Static task
static1
Behavioral task
behavioral1
Sample
ExtPassword.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
ExtPassword.exe
Resource
win10v2004-20220812-en
General
-
Target
ExtPassword.exe
-
Size
390KB
-
MD5
981ebee34202cb229b421e87fe960360
-
SHA1
9d55ca5a740c9bee157d8e8e771b6a7a2398f83d
-
SHA256
efe29224288ea9dbf40e2e6bea8058b65413bd39372edb135f974c980e0bbbb8
-
SHA512
391246960d14d894d643a8771d985d4dc60a1ccc634a323bbac12d4319690e6399aac7881c665006823942a688677383c64708b2ca1f267de341cc1ff333df0e
-
SSDEEP
12288:JtUcv3kke3foBZ1HDXKR7G3lbt+GvgLJBNv:bUcv3kD3QBrj6R7G3TFoJjv
Malware Config
Signatures
Files
-
ExtPassword.exe.exe windows x86
516b1be091cf42d5bde1f47ba6a5a81f
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
_msize
_beginthreadex
realloc
__dllonexit
_onexit
_c_exit
_exit
_XcptFilter
_cexit
exit
_wcmdln
__wgetmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
qsort
_endthreadex
memmove
malloc
free
modf
wcstoul
strcat
_wtoi64
strcmp
strcpy
??3@YAXPAX@Z
??2@YAPAXI@Z
_wtoi
wcschr
_wcsicmp
strftime
_gmtime64
_itow
wcscmp
wcsncmp
wcslen
_wcsnicmp
memcpy
wcsrchr
memcmp
wcscpy
memset
strlen
_snwprintf
wcsncat
wcscat
__set_app_type
_controlfp
_except_handler3
_vsnwprintf
_purecall
_wcslwr
comctl32
CreateStatusWindowW
ImageList_AddMasked
ImageList_SetImageCount
ImageList_Create
ImageList_Add
ord17
ImageList_ReplaceIcon
CreateToolbarEx
version
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
kernel32
GetSystemInfo
UnlockFile
HeapValidate
InterlockedCompareExchange
FlushViewOfFile
HeapCreate
WaitForSingleObject
GetFileAttributesA
LeaveCriticalSection
DeleteFileA
HeapFree
HeapDestroy
AreFileApisANSI
CreateFileMappingA
QueryPerformanceCounter
GetSystemTime
GetTempPathA
Sleep
HeapAlloc
EnterCriticalSection
LockFileEx
SetEndOfFile
GetFullPathNameW
LockFile
GetFullPathNameA
WaitForSingleObjectEx
GetModuleHandleA
GetDiskFreeSpaceA
GetStartupInfoW
GetDiskFreeSpaceW
InitializeCriticalSection
GetVersionExA
HeapSize
OutputDebugStringA
SystemTimeToFileTime
FileTimeToLocalFileTime
LocalFree
LoadLibraryW
GetLastError
GetProcAddress
FreeLibrary
LocalAlloc
CloseHandle
GetFileSize
GetModuleHandleW
MultiByteToWideChar
GetDriveTypeW
GetLogicalDrives
GetTickCount
CompareFileTime
CreateThread
WideCharToMultiByte
FormatMessageW
FindClose
FindFirstFileW
GetVersionExW
SetFilePointer
GetWindowsDirectoryW
GetFileAttributesW
WriteFile
FindResourceW
ReadFile
LockResource
GetModuleFileNameW
LoadResource
lstrcpyW
CreateFileW
GlobalAlloc
GetSystemDirectoryW
LoadLibraryExW
lstrlenW
GlobalUnlock
GetTempPathW
GetCurrentProcess
FindNextFileW
GlobalLock
SizeofResource
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
WritePrivateProfileStringW
GetPrivateProfileIntW
EnumResourceNamesW
GetPrivateProfileStringW
GetStdHandle
GetSystemTimeAsFileTime
DeleteFileW
SetErrorMode
ReadProcessMemory
GetCurrentProcessId
ExitProcess
OpenProcess
EnumResourceTypesW
OutputDebugStringW
HeapReAlloc
FlushFileBuffers
CreateFileA
GetFileAttributesExW
UnlockFileEx
GetProcessHeap
DeleteCriticalSection
CreateMutexW
HeapCompact
GetCurrentThreadId
FormatMessageA
user32
GetMonitorInfoW
MonitorFromWindow
GetKeyState
DispatchMessageW
DrawTextExW
TranslateMessage
IsDialogMessageW
GetMessageW
PostQuitMessage
TrackPopupMenu
RegisterWindowMessageW
GetDesktopWindow
DestroyWindow
LoadStringW
EnumChildWindows
CreateDialogParamW
DialogBoxParamW
DestroyMenu
GetDlgCtrlID
GetMenuItemInfoW
LoadCursorW
GetSysColorBrush
ShowWindow
ChildWindowFromPoint
GetDC
SetCursor
ReleaseDC
SetWindowPos
SendDlgItemMessageW
GetWindow
EndDialog
SetWindowLongW
GetDlgItem
GetWindowRect
DrawFrameControl
GetDlgItemInt
SetWindowTextW
InvalidateRect
UpdateWindow
GetWindowTextLengthW
SendMessageW
SetDlgItemTextW
GetDlgItemTextW
EndPaint
GetWindowPlacement
GetSystemMetrics
SetDlgItemInt
DeferWindowPos
BeginPaint
GetClientRect
CreateWindowExW
GetForegroundWindow
LoadAcceleratorsW
PostMessageW
DefWindowProcW
RegisterClassW
TranslateAcceleratorW
MessageBoxW
SetMenu
GetParent
LoadImageW
LoadIconW
GetSysColor
GetWindowLongW
SetFocus
EndDeferWindowPos
BeginDeferWindowPos
KillTimer
SetTimer
CheckMenuItem
GetMenuStringW
GetMenuItemCount
CloseClipboard
GetCursorPos
SetClipboardData
CheckMenuRadioItem
EnableWindow
MapWindowPoints
GetSubMenu
GetMenu
EmptyClipboard
EnableMenuItem
GetClassNameW
OpenClipboard
MoveWindow
GetWindowTextW
LoadMenuW
ModifyMenuW
gdi32
GetPixel
DeleteDC
SetPixel
SelectObject
CreateCompatibleDC
GetObjectW
GetDeviceCaps
SetBkMode
DeleteObject
SetTextColor
CreateFontIndirectW
SetBkColor
GetStockObject
GetTextExtentPoint32W
comdlg32
GetSaveFileNameW
FindTextW
shell32
SHGetFileInfoW
ShellExecuteW
Sections
.text Size: 316KB - Virtual size: 316KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 43KB - Virtual size: 43KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 7KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 22KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ