Static task
static1
Behavioral task
behavioral1
Sample
399b5b43b8dc9b88a47553db681a5bc98182a8f287a13ddfc5d2595bfc58be73.exe
Resource
win7-20230831-en
Behavioral task
behavioral2
Sample
399b5b43b8dc9b88a47553db681a5bc98182a8f287a13ddfc5d2595bfc58be73.exe
Resource
win10v2004-20230915-en
General
-
Target
399b5b43b8dc9b88a47553db681a5bc98182a8f287a13ddfc5d2595bfc58be73
-
Size
7.9MB
-
MD5
c203b112ec6060bd9c4e8cc0ccaf9fe6
-
SHA1
520e63e7c9a806b288e5757aabd0465332f7c86a
-
SHA256
399b5b43b8dc9b88a47553db681a5bc98182a8f287a13ddfc5d2595bfc58be73
-
SHA512
b0cd833c8d9d7b4ca9f9273bc59a2aee532cd276db2f86467d10a5d7f5f0c473abc9a39ced80778b9c1a3acee2a8fe39e92c743c3d91382a0bc058a9aed76c2c
-
SSDEEP
98304:Oqy/dDR25im7v1UP5hXA3uCOwEzeBg465KcwdKBYe9lcJFLOAkGkzdnEVomFHKnP:OVJM8zRxA+CuqFLOyomFHKnP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 399b5b43b8dc9b88a47553db681a5bc98182a8f287a13ddfc5d2595bfc58be73
Files
-
399b5b43b8dc9b88a47553db681a5bc98182a8f287a13ddfc5d2595bfc58be73.exe windows:6 windows x64
d2ddc96729979b106c13b7c2d66abb50
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
Imports
avcodec-59
av_packet_alloc
av_packet_free
av_packet_unref
avcodec_alloc_context3
avcodec_find_decoder
avcodec_free_context
avcodec_get_hw_config
avcodec_get_name
avcodec_open2
avcodec_parameters_to_context
avcodec_receive_frame
avcodec_send_packet
avformat-59
av_format_inject_global_side_data
av_read_frame
av_seek_frame
avformat_alloc_context
avformat_close_input
avformat_find_stream_info
avformat_free_context
avformat_open_input
avio_feof
avutil-57
av_buffer_ref
av_buffer_unref
av_dict_free
av_dict_set
av_frame_alloc
av_frame_free
av_free
av_freep
av_get_bytes_per_sample
av_get_channel_layout_nb_channels
av_get_default_channel_layout
av_hwdevice_ctx_alloc
av_hwdevice_ctx_create
av_hwdevice_ctx_init
av_hwdevice_find_type_by_name
av_hwdevice_get_type_name
av_hwdevice_iterate_types
av_hwframe_ctx_alloc
av_hwframe_ctx_init
av_pix_fmt_desc_get
av_rescale
av_rescale_rnd
av_samples_alloc
av_samples_alloc_array_and_samples
av_samples_get_buffer_size
avutil_version
swresample-4
swr_alloc_set_opts
swr_convert
swr_free
swr_get_delay
swr_init
d3d9
Direct3DCreate9
d3dx9_43
D3DXMatrixMultiply
D3DXCompileShader
D3DXMatrixTranslation
D3DXMatrixOrthoLH
D3DXMatrixRotationY
d3d11
D3D11CreateDevice
dxgi
CreateDXGIFactory1
msvfw32
DrawDibEnd
DrawDibDraw
DrawDibBegin
DrawDibRealize
DrawDibOpen
winmm
PlaySoundW
waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutClose
waveOutOpen
wininet
InternetGetConnectedState
libcef
cef_string_multimap_alloc
cef_string_multimap_free
cef_string_multimap_append
cef_string_multimap_value
cef_string_multimap_key
cef_string_multimap_size
cef_string_utf16_clear
cef_string_utf16_set
cef_string_userfree_utf16_free
cef_string_list_alloc
cef_string_list_free
cef_string_map_append
cef_initialize
cef_quit_message_loop
cef_enable_highdpi_support
cef_api_hash
cef_browser_host_create_browser
cef_string_map_alloc
cef_string_map_free
cef_string_utf16_cmp
cef_string_list_size
cef_string_list_value
cef_string_list_append
cef_string_map_size
cef_string_map_key
cef_string_map_value
cef_execute_process
libcurl
curl_easy_setopt
curl_easy_perform
curl_easy_cleanup
curl_easy_init
netapi32
Netbios
kernel32
CreateActCtxW
ActivateActCtx
DeactivateActCtx
FindActCtxSectionStringW
QueryActCtxW
CompareStringW
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
GlobalSize
LocalFree
MulDiv
FormatMessageW
GetCurrentProcessId
SetEvent
CreateEventW
SetThreadPriority
SuspendThread
ResumeThread
GetModuleHandleExW
GetFileAttributesExW
GetFileSizeEx
GetFileTime
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
FindClose
FlushFileBuffers
GetFileSize
GetFullPathNameW
GetVolumeInformationW
LockFile
ReadFile
SetEndOfFile
SetFilePointer
UnlockFile
DuplicateHandle
GetCurrentProcess
lstrcmpiW
GetThreadLocale
GetCurrentThread
lstrcmpA
VerSetConditionMask
lstrcpyW
VerifyVersionInfoW
InitializeCriticalSectionAndSpinCount
GlobalFlags
GlobalGetAtomNameW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
GetLocaleInfoW
GetSystemDefaultUILanguage
VirtualProtect
GetCurrentDirectoryW
SetErrorMode
FindResourceExW
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
GetTempFileNameW
GlobalFindAtomW
ResetEvent
WaitForSingleObjectEx
RtlCaptureContext
RtlLookupFunctionEntry
RtlVirtualUnwind
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
InitializeSListHead
IsDebuggerPresent
GetStartupInfoW
GetSystemDirectoryW
SetLastError
EncodePointer
OutputDebugStringA
GetUserDefaultUILanguage
CopyFileW
GetModuleFileNameW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetTickCount
GetLocalTime
WriteFile
CreateFileW
GetExitCodeThread
TerminateThread
FindNextFileW
FindFirstFileW
InitializeCriticalSection
WideCharToMultiByte
Sleep
GetTempPathW
GetFileAttributesW
CreateDirectoryW
LoadLibraryW
GetProcAddress
FreeLibrary
GetCurrentThreadId
CreateMutexW
GetModuleHandleW
CreateWaitableTimerW
SetWaitableTimer
WaitForSingleObject
CloseHandle
GetVersionExW
GetSystemInfo
DeleteFileW
MultiByteToWideChar
FindResourceW
SizeofResource
LockResource
LoadResource
CreateThread
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
GetLastError
RaiseException
DecodePointer
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
OutputDebugStringW
GetStringTypeW
GetCPInfo
RtlUnwindEx
RtlPcToFileHeader
ExitProcess
QueryPerformanceFrequency
ExitThread
FreeLibraryAndExitThread
GetCommandLineA
GetCommandLineW
VirtualAlloc
VirtualQuery
HeapQueryInformation
SetStdHandle
GetFileType
GetStdHandle
GetConsoleMode
ReadConsoleW
SetFilePointerEx
GetConsoleOutputCP
LCMapStringW
GetTimeZoneInformation
GetDriveTypeW
FindFirstFileExW
IsValidCodePage
GetACP
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableW
WriteConsoleW
FileTimeToLocalFileTime
user32
SetRect
GetNextDlgGroupItem
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
MapVirtualKeyW
LoadAcceleratorsW
CreateAcceleratorTableW
DestroyAcceleratorTable
SetCursorPos
BringWindowToTop
LockWindowUpdate
SetClassLongPtrW
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
GetDoubleClickTime
GetIconInfo
CopyIcon
ModifyMenuW
GetUpdateRect
HideCaret
InvertRect
GetKeyNameTextW
FrameRect
DrawIcon
CharUpperBuffW
TranslateAcceleratorW
InsertMenuItemW
UnpackDDElParam
ReuseDDElParam
IsCharLowerW
MapVirtualKeyExW
DrawMenuBar
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
IsClipboardFormatAvailable
SubtractRect
CreateMenu
GetComboBoxInfo
DestroyCursor
GetWindowRgn
WaitMessage
GetClassLongPtrW
SetWindowLongPtrW
GetWindowLongPtrW
GetSysColor
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowTextLengthW
GetWindowTextW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
EndPaint
BeginPaint
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenu
DrawIconEx
GetMenuItemID
GetSubMenu
SetMenu
GetMenu
GetCapture
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
IsIconic
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
InvalidateRgn
DispatchMessageW
RegisterWindowMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
LoadBitmapW
LoadStringW
GetAsyncKeyState
SetParent
TrackMouseEvent
PostThreadMessageW
GetMessageW
MessageBoxW
LoadIconW
GetWindowThreadProcessId
FindWindowExW
FindWindowW
GetWindowRect
IsWindow
UnregisterHotKey
RegisterHotKey
MoveWindow
ShowWindow
PtInRect
wsprintfW
UpdateWindow
KillTimer
SetTimer
SetWindowLongW
GetWindowLongW
SetLayeredWindowAttributes
SystemParametersInfoW
OffsetRect
CopyRect
FillRect
ReleaseDC
EqualRect
GetClientRect
InvalidateRect
GetDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
PostMessageW
SendMessageW
EnableWindow
GetParent
UnregisterClassW
IsRectEmpty
DrawFocusRect
SetWindowRgn
DrawFrameControl
DrawEdge
EnumDisplayMonitors
LoadCursorW
GetSysColorBrush
MapDialogRect
SetWindowContextHelpId
RegisterClipboardFormatW
SetCursor
ShowOwnedPopups
PostQuitMessage
GetSystemMetrics
CharUpperW
TranslateMessage
DrawStateW
GetCursorPos
SetRectEmpty
SendDlgItemMessageA
IntersectRect
InflateRect
ClientToScreen
GetWindowDC
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuState
GetMenuStringW
LoadMenuW
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
IsWindowEnabled
CheckDlgButton
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
UnhookWindowsHookEx
CopyAcceleratorTableW
CharNextW
MonitorFromPoint
UnionRect
EnableScrollBar
UpdateLayeredWindow
SetMenuDefaultItem
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
MessageBeep
DeleteMenu
GetSystemMenu
ReleaseCapture
SetCapture
SetWindowsHookExW
GetWindow
GetLastActivePopup
IsZoomed
LoadImageW
DestroyIcon
CopyImage
GetMenuItemInfoW
DestroyMenu
RealChildWindowFromPoint
PeekMessageW
WindowFromPoint
GetTopWindow
GetMenuItemCount
GetClassNameW
gdi32
GetDeviceCaps
GetDIBits
GetStockObject
RealizePalette
SelectPalette
CreateFontW
DeleteObject
SetBkColor
SetTextColor
CopyMetaFileW
CreateDCW
CreateHatchBrush
CreatePatternBrush
CreateRectRgn
GetObjectW
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
Ellipse
StretchBlt
CreateSolidBrush
FrameRgn
CreateRoundRectRgn
Polyline
ExtTextOutW
TextOutW
SelectObject
RectVisible
PtVisible
Escape
CreatePen
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
ExcludeClipRect
CreateBitmap
SetBkMode
GetTextFaceW
SetPixelV
GetViewportOrgEx
GetWindowOrgEx
PtInRegion
GetBoundsRect
FillRgn
SetPaletteEntries
ExtFloodFill
LPtoDP
GetSystemPaletteEntries
GetNearestPaletteIndex
EnumFontFamiliesExW
GetPaletteEntries
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateFontIndirectW
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
DPtoLP
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetTextMetricsW
CreateEllipticRgn
GetBkColor
GetTextColor
GetTextExtentPoint32W
CreatePolygonRgn
Polygon
CreateDIBSection
GetRgnBox
SetPixel
SetDIBColorTable
Rectangle
OffsetRgn
RoundRect
CreatePalette
DeleteDC
msimg32
AlphaBlend
TransparentBlt
winspool.drv
DocumentPropertiesW
ClosePrinter
OpenPrinterW
advapi32
RegCloseKey
RegOpenKeyExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegEnumKeyW
RegQueryValueW
RegEnumValueW
RegEnumKeyExW
shell32
DragFinish
ShellExecuteExW
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetSpecialFolderPathW
SHGetFileInfoW
SHGetSpecialFolderLocation
SHGetDesktopFolder
ShellExecuteW
SHAppBarMessage
DragQueryFileW
comctl32
InitCommonControlsEx
_TrackMouseEvent
shlwapi
ord12
PathFindExtensionW
PathFindFileNameW
PathRemoveFileSpecW
PathIsUNCW
PathStripToRootW
StrFormatKBSizeW
uxtheme
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
CloseThemeData
GetThemeSysColor
GetWindowTheme
GetThemePartSize
IsThemeBackgroundPartiallyTransparent
DrawThemeText
OpenThemeData
IsAppThemed
DrawThemeParentBackground
ole32
CoTaskMemFree
OleDuplicateData
ReleaseStgMedium
CoUninitialize
CoInitializeEx
CoCreateInstance
CoCreateGuid
CoInitialize
CoFreeUnusedLibraries
OleInitialize
OleUninitialize
CLSIDFromString
CLSIDFromProgID
CoTaskMemAlloc
CoGetClassObject
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
CreateStreamOnHGlobal
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
CoDisconnectObject
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
IsAccelerator
oleaut32
SafeArrayDestroy
SysAllocString
VariantCopy
VarBstrFromDate
VariantTimeToSystemTime
SystemTimeToVariantTime
LoadTypeLi
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
OleCreateFontIndirect
SysFreeString
oledlg
OleUIBusyW
gdiplus
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdiplusShutdown
GdipGetImageWidth
GdipGetImageHeight
GdipCreateFromHDC
GdipDeleteGraphics
GdipDrawImagePointRectI
GdiplusStartup
GdipReleaseDC
GdipAlloc
GdipFree
GdipLoadImageFromStream
GdipCloneImage
GdipDisposeImage
GdipRotateWorldTransform
GdipTranslateWorldTransform
ws2_32
WSACleanup
WSASetLastError
WSAStartup
oleacc
CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow
imm32
ImmGetContext
ImmReleaseContext
ImmGetOpenStatus
Sections
.text Size: 2.3MB - Virtual size: 2.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 794KB - Virtual size: 794KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2.3MB - Virtual size: 2.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 111KB - Virtual size: 110KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 2.4MB - Virtual size: 2.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 69KB - Virtual size: 69KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ