Static task
static1
Behavioral task
behavioral1
Sample
f8dc3a6c5b08f914d8548fec10fd199656457e2bc26083241f4f140f2e04b03b.exe
Resource
win7-20220812-en
windows7-x64
Behavioral task
behavioral2
Sample
f8dc3a6c5b08f914d8548fec10fd199656457e2bc26083241f4f140f2e04b03b.exe
Resource
win10v2004-20220812-en
windows10-2004-x64
General
-
Target
f8dc3a6c5b08f914d8548fec10fd199656457e2bc26083241f4f140f2e04b03b
-
Size
363KB
-
MD5
303b9211605e9064e368e698cb46e85b
-
SHA1
5e2520238b3ee49965d03a30b886c4473324be17
-
SHA256
f8dc3a6c5b08f914d8548fec10fd199656457e2bc26083241f4f140f2e04b03b
-
SHA512
437d791a6ff11c6875aa085e0321110619cb2641b39213eb167241c5f113c39484dc9962a5bc2af26d6b450bf6a9a28d0ead60536efd9d8720c91bc68d0a2ea1
-
SSDEEP
6144:1Vgqh6CGywmLG+tHV2T6y51jOU/M1OU2SbglMgHioxKCcYD:Th6CZwmjQ+y54U/S2SbgCoxjD
Malware Config
Signatures
Files
-
f8dc3a6c5b08f914d8548fec10fd199656457e2bc26083241f4f140f2e04b03b.exe windows x86
fe728525bae3fc9d5509f1d529b2a307
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCommTimeouts
ExpandEnvironmentStringsW
CommConfigDialogW
WriteFile
GetNamedPipeHandleStateA
GetPrivateProfileStringW
WritePrivateProfileSectionW
InterlockedCompareExchange
GetStringTypeA
OpenMutexW
SetProcessShutdownParameters
SetLocalTime
GetCommProperties
GetComputerNameW
ConvertDefaultLocale
SetEnvironmentVariableA
CreateEventW
OpenMutexA
InterlockedExchange
GetCurrentProcess
VirtualProtectEx
LockResource
DefineDosDeviceW
LoadLibraryW
RequestWakeupLatency
AddAtomA
TlsGetValue
GetHandleInformation
EnumCalendarInfoA
ReadConsoleOutputAttribute
EndUpdateResourceA
SetConsoleTextAttribute
LocalAlloc
CreateFileMappingW
CommConfigDialogA
TerminateProcess
GetNumberOfConsoleInputEvents
OutputDebugStringA
SetVolumeLabelW
DeviceIoControl
FormatMessageA
GetTapeParameters
LocalFileTimeToFileTime
ReadFileScatter
GetThreadContext
GetFileAttributesW
EnumTimeFormatsW
ContinueDebugEvent
IsBadHugeWritePtr
FreeResource
GetSystemDefaultLangID
lstrcmpA
IsSystemResumeAutomatic
GetSystemPowerStatus
QueryDosDeviceW
LocalHandle
_lread
GetPrivateProfileSectionNamesW
FatalExit
DebugActiveProcess
FillConsoleOutputCharacterW
Heap32ListNext
GetCurrencyFormatA
FindFirstChangeNotificationW
GetTickCount
GetCurrentThreadId
WaitForMultipleObjectsEx
GetConsoleOutputCP
WriteProfileSectionW
Module32First
WinExec
GetLocalTime
SetDefaultCommConfigA
SetMailslotInfo
GetCurrentDirectoryW
lstrcatW
RemoveDirectoryW
GetDriveTypeW
GetProcessHeaps
GetTapeStatus
GetExitCodeThread
HeapReAlloc
GetCalendarInfoW
GetSystemDirectoryA
ExpandEnvironmentStringsA
FlushConsoleInputBuffer
GetThreadLocale
HeapAlloc
ResumeThread
InterlockedIncrement
GetFileTime
HeapSize
GetEnvironmentVariableW
WaitCommEvent
GetConsoleScreenBufferInfo
FindNextFileA
ReadProcessMemory
FlushFileBuffers
FillConsoleOutputCharacterA
GetVersion
GetCommConfig
DeleteAtom
ReadConsoleA
GetVolumeInformationW
CreateProcessA
GetCPInfoExW
QueryPerformanceCounter
RaiseException
GetConsoleTitleA
GlobalDeleteAtom
GlobalSize
InterlockedDecrement
CreateEventA
CallNamedPipeW
HeapCompact
GetFileAttributesExA
WriteConsoleOutputA
GlobalAlloc
GetSystemDirectoryW
GetTempFileNameW
lstrlenA
SetConsoleActiveScreenBuffer
FindNextFileW
FindFirstFileW
GetCPInfo
GetModuleHandleW
SetCommConfig
VirtualFreeEx
Process32First
GetDiskFreeSpaceW
GetStdHandle
CreateDirectoryA
GetStartupInfoW
ReadConsoleOutputCharacterW
lstrcpyW
BeginUpdateResourceW
SetConsoleCP
lstrlenW
CompareFileTime
lstrcmpiW
OutputDebugStringW
WriteConsoleOutputCharacterW
GlobalLock
CancelDeviceWakeupRequest
WaitNamedPipeA
ReadConsoleOutputW
LoadResource
SetLocaleInfoA
_hread
WritePrivateProfileStructA
GetSystemTimeAsFileTime
WaitForSingleObjectEx
EnumDateFormatsW
EnumResourceTypesW
SetCalendarInfoA
lstrcpyA
GetProcessAffinityMask
GlobalUnlock
SetHandleCount
GetSystemInfo
LocalFree
BackupWrite
GetMailslotInfo
Heap32Next
GetSystemTime
OpenEventA
MoveFileA
ReadConsoleOutputCharacterA
SleepEx
CreateMailslotA
IsBadStringPtrA
TlsFree
WriteFileEx
GetCurrentThread
WriteConsoleOutputCharacterA
GlobalGetAtomNameW
CreateRemoteThread
IsBadHugeReadPtr
GetLargestConsoleWindowSize
IsBadReadPtr
EnumResourceLanguagesA
GetLongPathNameW
GetProfileSectionW
EnumSystemLocalesA
SystemTimeToTzSpecificLocalTime
FindCloseChangeNotification
CreateDirectoryW
SetSystemTimeAdjustment
SetThreadPriority
GetModuleFileNameA
EnumSystemCodePagesA
PeekConsoleInputA
GetThreadSelectorEntry
SetFileAttributesW
CreateDirectoryExA
SetProcessWorkingSetSize
WriteConsoleW
FindFirstChangeNotificationA
GetThreadTimes
GlobalMemoryStatus
GetBinaryTypeW
SetPriorityClass
lstrcmpW
GetConsoleCP
GetProfileSectionA
GetPrivateProfileIntW
SetFileApisToOEM
OpenSemaphoreA
TerminateThread
CreateMutexA
ReadConsoleInputW
HeapWalk
WriteConsoleInputA
CreateIoCompletionPort
VerLanguageNameW
DisconnectNamedPipe
GetVolumeInformationA
GetStartupInfoA
ClearCommError
LocalCompact
IsBadWritePtr
SetFileAttributesA
GetModuleHandleA
GetCommState
FillConsoleOutputAttribute
ConnectNamedPipe
WriteProfileStringA
EnumDateFormatsA
SetCommState
SetDefaultCommConfigW
CreateMutexW
BuildCommDCBW
GlobalFindAtomA
UnhandledExceptionFilter
GlobalWire
HeapValidate
GetTapePosition
GetProcAddress
PulseEvent
GlobalFlags
GetLocaleInfoW
TransmitCommChar
GetBinaryTypeA
FindFirstFileA
EnumCalendarInfoW
GetOEMCP
EraseTape
GetTimeZoneInformation
GetPrivateProfileSectionNamesA
RemoveDirectoryA
SetConsoleCursorPosition
MoveFileW
GetVersionExA
IsBadCodePtr
SetFileTime
GetThreadPriority
GetFileSize
UnlockFile
FatalAppExitA
GetDriveTypeA
SuspendThread
OpenEventW
user32
LoadMenuW
CopyAcceleratorTableA
EnumDesktopWindows
DestroyWindow
CreateAcceleratorTableA
ShowWindow
EmptyClipboard
GetMenuState
TranslateMessage
TranslateAcceleratorW
GetWindowRect
EndDialog
GetWindowRgn
AdjustWindowRect
GetTabbedTextExtentW
GetKeyboardLayoutNameA
GetPriorityClipboardFormat
SetWindowsHookA
SetTimer
IsDialogMessageA
LookupIconIdFromDirectoryEx
SetUserObjectInformationA
GetClipboardViewer
GetClassWord
CharPrevA
SetScrollPos
GetCaretBlinkTime
GetDlgItemTextW
GetUserObjectSecurity
HideCaret
ArrangeIconicWindows
GetScrollPos
SetWindowContextHelpId
GetScrollRange
SwapMouseButton
MsgWaitForMultipleObjectsEx
LoadMenuA
GetSysColorBrush
InsertMenuA
GetWindowTextA
CopyAcceleratorTableW
GetClassInfoExA
SetClipboardViewer
MenuItemFromPoint
EnumThreadWindows
DispatchMessageA
LoadKeyboardLayoutW
SetFocus
CopyImage
CharLowerW
OpenWindowStationW
GetDlgItemTextA
GetCapture
CharNextA
OpenDesktopW
SetMenuContextHelpId
SetWindowLongW
GetMenuItemRect
GetDlgItemInt
DrawMenuBar
IsCharLowerA
SetDoubleClickTime
SetMenuDefaultItem
CreatePopupMenu
DialogBoxIndirectParamW
TrackPopupMenu
GetForegroundWindow
ReleaseDC
GetMenuContextHelpId
GetWindowTextLengthA
GetClipboardFormatNameW
CreateAcceleratorTableW
DialogBoxParamW
GetMessageA
GetMessageW
GetClipboardOwner
GetKeyNameTextW
GetDlgItem
DrawAnimatedRects
CharPrevExA
SetDebugErrorLevel
GetClassNameW
IsWindowEnabled
UnregisterClassW
GetScrollInfo
mouse_event
SetMessageExtraInfo
MapVirtualKeyW
GetUserObjectInformationW
EnumWindows
GetKeyboardLayoutList
DrawFrameControl
EnumClipboardFormats
GetWindowWord
CreateDialogParamW
LoadAcceleratorsA
CreateIconFromResourceEx
ReplyMessage
CallMsgFilterA
IsCharAlphaW
SwitchDesktop
LoadCursorFromFileW
CopyIcon
SendMessageCallbackW
GetMenuItemCount
GetClipCursor
LoadBitmapA
CreateMDIWindowA
EndPaint
ChangeDisplaySettingsExW
InsertMenuItemW
SetScrollRange
GetClassInfoExW
SendDlgItemMessageA
ModifyMenuA
VkKeyScanExW
CreateIcon
EnumPropsExW
CallNextHookEx
DispatchMessageW
GetActiveWindow
CheckRadioButton
SetDlgItemTextA
WaitForInputIdle
SetWindowsHookExW
DefFrameProcA
RegisterClassW
VkKeyScanA
RegisterWindowMessageA
GetWindow
ShowCursor
DefDlgProcA
DlgDirSelectComboBoxExW
RemovePropW
IsMenu
SwitchToThisWindow
EnumPropsW
OpenDesktopA
ChangeDisplaySettingsExA
GetOpenClipboardWindow
CopyRect
GetWindowContextHelpId
LoadStringA
GetWindowDC
AdjustWindowRectEx
GetIconInfo
TabbedTextOutA
RedrawWindow
DlgDirListComboBoxA
UnregisterClassA
DefDlgProcW
WindowFromPoint
ExitWindowsEx
GrayStringW
GetSysColor
GetMenuItemID
CloseDesktop
CreateDesktopA
GetClipboardData
GetDoubleClickTime
ShowOwnedPopups
GetMenuDefaultItem
IsCharAlphaNumericA
PostThreadMessageW
InvalidateRgn
GetDC
CloseClipboard
CheckDlgButton
SetMenuItemInfoW
DestroyIcon
CreateDesktopW
ValidateRgn
EnableMenuItem
LoadCursorW
InvalidateRect
OpenIcon
GetFocus
SetWindowRgn
ToAscii
KillTimer
GetWindowPlacement
SetDlgItemTextW
SendMessageCallbackA
SetUserObjectInformationW
CharLowerBuffA
SetThreadDesktop
UnhookWindowsHookEx
WaitMessage
GetTopWindow
SendMessageTimeoutW
CreateCursor
GetMenuStringA
RegisterClassExA
MessageBoxExA
wsprintfA
ToUnicodeEx
RegisterHotKey
EnumDesktopsA
CreateDialogIndirectParamA
IntersectRect
LoadIconA
EnumPropsA
GetWindowThreadProcessId
CreateDialogParamA
ScrollWindow
GetClassInfoA
SetParent
CreateWindowExW
MessageBoxIndirectA
VkKeyScanW
SendMessageW
CreateIconIndirect
SetCapture
SendMessageTimeoutA
MapVirtualKeyExA
FillRect
ExcludeUpdateRgn
RegisterWindowMessageW
GetLastActivePopup
ValidateRect
GetKeyNameTextA
EqualRect
LoadImageW
TranslateAcceleratorA
wvsprintfA
MapDialogRect
LoadCursorA
GetMenuItemInfoW
gdi32
GetMiterLimit
GetBitmapBits
GetEnhMetaFileDescriptionA
CreateEllipticRgnIndirect
CreateBitmap
GetTextExtentPoint32A
GetCharWidthFloatA
GetViewportExtEx
CreateDCW
SetRectRgn
SetICMProfileW
SetTextCharacterExtra
GetEnhMetaFileA
ResizePalette
CreatePolygonRgn
OffsetWindowOrgEx
GetTextFaceA
SetColorAdjustment
IntersectClipRect
ChoosePixelFormat
SetGraphicsMode
GetSystemPaletteEntries
SetAbortProc
GetICMProfileA
GetColorAdjustment
SwapBuffers
CreateICW
FlattenPath
EndPath
PolylineTo
CreateFontIndirectW
CreateFontA
LineTo
RemoveFontResourceW
CreateMetaFileA
EnumFontFamiliesExA
SetArcDirection
SelectPalette
GetCharABCWidthsW
CreateColorSpaceA
GetSystemPaletteUse
GetPixelFormat
ColorMatchToTarget
GetBkColor
EnumFontsW
GetFontData
UpdateICMRegKeyW
PlayMetaFileRecord
SaveDC
CreatePatternBrush
PolyPolygon
GetROP2
GetTextFaceW
GetWorldTransform
RectVisible
SetPolyFillMode
GetDCOrgEx
PathToRegion
EnumICMProfilesW
AnimatePalette
EnumMetaFile
SetBitmapDimensionEx
Ellipse
GetWinMetaFileBits
CreateSolidBrush
UnrealizeObject
EnumFontFamiliesExW
SetStretchBltMode
CreateScalableFontResourceW
StretchBlt
CopyEnhMetaFileW
ExtSelectClipRgn
EnumFontFamiliesA
CreateColorSpaceW
SetBkMode
SetDeviceGammaRamp
StartPage
SetViewportOrgEx
SelectClipPath
CreatePolyPolygonRgn
ExtEscape
EndPage
GetRandomRgn
EnumICMProfilesA
GetObjectW
GetCharABCWidthsFloatA
MoveToEx
FrameRgn
GetViewportOrgEx
PlayEnhMetaFileRecord
CreateEnhMetaFileA
Arc
SetICMProfileA
GetTextAlign
GetCharWidth32A
FillRgn
EnumFontFamiliesW
ExcludeClipRect
ExtTextOutA
GetWindowOrgEx
GetCharWidthW
SetDIBitsToDevice
PolyPolyline
EqualRgn
SetMetaRgn
CreateFontIndirectA
CreatePen
OffsetViewportOrgEx
GetArcDirection
RemoveFontResourceA
GetMetaFileW
GetDIBColorTable
FloodFill
GetClipBox
CreateBrushIndirect
CombineRgn
StartDocA
GdiSetBatchLimit
GetEnhMetaFileDescriptionW
GetEnhMetaFileHeader
DrawEscape
GetNearestPaletteIndex
EnumObjects
SetWindowOrgEx
Polyline
GetDIBits
CloseFigure
SetColorSpace
GetTextCharsetInfo
Escape
CopyMetaFileW
SetWinMetaFileBits
SetPixel
CreateDIBitmap
GetPaletteEntries
GetTextColor
AngleArc
CreateDIBSection
ExtCreatePen
CreateDiscardableBitmap
PolyDraw
comdlg32
GetSaveFileNameW
ChooseFontA
ChooseColorW
PageSetupDlgW
GetFileTitleW
CommDlgExtendedError
PageSetupDlgA
GetOpenFileNameW
ChooseFontW
ReplaceTextW
FindTextA
advapi32
CryptVerifySignatureW
GetNamedSecurityInfoW
BuildImpersonateExplicitAccessWithNameA
AccessCheckAndAuditAlarmW
RegisterEventSourceA
AreAllAccessesGranted
CloseServiceHandle
RegQueryMultipleValuesA
AccessCheck
QueryServiceLockStatusW
LookupSecurityDescriptorPartsW
RegNotifyChangeKeyValue
PrivilegedServiceAuditAlarmW
OpenThreadToken
GetSidSubAuthority
AddAccessAllowedAce
LookupPrivilegeValueA
CryptEncrypt
ObjectDeleteAuditAlarmA
InitializeSecurityDescriptor
UnlockServiceDatabase
CryptSetProvParam
GetTrusteeTypeW
LogonUserA
CryptHashSessionKey
RegEnumKeyExW
CryptDestroyHash
GetAclInformation
CloseEventLog
CryptGetProvParam
GetSecurityInfo
ObjectCloseAuditAlarmW
CryptDeriveKey
SetSecurityDescriptorDacl
DeleteAce
InitiateSystemShutdownW
RegCloseKey
CryptImportKey
GetExplicitEntriesFromAclA
RegEnumKeyA
GetSecurityDescriptorDacl
NotifyChangeEventLog
EnumDependentServicesA
MakeAbsoluteSD
SetAclInformation
PrivilegedServiceAuditAlarmA
RegisterServiceCtrlHandlerW
RegRestoreKeyW
GetEffectiveRightsFromAclA
GetMultipleTrusteeOperationW
ObjectOpenAuditAlarmW
SetPrivateObjectSecurity
GetKernelObjectSecurity
CryptDestroyKey
BuildTrusteeWithNameW
CreateServiceA
RegEnumKeyW
LookupSecurityDescriptorPartsA
CryptSetProviderW
GetSecurityDescriptorControl
CryptSignHashA
BackupEventLogA
BuildSecurityDescriptorW
StartServiceA
GetSidIdentifierAuthority
LookupAccountSidA
RegQueryInfoKeyW
RegUnLoadKeyW
DuplicateTokenEx
ClearEventLogA
AdjustTokenPrivileges
SetSecurityDescriptorGroup
CryptSetProviderExW
StartServiceCtrlDispatcherA
RegQueryValueA
CryptVerifySignatureA
GetSecurityDescriptorLength
MapGenericMask
RegSaveKeyW
CryptGetKeyParam
OpenEventLogW
EnumServicesStatusA
SetSecurityInfo
CryptGetHashParam
OpenSCManagerA
LockServiceDatabase
GetPrivateObjectSecurity
ChangeServiceConfigW
RegFlushKey
ClearEventLogW
DeleteService
CopySid
OpenServiceW
CryptReleaseContext
GetMultipleTrusteeOperationA
AddAccessDeniedAce
GetUserNameA
LookupPrivilegeDisplayNameW
RegDeleteKeyA
RegDeleteValueW
BuildExplicitAccessWithNameW
LookupPrivilegeDisplayNameA
SetNamedSecurityInfoA
SetTokenInformation
SetServiceBits
LogonUserW
ControlService
LookupAccountNameW
BuildImpersonateTrusteeW
CryptDecrypt
GetMultipleTrusteeW
RegQueryMultipleValuesW
GetTrusteeTypeA
DestroyPrivateObjectSecurity
AddAce
StartServiceW
SetKernelObjectSecurity
CryptSetProviderExA
ReportEventA
InitializeSid
RegConnectRegistryA
StartServiceCtrlDispatcherW
InitiateSystemShutdownA
GetAuditedPermissionsFromAclW
CryptSignHashW
IsValidSecurityDescriptor
GetSidLengthRequired
GetSecurityDescriptorSacl
RegDeleteValueA
ObjectCloseAuditAlarmA
CreateServiceW
CryptGetDefaultProviderA
RegSaveKeyA
CryptAcquireContextA
SetServiceObjectSecurity
RegSetValueExA
GetLengthSid
ObjectPrivilegeAuditAlarmW
GetMultipleTrusteeA
OpenProcessToken
CryptDuplicateKey
BuildImpersonateTrusteeA
RegRestoreKeyA
CryptEnumProviderTypesA
shell32
SHFormatDrive
SHGetDataFromIDListW
Shell_NotifyIconA
ShellExecuteExA
SHGetPathFromIDListA
ExtractIconW
ShellExecuteExW
SHGetSettings
CommandLineToArgvW
SHLoadInProc
SHFileOperationA
DuplicateIcon
DragQueryFileW
SHBrowseForFolderW
SHGetMalloc
SHGetFileInfoW
ExtractAssociatedIconA
ExtractAssociatedIconExW
SHGetSpecialFolderPathW
ExtractIconExA
ShellAboutW
DoEnvironmentSubstA
SHInvokePrinterCommandW
Shell_NotifyIconW
DragQueryFileA
SHAppBarMessage
msvcrt
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
Sections
.text Size: 286KB - Virtual size: 288KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 22KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
viltkp9c Size: 44KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
r2erjqmd Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ