Static task
static1
Behavioral task
behavioral1
Sample
wps.zip
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral2
Sample
wps.zip
Resource
win10v2004-20230221-en
windows10-2004-x64
Behavioral task
behavioral3
Sample
wps/kdump64.dll
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral4
Sample
wps/kdump64.dll
Resource
win10v2004-20230220-en
windows10-2004-x64
Behavioral task
behavioral5
Sample
wps/wps.dat
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral6
Sample
wps/wps.dat
Resource
win10v2004-20230221-en
windows10-2004-x64
Behavioral task
behavioral7
Sample
wps/wps.exe
Resource
win7-20230220-en
windows7-x64
Behavioral task
behavioral8
Sample
wps/wps.exe
Resource
win10v2004-20230220-en
windows10-2004-x64
Target
wps.zip
Size
272KB
MD5
ebf296e02f20670c5063ab810c52d43b
SHA1
7b9861322ca8555e5941ad56a8adfcb28fea41d1
SHA256
0125cc221398fc58471af4c3b347fcf92b87a180039f93e3ee3975bb50cf4ab5
SHA512
091558a09a287f3cbbc761faeaea14f63f6994f8299361d74fa9bb0fdf2a6f947d635cd4b601fc274bd12d56d06fc9b46ca8cb233a856df15b4f027c5feed5a2
SSDEEP
6144:pr6d5eF2vGTFhMNQqg+xh3zygMI5///0yGtukCUfg3mfA/Hg3Jp/liGpOoHg:h0I2vGxhMNQWxhDyY3/MuVUo3mfx3T/w
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
FreeLibrary
GetCurrentProcess
WaitForSingleObject
Sleep
lstrlenW
GetLastError
GetProcAddress
DisableThreadLibraryCalls
LoadLibraryA
CloseHandle
CreateThread
GetThreadContext
HeapReAlloc
SetThreadContext
HeapAlloc
HeapFree
GetModuleHandleW
Thread32First
HeapDestroy
HeapCreate
Thread32Next
FlushInstructionCache
OpenThread
VirtualProtect
CreateToolhelp32Snapshot
GetCurrentThreadId
GetCurrentProcessId
SuspendThread
ResumeThread
VirtualQuery
VirtualFree
VirtualAlloc
GetSystemInfo
FlsSetValue
GetCommandLineA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
RtlUnwindEx
EncodePointer
FlsGetValue
FlsFree
SetLastError
FlsAlloc
ExitProcess
DecodePointer
SetHandleCount
GetStdHandle
InitializeCriticalSectionAndSpinCount
GetFileType
GetStartupInfoW
DeleteCriticalSection
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
HeapSetInformation
GetVersion
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
LeaveCriticalSection
EnterCriticalSection
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LoadLibraryW
WriteFile
GetModuleFileNameW
LCMapStringW
MultiByteToWideChar
GetStringTypeW
HeapSize
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageClientAuth
ExtKeyUsageCodeSigning
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
CreateDirectoryW
DeleteFileW
InitializeCriticalSection
GetModuleFileNameW
FindFirstFileW
FindClose
FindResourceW
OpenEventW
SetEvent
SizeofResource
LockResource
LoadResource
LoadLibraryW
GetProcAddress
Sleep
CloseHandle
MultiByteToWideChar
GetLastError
VirtualAllocEx
WriteProcessMemory
CreateRemoteThread
GetCurrentThreadId
VirtualFreeEx
CreateToolhelp32Snapshot
Process32FirstW
lstrcmpiW
Process32NextW
OpenProcess
ReadFile
CreateFileW
SetEndOfFile
WideCharToMultiByte
WriteFile
GetLocalTime
LeaveCriticalSection
FindResourceExW
EnterCriticalSection
WaitForSingleObject
DeleteCriticalSection
CreateFileA
LoadLibraryA
HeapDestroy
HeapAlloc
HeapFree
HeapReAlloc
HeapSize
GetProcessHeap
RaiseException
GetVersionExA
GetACP
GetLocaleInfoA
GetThreadLocale
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RtlCaptureContext
ExitThread
CreateThread
GetSystemTimeAsFileTime
GetStartupInfoW
RtlUnwindEx
RtlPcToFileHeader
RtlLookupFunctionEntry
LCMapStringA
LCMapStringW
GetCPInfo
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetStdHandle
GetModuleFileNameA
GetModuleHandleA
FlsGetValue
FlsSetValue
TlsFree
FlsFree
SetLastError
TlsSetValue
FlsAlloc
GetOEMCP
IsValidCodePage
RtlVirtualUnwind
ExitProcess
HeapSetInformation
HeapCreate
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetFilePointer
SetStdHandle
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
PathAppendW
PathRemoveFileSpecW
PathAddBackslashW
UnregisterClassA
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ