Static task
static1
Behavioral task
behavioral1
Sample
9667dd99a47cd32a0c0679504eb71e27360db0e0e27132c6eb76929e204bb47c.exe
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral2
Sample
9667dd99a47cd32a0c0679504eb71e27360db0e0e27132c6eb76929e204bb47c.exe
Resource
win10v2004-20220901-en
windows10-2004-x64
General
-
Target
9667dd99a47cd32a0c0679504eb71e27360db0e0e27132c6eb76929e204bb47c
-
Size
564KB
-
MD5
ac5ba9f008d0b1a9239b14256f5b693a
-
SHA1
5bacdca0eed108a339ba8411082cb5bb4ba99f1c
-
SHA256
9667dd99a47cd32a0c0679504eb71e27360db0e0e27132c6eb76929e204bb47c
-
SHA512
f5d2c81eedef048f0f95285a17ffb914fba2fefc3b6b91e50a0de0ecbc59a66c2bf6a100c2a4bb9f795d36ea21fa3e8ae13ff91983e76ce6d0f8d583a6b5b826
-
SSDEEP
12288:gGNEkjMrmS12v+ZtI33OslDLBbsWTjHvf+V3uVfj:7EkjMrV12v+8h9sW/PmRuVf
Malware Config
Signatures
Files
-
9667dd99a47cd32a0c0679504eb71e27360db0e0e27132c6eb76929e204bb47c.exe windows x86
2d65422be846553a4df50a9c492ccd6b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
CreateBrushIndirect
MoveToEx
GetRgnBox
FloodFill
TextOutW
CloseEnhMetaFile
SetPolyFillMode
ExtTextOutA
StartDocA
GetObjectW
GetCharWidthFloatA
TextOutA
GetWindowOrgEx
LineTo
PolylineTo
GetCurrentObject
CreatePenIndirect
GetCharWidthW
GetBkColor
GetViewportExtEx
Ellipse
SetMiterLimit
GdiFlush
EnumObjects
PlayMetaFile
SetPaletteEntries
GdiComment
SetWinMetaFileBits
CombineRgn
ExtCreateRegion
SelectPalette
GetDIBColorTable
GetKerningPairsA
CreatePolyPolygonRgn
EnumFontFamiliesExA
CreateEllipticRgn
SetAbortProc
CreateHatchBrush
GetObjectType
PolyPolyline
SetTextAlign
GetWindowExtEx
SetBitmapBits
PtVisible
OffsetWindowOrgEx
PolyBezier
SetGraphicsMode
BeginPath
DeleteObject
GetPolyFillMode
GetTextCharsetInfo
AbortDoc
PlgBlt
GetBoundsRect
CreateDIBSection
EndDoc
RealizePalette
PlayMetaFileRecord
EndPath
UnrealizeObject
PtInRegion
GetBrushOrgEx
SetColorAdjustment
Polyline
EnumMetaFile
Rectangle
ExcludeClipRect
StrokeAndFillPath
CreateFontIndirectA
SetRectRgn
OffsetViewportOrgEx
GetPaletteEntries
GetTextExtentPoint32W
SetStretchBltMode
RectInRegion
RoundRect
SetPixel
GetDIBits
AngleArc
LPtoDP
SetWindowOrgEx
PlayEnhMetaFile
SetBkColor
FrameRgn
SetPixelV
GetGlyphOutlineA
CreateEllipticRgnIndirect
ArcTo
GetTextFaceA
GetAspectRatioFilterEx
DeleteMetaFile
BitBlt
ExtEscape
GetDeviceCaps
CreatePolygonRgn
SetViewportOrgEx
GetRegionData
CopyMetaFileW
PolyDraw
StretchDIBits
CreateEnhMetaFileA
StretchBlt
GetCharABCWidthsFloatA
GetROP2
GetEnhMetaFilePaletteEntries
SetTextColor
Arc
SaveDC
GetObjectA
EnumFontsA
MaskBlt
DeleteDC
GetTextExtentPoint32A
SetDIBitsToDevice
GetMiterLimit
CreateDCA
CreateCompatibleBitmap
ExtSelectClipRgn
EndPage
SetTextJustification
SetMetaFileBitsEx
GetTextCharacterExtra
CreateRectRgnIndirect
DeleteEnhMetaFile
GetMetaFileA
GetClipBox
GetTextExtentPointA
GetTextColor
OffsetClipRgn
GetTextAlign
GetCharABCWidthsA
GetNearestColor
CreateRoundRectRgn
DrawEscape
CreatePen
SetMapperFlags
SetMapMode
RectVisible
ScaleWindowExtEx
CreateDiscardableBitmap
IntersectClipRect
SetViewportExtEx
RestoreDC
FlattenPath
StartPage
GetTextMetricsA
GetSystemPaletteEntries
DPtoLP
CreatePalette
GetStockObject
GetClipRgn
GetPath
GetDCOrgEx
GetColorAdjustment
GetArcDirection
OffsetRgn
ExtFloodFill
EnumEnhMetaFile
GetNearestPaletteIndex
AnimatePalette
GetPixel
CreateRectRgn
Polygon
SelectClipRgn
CreateICA
CreateCompatibleDC
SetROP2
CreateFontA
SelectObject
GetViewportOrgEx
CreateDIBitmap
CreatePatternBrush
GetFontData
EnumFontFamiliesA
Escape
GetWinMetaFileBits
FillRgn
SetEnhMetaFileBits
SetBkMode
AbortPath
ExtTextOutW
WidenPath
GetCurrentPositionEx
CreateDIBPatternBrushPt
CreateSolidBrush
CreateBitmap
GetMapMode
ScaleViewportExtEx
SetWindowExtEx
CopyMetaFileA
GetStretchBltMode
EnumFontFamiliesExW
SetArcDirection
StrokePath
EnumFontsW
SetTextCharacterExtra
PatBlt
kernel32
lstrcmpA
GetVolumeInformationA
GetFileTime
CreateProcessA
HeapAlloc
lstrcpynA
GetConsoleOutputCP
LoadResource
RtlUnwind
OpenFileMappingA
LCMapStringA
IsDebuggerPresent
GetVersion
GetCPInfo
GetStdHandle
WriteFile
GetModuleFileNameA
GlobalLock
CreateDirectoryA
GetFileAttributesA
_lread
GetThreadLocale
GetACP
GetLastError
FindNextFileA
SetCurrentDirectoryW
GetDateFormatA
FindFirstFileA
TlsGetValue
Sleep
GetEnvironmentStringsW
GetCurrentProcessId
CreateFileA
CopyFileW
GetCommandLineA
InterlockedIncrement
lstrcpyA
GetCurrentProcess
TerminateProcess
GlobalUnlock
MoveFileExA
FreeResource
GetCurrentThreadId
GlobalAddAtomA
SystemTimeToFileTime
GetLogicalDriveStringsA
GetModuleHandleW
SetLastError
MoveFileW
EnumSystemLocalesA
IsBadWritePtr
TlsSetValue
HeapDestroy
WaitForSingleObject
GetDateFormatW
VirtualUnlock
ResetEvent
GetVersionExA
FindResourceA
GetConsoleMode
IsDBCSLeadByteEx
MoveFileA
FatalAppExitA
CompareStringW
AreFileApisANSI
DeleteCriticalSection
WriteConsoleA
GetCurrentThread
GetPrivateProfileIntA
GetTempFileNameA
lstrcmpiA
SetFileAttributesA
UnmapViewOfFile
RemoveDirectoryA
GetTempPathA
IsValidCodePage
LCMapStringW
GlobalHandle
GetSystemInfo
WinExec
RaiseException
DuplicateHandle
HeapSize
DeleteFileA
GetProcAddress
OpenMutexA
FindNextFileW
SetErrorMode
SetEvent
ConvertDefaultLocale
GetDriveTypeA
GetShortPathNameA
TlsAlloc
LocalFileTimeToFileTime
FileTimeToDosDateTime
FormatMessageW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
VirtualProtect
FlushFileBuffers
LocalAlloc
LockResource
GetDiskFreeSpaceA
GetFileSize
PeekNamedPipe
IsBadCodePtr
CreateThread
HeapReAlloc
InitializeCriticalSection
GetCommandLineW
IsDBCSLeadByte
GetModuleFileNameW
GetProcessVersion
lstrlenW
GetFileType
OutputDebugStringA
CreateFileMappingA
MulDiv
WriteConsoleW
GlobalAlloc
FileTimeToLocalFileTime
LocalReAlloc
DeleteFileW
GlobalFindAtomA
SetEndOfFile
WideCharToMultiByte
GetPrivateProfileStringA
GlobalDeleteAtom
SetStdHandle
FindFirstFileW
GetStartupInfoA
GetSystemDirectoryW
GetLocaleInfoW
GetTimeZoneInformation
CreateMutexA
FileTimeToSystemTime
GetOEMCP
GetFullPathNameA
LoadLibraryW
LocalFree
CloseHandle
MultiByteToWideChar
ExitProcess
WaitForMultipleObjectsEx
LockFile
lstrcatA
lstrcmpW
FormatMessageA
GetModuleHandleA
IsValidLocale
CopyFileA
CompareStringA
ReadFile
LoadLibraryA
VirtualAlloc
GetCurrentDirectoryA
GetProcessWorkingSetSize
GetSystemDirectoryA
GetDiskFreeSpaceW
GetTickCount
FreeEnvironmentStringsA
TlsFree
Process32Next
InterlockedExchange
FreeLibrary
SuspendThread
GetConsoleCP
GetTempPathW
HeapFree
GetEnvironmentVariableA
GetSystemTime
GetSystemDefaultLangID
SetHandleCount
GetStartupInfoW
VirtualQuery
UnlockFile
CreateEventW
GetEnvironmentStrings
GlobalFree
HeapCreate
InterlockedDecrement
QueryPerformanceCounter
GetStringTypeExA
VirtualFree
SetFilePointer
EnterCriticalSection
lstrlenA
GetTimeFormatA
GetStringTypeW
GlobalGetAtomNameA
GetSystemTimeAsFileTime
GetLocaleInfoA
GetUserDefaultLCID
FindClose
CreateEventA
LeaveCriticalSection
GetProcessHeap
SetEnvironmentVariableA
GetStringTypeA
InterlockedCompareExchange
GetVersionExW
SetConsoleCtrlHandler
FreeEnvironmentStringsW
advapi32
GetFileSecurityW
InitializeSecurityDescriptor
CloseServiceHandle
CreateProcessAsUserA
RegSetValueExW
SetServiceStatus
GetFileSecurityA
RegCreateKeyExW
SetFileSecurityA
RegDeleteKeyW
FreeSid
RegOpenKeyW
RegEnumValueA
CryptReleaseContext
EqualSid
IsValidSid
ImpersonateSelf
AddAccessAllowedAce
SetSecurityDescriptorDacl
SetTokenInformation
RegDeleteKeyA
RegCloseKey
QueryServiceStatus
RegOpenKeyExW
RegQueryValueExW
OpenThreadToken
GetAclInformation
RegQueryValueA
GetSecurityDescriptorControl
RegDeleteValueW
OpenSCManagerA
AllocateAndInitializeSid
RegOpenKeyExA
RegEnumKeyExA
CopySid
RegCreateKeyA
RegQueryValueExA
RegOpenCurrentUser
StartServiceCtrlDispatcherA
GetLengthSid
DuplicateTokenEx
GetUserNameA
ReportEventA
RegOpenKeyA
GetTokenInformation
RegEnumKeyExW
RegCreateKeyExA
CryptExportKey
LookupPrivilegeValueA
RegDeleteValueA
RegSetValueA
RegQueryValueW
StartServiceA
RegEnumKeyA
OpenProcessToken
RegEnumValueW
CryptDestroyHash
InitializeAcl
ConvertStringSidToSidA
CryptGenKey
RegSetValueExA
RegisterServiceCtrlHandlerA
comctl32
ImageList_LoadImageW
ImageList_GetIcon
DestroyPropertySheetPage
ImageList_EndDrag
ImageList_GetIconSize
ImageList_Destroy
ImageList_SetBkColor
ImageList_DragShowNolock
ImageList_Draw
PropertySheetW
ImageList_Read
ImageList_ReplaceIcon
ImageList_DrawIndirect
ImageList_DrawEx
_TrackMouseEvent
ImageList_Create
ImageList_Remove
ImageList_AddMasked
ImageList_LoadImageA
ImageList_GetImageCount
ImageList_Add
ImageList_GetImageInfo
ImageList_Write
ImageList_SetOverlayImage
ImageList_DragEnter
ImageList_DragLeave
ImageList_Replace
CreatePropertySheetPageW
ImageList_DragMove
InitCommonControlsEx
ord17
PropertySheetA
ole32
CoMarshalInterface
CoInitializeEx
CreateFileMoniker
WriteClassStg
OleCreateFromFile
OleFlushClipboard
OleSetContainedObject
CreateILockBytesOnHGlobal
CreateDataAdviseHolder
OleCreateMenuDescriptor
CreateStreamOnHGlobal
OleCreateFromData
OleQueryLinkFromData
StringFromGUID2
CreateGenericComposite
OleSetClipboard
CoUninitialize
OleUninitialize
WriteFmtUserTypeStg
OleDuplicateData
OleDestroyMenuDescriptor
RegisterDragDrop
OleSetMenuDescriptor
CLSIDFromString
OleIsCurrentClipboard
CreateBindCtx
OleCreateLinkFromData
SetConvertStg
OleInitialize
OleCreateLinkToFile
CoGetMalloc
OleSaveToStream
CoInitialize
CoLockObjectExternal
OleGetClipboard
ReadFmtUserTypeStg
OleRun
CreateItemMoniker
StringFromCLSID
CoRegisterClassObject
CoCreateInstance
WriteClassStm
OleCreateStaticFromData
StgCreateDocfile
StgOpenStorageOnILockBytes
GetHGlobalFromStream
CoRegisterMessageFilter
OleLoad
IsAccelerator
OleSave
OleLockRunning
OleTranslateAccelerator
CoGetClassObject
OleCreate
OleGetIconOfClass
CoTreatAsClass
CoReleaseMarshalData
CLSIDFromProgID
CoDisconnectObject
ReadClassStg
OleRegGetUserType
ReleaseStgMedium
RevokeDragDrop
OleQueryCreateFromData
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
CoTaskMemFree
CoFreeUnusedLibraries
GetHGlobalFromILockBytes
GetRunningObjectTable
DoDragDrop
CoRevokeClassObject
winspool.drv
ClosePrinter
SetPrinterDataW
DeviceCapabilitiesA
ord204
GetJobW
DocumentPropertiesW
FreePrinterNotifyInfo
FindFirstPrinterChangeNotification
EnumPortsW
OpenPrinterA
DocumentPropertiesA
FindNextPrinterChangeNotification
OpenPrinterW
GetPrinterA
SetJobW
GetJobA
user32
SendMessageW
ShowCaret
GetMessageW
CloseClipboard
GetWindowTextLengthA
SetWindowTextW
RemovePropA
IntersectRect
BringWindowToTop
CharNextA
GetLastActivePopup
CharUpperA
GetMenuItemID
GetKeyboardLayout
GetMenuItemInfoA
GetMessageA
IsZoomed
MessageBoxW
CallWindowProcA
IsDialogMessageA
GetWindowTextLengthW
TrackPopupMenuEx
RemoveMenu
DeferWindowPos
ReleaseCapture
IsWindow
GetKeyNameTextW
GetSysColorBrush
LoadCursorA
ExcludeUpdateRgn
UnhookWindowsHookEx
SetMenuItemInfoW
ClientToScreen
UnionRect
UnpackDDElParam
TrackPopupMenu
RegisterWindowMessageA
GetPropW
PostQuitMessage
GetNextDlgGroupItem
GetWindowPlacement
DrawFocusRect
FlashWindow
GetCursorPos
GetClassInfoW
CopyRect
DdeCreateStringHandleA
SetWindowPos
PostMessageA
CopyIcon
SetTimer
GetNextDlgTabItem
WinHelpA
DispatchMessageW
SetFocus
RegisterClassExA
GetMenuCheckMarkDimensions
EqualRect
GetClassLongA
BeginPaint
DrawTextExW
OpenClipboard
GetClassNameW
IsDialogMessageW
SetClipboardData
DestroyMenu
DestroyAcceleratorTable
SetMenu
CallWindowProcW
GetDlgCtrlID
ValidateRect
AdjustWindowRectEx
GetDlgItemInt
wsprintfA
CreateAcceleratorTableW
SystemParametersInfoA
RedrawWindow
GetMessagePos
GetActiveWindow
InflateRect
EnumChildWindows
SetRect
GetWindowDC
SetScrollPos
SetWindowLongW
DestroyIcon
GetParent
SetDlgItemTextA
WindowFromPoint
MoveWindow
GetWindowLongA
ShowScrollBar
EmptyClipboard
KillTimer
MapDialogRect
CallNextHookEx
ModifyMenuA
MapWindowPoints
RegisterClipboardFormatW
GetWindowThreadProcessId
SetRectEmpty
UnregisterClassW
TranslateMessage
IsCharLowerW
LoadMenuW
GetSystemMenu
ScrollWindowEx
CreatePopupMenu
GetMenuItemCount
HideCaret
GetClassInfoA
FindWindowA
PeekMessageA
ReuseDDElParam
InsertMenuItemW
LoadStringW
SetActiveWindow
EnableWindow
RegisterClassW
SetMenuDefaultItem
MonitorFromPoint
SetForegroundWindow
CreateDialogIndirectParamA
SetWindowRgn
ScrollWindow
GetKeyState
MessageBoxA
CharUpperW
GetForegroundWindow
GetWindowTextW
GetCapture
GetMonitorInfoW
ShowOwnedPopups
GetMessageTime
LoadIconW
MapVirtualKeyA
DrawTextA
UnregisterClassA
DefWindowProcW
DestroyWindow
SetCapture
DispatchMessageA
GetSubMenu
GetFocus
LoadIconA
EnableMenuItem
GrayStringA
DrawEdge
GetMenu
GetDoubleClickTime
GetMenuState
PtInRect
SetWindowPlacement
DefDlgProcA
LoadBitmapA
SetWindowTextA
ShowWindow
SetCursor
TranslateAcceleratorA
GetSysColor
CreateWindowExA
GetWindowLongW
IsWindowVisible
RegisterWindowMessageW
SetClipboardViewer
WinHelpW
IsMenu
DrawTextExA
FrameRect
AttachThreadInput
GetDCEx
DrawMenuBar
RegisterHotKey
SendMessageA
InvalidateRect
DefWindowProcA
CreateDialogIndirectParamW
UpdateWindow
EndPaint
MapVirtualKeyExW
LoadBitmapW
LoadMenuA
LoadImageA
AppendMenuW
GetTabbedTextExtentA
GetUserObjectInformationW
DrawIcon
GetDC
ReleaseDC
GetClientRect
PeekMessageW
DrawIconEx
DestroyCursor
PostThreadMessageA
GetScrollInfo
LoadAcceleratorsA
GetDesktopWindow
ExitWindowsEx
MsgWaitForMultipleObjects
SetDlgItemTextW
GetClipboardData
SetDlgItemInt
GetClassNameA
FindWindowW
DeleteMenu
GetKeyboardState
CheckRadioButton
ChildWindowFromPointEx
GetMenuItemInfoW
GetSystemMetrics
RemovePropW
MessageBeep
BeginDeferWindowPos
AppendMenuA
GetDlgItem
GetWindowRect
IsRectEmpty
GetClassInfoExA
CheckMenuItem
SetCaretPos
PostMessageW
DrawFrameControl
LockWindowUpdate
GetWindow
CharNextW
DdePostAdvise
SetWindowLongA
RegisterClassA
GetScrollPos
SetMenuItemBitmaps
EndDialog
CopyAcceleratorTableA
FillRect
SetWindowsHookExA
IsChild
OffsetRect
EndDeferWindowPos
GetWindowTextA
GetDlgItemTextW
DefFrameProcA
IsWindowEnabled
ScreenToClient
TabbedTextOutA
SendDlgItemMessageA
Sections
.text Size: 108KB - Virtual size: 104KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 280KB - Virtual size: 279KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 92KB - Virtual size: 103KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 80KB - Virtual size: 77KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ