Static task
static1
General
-
Target
MLWapp.exe
-
Size
4.6MB
-
MD5
036a9644825a949e8afe97668474e1c6
-
SHA1
1e6ccf7a84e80a7839d761f1a13c1a8d07082927
-
SHA256
fb787808e13769d37fa63a6b82dc09ec53537dbb60d0e7f73da824bf12d961de
-
SHA512
aeb8dcd7b1ed57ee070629084381c1a69e43795a6af196490259da1b3f1f0c75afe525bcdca67f769a49632ac3e701351f50e5380da6bcae059859aba7116455
-
SSDEEP
98304:SOz2Y3+IcPiHgFfj5bFLOAkGkzdnEVomFHKnP:F2BxugFb5bFLOyomFHKnP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource MLWapp.exe
Files
-
MLWapp.exe.exe windows x64
e8badb526b32c71453b888333b73398d
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
version
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
mf
MFCreateTopology
MFGetService
MFCreateMediaSession
MFCreateAudioRendererActivate
MFCreateVideoRendererActivate
MFCreateTopologyNode
mfplat
MFCreateSourceResolver
MFStartup
MFShutdown
kernel32
GetTempFileNameW
GetUserDefaultLCID
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
IsValidLocale
LCMapStringW
GetTimeZoneInformation
ExitProcess
GetStdHandle
SetStdHandle
VirtualQuery
VirtualAlloc
HeapQueryInformation
GetCommandLineW
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
RtlUnwind
RtlPcToFileHeader
RtlUnwindEx
GetCPInfo
SearchPathW
GetStringTypeW
LCMapStringEx
QueryPerformanceFrequency
GetLocaleInfoEx
FormatMessageA
TryAcquireSRWLockExclusive
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSRWLock
RaiseException
OutputDebugStringW
GetProfileIntW
Sleep
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
SetErrorMode
FindResourceExW
GetWindowsDirectoryW
lstrcmpiW
UnlockFile
SetEndOfFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
GetCurrentDirectoryW
VirtualProtect
SystemTimeToTzSpecificLocalTime
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalFlags
GetThreadLocale
GlobalGetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
lstrcpyW
lstrcmpA
GetCurrentThread
ResumeThread
SetThreadPriority
GetVersionExW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetSystemDirectoryW
EncodePointer
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GetModuleHandleExW
SetLastError
CopyFileW
FormatMessageW
GlobalSize
FileTimeToDosDateTime
GetSystemTime
GetFileType
SystemTimeToFileTime
FileTimeToSystemTime
GetFileInformationByHandle
SetFilePointer
ReadFile
GetProcessHeap
DecodePointer
HeapAlloc
HeapReAlloc
HeapSize
InitializeCriticalSectionEx
HeapFree
WriteFile
TerminateProcess
K32GetModuleFileNameExW
OpenProcess
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
FreeLibrary
LocalFree
LoadLibraryW
CreateMutexW
VerifyVersionInfoW
VerSetConditionMask
GlobalFree
GetModuleFileNameW
DeleteFileW
FindClose
FindNextFileW
FindFirstFileW
GetTickCount64
GetModuleHandleW
GetProcAddress
WideCharToMultiByte
MultiByteToWideChar
GetCurrentThreadId
GetLocalTime
GetCurrentProcess
DuplicateHandle
GetFileSize
CreateFileW
GetFileAttributesW
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
InitializeCriticalSection
GetSystemInfo
GetTempPathA
OutputDebugStringA
GetCurrentProcessId
WaitForSingleObject
SetEvent
CreateThread
ResetEvent
CloseHandle
CreateEventW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
GlobalUnlock
GlobalLock
WriteConsoleW
GlobalAlloc
MulDiv
GetLastError
GetTempPathW
EnterCriticalSection
FindResourceW
LoadResource
LockResource
SizeofResource
EnumSystemLocalesW
MoveFileExW
SetFilePointerEx
GetConsoleMode
ReadConsoleW
GetConsoleOutputCP
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
user32
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetTopWindow
GetClassNameW
GetClassLongPtrW
SetWindowLongPtrW
GetWindowLongPtrW
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
GetForegroundWindow
UpdateWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
IsDialogMessageW
GetWindow
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
SetFocus
GetDlgCtrlID
CheckDlgButton
WinHelpW
MoveWindow
ShowWindow
SetRectEmpty
SendDlgItemMessageA
WindowFromPoint
GetDesktopWindow
SetActiveWindow
GetActiveWindow
GetNextDlgTabItem
GetDlgItem
EndDialog
CreateDialogIndirectParamW
DestroyWindow
CharNextW
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
IsZoomed
CharUpperW
NotifyWinEvent
FillRect
GetSysColor
ScreenToClient
EndPaint
BeginPaint
GetLastActivePopup
GetWindowThreadProcessId
IsWindowEnabled
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuState
GetMenuStringW
SendMessageTimeoutW
FindWindowExW
MonitorFromPoint
UpdateLayeredWindow
DestroyMenu
GetMenuItemInfoW
PostQuitMessage
SetWindowContextHelpId
MapDialogRect
DrawEdge
DrawFrameControl
DrawStateW
SetWindowRgn
GetSysColorBrush
DrawIconEx
ShowOwnedPopups
RealChildWindowFromPoint
TrackMouseEvent
CopyImage
GetAsyncKeyState
TranslateMessage
SetLayeredWindowAttributes
SetWindowLongW
GetWindowLongW
MonitorFromWindow
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
LoadBitmapW
LoadMenuW
GetMessageW
SetCursorPos
UnionRect
BringWindowToTop
CreatePopupMenu
LockWindowUpdate
EnableScrollBar
GetDoubleClickTime
GetIconInfo
CopyIcon
GetMenuDefaultItem
SetMenuDefaultItem
DestroyAcceleratorTable
SetClassLongPtrW
GetUpdateRect
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
MapVirtualKeyW
LoadAcceleratorsW
CreateAcceleratorTableW
HideCaret
InvertRect
InvalidateRect
SendMessageW
GetWindowRect
GetClientRect
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
EnableWindow
GetKeyNameTextW
InflateRect
PostMessageW
EnumWindows
GetWindowPlacement
GetWindowDC
ReleaseDC
IsRectEmpty
LoadIconW
LoadCursorW
KillTimer
EqualRect
CopyRect
OffsetRect
SetTimer
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
DrawFocusRect
SetCapture
GetParent
ReleaseCapture
GetKeyState
GetSubMenu
GetMenuItemCount
GetMenuItemID
ModifyMenuW
GetSystemMetrics
SetParent
SystemParametersInfoW
IsWindowVisible
PtInRect
GetMonitorInfoW
EnumDisplaySettingsW
EnumDisplayDevicesW
GetFocus
GetDC
SetRect
IntersectRect
IsWindow
SetCursor
FindWindowW
MessageBoxW
LoadImageW
DestroyIcon
IsIconic
DrawIcon
ClientToScreen
GetSystemMenu
GetCursorPos
SetWindowPos
SetForegroundWindow
EnumDisplayMonitors
UnregisterClassW
FrameRect
TranslateAcceleratorW
InsertMenuItemW
WaitMessage
GetWindowRgn
DestroyCursor
CreateMenu
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
PostThreadMessageW
IsClipboardFormatAvailable
CharUpperBuffW
SubtractRect
RegisterClipboardFormatW
ReuseDDElParam
DeleteMenu
UnpackDDElParam
gdi32
CreateDIBSection
DeleteObject
CopyMetaFileW
CreateDCW
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
ExcludeClipRect
GetObjectType
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextColor
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
GetDeviceCaps
CreateRectRgnIndirect
GetMapMode
SetRectRgn
DPtoLP
CreateEllipticRgn
Ellipse
GetBkColor
GetTextColor
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsW
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetRgnBox
RealizePalette
SetPixel
StretchBlt
SetDIBColorTable
CreateRoundRectRgn
Rectangle
OffsetRgn
RoundRect
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceW
DeleteDC
GetTextExtentPoint32W
PatBlt
GetPixel
CreateBitmap
GetObjectW
BitBlt
PtVisible
RectVisible
TextOutW
ExtTextOutW
Escape
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
CreateFontIndirectW
GetClipBox
GetStockObject
CombineRgn
CreateSolidBrush
msimg32
TransparentBlt
AlphaBlend
winspool.drv
ClosePrinter
OpenPrinterW
DocumentPropertiesW
advapi32
RegQueryInfoKeyW
RegDeleteKeyW
RegEnumKeyExW
RegQueryValueW
RegEnumKeyW
RegDeleteTreeW
RegCloseKey
RegEnumValueW
RegDeleteValueW
RegCreateKeyExW
RegQueryValueExW
RegSetValueExW
RegOpenKeyExW
shell32
SHBrowseForFolderW
DragFinish
DragQueryFileW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetFileInfoW
SHAppBarMessage
Shell_NotifyIconW
CommandLineToArgvW
SHQueryUserNotificationState
ShellExecuteW
comctl32
InitCommonControlsEx
_TrackMouseEvent
shlwapi
StrFormatKBSizeW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
ord219
PathFileExistsW
uxtheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetWindowTheme
DrawThemeText
IsAppThemed
DrawThemeParentBackground
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
ole32
CoRegisterMessageFilter
CoRevokeClassObject
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CreateStreamOnHGlobal
PropVariantClear
CoCreateInstance
CoUninitialize
CoInitializeEx
CoInitialize
oleaut32
VariantInit
SysAllocStringLen
VariantClear
SysFreeString
VariantChangeType
SysAllocString
SysStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantCopy
SafeArrayDestroy
VarBstrFromDate
LoadTypeLi
OleCreateFontIndirect
oledlg
OleUIBusyW
gdiplus
GdipCreateFromHDC
GdipDeleteGraphics
GdipSetSmoothingMode
GdipCreatePath
GdipDeletePath
GdipDrawPath
GdipResetPath
GdipAddPathArcI
GdipClosePathFigure
GdipCreateSolidFill
GdipDeleteBrush
GdipFree
GdipAlloc
GdipCloneBrush
GdipAddPathLineI
GdipFillPath
GdipFillEllipseI
GdipCreateFontFromDC
GdipCreateFontFromLogfontW
GdipDeleteFont
GdipCreateStringFormat
GdipDeleteStringFormat
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipDrawString
GdipDrawLineI
GdipCloneImage
GdipDisposeImage
GdipDeletePen
GdipCreateBitmapFromStream
GdipCreateHBITMAPFromBitmap
GdipImageRotateFlip
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipSetInterpolationMode
GdipDrawImageRect
GdipDrawImageRectI
GdipDrawImageRectRectI
GdiplusStartup
GdiplusShutdown
GdipCreateBitmapFromHICON
GdipReleaseDC
GdipFillRectangleI
GdipSetSolidFillColor
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipCreatePen1
GdipSetPenMode
GdipGetImageWidth
GdipGetImageHeight
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
imm32
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
winmm
PlaySoundW
Sections
.text Size: 2.1MB - Virtual size: 2.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 665KB - Virtual size: 665KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 34KB - Virtual size: 66KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 100KB - Virtual size: 99KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1.7MB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 69KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ