Static task
static1
Behavioral task
behavioral1
Sample
9442c432cc6d8cd3016614b617c67873c8b360df8a960d841b223c3ef14c6947.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
9442c432cc6d8cd3016614b617c67873c8b360df8a960d841b223c3ef14c6947.exe
Resource
win10v2004-20220812-en
General
-
Target
9442c432cc6d8cd3016614b617c67873c8b360df8a960d841b223c3ef14c6947
-
Size
48KB
-
MD5
5d70078b5ec483b068a74557756dd870
-
SHA1
03be5afdb85fcbc24001204658e2d30952506517
-
SHA256
9442c432cc6d8cd3016614b617c67873c8b360df8a960d841b223c3ef14c6947
-
SHA512
4eb27b6de2e546806d0e761e32acbbfcb88bc54d01aa364f427d9f135634f381f7d3e9d2ec7489ae68968fd582017a03fcc51cadbbf07ce54ba55444a891afcf
-
SSDEEP
768:PinkrXWwkSSRoU5t32ctAg/IW1Qcb9Gr5xMKmgIaRgjMJSVLZ+yQAkuGLNbbu:KmX3kSxU50ceW1QcbsrnUgRf0LZ+yQAN
Malware Config
Signatures
Files
-
9442c432cc6d8cd3016614b617c67873c8b360df8a960d841b223c3ef14c6947.exe windows x86
dcefca9beb9ee1e8f1796a0e3b8735e4
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ole32
HBITMAP_UserUnmarshal
CoGetTreatAsClass
CoInitialize
StringFromCLSID
StringFromIID
CoGetClassObject
CoUninitialize
RegisterDragDrop
OleSaveToStream
CoFileTimeNow
CoTaskMemAlloc
OleRegGetMiscStatus
PropVariantClear
CoInitializeEx
CoRegisterClassObject
HMENU_UserSize
HMENU_UserFree
HWND_UserFree
WriteClassStm
HWND_UserMarshal
OleLoadFromStream
StringFromGUID2
CoCreateInstance
RevokeDragDrop
CoGetMalloc
CoTaskMemFree
CreateStreamOnHGlobal
CoTaskMemRealloc
IsAccelerator
OleRegEnumVerbs
CoCreateFreeThreadedMarshaler
CLSIDFromProgID
CoUnmarshalInterface
CoGetInterfaceAndReleaseStream
CoDisconnectObject
CreateOleAdviseHolder
HBITMAP_UserSize
CoMarshalInterThreadInterfaceInStream
HBITMAP_UserMarshal
CoRevokeClassObject
CoReleaseMarshalData
HWND_UserUnmarshal
OleRegGetUserType
DoDragDrop
GetRunningObjectTable
HWND_UserSize
CreateDataAdviseHolder
HMENU_UserUnmarshal
CoFreeUnusedLibraries
HBITMAP_UserFree
CoCreateGuid
HMENU_UserMarshal
CLSIDFromString
ReleaseStgMedium
GetHGlobalFromStream
PropVariantCopy
CoMarshalInterface
gdi32
IntersectClipRect
StretchBlt
GetObjectType
DPtoLP
SetTextCharacterExtra
GetDIBColorTable
SetPaletteEntries
CreateICA
GetTextExtentPointW
GetSystemPaletteEntries
SelectObject
DeleteObject
ExcludeClipRect
GetTextAlign
SetWindowExtEx
SetDIBitsToDevice
RectVisible
DeleteMetaFile
CreateFontW
CreatePen
CreateDCW
GetBkColor
LineTo
CloseMetaFile
GetLayout
CreateRectRgnIndirect
CreateDIBSection
RestoreDC
SetLayout
SetBkMode
CreateICW
SetRectRgn
SaveDC
ExtTextOutW
SetViewportOrgEx
ExtCreateRegion
GetDIBits
ExtSelectClipRgn
SetMapMode
CreateFontA
GetRgnBox
SetBkColor
SetTextAlign
MoveToEx
SetStretchBltMode
Rectangle
GetClipBox
GetTextMetricsA
MaskBlt
CreateMetaFileW
GetObjectW
SelectClipRgn
CreateCompatibleBitmap
DeleteDC
CreatePalette
GetTextExtentPoint32W
StretchDIBits
BitBlt
CreateBrushIndirect
GetPaletteEntries
GetTextMetricsW
OffsetViewportOrgEx
GetDeviceCaps
CreateFontIndirectW
OffsetWindowOrgEx
GetObjectA
RealizePalette
CreatePenIndirect
SetROP2
PatBlt
GetTextExtentPointA
PtInRegion
SetTextColor
CreateFontIndirectA
LPtoDP
SetWindowOrgEx
GetStockObject
SelectPalette
CreateDCA
GetTextExtentPoint32A
CreateCompatibleDC
Polygon
CreateMetaFileA
OffsetRgn
CreateRectRgn
CombineRgn
TextOutW
GetRegionData
CreateSolidBrush
user32
EndPaint
LoadIconA
IsWindow
RegisterClassExW
SetMenu
GetClassInfoW
GetDlgItemTextW
GetMessageW
GetClassNameA
GetNextDlgTabItem
FindWindowExW
GetWindowTextLengthW
FindWindowA
GetWindowRect
WinHelpW
EnableMenuItem
UnionRect
DispatchMessageA
AppendMenuW
CallWindowProcA
UnregisterClassA
CreateWindowExW
IsDialogMessageW
DrawEdge
GetMenuStringW
BeginPaint
UnregisterClassW
GetCursorPos
UpdateWindow
SetDlgItemTextW
AppendMenuA
DispatchMessageW
CheckDlgButton
FindWindowW
CopyAcceleratorTableW
ModifyMenuW
MonitorFromPoint
wvsprintfW
PostThreadMessageA
LoadCursorA
WinHelpA
PostThreadMessageW
PeekMessageA
FindWindowExA
InvalidateRgn
GetMenuItemCount
IsWindowEnabled
GetSubMenu
SetWindowLongA
SystemParametersInfoW
wsprintfW
DestroyWindow
RedrawWindow
SetCapture
SetWindowsHookExA
SetRectEmpty
SetMenuInfo
SetWindowLongW
DrawTextW
InsertMenuW
PostQuitMessage
SetTimer
SetWindowsHookExW
LoadAcceleratorsW
GetDC
GetWindowThreadProcessId
UnhookWindowsHookEx
FillRect
SendDlgItemMessageW
IsWindowUnicode
ReleaseCapture
PtInRect
InsertMenuItemW
MessageBeep
GetCapture
TranslateMessage
DrawTextA
SetPropA
InflateRect
SetCursor
MoveWindow
RegisterClipboardFormatA
CreateDialogParamA
EnumWindows
SendMessageW
LoadImageW
GetForegroundWindow
IsWindowVisible
ValidateRect
RegisterClassW
GetMenuItemInfoW
GetClassInfoExW
CallNextHookEx
GetClassInfoExA
VkKeyScanA
LoadStringA
GetWindow
DeleteMenu
LoadIconW
GetMonitorInfoA
GetDlgItemTextA
CopyImage
SetMenuItemInfoW
IntersectRect
RegisterClassA
EndDialog
GetMenu
IsDialogMessageA
ShowCursor
MessageBoxW
GetFocus
KillTimer
GetMessageTime
IsIconic
SetWindowPos
RegisterClassExA
IsDlgButtonChecked
GetPropA
GetAsyncKeyState
SetMenuItemInfoA
GetParent
CharUpperBuffW
GetIconInfo
SendMessageA
GetAncestor
CopyIcon
SetClassLongA
MessageBoxA
InsertMenuA
GetTopWindow
SendMessageTimeoutA
GetClassNameW
GetSysColor
TrackPopupMenu
GetPropW
GetKeyState
WaitMessage
CreateWindowExA
TranslateAcceleratorW
GetWindowLongW
GetActiveWindow
GetClientRect
SetWindowTextA
GetDlgCtrlID
SetParent
GetMenuItemInfoA
MsgWaitForMultipleObjects
SendMessageTimeoutW
GetQueueStatus
CloseWindow
GetScrollInfo
LoadMenuW
GetMessagePos
TranslateAcceleratorA
GetWindowDC
GetWindowPlacement
DialogBoxParamW
CreateDialogParamW
LoadMenuA
GetMenuStringA
GetDlgItem
TrackPopupMenuEx
DefWindowProcW
SetWindowRgn
SetFocus
GetDoubleClickTime
WindowFromDC
GetDialogBaseUnits
OffsetRect
GetClassLongA
MonitorFromRect
DestroyMenu
ClipCursor
PostMessageW
DrawFocusRect
SetPropW
LoadStringW
LoadImageA
SystemParametersInfoA
SetWindowPlacement
RegisterWindowMessageA
GetMonitorInfoW
DrawIconEx
DialogBoxParamA
GetUpdateRect
GetMenuItemID
MonitorFromWindow
CheckRadioButton
ClientToScreen
CopyRect
InvalidateRect
SetClassLongW
CharNextW
CharNextA
GetSysColorBrush
SetDlgItemInt
DestroyCursor
DestroyAcceleratorTable
CreateMenu
ScrollWindowEx
EnableWindow
ScreenToClient
InsertMenuItemA
GetClassLongW
LoadAcceleratorsA
BringWindowToTop
SetScrollInfo
SetRect
IsChild
SetScrollPos
FrameRect
CheckMenuItem
CreatePopupMenu
SetWindowTextW
RemoveMenu
GetWindowTextW
CharLowerW
DestroyIcon
SetDlgItemTextA
IsRectEmpty
EnumChildWindows
GetSystemMetrics
ReleaseDC
DefWindowProcA
RegisterWindowMessageW
PeekMessageW
GetWindowRgn
ModifyMenuA
CopyAcceleratorTableA
GetWindowTextLengthA
GetWindowLongA
AdjustWindowRectEx
LoadCursorW
GetDesktopWindow
GetClassInfoA
EqualRect
CallWindowProcW
DrawAnimatedRects
GetWindowTextA
MapWindowPoints
GetMessageA
SetActiveWindow
CheckMenuRadioItem
RegisterClipboardFormatW
SetForegroundWindow
ShowWindow
PostMessageA
NotifyWinEvent
IsMenu
VkKeyScanW
msvcrt
isdigit
_wcsupr
_snwprintf
_except_handler3
_wcslwr
iswdigit
malloc
sscanf
wcsncmp
fwrite
wcsrchr
toupper
iswcntrl
iswspace
_ultow
__CxxFrameHandler
rand
_wcsnicmp
atoi
localtime
qsort
_wcsicoll
longjmp
iswascii
wcsftime
memcmp
wcstol
srand
clock
_stricmp
wcsstr
ceil
_ltow
abort
iswprint
wcsspn
_itoa
_beginthread
_wfopen
iswalpha
wcsncpy
_wcsicmp
free
_ftol
memmove
fopen
_adjust_fdiv
memcpy
towlower
_onexit
towupper
_wtoi
isxdigit
__dllonexit
_strnicmp
wcstoul
strchr
strlen
_vsnwprintf
strcpy
vswprintf
isspace
fprintf
wcschr
difftime
wcstok
_CIpow
_wtoi64
wcscpy
wcspbrk
bsearch
ldexp
wcscspn
wcstombs
_mbslen
wcstod
_itow
_memicmp
??2@YAPAXI@Z
_wtol
_iob
_endthread
time
fclose
iswalnum
tolower
_ui64tow
??3@YAXPAX@Z
wcsncat
fflush
realloc
_setjmp3
wcslen
abs
strncmp
_CIexp
wcscmp
swscanf
_beginthreadex
memset
_vsnprintf
wcscoll
_initterm
sprintf
swprintf
getenv
floor
kernel32
MapViewOfFile
GlobalMemoryStatus
EnterCriticalSection
EnumResourceNamesA
GetFileAttributesW
HeapAlloc
DeleteFileA
GetExitCodeProcess
SetFileAttributesW
CompareStringA
GetThreadPriority
GetPrivateProfileStringA
CreateFileMappingW
GetProcessHeap
QueryDosDeviceA
GetFileAttributesExW
GetPrivateProfileStringW
lstrcpyW
IsValidLocale
GetDriveTypeA
CompareStringW
GetLongPathNameW
FindAtomW
FindFirstFileW
lstrcpynW
GetCurrentThread
GlobalDeleteAtom
FindResourceExW
GetProfileStringA
GlobalAlloc
FormatMessageW
ReadFile
GetCurrentDirectoryW
GetShortPathNameW
GetCurrentDirectoryA
WaitForSingleObject
GlobalAddAtomW
GetFileAttributesA
WriteProfileStringW
CompareFileTime
GetLogicalDriveStringsA
CreateThread
CreateFileMappingA
GetSystemTimeAsFileTime
SystemTimeToFileTime
GetWindowsDirectoryW
GetWindowsDirectoryA
GetLastError
ExpandEnvironmentStringsW
GlobalAddAtomA
CreateMutexW
LoadLibraryW
GetSystemDefaultLCID
WriteFile
GetTempFileNameW
QueryDosDeviceW
CreateEventA
GetUserDefaultLCID
lstrcmpiW
GetSystemDirectoryW
IsBadReadPtr
GetNumberFormatW
GetUserDefaultLangID
LocalFileTimeToFileTime
GetVersionExA
ResetEvent
GetSystemPowerStatus
CreateDirectoryW
GlobalUnlock
CreateDirectoryA
GetShortPathNameA
FlushFileBuffers
FindResourceA
lstrlenW
GetTempFileNameA
GetLogicalDriveStringsW
RaiseException
WaitForMultipleObjects
GetEnvironmentStrings
LeaveCriticalSection
FormatMessageA
HeapFree
MultiByteToWideChar
GetFileType
GetThreadLocale
WritePrivateProfileStringA
ReleaseSemaphore
FindNextFileA
UnmapViewOfFile
lstrcmpiA
lstrlenA
RemoveDirectoryW
FlushInstructionCache
LoadLibraryExA
GetVersion
FreeResource
GlobalLock
SetFilePointer
GetProfileStringW
GetDateFormatA
FreeLibraryAndExitThread
OutputDebugStringW
GetTimeZoneInformation
InterlockedDecrement
SetFileAttributesA
GetTempPathA
SetErrorMode
CreateMutexA
GetModuleFileNameA
CreateFileA
CreateFileW
LocalAlloc
lstrcpynA
GetFullPathNameW
WideCharToMultiByte
DuplicateHandle
FileTimeToSystemTime
GetTimeFormatA
GetCurrentProcess
GetDriveTypeW
OpenEventW
InterlockedExchange
GetLocaleInfoA
OutputDebugStringA
SetEvent
GetNumberFormatA
CloseHandle
FileTimeToLocalFileTime
GetTimeFormatW
GetVersionExW
QueryPerformanceCounter
LockResource
DeviceIoControl
lstrcmpA
VirtualFree
GetVolumeInformationA
FindFirstChangeNotificationW
GetDateFormatW
LCMapStringW
SetEndOfFile
RemoveDirectoryA
GetModuleFileNameW
DeleteCriticalSection
ReleaseMutex
InterlockedIncrement
lstrcatW
EnumResourceNamesW
FindResourceW
GetFileTime
FindFirstFileA
FreeLibrary
FindNextChangeNotification
LocalFree
lstrcmpW
GetLocaleInfoW
FindNextFileW
GetSystemTime
MulDiv
FindResourceExA
FindClose
ReadDirectoryChangesW
GetVolumeInformationW
GetSystemDirectoryA
LCMapStringA
SetThreadPriority
ExpandEnvironmentStringsA
GetCurrentProcessId
DeleteFileW
FreeEnvironmentStringsA
SetLastError
SizeofResource
GetSystemInfo
GetFullPathNameA
WaitForSingleObjectEx
GlobalFree
HeapDestroy
GetDiskFreeSpaceA
OpenEventA
GetLongPathNameA
WriteProfileStringA
GetExitCodeThread
CopyFileExW
SetUnhandledExceptionFilter
WritePrivateProfileStringW
IsBadWritePtr
LoadResource
FreeEnvironmentStringsW
FindCloseChangeNotification
GlobalSize
GetModuleHandleW
CreateEventW
GetFileAttributesExA
GetFileSize
GetLocalTime
OpenProcess
InitializeCriticalSection
comctl32
InitCommonControlsEx
ImageList_ReplaceIcon
ImageList_AddMasked
DestroyPropertySheetPage
ImageList_GetImageCount
PropertySheetA
CreateStatusWindowW
ImageList_Create
PropertySheetW
ImageList_LoadImageW
CreatePropertySheetPageA
ImageList_GetIconSize
ImageList_Draw
CreatePropertySheetPageW
ImageList_Remove
ImageList_Destroy
ImageList_LoadImageA
ImageList_Add
_TrackMouseEvent
advapi32
SetSecurityDescriptorOwner
LogonUserW
RegDeleteValueA
DuplicateTokenEx
SetFileSecurityW
OpenThreadToken
CryptGenRandom
RegCreateKeyW
RegQueryInfoKeyW
RegEnumKeyExA
AddAccessAllowedAce
GetFileSecurityW
RegDeleteKeyA
RegCreateKeyExW
InitializeAcl
RegQueryValueExW
RegEnumValueW
RegCreateKeyExA
RegDeleteKeyW
SetSecurityDescriptorGroup
RegSetValueA
RegQueryInfoKeyA
AccessCheck
SetSecurityDescriptorDacl
RegSetValueExA
FreeSid
RegCloseKey
RegSetValueW
RegCreateKeyA
GetLengthSid
RegEnumKeyExW
InitializeSecurityDescriptor
OpenProcessToken
RegSetValueExW
RegDeleteValueW
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyExW
RegNotifyChangeKeyValue
RegEnumValueA
CryptAcquireContextW
AllocateAndInitializeSid
rpcrt4
UuidCreate
CStdStubBuffer_DebugServerRelease
NdrStubCall2
NdrCStdStubBuffer2_Release
CStdStubBuffer_IsIIDSupported
IUnknown_Release_Proxy
CStdStubBuffer_AddRef
NdrDllUnregisterProxy
NdrOleAllocate
NdrCStdStubBuffer_Release
IUnknown_QueryInterface_Proxy
CStdStubBuffer_Connect
CStdStubBuffer_Invoke
NdrStubForwardingFunction
CStdStubBuffer_QueryInterface
NdrOleFree
NdrDllRegisterProxy
NdrClientCall2
IUnknown_AddRef_Proxy
NdrDllCanUnloadNow
CStdStubBuffer_Disconnect
CStdStubBuffer_DebugServerQueryInterface
CStdStubBuffer_CountRefs
version
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
GetFileVersionInfoW
VerQueryValueW
msvfw32
ICInfo
ICInstall
Sections
.text Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 19KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ