidthW
GetWindowOrgEx
CreatePatternBrush
SetMiterLimit
GetDeviceGammaRamp
CreateFontIndirectA
StartDocW
GetMetaFileA
PlayMetaFileRecord
TextOutW
DeviceCapabilitiesExW
PolyBezierTo
GetTextCharacterExtra
TextOutA
GetBitmapDimensionEx
GetColorSpace
SetArcDirection
CopyEnhMetaFileA
StartDocA
CreateHatchBrush
ExtFloodFill
GetClipRgn
SetViewportExtEx
CreatePen
EnumFontsA
ExtCreatePen
Pie
RemoveFontResourceA
user32
DragDetect
EndMenu
ExitWindowsEx
WindowFromPoint
SetWindowPos
DrawMenuBar
CreateMenu
LockWindowUpdate
CharLowerA
PeekMessageW
GetAltTabInfo
DrawAnimatedRects
RegisterDeviceNotificationA
IsCharAlphaNumericW
PostMessageW
IsDialogMessageA
WINNLSEnableIME
DlgDirListW
SetScrollInfo
CharUpperW
DdeFreeDataHandle
GetClassInfoA
GetDoubleClickTime
GetKeyboardLayout
GetClientRect
GetPropA
ChildWindowFromPointEx
CreateDesktopA
GetUpdateRgn
UnregisterDeviceNotification
CascadeChildWindows
GetCursorInfo
SetWindowTextW
CopyAcceleratorTableA
wsprintfA
SetMenu
UnpackDDElParam
GetClipboardFormatNameW
CharToOemBuffW
CreateWindowStationW
GetParent
ToUnicodeEx
CharNextA
SetWindowTextA
SetProcessDefaultLayout
SetSysColors
AdjustWindowRect
GetGuiResources
SwitchDesktop
SetWindowLongA
RegisterClipboardFormatA
CharToOemA
DialogBoxIndirectParamA
DialogBoxParamA
ChangeDisplaySettingsW
CheckRadioButton
GetDlgItem
ActivateKeyboardLayout
MessageBoxIndirectA
ShowScrollBar
GetWindowModuleFileNameW
VkKeyScanExW
DdeDisconnectList
CharLowerW
IsWindow
TileChildWindows
RegisterDeviceNotificationW
CallWindowProcW
GetClassNameW
SystemParametersInfoW
DdeCreateStringHandleW
SetCursor
SetCursorPos
GetMessageA
IsClipboardFormatAvailable
SubtractRect
GetSysColorBrush
GrayStringA
DdeAddData
GetMenuState
RedrawWindow
WinHelpA
ValidateRgn
SetDoubleClickTime
DefDlgProcW
GetDlgItemTextW
DrawFocusRect
TrackPopupMenuEx
LoadStringA
SendDlgItemMessageA
GetListBoxInfo
CreateDialogParamA
GetClipboardViewer
DdeSetUserHandle
LoadImageW
GetOpenClipboardWindow
DlgDirListComboBoxW
AnyPopup
InvalidateRect
ShowOwnedPopups
GetWindow
wvsprintfA
IsWindowUnicode
UnregisterClassA
SetDebugErrorLevel
GetKeyboardLayoutList
EmptyClipboard
SendDlgItemMessageW
GetScrollBarInfo
RealChildWindowFromPoint
DdeImpersonateClient
SetForegroundWindow
EnumChildWindows
CreateWindowExW
DdeUninitialize
CreateDialogIndirectParamA
GetCursor
ShowCursor
SetClipboardViewer
SendMessageTimeoutW
CopyImage
DdeUnaccessData
SetUserObjectSecurity
EnumDesktopWindows
TranslateMDISysAccel
KillTimer
GetNextDlgGroupItem
SetWindowRgn
SetWindowsHookA
ChangeClipboardChain
SendMessageW
DdeInitializeW
AppendMenuA
CallMsgFilterA
OemKeyScan
CreateDialogIndirectParamW
SetUserObjectInformationW
GetMenuStringW
PostThreadMessageA
EnableWindow
ArrangeIconicWindows
ScreenToClient
PostQuitMessage
OemToCharBuffA
LoadAcceleratorsA
GetWindowTextLengthW
GetScrollPos
GetGUIThreadInfo
GetTabbedTextExtentW
IsChild
DdeGetLastError
GetForegroundWindow
InflateRect
CopyAcceleratorTableW
DefFrameProcA
EqualRect
GetCaretPos
GetWindowDC
GetCursorPos
ChangeDisplaySettingsA
AttachThreadInput
MessageBoxExA
IsCharUpperW
SendNotifyMessageW
MapVirtualKeyExW
FrameRect
GetComboBoxInfo
SetMenuItemInfoW
ReuseDDElParam
SetActiveWindow
CreateIconFromResource
GetTabbedTextExtentA
DdeCmpStringHandles
CallMsgFilterW
CascadeWindows
SetScrollPos
SetFocus
SetWindowPlacement
CreateDesktopW
GetMenuItemRect
IsCharAlphaW
LoadMenuIndirectA
GetSystemMenu
SetDlgItemTextW
ChangeMenuA
GetKBCodePage
NotifyWinEvent
DlgDirSelectComboBoxExW
EnumPropsExW
EnumDisplaySettingsA
BroadcastSystemMessage
CreateWindowExA
SetDlgItemInt
GetPropW
DlgDirSelectExA
ClientToScreen
LoadCursorW
DestroyWindow
SetClipboardData
LoadMenuW
RegisterClassExW
TrackPopupMenu
SetCaretBlinkTime
RegisterClassA
IsWindowVisible
GetAncestor
IsDialogMessageW
PackDDElParam
EnumWindows
SwapMouseButton
CreateMDIWindowA
OpenWindowStationA
CreatePopupMenu
EnumPropsA
FillRect
AdjustWindowRectEx
MonitorFromWindow
OemToCharBuffW
CallMsgFilter
VkKeyScanExA
GetTitleBarInfo
OpenClipboard
DrawIcon
GetMonitorInfoW
ReleaseCapture
GetMenuStringA
FreeDDElParam
TranslateMessage
CharUpperBuffA
CreateCursor
SetLastErrorEx
RealGetWindowClass
VkKeyScanA
GetNextDlgTabItem
SetMenuItemBitmaps
SetMenuItemInfoA
CreateDialogParamW
GrayStringW
RemovePropW
SetPropA
GetWindowLongA
GetKeyboardLayoutNameW
LoadCursorFromFileW
MsgWaitForMultipleObjectsEx
DestroyMenu
DdeAccessData
CallWindowProcA
GetClipboardOwner
MapWindowPoints
DestroyCaret
CloseClipboard
DrawFrameControl
LoadKeyboardLayoutA
LoadKeyboardLayoutW
GetUserObjectSecurity
GetKeyboardType
RegisterClassExA
ClipCursor
BlockInput
DdeNameService
GetClipboardSequenceNumber
SetMenuInfo
GetUserObjectInformationA
BeginDeferWindowPos
OffsetRect
SetShellWindow
ChangeDisplaySettingsExW
CharToOemW
SetClassLongW
LoadMenuIndirectW
GetDialogBaseUnits
GetWindowLongW
GetClassLongA
FindWindowExA
ReplyMessage
GetUpdateRect
TabbedTextOutA
GetMessagePos
IsDlgButtonChecked
MessageBoxExW
CreateIcon
CreateAcceleratorTableW
EnableScrollBar
FindWindowExW
PtInRect
CharPrevW
DestroyAcceleratorTable
GetDesktopWindow
GetInputDesktop
UnregisterHotKey
ToUnicode
GetMenuCheckMarkDimensions
CharUpperA
advapi32
CryptCreateHash
LookupAccountSidW
RegCreateKeyExA
CryptImportKey
RegSaveKeyA
CryptDecrypt
CryptEncrypt
RegCreateKeyA
CryptDestroyHash
RevertToSelf
CryptSetKeyParam
comdlg32
ChooseFontW
ReplaceTextW
ReplaceTextA
ChooseFontA
ChooseColorW
GetSaveFileNameA
GetFileTitleA
Sections
.text Size: 103KB - Virtual size: 102KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.sdata Size: 82KB - Virtual size: 81KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bss Size: 62KB - Virtual size: 62KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 129KB - Virtual size: 128KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE