Static task
static1
Behavioral task
behavioral1
Sample
70711d80e98ae5a28a0b7ea802fce087626546d12a3b88cabe5f1462b66af0d3.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
70711d80e98ae5a28a0b7ea802fce087626546d12a3b88cabe5f1462b66af0d3.exe
Resource
win10v2004-20230915-en
General
-
Target
70711d80e98ae5a28a0b7ea802fce087626546d12a3b88cabe5f1462b66af0d3
-
Size
2.2MB
-
MD5
c4fcdd333d33e20d0563beb57d6ff118
-
SHA1
8296fdb6156a16df4de853821fd1857f08a60460
-
SHA256
70711d80e98ae5a28a0b7ea802fce087626546d12a3b88cabe5f1462b66af0d3
-
SHA512
a5f087a21b25e74f15a78e776d1b99e37aa85dce6352a83f58c85650a5c284eff8bc2a6f0dbe5ccc9ecd2e845a6cd897525953765c68885c1bab5277d5a1d6db
-
SSDEEP
49152:exekI6IF9cEvniRcJBWXLwN31kI+xeU6sCz/cNY9S0YvlpqgIRF4KAI2hBu8i:bF9jvniRcqMN31kI+xeU6sCPYnqgIRCY
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 70711d80e98ae5a28a0b7ea802fce087626546d12a3b88cabe5f1462b66af0d3
Files
-
70711d80e98ae5a28a0b7ea802fce087626546d12a3b88cabe5f1462b66af0d3.exe windows:5 windows x86
3691ae60771277c4d95523de52b575b7
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
WriteConsoleW
GetDriveTypeW
LCMapStringW
GetConsoleMode
IsProcessorFeaturePresent
IsValidCodePage
GetProcessHeap
GetDateFormatA
GetTimeFormatA
InterlockedCompareExchange
GetConsoleCP
SetEnvironmentVariableA
GetStringTypeW
GetOEMCP
GetACP
GetTimeZoneInformation
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
HeapCreate
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStdHandle
SizeofResource
SetUnhandledExceptionFilter
HeapSize
HeapQueryInformation
VirtualQuery
GetSystemInfo
VirtualAlloc
CreateThread
ExitThread
ExitProcess
GetFileType
SetStdHandle
RaiseException
RtlUnwind
CreateDirectoryW
HeapReAlloc
GetCPInfo
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
GetDateFormatW
GetTimeFormatW
DecodePointer
EncodePointer
GetStartupInfoW
HeapSetInformation
GetCommandLineW
FindResourceExW
VirtualProtect
SearchPathW
Sleep
GetUserDefaultLCID
GetNumberFormatW
GetWindowsDirectoryW
GetTempPathW
GetTempFileNameW
SetErrorMode
GetCurrentDirectoryW
GetFileTime
GetFileSizeEx
GetFileAttributesW
GetFileAttributesExW
GetSystemDirectoryW
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
TlsGetValue
LocalAlloc
GlobalGetAtomNameW
WaitForSingleObject
ResumeThread
SetThreadPriority
WritePrivateProfileStringW
GetPrivateProfileIntW
lstrcpyW
GetCurrentThread
GetUserDefaultUILanguage
ConvertDefaultLocale
GetSystemDefaultUILanguage
GetLocaleInfoW
LoadLibraryExW
InterlockedExchange
GetFullPathNameW
GetVolumeInformationW
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileW
lstrcmpiW
lstrcmpA
GetProfileIntW
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
CompareStringW
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
lstrcmpW
FreeLibrary
ReleaseActCtx
CreateActCtxW
GetCurrentProcessId
GetThreadLocale
GlobalFree
CopyFileW
GlobalAlloc
LocalFree
CloseHandle
CreateMutexW
lstrlenA
MoveFileW
DeleteFileW
FindClose
FindNextFileW
FileTimeToSystemTime
FileTimeToLocalFileTime
GetLocalTime
InterlockedIncrement
InterlockedDecrement
GetModuleFileNameW
GetPrivateProfileStringW
FindFirstFileW
FormatMessageW
GetTickCount
MulDiv
GlobalUnlock
GlobalLock
GlobalSize
GlobalReAlloc
WideCharToMultiByte
lstrlenW
ActivateActCtx
GetProcAddress
GetModuleHandleW
LoadLibraryW
GetLastError
DeactivateActCtx
SetLastError
GetVersionExW
MultiByteToWideChar
FindResourceW
LoadResource
LockResource
user32
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
SetClassLongW
DestroyAcceleratorTable
SetParent
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
CharNextW
WaitMessage
EmptyClipboard
CloseClipboard
SetClipboardData
OpenClipboard
DrawIconEx
DrawFocusRect
DrawFrameControl
GetMenuDefaultItem
SetMenuDefaultItem
IsMenu
MonitorFromPoint
UpdateLayeredWindow
EnableScrollBar
UnionRect
IsZoomed
GetAsyncKeyState
NotifyWinEvent
MessageBeep
SetWindowRgn
DeleteMenu
UnpackDDElParam
ReuseDDElParam
LoadAcceleratorsW
InsertMenuItemW
BringWindowToTop
TranslateAcceleratorW
PostThreadMessageW
SetLayeredWindowAttributes
EnumDisplayMonitors
UnregisterClassW
RealChildWindowFromPoint
GetSysColorBrush
ShowOwnedPopups
GetMessageW
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
LoadImageW
CopyImage
GetIconInfo
DestroyIcon
OffsetRect
SetRectEmpty
CharUpperW
DestroyMenu
GetMenuItemInfoW
DrawStateW
MapVirtualKeyW
GetKeyNameTextW
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
LoadMenuW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
EnableMenuItem
CheckMenuItem
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SetCursorPos
CheckDlgButton
RegisterClipboardFormatW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
SetFocus
GetForegroundWindow
SetActiveWindow
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
GetMessageTime
MonitorFromWindow
GetMonitorInfoW
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
ShowScrollBar
RedrawWindow
ValidateRect
UpdateWindow
CreateWindowExW
GetClassInfoExW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SendMessageW
SystemParametersInfoW
GetDC
ReleaseDC
GetSysColor
SetScrollInfo
SetWindowPlacement
GetWindowPlacement
GetDlgCtrlID
CallWindowProcW
GetMenu
SetWindowLongW
SetWindowPos
GetWindow
UnhookWindowsHookEx
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
MessageBoxW
LockWindowUpdate
HideCaret
CopyIcon
CharUpperBuffW
DefFrameProcW
DrawMenuBar
TranslateMDISysAccel
CreateMenu
GetUpdateRect
IsCharLowerW
MapVirtualKeyExW
SubtractRect
EndPaint
BeginPaint
GetWindowDC
GetWindowTextLengthW
GetMenuState
GetMenuStringW
GetMenuItemID
GetMenuItemCount
GetSubMenu
RemoveMenu
InsertMenuW
GetWindowRgn
DestroyCursor
FillRect
FrameRect
DrawEdge
InflateRect
DrawTextW
SetCursor
LoadCursorW
SetRect
IsWindow
GetClassInfoW
DefWindowProcW
GetWindowRect
GetParent
IntersectRect
GetKeyState
KillTimer
GetCursorPos
ScreenToClient
GetClientRect
InvalidateRect
IsClipboardFormatAvailable
GetSystemMetrics
GetMessagePos
GetFocus
PostMessageW
PtInRect
InvertRect
SetCapture
ClipCursor
SetTimer
GetCapture
ReleaseCapture
EnableWindow
TabbedTextOutW
DrawTextExW
GrayStringW
GetDoubleClickTime
IsRectEmpty
IsWindowVisible
CopyRect
ClientToScreen
WindowFromPoint
RegisterWindowMessageW
LoadIconW
GetSystemMenu
AppendMenuW
GetWindowTextW
IsIconic
DrawIcon
SetForegroundWindow
PeekMessageW
TranslateMessage
DispatchMessageW
CreatePopupMenu
DefMDIChildProcW
gdi32
GetObjectType
CreateSolidBrush
CreateHatchBrush
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
CreateDIBSection
CreateEllipticRgn
CreatePolygonRgn
GetTextColor
Polyline
Ellipse
Polygon
SetDIBColorTable
RealizePalette
StretchBlt
SetPixel
GetRgnBox
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
OffsetRgn
Rectangle
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
LPtoDP
GetWindowOrgEx
GetViewportOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetTextFaceW
SetPixelV
SelectClipRgn
DeleteObject
GetStockObject
SelectPalette
CreateBitmap
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
GetPixel
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
CreatePalette
CreateFontIndirectW
SetLayout
GetLayout
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateDCW
CopyMetaFileW
PatBlt
GetTextMetricsW
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
CreateFontW
GetObjectW
CreatePen
BitBlt
GetBkColor
CreateCompatibleBitmap
CreateCompatibleDC
GetDeviceCaps
GetCurrentObject
GetTextExtentPoint32W
msimg32
TransparentBlt
AlphaBlend
comdlg32
GetFileTitleW
winspool.drv
ClosePrinter
OpenPrinterW
DocumentPropertiesW
advapi32
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyW
RegQueryValueW
RegOpenKeyExW
RegEnumKeyExW
RegEnumValueW
shell32
SHGetFileInfoW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc
SHGetPathFromIDListW
SHAppBarMessage
ShellExecuteW
Shell_NotifyIconW
DragQueryFileW
DragFinish
SHBrowseForFolderW
comctl32
InitCommonControlsEx
ImageList_GetIconSize
shlwapi
PathIsUNCW
PathRemoveFileSpecW
PathFindExtensionW
PathStripToRootW
PathFindFileNameW
ole32
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateStreamOnHGlobal
CoRegisterMessageFilter
CoRevokeClassObject
CoGetClassObject
CoCreateGuid
CoInitializeEx
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
DoDragDrop
CoInitialize
CoUninitialize
OleGetClipboard
OleRun
CoCreateInstance
CLSIDFromProgID
CLSIDFromString
CoTaskMemFree
oleaut32
SysFreeString
SysAllocStringByteLen
SysStringLen
SysAllocString
VariantChangeType
SafeArrayGetElemsize
SafeArrayCreate
VariantCopy
VarUdateFromDate
SafeArrayPutElement
SafeArrayDestroy
SysAllocStringLen
VarBstrFromDate
VariantInit
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantClear
oledlg
OleUIBusyW
gdiplus
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdipCloneImage
GdipDrawImageI
GdipGetImageGraphicsContext
GdiplusShutdown
GdiplusStartup
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipFree
GdipDrawImageRectI
rmapi
?GetSampleComplete@@YGHPA_WHH@Z
?GetAutoSendItem@@YGHPA_WH@Z
?GetLabOptionComm@@YGHPA_WPB_W1H11H1@Z
?GetLabOptionDec@@YGHPA_WPB_W1H11H1@Z
?StopRecv@@YGXXZ
?DecInit@@YGXPB_WPAUHWND__@@I0@Z
?SetAutoSendFlag@@YGXPB_W@Z
oleacc
LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject
imm32
ImmReleaseContext
ImmGetContext
ImmGetOpenStatus
winmm
PlaySoundW
Sections
.text Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 336KB - Virtual size: 336KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 29KB - Virtual size: 60KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 83KB - Virtual size: 83KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 259KB - Virtual size: 260KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE