Static task
static1
Behavioral task
behavioral1
Sample
f79b6c978b57385667527b8c3b25bd39b04f94aecde76f8e267920ce1ca20ced.exe
Resource
win7-20230712-en
windows7-x64
Behavioral task
behavioral2
Sample
f79b6c978b57385667527b8c3b25bd39b04f94aecde76f8e267920ce1ca20ced.exe
Resource
win10v2004-20230703-en
windows10-2004-x64
Target
f79b6c978b57385667527b8c3b25bd39b04f94aecde76f8e267920ce1ca20ced
Size
1.9MB
MD5
2a545ce85d7ec159cc2fb46af4c28bf1
SHA1
36f103584fe68c057b40158f6c978f6ab3429c3b
SHA256
f79b6c978b57385667527b8c3b25bd39b04f94aecde76f8e267920ce1ca20ced
SHA512
b9f223254dec728c728892ebcc9a7b681061a18cefac6bd2bbe949dbcb074983f682a77b1d162612eb316e0ea80dd5223dbed092e2867fe99026ddf85618031a
SSDEEP
49152:SQZesJWFufWypvVjuYJW180Z0HupLpsXg+5qKHe0:vZe3F1ypvShZ0HKHy
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
ExtKeyUsageCodeSigning
KeyUsageDigitalSignature
ExtKeyUsageTimeStamping
KeyUsageDigitalSignature
KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign
KeyUsageCertSign
KeyUsageCRLSign
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
GetModuleHandleA
GetExitCodeProcess
lstrcmpW
CreateEventA
FlushInstructionCache
RaiseException
GetSystemTimeAsFileTime
InterlockedIncrement
GetTempPathW
GetTempFileNameW
FileTimeToSystemTime
CompareFileTime
CreateRemoteThread
CopyFileW
lstrlenA
lstrcmpiA
CreateFileA
GetDriveTypeA
GetCommandLineW
FileTimeToLocalFileTime
GetSystemTimes
GetPrivateProfileSectionNamesW
GetPrivateProfileSectionW
GetLongPathNameW
GetFileAttributesExA
SetFileAttributesA
DeleteFileA
FreeConsole
CreateDirectoryW
GlobalFree
ReleaseSemaphore
GetTimeZoneInformation
MulDiv
GetCurrentDirectoryW
SetCurrentDirectoryW
GetLocalTime
LocalFileTimeToFileTime
GlobalAlloc
IsBadReadPtr
OpenEventW
DisconnectNamedPipe
GetFileTime
IsWow64Process
CreateSemaphoreW
GetLogicalDrives
GetNativeSystemInfo
GetFileSizeEx
ReadProcessMemory
GetStartupInfoW
VirtualAllocEx
WriteProcessMemory
VirtualFreeEx
ExitProcess
SetEnvironmentVariableW
CreateMutexA
GlobalMemoryStatus
GlobalMemoryStatusEx
WritePrivateProfileStringW
GetProcessHeap
HeapAlloc
WideCharToMultiByte
lstrcmpA
CreateWaitableTimerA
SetWaitableTimer
OpenEventA
GetExitCodeThread
HeapLock
OpenThread
HeapUnlock
OutputDebugStringW
SetFilePointerEx
SetEnvironmentVariableA
CompareStringW
CompareStringA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoW
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
InitializeCriticalSectionAndSpinCount
GetStringTypeA
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
GetConsoleMode
GetConsoleCP
GetStartupInfoA
GetFileType
SetHandleCount
GetModuleFileNameA
GetStdHandle
HeapCreate
GetDateFormatA
GetTimeFormatA
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
GetStringTypeW
LCMapStringW
LCMapStringA
RtlUnwind
GetCPInfo
MoveFileW
ExitThread
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetVolumeInformationW
DuplicateHandle
CreateSemaphoreA
CancelIo
CreateNamedPipeW
ConnectNamedPipe
SetNamedPipeHandleState
PeekNamedPipe
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
HeapSize
HeapReAlloc
HeapDestroy
HeapFree
GetBinaryTypeW
CreateProcessW
LocalAlloc
GetWindowsDirectoryW
GetTickCount
WTSGetActiveConsoleSessionId
TerminateProcess
Process32NextW
Process32FirstW
GetCurrentProcess
GetSystemWindowsDirectoryW
lstrlenW
SetLastError
ProcessIdToSessionId
LoadLibraryA
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetSystemDirectoryW
LoadLibraryExW
MultiByteToWideChar
ReleaseMutex
SizeofResource
CreateMutexW
GetCurrentProcessId
CreateToolhelp32Snapshot
OpenMutexW
GetDiskFreeSpaceExW
UnmapViewOfFile
MapViewOfFileEx
CreateFileMappingW
GetFileSize
SetEndOfFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentThreadId
FreeResource
GetPrivateProfileIntW
GetModuleFileNameW
GetFileAttributesExW
lstrcmpiW
GetSystemInfo
HeapWalk
DeviceIoControl
GetFileAttributesW
GetPrivateProfileStringW
ExpandEnvironmentStringsW
SystemTimeToFileTime
GetSystemTime
TerminateThread
CreateThread
ResetEvent
GetOverlappedResult
ReadDirectoryChangesW
GetShortPathNameW
OpenProcess
InterlockedDecrement
FindNextFileW
FindFirstFileW
ResumeThread
SetEvent
InterlockedCompareExchange
Sleep
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
LocalFree
GetLastError
WaitForMultipleObjects
WaitForSingleObject
UnlockFile
LockFile
GetModuleHandleW
GetVersionExW
CreateEventW
InterlockedExchange
FindClose
FreeLibrary
GetProcAddress
LoadLibraryW
WriteFile
CreateFileW
DeleteFileW
GetVersion
CloseHandle
FindResourceExW
FindResourceW
LoadResource
LockResource
GetSystemPowerStatus
GetSystemMetrics
UnregisterClassA
IsWindowVisible
ExitWindowsEx
GetWindowThreadProcessId
GetAncestor
EnumWindows
SetWindowLongW
GetWindowLongW
DefWindowProcW
CallWindowProcW
KillTimer
DestroyWindow
SetTimer
RegisterClassExW
GetClassInfoExW
LoadCursorW
CreateWindowExW
FindWindowW
SendMessageTimeoutW
GetWindowPlacement
ShowWindow
EnableWindow
GetParent
SendMessageW
SetWindowPos
SetFocus
IsWindowEnabled
SetRectEmpty
RegisterWindowMessageW
MessageBoxW
GetLastInputInfo
MonitorFromPoint
GetMonitorInfoW
EnumDisplaySettingsW
AllowSetForegroundWindow
GetForegroundWindow
AttachThreadInput
SetForegroundWindow
SetActiveWindow
GetKeyboardState
keybd_event
GetWindowRect
GetDesktopWindow
WindowFromPoint
MonitorFromRect
InvalidateRect
UpdateWindow
GetActiveWindow
WaitForInputIdle
GetClientRect
GetDC
ReleaseDC
IsDialogMessageW
CopyRect
MapWindowPoints
MonitorFromWindow
GetWindow
GetMessageW
TranslateMessage
DispatchMessageW
GetDlgItem
DestroyIcon
DrawIconEx
IsRectEmpty
OffsetRect
SetWindowTextW
DrawTextW
PtInRect
GetMessagePos
ScreenToClient
SetRect
SetCursor
GetClassLongW
SetClassLongW
SystemParametersInfoW
LoadStringW
PostMessageW
IsWindow
GetWindowInfo
GetShellWindow
PostQuitMessage
LoadImageW
SwitchToThisWindow
OpenInputDesktop
CloseDesktop
CharNextW
wsprintfW
PeekMessageW
ClientToScreen
FindWindowExW
UpdateLayeredWindow
InflateRect
GetCursorPos
CreateFontW
GetTextExtentPoint32W
DeleteObject
GetPixel
DeleteDC
GetObjectW
GetObjectA
GetDeviceCaps
GetStockObject
SetViewportOrgEx
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
BitBlt
CreateDIBSection
CreateRectRgnIndirect
GetTextMetricsW
CloseServiceHandle
SetNamedSecurityInfoW
SetEntriesInAclW
GetNamedSecurityInfoW
CheckTokenMembership
CreateWellKnownSid
DuplicateToken
RegCreateKeyA
GetUserNameW
LookupAccountNameW
GetSidSubAuthorityCount
GetSidIdentifierAuthority
IsValidSid
RegCreateKeyW
GetSidSubAuthority
DuplicateTokenEx
RegOpenKeyW
CloseEventLog
ReadEventLogW
OpenEventLogW
AdjustTokenPrivileges
LookupPrivilegeValueW
ConvertSidToStringSidW
EqualSid
AllocateAndInitializeSid
GetTokenInformation
FreeSid
LookupAccountSidW
ConvertStringSidToSidW
OpenProcessToken
CryptAcquireContextW
CryptReleaseContext
RegEnumKeyExW
RegEnumValueW
RegNotifyChangeKeyValue
RegDeleteKeyW
RegQueryValueExW
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegSetValueExW
RegCloseKey
OpenServiceW
StartServiceW
QueryServiceStatus
QueryServiceConfig2W
ImpersonateLoggedOnUser
RevertToSelf
RegQueryInfoKeyW
CryptGenRandom
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegQueryValueExA
RegEnumKeyExA
RegOpenKeyExA
OpenSCManagerW
SHGetDataFromIDListW
SHBindToParent
SHParseDisplayName
SHGetSpecialFolderPathW
ord165
SHGetFolderPathW
ShellExecuteExW
SHGetFileInfoW
ExtractIconExW
CommandLineToArgvW
ord680
Shell_NotifyIconW
SHCreateDirectoryExW
ShellExecuteW
CoTaskMemAlloc
CoTaskMemRealloc
CoInitializeSecurity
CoInitializeEx
StringFromGUID2
CreateStreamOnHGlobal
CoUninitialize
CoCreateInstance
CoInitialize
CoTaskMemFree
VarUI4FromStr
VarBstrCmp
SafeArrayUnlock
SafeArrayLock
SafeArrayDestroy
SafeArrayCreate
SafeArrayGetUBound
SafeArrayGetLBound
VariantCopy
SafeArrayCopy
SafeArrayGetVartype
DispCallFunc
SysAllocString
SysFreeString
VariantClear
VariantInit
PathFileExistsW
SHGetValueW
PathFindExtensionW
PathFindFileNameW
StrCmpIW
PathCombineW
StrStrIW
PathRemoveFileSpecW
PathIsDirectoryW
wnsprintfW
SHSetValueW
SHDeleteValueW
StrStrIA
PathAppendW
PathRemoveExtensionW
AssocQueryStringW
PathUnquoteSpacesW
SHDeleteKeyW
SHGetValueA
SHDeleteValueA
SHSetValueA
PathRemoveBackslashW
PathFileExistsA
PathCombineA
ord437
PathStripPathW
PathCompactPathW
PathFindFileNameA
ColorRGBToHLS
ColorHLSToRGB
PathIsPrefixW
StrRStrIW
StrStrW
InitCommonControlsEx
EnumProcesses
EnumProcessModules
GetModuleFileNameExW
LsaGetLogonSessionData
LsaEnumerateLogonSessions
LsaFreeReturnBuffer
GdipSaveImageToFile
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipSetInterpolationMode
GdipCreateBitmapFromStream
GdipResetWorldTransform
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipPrivateAddMemoryFont
GdipDeletePrivateFontCollection
GdipNewPrivateFontCollection
GdipDrawImageRectRectI
GdipDrawLine
GdipAddPathEllipseI
GdipGetPathGradientPointCount
GdipSetPathGradientSurroundColorsWithCount
GdipSetPathGradientCenterColor
GdipCreatePathGradientFromPath
GdipCreateFromHWND
GdipGetFontHeight
GdipSetClipRectI
GdipSetTextRenderingHint
GdipCreateFont
GdipGetFontCollectionFamilyList
GdipCloneFontFamily
GdipDeleteFontFamily
GdipSetLinePresetBlend
GdipCreatePen2
GdipDrawRectangleI
GdipCreateLineBrushFromRect
GdipAddPathRectangleI
GdipGetPixelOffsetMode
GdipSetPenWidth
GdipDrawEllipseI
GdipSetPenDashOffset
GdipAddPathLineI
GdipSetPixelOffsetMode
GdipDrawImageRectI
GdipGetImageGraphicsContext
GdipGetImagePixelFormat
GdipCreateBitmapFromScan0
GdipDrawPath
GdipFillPath
GdipSetSmoothingMode
GdipGetSmoothingMode
GdipDeletePath
GdipCreatePath
GdipFillRectangleI
GdipCreateLineBrushFromRectI
GdipClosePathFigure
GdipAddPathArcI
GdipResetPath
GdipDrawString
GdipCloneBrush
GdipDeleteBrush
GdipCreateSolidFill
GdipFillRectangle
GdipMeasureString
GdipSetStringFormatAlign
GdipSetStringFormatLineAlign
GdipDeleteStringFormat
GdipCreateStringFormat
GdipDeleteFont
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipDrawRectangle
GdipDrawLineI
GdipSetPenDashStyle
GdipDeletePen
GdipCreatePen1
GdipDeleteGraphics
GdipCreateFromHDC
GdipBitmapSetPixel
GdipBitmapGetPixel
GdipGetImageHeight
GdipGetImageWidth
GdipCreateBitmapFromFile
GdipCloneImage
GdipAlloc
GdipDisposeImage
GdipFree
GdipResetClip
timeGetTime
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
InternetOpenUrlW
InternetSetOptionW
HttpQueryInfoW
InternetOpenW
InternetGetConnectedState
InternetCrackUrlA
DeleteUrlCacheEntryW
InternetReadFile
InternetCloseHandle
GetPwrCapabilities
WTSRegisterSessionNotification
WTSUnRegisterSessionNotification
WTSFreeMemory
WTSQuerySessionInformationW
GetUserProfileDirectoryW
DnsQuery_A
DnsFree
htonl
inet_ntoa
htons
ntohl
ntohs
RpcStringFreeW
RpcAsyncInitializeHandle
RpcStringBindingComposeW
RpcBindingFromStringBindingW
RpcAsyncCompleteCall
RpcBindingFree
NdrAsyncClientCall
NdrClientCall2
CryptProtectData
CryptUnprotectData
ImmDisableIME
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ