Static task
static1
Behavioral task
behavioral1
Sample
a740b6663ece86758ea867126e8a6c8ac076ca4261dbf48161fc78f0d358947f.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral2
Sample
a740b6663ece86758ea867126e8a6c8ac076ca4261dbf48161fc78f0d358947f.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
General
-
Target
a740b6663ece86758ea867126e8a6c8ac076ca4261dbf48161fc78f0d358947f
-
Size
8.1MB
-
MD5
928d495a9d98d1b2aa47cb585fc60b8d
-
SHA1
b799af68eeb276ec89ae0619cf31a20ed9963c49
-
SHA256
a740b6663ece86758ea867126e8a6c8ac076ca4261dbf48161fc78f0d358947f
-
SHA512
bd6f0b4856c3a472518dc9bc2c8b665b6c45295a9fbd801d8fa05657bec4ae33d80b946eec0ebb768b0c7e702e4468450b4b366ca647d852e64534ee640f58ff
-
SSDEEP
98304:NC/WT0D9WFM7nJbyIGMZR9u0LpKStG425a/y4pOb+/c/AbBi//62c0DW2eZzt:NC/WT0DcFM7ZPL/La4pOb+eANt
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a740b6663ece86758ea867126e8a6c8ac076ca4261dbf48161fc78f0d358947f
Files
-
a740b6663ece86758ea867126e8a6c8ac076ca4261dbf48161fc78f0d358947f.exe windows x86
50f5c543046acac1e9b638f79b1a14e9
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ReadConsoleW
GetConsoleMode
GetStdHandle
HeapQueryInformation
SetStdHandle
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
GetCommandLineW
GetCommandLineA
VirtualQuery
VirtualAlloc
GetSystemInfo
QueryPerformanceFrequency
IsValidLocale
ExitProcess
UnmapViewOfFile
MapViewOfFile
CreateFileMappingW
GetUserDefaultLangID
GetPrivateProfileSectionNamesW
lstrlenW
EnumResourceLanguagesW
EnumResourceTypesW
lstrcpynW
CreateThread
EnumResourceNamesW
CreateDirectoryW
GetTimeFormatW
GetDateFormatW
OutputDebugStringW
LCMapStringW
EnumSystemLocalesW
SetFilePointerEx
RtlUnwind
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
GetStringTypeW
WriteConsoleW
GetStartupInfoW
IsDebuggerPresent
GetConsoleCP
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
VerifyVersionInfoW
VerSetConditionMask
SizeofResource
GetWindowsDirectoryW
FindNextFileW
SetErrorMode
SetFileAttributesW
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
GetStringTypeExW
MoveFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFileSize
FlushFileBuffers
FindFirstFileW
FindClose
CreateFileW
DeleteFileW
GetCurrentDirectoryW
FindResourceExW
lstrcpyW
GetThreadLocale
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalFlags
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
LocalAlloc
InitializeCriticalSectionAndSpinCount
GlobalGetAtomNameW
GetProfileIntW
GetTempPathW
SearchPathW
SystemTimeToFileTime
ReplaceFileW
SetFileTime
GetTempFileNameW
GetFullPathNameW
GetFileTime
GetFileAttributesW
GetDiskFreeSpaceW
ResumeThread
SetThreadPriority
CreateEventW
WaitForSingleObject
SetEvent
CloseHandle
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetTickCount
CompareStringA
lstrcmpA
GetVersionExW
GetCurrentThread
VirtualProtect
CopyFileW
LocalFree
GlobalSize
GetCurrentProcessId
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryA
LoadLibraryExW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
LoadLibraryW
GetProcAddress
GetModuleHandleA
SetLastError
OutputDebugStringA
GetModuleFileNameW
GetModuleHandleW
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
HeapFree
MulDiv
FormatMessageW
Sleep
InitializeCriticalSectionEx
EnterCriticalSection
LeaveCriticalSection
GetUserDefaultLCID
GetTimeZoneInformation
GetLocaleInfoW
MultiByteToWideChar
GetLastError
WideCharToMultiByte
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
FindResourceW
LoadResource
LockResource
GetFileType
user32
MapVirtualKeyW
GetKeyNameTextW
IntersectRect
SetRectEmpty
SendDlgItemMessageA
RemoveMenu
InsertMenuW
GetMenuState
GetMenuStringW
GetWindowThreadProcessId
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
IsDialogMessageW
SetWindowTextW
CheckDlgButton
SetDlgItemTextW
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetWindow
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongW
SetWindowLongW
EqualRect
CopyRect
MapWindowPoints
InvalidateRgn
IsRectEmpty
GetNextDlgGroupItem
MessageBoxW
AdjustWindowRectEx
GetWindowRgn
SubtractRect
TranslateMDISysAccel
DefMDIChildProcW
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
ValidateRect
EndPaint
BeginPaint
TrackPopupMenu
GetAsyncKeyState
DestroyMenu
GetMenuItemInfoW
PostQuitMessage
RegisterClipboardFormatW
SetWindowContextHelpId
GetMessageW
TranslateMessage
ShowOwnedPopups
BringWindowToTop
LoadAcceleratorsW
TranslateAcceleratorW
InsertMenuItemW
DestroyIcon
UnpackDDElParam
ReuseDDElParam
WindowFromPoint
GetMenuItemCount
GetMenuItemID
SetRect
GetTabbedTextExtentW
DestroyCursor
WaitMessage
GetDialogBaseUnits
RealChildWindowFromPoint
CopyImage
GetSysColorBrush
TrackMouseEvent
DeleteMenu
PostThreadMessageW
DefFrameProcW
CharNextW
DrawMenuBar
EnableWindow
MapDialogRect
LoadImageW
DrawIconEx
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SendMessageW
GetSystemMetrics
GetClientRect
InvalidateRect
GetSysColor
FrameRect
OffsetRect
IsWindow
LoadMenuW
GetSubMenu
TrackPopupMenuEx
CheckMenuItem
EnableMenuItem
UpdateWindow
GetForegroundWindow
GetCursorPos
ScreenToClient
GetTabbedTextExtentA
SendMessageTimeoutW
GetClipboardFormatNameW
LookupIconIdFromDirectoryEx
SetWindowLongA
GetWindowLongA
IsWindowUnicode
CreateIconIndirect
CreateIconFromResourceEx
GetCursor
ShowCaret
VkKeyScanExW
GetClipboardData
GetKeyboardLayoutList
GetUserObjectInformationW
CloseDesktop
OpenInputDesktop
wsprintfW
LoadIconW
SetTimer
InflateRect
KillTimer
SetCapture
GetCapture
ReleaseCapture
CreatePopupMenu
AppendMenuW
ClientToScreen
LoadCursorW
SetCursor
SetForegroundWindow
PtInRect
RedrawWindow
FillRect
GetWindowRect
GetFocus
SystemParametersInfoW
IsWindowVisible
SetSysColors
LoadBitmapW
GetParent
SetActiveWindow
GetDC
ReleaseDC
RegisterWindowMessageW
UnregisterClassW
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetDlgItem
GetNextDlgTabItem
GetActiveWindow
IsWindowEnabled
GetWindowLongW
GetDesktopWindow
DispatchMessageW
PeekMessageW
GetMessagePos
GetMessageTime
PostMessageW
MessageBeep
CharUpperW
UnionRect
GetSystemMenu
SetParent
DrawIcon
SetWindowRgn
CreateMenu
GetMenuDefaultItem
DrawFocusRect
GetIconInfo
EnableScrollBar
HideCaret
InvertRect
NotifyWinEvent
SetLayeredWindowAttributes
EnumDisplayMonitors
DrawStateW
SetClassLongW
DrawEdge
DrawFrameControl
IsZoomed
SetCursorPos
CopyIcon
GetDCEx
LockWindowUpdate
IsClipboardFormatAvailable
UpdateLayeredWindow
MonitorFromPoint
GetComboBoxInfo
GetKeyboardLayout
IsCharLowerW
MapVirtualKeyExW
ToUnicodeEx
GetKeyboardState
CreateAcceleratorTableW
DestroyAcceleratorTable
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuW
CopyAcceleratorTableW
DefWindowProcW
CallWindowProcW
RegisterClassW
GetClassInfoW
GetClassInfoExW
CreateWindowExW
IsMenu
IsChild
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsIconic
GetDlgCtrlID
SetFocus
GetKeyState
GetUpdateRect
GetMenu
SetMenu
CharUpperBuffW
gdi32
GetCurrentPositionEx
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
StartDocW
MoveToEx
TextOutW
ExtTextOutW
PolyBezierTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CopyMetaFileW
GetClipRgn
CombineRgn
GetMapMode
PatBlt
SetRectRgn
EndDoc
ExcludeClipRect
EndPage
AbortDoc
SetAbortProc
GetROP2
GetBkColor
GetBkMode
GetCharWidthW
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextColor
GetWindowOrgEx
GetTextMetricsW
GetTextFaceW
EnumFontFamiliesExW
GetRgnBox
StretchDIBits
CreateEllipticRgn
LPtoDP
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetDIBits
SetPixel
StretchBlt
SetDIBColorTable
CreatePolygonRgn
CreateRoundRectRgn
OffsetRgn
GetCurrentObject
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
SetPaletteEntries
SetPixelV
CreateDCW
GetClipBox
Escape
CreateRectRgn
CreatePatternBrush
CreateHatchBrush
SetTextColor
SetBkColor
CreateBitmap
SelectObject
CreateDIBSection
CreateSolidBrush
ExtFloodFill
Rectangle
StrokeAndFillPath
FillPath
CloseFigure
GetTextExtentPoint32A
GetObjectA
SetBrushOrgEx
GetBitmapBits
ExtCreateRegion
StrokePath
EndPath
BeginPath
CreateBrushIndirect
CreatePen
GetObjectW
DeleteObject
CreateRectRgnIndirect
GetViewportOrgEx
GetDeviceCaps
DPtoLP
DeleteDC
Ellipse
GetStockObject
Polygon
CreateFontIndirectW
GetTextExtentPoint32W
CreateCompatibleDC
CreateCompatibleBitmap
StartPage
Polyline
BitBlt
msimg32
TransparentBlt
AlphaBlend
comdlg32
CommDlgExtendedError
winspool.drv
ClosePrinter
OpenPrinterW
GetJobW
DocumentPropertiesW
advapi32
RegQueryValueExW
RegCreateKeyExW
RegEnumKeyExW
RegEnumValueW
SetFileSecurityW
GetFileSecurityW
RegQueryValueW
RegEnumKeyW
RegDeleteValueW
RegDeleteKeyW
RegOpenKeyExW
RegSetValueW
RegCloseKey
RegSetValueExW
IsTextUnicode
shell32
SHCreateDirectoryExW
DragAcceptFiles
SHFileOperationW
ShellExecuteW
DragQueryFileW
DragFinish
SHAddToRecentDocs
ExtractIconW
SHGetFileInfoW
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetMalloc
SHAppBarMessage
SHBrowseForFolderW
SHGetFolderPathW
comctl32
InitCommonControlsEx
_TrackMouseEvent
ImageList_AddMasked
ImageList_GetIcon
ImageList_Destroy
ImageList_GetImageCount
ImageList_Add
ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_Draw
shlwapi
PathFileExistsW
PathFindExtensionW
PathFindFileNameW
PathRemoveExtensionW
PathRemoveFileSpecW
PathAppendW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
PathCombineW
UrlUnescapeW
uxtheme
GetCurrentThemeName
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemePartSize
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeParentBackground
DrawThemeText
GetThemeColor
GetWindowTheme
ole32
RevokeDragDrop
RegisterDragDrop
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
ReleaseStgMedium
CoUninitialize
CoCreateGuid
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
CoInitialize
CoInitializeEx
CoDisconnectObject
CoGetClassObject
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleDuplicateData
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleRun
OleGetClipboard
CoLockObjectExternal
OleLockRunning
DoDragDrop
oleaut32
VariantChangeTypeEx
VarUdateFromDate
GetErrorInfo
OleLoadPicturePath
OleCreateFontIndirect
VarBstrFromDate
VarDateFromStr
VariantCopy
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayDestroy
SysStringLen
LoadTypeLi
SysAllocString
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SystemTimeToVariantTime
SysFreeString
VariantTimeToSystemTime
SafeArrayGetLBound
oledlg
OleUIAddVerbMenuW
OleUIBusyW
gdiplus
GdipGetImageEncodersSize
GdipGetImageEncoders
GdipCreateBitmapFromScan0
GdipCreateBitmapFromHBITMAP
GdipCloneImage
GdipAlloc
GdipFree
GdipDisposeImage
GdipSaveImageToFile
GdiplusShutdown
GdipGetImageGraphicsContext
GdipSetStringFormatTrimming
GdipSetStringFormatLineAlign
GdipCreateFontFromDC
GdipFillRectangle
GdipSetCompositingQuality
GdipSetCompositingMode
GdipFillPieI
GdipSetPathGradientBlend
GdipGetPathGradientPointCount
GdipSetPathGradientCenterPointI
GdipSetPathGradientSurroundColorsWithCount
GdipSetPathGradientCenterColor
GdipGetImageWidth
GdipSetLineBlend
GdipCreateLineBrushI
GdipCloneBrush
GdipAddPathEllipseI
GdipCreatePath
GdipGetStringFormatFlags
GdipSetStringFormatFlags
GdipCloneStringFormat
GdipDeleteStringFormat
GdipStringFormatGetGenericTypographic
GdipCreateStringFormat
GdipMeasureString
GdipDrawString
GdipGetFontSize
GdipGetFontStyle
GdipGetFamily
GdipDeleteFont
GdipCreateFontFromLogfontW
GdipCreateFontFromLogfontA
GdipGetCellDescent
GdipGetCellAscent
GdipGetEmHeight
GdipDeleteFontFamily
GdipGetClipBoundsI
GdipGetClip
GdipSetClipRegion
GdipSetClipRectI
GdipDrawImageRectRect
GdipDrawImageRect
GdipDrawImage
GdipFillPath
GdipFillEllipse
GdipFillPolygonI
GdipFillPolygon
GdipFillRectangleI
GdipDrawPath
GdipDrawPolygonI
GdipDrawPolygon
GdipDrawEllipse
GdipDrawLinesI
GdipDrawLines
GdipDrawLineI
GdipSetPageUnit
GdipGetWorldTransform
GdipTranslateWorldTransform
GdipSetWorldTransform
GdipSetTextRenderingHint
GdipSetPixelOffsetMode
GdipSetSmoothingMode
GdipReleaseDC
GdipGetDC
GdipCreateFromHDC2
GdipSetImageAttributesColorKeys
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipGetImagePaletteSize
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipImageRotateFlip
GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipGetImageFlags
GdipLoadImageFromStream
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipSetPenDashArray
GdipDrawImageI
GdiplusStartup
GdipCreatePathGradientFromPath
GdipDeleteGraphics
GdipSetPenLineJoin
GdipSetPenEndCap
GdipSetPenStartCap
GdipDeletePen
GdipCreatePen2
GdipCreatePen1
GdipSetLinePresetBlend
GdipCreatePath2
GdipDeletePath
GdipCreateMatrix
GdipCloneMatrix
GdipDeleteMatrix
GdipTranslateMatrix
GdipScaleMatrix
GdipRotateMatrix
GdipShearMatrix
GdipInvertMatrix
GdipTransformMatrixPoints
GdipTransformMatrixPointsI
GdipCreateRegion
GdipDeleteRegion
GdipDeleteBrush
GdipCreateSolidFill
GdipCreateLineBrush
oleacc
AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject
wininet
InternetCloseHandle
InternetConnectW
InternetReadFile
InternetSetFilePointer
InternetWriteFile
InternetQueryDataAvailable
InternetGetLastResponseInfoW
InternetSetStatusCallbackW
InternetOpenW
HttpOpenRequestW
HttpSendRequestW
HttpQueryInfoW
InternetCanonicalizeUrlW
InternetCrackUrlW
imm32
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
winmm
PlaySoundW
Sections
.text Size: 4.1MB - Virtual size: 4.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 67KB - Virtual size: 113KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2.6MB - Virtual size: 2.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 351KB - Virtual size: 350KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ