Static task
static1
Behavioral task
behavioral1
Sample
scan2excel.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
scan2excel.exe
Resource
win10v2004-20230220-en
General
-
Target
scan2excel.exe
-
Size
11.4MB
-
MD5
6c20780bc03b15e3d559e7498c55bed2
-
SHA1
0dd14b1bd4e83600856e7b0b3a79086abd0d146f
-
SHA256
a09add393e5a7000e581a2f91857c59ac6dd5f320c4ad9307a4896eaae014cd6
-
SHA512
800a957c0305cc6325a57a7daf6d68e66db892a45ffcc175290f32b676be52642057aa12019bb5213ab737528bc11c9c3fc5ae43ce9e83ef66cb04eaa756d071
-
SSDEEP
196608:bVcaPDyljZKFciWCaizPWLQ9G5W5JSzQy1IEK3PloILxsB5ddJsMJhWs4K:BNDyljZociWSWLQb5JKIl/lo8sBXNJhN
Malware Config
Signatures
Files
-
scan2excel.exe.exe windows x86
3f2bbbdfbb74b8bd29c7401449d86fbd
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
FindClose
FindFirstFileA
GetFullPathNameA
GetTickCount
GetFileSize
GetFileTime
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetDriveTypeA
CreateThread
ExitThread
HeapReAlloc
RaiseException
GetACP
HeapSize
CreateFileA
SetFilePointer
GetFileType
HeapDestroy
HeapCreate
IsBadWritePtr
SetStdHandle
LCMapStringA
LCMapStringW
SetEnvironmentVariableW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadCodePtr
CompareStringA
CompareStringW
GetCurrentProcess
DuplicateHandle
SetErrorMode
InterlockedExchange
GetStdHandle
WriteFile
GetThreadLocale
SizeofResource
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
lstrcpynA
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalFree
GlobalAlloc
lstrcmpA
GetCurrentThread
GlobalLock
GlobalUnlock
MulDiv
SetLastError
FindResourceA
LoadResource
LockResource
GetVersion
GetCurrentThreadId
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
HeapFree
IsBadReadPtr
HeapAlloc
GetVolumeInformationA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetEnvironmentVariableA
TerminateThread
GlobalGetAtomNameA
GetProfileStringA
WriteProfileStringA
ExitProcess
IsDebuggerPresent
SetThreadLocale
GetStartupInfoA
GetCommandLineA
GetModuleHandleA
VirtualFree
GetExitCodeProcess
VirtualProtectEx
WriteProcessMemory
SetThreadContext
ResumeThread
TerminateProcess
GetThreadContext
ReadProcessMemory
VirtualQueryEx
VirtualAlloc
lstrcatA
lstrlenA
WinExec
lstrcpyA
GetWindowsDirectoryA
GetVersionExA
LoadLibraryA
GetProcAddress
GetCurrentProcessId
FreeLibrary
GetLastError
FormatMessageA
LocalFree
GetModuleFileNameA
GetFileAttributesA
SetEnvironmentVariableA
GetTempPathA
GetTempFileNameA
DeleteFileA
OutputDebugStringA
CreatePipe
CreateProcessA
PeekNamedPipe
ReadFile
WaitForSingleObject
Sleep
SetHandleCount
CloseHandle
user32
GetFocus
SetActiveWindow
AdjustWindowRectEx
ScreenToClient
GetTopWindow
IsChild
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowLongA
RegisterWindowMessageA
OffsetRect
IntersectRect
GetWindowPlacement
LoadStringA
IsWindowVisible
KillTimer
PostThreadMessageA
DestroyMenu
GetCapture
SetTimer
CallWindowProcA
GetComboBoxInfo
CopyRect
SystemParametersInfoA
DialogBoxParamA
GetDlgItemTextA
GetSysColorBrush
GetDlgItem
SetFocus
SetWindowTextA
SetDlgItemTextA
GetDesktopWindow
wsprintfA
SetWindowPos
GetCursorPos
CreatePopupMenu
EnableMenuItem
GetKeyState
UpdateWindow
IsIconic
GetSystemMetrics
SendMessageA
GetSysColor
EnableWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DrawIcon
MessageBoxA
GetSystemMenu
AppendMenuA
LoadIconA
GetActiveWindow
MessageBoxW
PeekMessageA
DispatchMessageA
TranslateMessage
LoadCursorA
CopyIcon
GetWindowRect
RegisterClipboardFormatA
CharUpperA
GetParent
GetDC
ReleaseDC
InflateRect
InvalidateRect
IsWindow
SetWindowLongA
SetCursor
GetClientRect
PtInRect
ReleaseCapture
DefDlgProcA
IsWindowUnicode
MessageBeep
GetNextDlgGroupItem
SetRect
CopyAcceleratorTableA
CharNextA
FillRect
SetCapture
RedrawWindow
wvsprintfA
MapDialogRect
SetWindowContextHelpId
CreateDialogIndirectParamA
GetMessageA
ValidateRect
PostQuitMessage
WindowFromPoint
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
EndDialog
GetClassNameA
MoveWindow
IsDialogMessageA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
PostMessageA
FrameRect
SendDlgItemMessageA
MapWindowPoints
gdi32
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
OffsetViewportOrgEx
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateBitmap
PatBlt
GetMapMode
DPtoLP
LPtoDP
SetViewportOrgEx
SetMapMode
SetBkMode
SelectObject
RestoreDC
SaveDC
DeleteDC
SetBkColor
SetTextColor
GetClipBox
GetTextColor
GetBkColor
GetDeviceCaps
GetTextExtentPoint32A
GetObjectA
CreateFontIndirectA
CreateDIBitmap
GetTextExtentPointA
BitBlt
CreateCompatibleDC
GetStockObject
comdlg32
GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA
winspool.drv
ClosePrinter
DocumentPropertiesA
OpenPrinterA
advapi32
RegQueryValueA
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegCloseKey
shell32
SHGetMalloc
SHBrowseForFolderA
ShellExecuteA
SHGetFileInfoA
DragFinish
DragQueryFileA
DragAcceptFiles
SHGetPathFromIDListA
comctl32
_TrackMouseEvent
ord17
ImageList_Destroy
oledlg
ord8
ole32
CoFreeUnusedLibraries
OleInitialize
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleUninitialize
olepro32
ord253
oleaut32
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString
SysStringLen
SysAllocStringByteLen
imagehlp
MapFileAndCheckSumA
skinmagic
ord9
ord17
ord2
ord1
ord16
ord3
Sections
.text Size: 236KB - Virtual size: 234KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 60KB - Virtual size: 58KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 11.1MB - Virtual size: 11.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 20KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ