tasks-app[.]exe

Sharing

Copy URL Twitter E-mail

General

Target

tasks-app.exe
Size

4.8MB
MD5

a9f6944cb8e622959fca7e2a5f9516f5
SHA1

1f04d232aa7cc42d47cf21f286699d5622d548ca
SHA256

f09dbe6b8b84a3d55f4e105fc6c004f7f4381932babc54fd3773ec7995dc7c3e
SHA512

2e3bdd24863f3ad42b7f0c89cbf512e70d254a00119a11c2d9d93a54016e6f0b230b53ec77943a3787d4cac0318dcf9c971d2c6040751f86fc7b6f93b8eebdf7
SSDEEP

49152:ERsdmaLX2Vhq/UcjavxtRtVZ1eDMACl69kgC7bbSNgjtcEXNOImu2:tdlI1eD0E9k73cEXwIn

Score

1^/10

Malware Config

Signatures

Files

tasks-app.exe
.exe windows x64

2ba691c0850ae2df908e765eeb4c6293

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

ntdll

RtlLookupFunctionEntry
RtlVirtualUnwind
RtlCaptureContext
RtlGetNtVersionNumbers
RtlPcToFileHeader
RtlUnwindEx
RtlUnwind

kernel32

EnterCriticalSection
GetProcAddress
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LoadLibraryW
LCIDToLocaleName
IsProcessorFeaturePresent
GetModuleHandleW
RaiseException
lstrlenW
SetEvent
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
InitializeSListHead
ResetEvent
GetUserDefaultUILanguage
GetSystemTimeAsFileTime
TlsSetValue
TlsGetValue
CreateThread
WriteConsoleW
TryAcquireSRWLockExclusive
LeaveCriticalSection
GetFullPathNameW
ExitProcess
GetConsoleMode
DeleteCriticalSection
LoadLibraryA
GetFinalPathNameByHandleW
GetFileAttributesW
GetModuleFileNameW
GetLastError
OutputDebugStringA
OutputDebugStringW
GetCurrentThreadId
CloseHandle
ReleaseSRWLockExclusive
LoadLibraryExW
AcquireSRWLockExclusive
EncodePointer
TlsAlloc
FreeLibrary
GetEnvironmentVariableW
FindFirstFileW
GetFileInformationByHandleEx
CreateFileW
CreateMutexA
WaitForSingleObjectEx
GetProcessHeap
HeapAlloc
AcquireSRWLockShared
HeapFree
HeapReAlloc
FormatMessageW
CreateEventA
WaitForSingleObject
QueryPerformanceFrequency
ReleaseSRWLockShared
SleepConditionVariableSRW
GetSystemInfo
GetTempPathW
Sleep
GetModuleHandleA
GetFileInformationByHandle
WaitForMultipleObjectsEx
QueryPerformanceCounter
CreateEventW
WakeConditionVariable
WakeAllConditionVariable
TerminateProcess
TlsFree
FindClose
AddVectoredExceptionHandler
SetThreadStackGuarantee
SwitchToThread
GetCurrentProcess
GetCurrentThread
SetLastError
GetCurrentDirectoryW
SetEnvironmentVariableW
ReleaseMutex
GetCommandLineW
SetFilePointerEx
CreateDirectoryW
GetCurrentProcessId
GetStdHandle

user32

DispatchMessageA
ToUnicodeEx
IsWindowVisible
AdjustWindowRectEx
GetWindowRect
SetForegroundWindow
SetWindowTextW
MonitorFromPoint
MessageBoxW
PostThreadMessageW
PeekMessageW
EnumDisplayMonitors
RedrawWindow
CreateIcon
GetKeyboardLayout
CreateAcceleratorTableW
GetRawInputData
ShowCursor
ClipCursor
ValidateRect
GetSystemMenu
SetWindowLongW
SendMessageW
IsProcessDPIAware
GetDC
GetUpdateRect
InvalidateRgn
MonitorFromRect
TrackMouseEvent
SetWindowPos
GetWindowLongW
PostQuitMessage
SendInput
RegisterTouchWindow
ShowWindow
GetMessageA
GetClientRect
AppendMenuW
GetSystemMetrics
CreateMenu
ClientToScreen
GetTouchInputInfo
SetMenuItemInfoW
VkKeyScanW
MapVirtualKeyExW
GetKeyState
GetAsyncKeyState
GetKeyboardState
GetWindowLongPtrW
SetWindowDisplayAffinity
GetMenu
ScreenToClient
SystemParametersInfoA
SetCapture
SetWindowLongPtrW
MsgWaitForMultipleObjectsEx
RegisterRawInputDevices
CheckMenuItem
EnableMenuItem
DestroyAcceleratorTable
DestroyIcon
IsWindow
CreateWindowExW
RegisterClassExW
RegisterWindowMessageA
DestroyWindow
PostMessageW
EnumChildWindows
GetClipCursor
GetWindowPlacement
SetWindowPlacement
ChangeDisplaySettingsExW
DefWindowProcW
TranslateAcceleratorW
GetAncestor
GetMessageW
MapVirtualKeyW
SetCursorPos
FlashWindowEx
GetActiveWindow
GetForegroundWindow
SetMenu
ReleaseCapture
LoadCursorW
DispatchMessageW
TranslateMessage
GetMonitorInfoW
SetCursor
MonitorFromWindow
GetCursorPos
CloseTouchInputHandle

gdi32

GetDeviceCaps
CreateRectRgn
DeleteObject

dwmapi

DwmEnableBlurBehindWindow

ole32

CoTaskMemFree
RevokeDragDrop
CoInitializeEx
RegisterDragDrop
CoCreateInstance
OleInitialize
CreateStreamOnHGlobal
CoUninitialize
CoTaskMemAlloc

comctl32

RemoveWindowSubclass
SetWindowSubclass
DefSubclassProc

shell32

SHGetKnownFolderPath
DragQueryFileW
DragFinish

uxtheme

SetWindowTheme

advapi32

RegGetValueW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
EventUnregister
EventWriteTransfer
EventSetInformation
EventRegister

oleaut32

SetErrorInfo
SysStringLen
GetErrorInfo
SysFreeString

bcrypt

BCryptGenRandom
BCryptOpenAlgorithmProvider
BCryptCloseAlgorithmProvider

api-ms-win-crt-math-l1-1-0

exp2f
atanf
powf
expf
sinf
pow
__setusermatherr
exp2
floorf
round
trunc
floor
cosf

api-ms-win-crt-string-l1-1-0

strcpy_s
_wcsicmp
wcslen
wcsncmp

api-ms-win-crt-convert-l1-1-0

_ultow_s
wcstol

api-ms-win-crt-runtime-l1-1-0

_initterm_e
_seh_filter_exe
abort
_set_app_type
_configure_narrow_argv
terminate
_crt_atexit
_register_onexit_function
_initialize_onexit_table
_initialize_narrow_environment
_cexit
_exit
_get_initial_narrow_environment
__p___argc
_register_thread_local_exe_atexit_callback
_c_exit
_initterm
__p___argv
exit

api-ms-win-crt-stdio-l1-1-0

__p__commode
_set_fmode

api-ms-win-crt-locale-l1-1-0

_configthreadlocale

api-ms-win-crt-heap-l1-1-0

free
_set_new_mode
_callnewh
malloc
calloc

Sections

.text
Size: 3.0MB - Virtual size: 3.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdata
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

_RDATA
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ba691c0850ae2df908e765eeb4c6293

Headers

DLL Characteristics

File Characteristics

Imports

ntdll

kernel32

user32

gdi32

dwmapi

ole32

comctl32

shell32

uxtheme

advapi32

oleaut32

bcrypt

api-ms-win-crt-math-l1-1-0

api-ms-win-crt-string-l1-1-0

api-ms-win-crt-convert-l1-1-0

api-ms-win-crt-runtime-l1-1-0

api-ms-win-crt-stdio-l1-1-0

api-ms-win-crt-locale-l1-1-0

api-ms-win-crt-heap-l1-1-0

Sections

.text Size: 3.0MB - Virtual size: 3.0MB

.rdata Size: 1.6MB - Virtual size: 1.6MB

.data Size: 1KB - Virtual size: 39KB

.pdata Size: 153KB - Virtual size: 152KB

_RDATA Size: 512B - Virtual size: 348B

.rsrc Size: 56KB - Virtual size: 56KB

.reloc Size: 14KB - Virtual size: 14KB

.text
Size: 3.0MB - Virtual size: 3.0MB

.rdata
Size: 1.6MB - Virtual size: 1.6MB

.data
Size: 1KB - Virtual size: 39KB

.pdata
Size: 153KB - Virtual size: 152KB

_RDATA
Size: 512B - Virtual size: 348B

.rsrc
Size: 56KB - Virtual size: 56KB

.reloc
Size: 14KB - Virtual size: 14KB