Static task
static1
Behavioral task
behavioral1
Sample
eafb92780f5295cd7b762359a75cdfff05d2ee25608674e4ca26fd818c25784f.exe
Resource
win7-20221111-en
windows7-x64
Behavioral task
behavioral2
Sample
eafb92780f5295cd7b762359a75cdfff05d2ee25608674e4ca26fd818c25784f.exe
Resource
win10v2004-20221111-en
windows10-2004-x64
General
-
Target
eafb92780f5295cd7b762359a75cdfff05d2ee25608674e4ca26fd818c25784f
-
Size
465KB
-
MD5
17b3f109efa3ad321f81bca09261892e
-
SHA1
5a72af0e2a888a35f64ea0ccd3bd4082e6a39a41
-
SHA256
eafb92780f5295cd7b762359a75cdfff05d2ee25608674e4ca26fd818c25784f
-
SHA512
d0476145afd2a07276ea36260c43b0041d05940938f8fa4d45846d9a49859c10f74b5991fbc4a654780b5376b7897f9f770880585313b2fe8c0d21cae350e9a6
-
SSDEEP
12288:P/LlEsNzBKvGzzI3Rlj6OnoqYGexWZTO1wn5qe4Hz:HXx4IzI3Rlj6OnOxWpO1wn538
Malware Config
Signatures
Files
-
eafb92780f5295cd7b762359a75cdfff05d2ee25608674e4ca26fd818c25784f.exe windows x86
a17e4f610ff77cbab0b9943155c45ed3
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
FlushInstructionCache
FreeResource
LoadResource
Module32First
ResumeThread
GetLocaleInfoW
lstrcmpi
GetTempFileNameA
GetConsoleCursorInfo
GlobalCompact
FileTimeToSystemTime
SetLastError
GlobalGetAtomNameA
SuspendThread
TlsAlloc
GlobalDeleteAtom
UnlockFileEx
CreateNamedPipeW
WritePrivateProfileStructW
LoadLibraryExW
FileTimeToLocalFileTime
WriteFileEx
WaitNamedPipeA
SetConsoleActiveScreenBuffer
LocalFree
SetThreadAffinityMask
lstrcmpA
LeaveCriticalSection
GetComputerNameW
SetConsoleTextAttribute
SetThreadExecutionState
GetPrivateProfileIntA
GetCurrentDirectoryW
SetEndOfFile
GetSystemPowerStatus
CreateFileMappingA
ReadConsoleInputW
OpenWaitableTimerA
WaitForMultipleObjectsEx
GetEnvironmentVariableW
ReadDirectoryChangesW
EnumDateFormatsExW
SetEnvironmentVariableA
CreateMutexW
AddAtomW
WaitForMultipleObjects
FillConsoleOutputCharacterA
OpenWaitableTimerW
WriteConsoleOutputA
lstrcmp
GetFileTime
FoldStringA
GetDateFormatW
GetTimeFormatW
HeapWalk
GetSystemDefaultLCID
GetWindowsDirectoryW
GetFileInformationByHandle
Heap32ListNext
GetTempPathA
GetLongPathNameW
DisableThreadLibraryCalls
GetCompressedFileSizeW
WaitCommEvent
VirtualProtect
InitializeCriticalSection
CreateDirectoryExA
ConvertDefaultLocale
GetDriveTypeA
GlobalFree
OpenProcess
RtlMoveMemory
AllocConsole
SetThreadPriorityBoost
CreateMailslotA
GetProfileIntW
OpenMutexA
GlobalReAlloc
SetConsoleScreenBufferSize
WideCharToMultiByte
OpenFileMappingA
GetStdHandle
WriteConsoleW
ReadConsoleOutputAttribute
DisconnectNamedPipe
VirtualLock
LocalSize
GetProfileStringW
GetProfileStringA
FindFirstChangeNotificationW
GetThreadPriority
MulDiv
GetPrivateProfileSectionW
FindFirstFileA
GetPrivateProfileStructA
GetCurrentDirectoryA
GetCalendarInfoW
GetLastError
ReadConsoleOutputCharacterW
EnumResourceLanguagesW
DefineDosDeviceW
LocalFileTimeToFileTime
GetProfileSectionW
GetEnvironmentVariableA
ExpandEnvironmentStringsA
UpdateResourceW
GetCurrencyFormatW
ReleaseMutex
SearchPathA
OutputDebugStringW
FormatMessageW
Process32Next
EraseTape
SetConsoleCtrlHandler
CommConfigDialogW
WritePrivateProfileSectionW
OpenSemaphoreW
IsDebuggerPresent
EnumCalendarInfoW
GetFileSize
SearchPathW
lstrcatW
GlobalFindAtomA
CreateDirectoryExW
FindFirstFileExW
FillConsoleOutputCharacterW
lstrcmpW
GetPrivateProfileSectionNamesA
GetMailslotInfo
HeapDestroy
GetEnvironmentStrings
Heap32First
Module32Next
DeleteFileW
PeekConsoleInputA
MultiByteToWideChar
CommConfigDialogA
Heap32ListFirst
CreateRemoteThread
WriteProfileSectionA
CopyFileExA
LocalFlags
RtlFillMemory
ReleaseSemaphore
GetDateFormatA
UpdateResourceA
DeviceIoControl
CreateEventA
CreateWaitableTimerA
CreateWaitableTimerW
GetSystemDirectoryA
GetNumberOfConsoleInputEvents
GetVersionExW
LocalUnlock
GlobalAddAtomW
GetCurrencyFormatA
lstrcpynW
GetAtomNameA
SleepEx
GetEnvironmentStringsA
GetWriteWatch
GetDiskFreeSpaceA
SetThreadContext
GetHandleInformation
Heap32Next
GetStringTypeA
GetUserDefaultLCID
MoveFileA
FindCloseChangeNotification
SetSystemTimeAdjustment
GetLocalTime
GetShortPathNameA
PulseEvent
VirtualFreeEx
WaitNamedPipeW
EnumDateFormatsA
CreateThread
GetCalendarInfoA
Toolhelp32ReadProcessMemory
EnumResourceTypesA
GetPrivateProfileSectionA
GetProcessHeaps
SetEvent
RemoveDirectoryA
VirtualProtectEx
FindAtomA
FormatMessageA
GetLogicalDriveStringsW
SetConsoleCP
GetSystemTime
ReadConsoleA
FlushViewOfFile
CompareStringA
EnumResourceNamesW
GetDiskFreeSpaceW
ReadFileScatter
GetEnvironmentStringsW
FindClose
FoldStringW
GetNamedPipeHandleStateW
LoadLibraryW
GlobalUnWire
GetFullPathNameA
FindResourceExW
DefineDosDeviceA
GlobalGetAtomNameW
BeginUpdateResourceW
TlsSetValue
FreeLibrary
HeapValidate
FindFirstFileW
WritePrivateProfileSectionA
GetCurrentThread
SetThreadIdealProcessor
OpenSemaphoreA
DeleteFileA
LocalAlloc
WriteConsoleOutputCharacterA
SetConsoleCursorInfo
GetProcessPriorityBoost
GetProcessAffinityMask
GetTempFileNameW
GetLogicalDriveStringsA
GlobalUnfix
LoadModule
CreateFileA
MoveFileW
GetConsoleOutputCP
GetNamedPipeHandleStateA
InterlockedIncrement
DeleteCriticalSection
WritePrivateProfileStringA
SetFileAttributesW
GetFileAttributesA
CreatePipe
GetSystemInfo
GetNumberFormatW
WriteConsoleInputA
LocalReAlloc
HeapLock
HeapCompact
GetModuleFileNameW
CreateProcessA
HeapUnlock
SetComputerNameA
SetFileAttributesA
DebugActiveProcess
OpenFileMappingW
GlobalFindAtomW
GetNamedPipeInfo
GetNumberFormatA
WritePrivateProfileStringW
IsValidCodePage
SetThreadPriority
WriteProfileSectionW
GetFullPathNameW
GetVersionExA
GetVolumeInformationW
GetSystemDefaultLangID
SetFileTime
ReadFile
FindNextFileW
Sleep
GlobalFlags
SetTimeZoneInformation
EnumSystemCodePagesW
SetLocalTime
GetExitCodeThread
ReadConsoleW
DosDateTimeToFileTime
SetConsoleWindowInfo
GetDriveTypeW
InitAtomTable
GetStringTypeW
GetVersion
SetVolumeLabelA
GlobalFix
GetFileAttributesW
GetFileAttributesExA
GetCompressedFileSizeA
PeekNamedPipe
GetLocaleInfoA
GetStringTypeExA
ReadFileEx
WriteProcessMemory
ExpandEnvironmentStringsW
WriteFile
IsValidLocale
SignalObjectAndWait
SetEnvironmentVariableW
GetQueuedCompletionStatus
VirtualUnlock
LocalCompact
GetWindowsDirectoryA
GetThreadSelectorEntry
GetComputerNameA
lstrlenA
GetPrivateProfileStringW
LockFileEx
SetConsoleTitleA
CreateProcessW
SetConsoleMode
CreateMutexA
FindResourceA
GetLongPathNameA
EnumSystemCodePagesA
WaitForSingleObjectEx
GetSystemTimeAdjustment
CreateDirectoryA
WriteConsoleA
GlobalMemoryStatus
ConnectNamedPipe
lstrcpyW
VirtualQueryEx
lstrcmpiW
FindResourceW
EnumTimeFormatsA
TryEnterCriticalSection
UnmapViewOfFile
GetTempPathW
TransmitCommChar
MapViewOfFile
EscapeCommFunction
GetThreadTimes
TlsGetValue
GlobalSize
CreateSemaphoreW
GetShortPathNameW
GetFileAttributesExW
lstrcatA
GetProfileIntA
lstrlenW
EnumSystemLocalesA
EnumCalendarInfoExA
lstrcpynA
GetUserDefaultLangID
CreateSemaphoreA
LocalLock
FindResourceExA
WaitForSingleObject
Thread32Next
GetConsoleScreenBufferInfo
GetFileType
WaitForDebugEvent
GlobalHandle
GetNumberOfConsoleMouseButtons
WriteProfileStringA
GetProcessVersion
GetProfileSectionA
GetProcAddress
MoveFileExA
GetConsoleTitleW
FreeEnvironmentStringsW
EnumResourceNamesA
SetConsoleTitleW
CloseHandle
SetConsoleCursorPosition
SystemTimeToFileTime
RtlZeroMemory
SetCriticalSectionSpinCount
FreeEnvironmentStringsA
TerminateThread
LockResource
GetDiskFreeSpaceExW
WinExec
SetLocaleInfoW
SystemTimeToTzSpecificLocalTime
SetLocaleInfoA
TransactNamedPipe
UnlockFile
PeekConsoleInputW
CreateTapePartition
GetPriorityClass
GetPrivateProfileStringA
SetPriorityClass
OpenEventA
SetComputerNameW
AddAtomA
FindNextChangeNotification
FileTimeToDosDateTime
EnumSystemLocalesW
lstrcmpiA
GetConsoleCP
OpenMutexW
DeleteFiber
HeapSize
ResetWriteWatch
FlushFileBuffers
MoveFileExW
InitializeCriticalSectionAndSpinCount
GetStringTypeExW
EnumCalendarInfoExW
GetStartupInfoW
Thread32First
MapViewOfFileEx
InterlockedCompareExchange
GetCommandLineA
EnumResourceTypesW
EnumResourceLanguagesA
VirtualFree
GetSystemDirectoryW
VirtualAllocEx
GetAtomNameW
GetLargestConsoleWindowSize
CopyFileA
GetDiskFreeSpaceExA
GlobalAddAtomA
GetPrivateProfileIntW
WriteProfileStringW
EnumCalendarInfoA
GetThreadContext
SetCurrentDirectoryW
RemoveDirectoryW
GlobalUnlock
WritePrivateProfileStructA
CompareFileTime
GetThreadPriorityBoost
TlsFree
CreateConsoleScreenBuffer
CreateToolhelp32Snapshot
GetConsoleMode
EnumTimeFormatsW
GetProcessShutdownParameters
GetCommandLineW
EnumDateFormatsExA
lstrcat
WriteConsoleInputW
SetHandleCount
BeginUpdateResourceA
CreateFileW
HeapCreate
ReadConsoleOutputA
GetProcessTimes
GetProcessHeap
GetExitCodeProcess
CreateMailslotW
WriteFileGather
WriteConsoleOutputAttribute
ReadConsoleOutputW
SetSystemTime
GetLogicalDrives
GetVolumeInformationA
ReadConsoleInputA
ReadConsoleOutputCharacterA
FreeConsole
GetThreadLocale
CreateFileMappingW
CreateNamedPipeA
GetPrivateProfileStructW
ResetEvent
CreateDirectoryW
InterlockedExchangeAdd
GetModuleHandleW
OutputDebugStringA
OpenFile
FlushConsoleInputBuffer
GetTimeFormatA
FindNextFileA
SetCurrentDirectoryA
FreeLibraryAndExitThread
DebugBreak
SetFilePointer
lstrcpyn
FindAtomW
CreateEventW
LocalShrink
DeleteAtom
ExitThread
SetConsoleOutputCP
FindFirstChangeNotificationA
EnumDateFormatsW
GlobalAlloc
OpenEventW
GetConsoleTitleA
ContinueDebugEvent
WriteConsoleOutputW
DuplicateHandle
UnhandledExceptionFilter
ReadProcessMemory
EnterCriticalSection
FindFirstFileExA
gdi32
SetTextAlign
CreateMetaFileW
SetMapperFlags
SetROP2
GetCharWidthFloatA
EndPath
GetEnhMetaFileA
GetDeviceCaps
RoundRect
GetStockObject
GetFontData
CreateHatchBrush
SetGraphicsMode
GetClipRgn
GetBitmapDimensionEx
GetTextMetricsA
PathToRegion
GetTextExtentPoint32A
Ellipse
SetICMProfileA
CreateEnhMetaFileW
SetColorSpace
FloodFill
GetPath
GetDCOrgEx
PolyTextOutA
ExcludeClipRect
UpdateICMRegKeyA
GetGraphicsMode
PtVisible
StretchBlt
AngleArc
GetEnhMetaFileHeader
GetObjectA
SetWindowExtEx
TranslateCharsetInfo
Polygon
GetWindowExtEx
BitBlt
StretchDIBits
CreateEllipticRgn
GetPixelFormat
EnumMetaFile
GetStretchBltMode
GetTextExtentExPointA
GetCharWidthA
GetMetaFileW
GetDIBColorTable
GetGlyphOutline
IntersectClipRect
BeginPath
PlayEnhMetaFileRecord
GetMapMode
GetTextCharsetInfo
UpdateICMRegKeyW
AbortDoc
GetCharWidthFloatW
GetTextExtentPointA
GetKerningPairsA
PolyDraw
CreateBrushIndirect
GetCharacterPlacementA
GetWindowOrgEx
GdiPlayDCScript
OffsetViewportOrgEx
GetNearestPaletteIndex
EnumEnhMetaFile
GetArcDirection
AbortPath
RealizePalette
ExtCreateRegion
CopyEnhMetaFileA
SetMiterLimit
CreatePenIndirect
EnumFontFamiliesExW
CreateDCA
CreateCompatibleBitmap
GetGlyphOutlineW
CheckColorsInGamut
SetStretchBltMode
GetBrushOrgEx
GetOutlineTextMetricsW
GetWinMetaFileBits
CreateICA
CreateColorSpaceA
GetLogColorSpaceA
GetOutlineTextMetricsA
PolyBezierTo
CreatePolygonRgn
GetICMProfileW
PlgBlt
CancelDC
SetDIBColorTable
GetCharacterPlacementW
GetSystemPaletteUse
Pie
SetRectRgn
ScaleWindowExtEx
CreateFontW
GetKerningPairs
GetTextCharacterExtra
PolyBezier
GetCurrentPositionEx
SetDeviceGammaRamp
EnumICMProfilesA
PlayEnhMetaFile
GetCurrentObject
SetBitmapDimensionEx
RectInRegion
LineDDA
ColorMatchToTarget
OffsetClipRgn
StartPage
CopyEnhMetaFileW
EnumObjects
GetCharABCWidthsW
PlayMetaFile
ModifyWorldTransform
StrokePath
GetTextFaceW
ColorCorrectPalette
CreateFontA
CloseFigure
DeleteColorSpace
DeviceCapabilitiesExW
CreateBitmapIndirect
GetICMProfileA
GetCharABCWidthsFloatW
DeleteEnhMetaFile
CreateFontIndirectA
GetCharABCWidthsFloatA
GetClipBox
FrameRgn
GetPixel
GetColorSpace
SetWinMetaFileBits
SetPixelFormat
SetWorldTransform
PlayMetaFileRecord
SetICMProfileW
SetPixel
GetCharWidth32W
SetBkColor
WidenPath
PaintRgn
FillPath
Arc
PolylineTo
GetDeviceGammaRamp
DrawEscape
SetWindowOrgEx
GetSystemPaletteEntries
SetMagicColors
CombineRgn
CreateMetaFileA
AnimatePalette
SetViewportExtEx
SelectClipRgn
GetBoundsRect
gdiPlaySpoolStream
RectVisible
SetPolyFillMode
CreateScalableFontResourceW
CreateRoundRectRgn
GdiGetBatchLimit
DeleteMetaFile
ResetDCW
SetBkMode
CreateDIBitmap
SetViewportOrgEx
GetEnhMetaFileW
ResizePalette
GetRasterizerCaps
PtInRegion
StartDocW
ResetDCA
RemoveFontResourceW
GetPaletteEntries
AddFontResourceW
TextOutW
AddFontResourceA
ScaleViewportExtEx
PolyTextOutW
GetTextFaceA
GetMetaFileBitsEx
GetTextMetricsW
GetMiterLimit
ChoosePixelFormat
CreateColorSpaceW
CreatePalette
CreateScalableFontResourceA
GetLayout
GetViewportOrgEx
CreateDIBSection
Polyline
CreateEllipticRgnIndirect
GetGlyphOutlineA
shell32
SHBrowseForFolder
SHFileOperationA
SHFreeNameMappings
SHGetNewLinkInfo
SHFileOperationW
ExtractIconEx
FreeIconList
SHUpdateRecycleBinIcon
SHFormatDrive
SHGetMalloc
comdlg32
ChooseColorW
FindTextW
GetFileTitleA
GetFileTitleW
GetOpenFileNameA
PrintDlgA
ChooseColorA
PrintDlgW
user32
IsDialogMessage
MoveWindow
SetMenuContextHelpId
BroadcastSystemMessageA
DrawStateA
GetSysColor
IsDialogMessageW
MapVirtualKeyW
GetClipboardData
GetKeyState
SetCapture
UnregisterHotKey
SetActiveWindow
SetDlgItemTextA
DrawTextExA
ChangeDisplaySettingsExW
ModifyMenuW
BroadcastSystemMessageW
TabbedTextOutA
GetUserObjectInformationA
IsDlgButtonChecked
CharUpperA
FrameRect
IsIconic
MessageBoxA
GetWindowContextHelpId
SetCursor
LoadMenuW
PtInRect
GetKeyNameTextA
MessageBoxExW
AttachThreadInput
DrawStateW
SetWindowLongA
UnregisterClassA
VkKeyScanA
GetClassNameA
GetWindowTextA
SwitchToThisWindow
DlgDirListA
TileWindows
GetCursor
SetDoubleClickTime
GetClassNameW
EnumDesktopWindows
IsWindowVisible
GetMenuInfo
GetKeyNameTextW
CloseWindowStation
EnumDesktopsW
DdeInitializeA
DrawIcon
ModifyMenuA
LoadCursorA
GetCursorPos
ChangeClipboardChain
TranslateMDISysAccel
ScreenToClient
HideCaret
CascadeWindows
EndMenu
CharUpperBuffW
UnionRect
EnumDesktopsA
RealGetWindowClass
GetDialogBaseUnits
SendNotifyMessageW
EnableScrollBar
CreateIcon
GetMenuBarInfo
GetWindowThreadProcessId
GetClassInfoA
DdeKeepStringHandle
CreateWindowExA
DdeQueryNextServer
RegisterClassA
GetMenuDefaultItem
PostMessageA
GetTabbedTextExtentW
SetThreadDesktop
EnableMenuItem
DdeReconnect
CreateDesktopA
GetClipCursor
EnumPropsW
LoadMenuIndirectA
DeleteMenu
RemovePropA
GetMenuStringA
DrawMenuBar
GetWindowPlacement
ShowWindow
InSendMessageEx
ScrollWindowEx
LoadCursorFromFileA
CreateDialogIndirectParamA
TranslateAccelerator
EnumThreadWindows
IsDialogMessageA
PaintDesktop
CallMsgFilterA
CreateDialogParamA
EnumPropsExW
DlgDirSelectExA
DefDlgProcW
SwitchDesktop
PeekMessageA
GetMenuCheckMarkDimensions
RegisterClipboardFormatW
DefDlgProcA
GetClassInfoW
LookupIconIdFromDirectory
RedrawWindow
LoadImageA
CreateMDIWindowA
CharPrevW
GetProcessDefaultLayout
GetKBCodePage
FlashWindowEx
VkKeyScanExA
GetKeyboardLayout
SetCaretPos
DdeQueryStringW
SetUserObjectSecurity
MsgWaitForMultipleObjects
DdeFreeStringHandle
PostMessageW
IsRectEmpty
WaitMessage
wininet
FindNextUrlCacheContainerA
InternetFindNextFileW
InternetGoOnline
GetUrlCacheEntryInfoA
GopherGetAttributeW
InternetSetFilePointer
GopherGetLocatorTypeA
InternetQueryOptionA
InternetCombineUrlA
FtpFindFirstFileW
DeleteUrlCacheEntryW
IncrementUrlCacheHeaderData
GopherFindFirstFileW
FtpRemoveDirectoryW
GopherCreateLocatorA
GetUrlCacheConfigInfoW
UrlZonesDetach
CreateUrlCacheContainerW
InternetInitializeAutoProxyDll
InternetTimeToSystemTime
InternetGoOnlineA
SetUrlCacheConfigInfoA
UpdateUrlCacheContentPath
FtpGetFileW
InternetQueryOptionW
GetUrlCacheEntryInfoExW
FtpCreateDirectoryW
Sections
.text Size: 124KB - Virtual size: 124KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 264KB - Virtual size: 263KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: 62KB - Virtual size: 64KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE