Static task
static1
Behavioral task
behavioral1
Sample
971c4bed20c04714b9e66fa840af5d16508434e45b2f1f209a03dce30d68664d.exe
Resource
win7-20231023-en
windows7-x64
Behavioral task
behavioral2
Sample
971c4bed20c04714b9e66fa840af5d16508434e45b2f1f209a03dce30d68664d.exe
Resource
win10v2004-20231020-en
windows10-2004-x64
General
-
Target
971c4bed20c04714b9e66fa840af5d16508434e45b2f1f209a03dce30d68664d
-
Size
4.5MB
-
MD5
c69f8b7877bd165e8202ff050e6c69a9
-
SHA1
c92ebe019a67439f30bcdd889e6477306a78ebee
-
SHA256
971c4bed20c04714b9e66fa840af5d16508434e45b2f1f209a03dce30d68664d
-
SHA512
6823350908c86143dddb578cf7cf197ce68b38b41b9c38f4736bf72bdc80cc42616c3c054987526aae0461c1ffe4ba02aabbfe1714637fbfb37d697a7b800543
-
SSDEEP
98304:UZrGEzdL0iGGAbFOvFC/h/JXcZHiS1S1:wxuiWAoh/JXCV
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 971c4bed20c04714b9e66fa840af5d16508434e45b2f1f209a03dce30d68664d
Files
-
971c4bed20c04714b9e66fa840af5d16508434e45b2f1f209a03dce30d68664d.exe windows:5 windows x86
0e28991c851942e4bee75cde00bbbee6
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ws2_32
getsockopt
send
gethostbyname
getsockname
ioctlsocket
connect
inet_ntoa
WSAStartup
inet_addr
select
WSAGetLastError
htons
setsockopt
WSACleanup
recv
socket
__WSAFDIsSet
closesocket
kernel32
SetEvent
CreateEventA
WaitForMultipleObjects
WinExec
FindFirstFileA
GetPrivateProfileStringA
CreateDirectoryA
CreateFileA
WriteFile
CloseHandle
SetFilePointer
CreateToolhelp32Snapshot
Process32First
Process32Next
WaitForSingleObject
Sleep
TerminateProcess
SetThreadPriority
CreateThread
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
GetStartupInfoW
HeapSetInformation
InterlockedCompareExchange
InterlockedExchange
DecodePointer
EncodePointer
GetCurrentThreadId
GetCurrentProcessId
OpenProcess
GetSystemTimeAsFileTime
user32
EnumWindows
GetWindowThreadProcessId
PostQuitMessage
GetSystemMetrics
KillTimer
SetTimer
MoveWindow
advapi32
RegCreateKeyExA
RegSetValueExA
RegCloseKey
ole32
CoUninitialize
CoInitialize
msvcp100
?_Xlength_error@std@@YAXPBD@Z
msvcr100
vfprintf
ftell
fprintf
fflush
_getpid
__iob_func
strerror
strncpy
strstr
sscanf
strncpy_s
free
strncmp
_beginthreadex
fclose
fread
fopen
strchr
??0exception@std@@QAE@ABV01@@Z
??0exception@std@@QAE@ABQBD@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??2@YAPAXI@Z
??3@YAXPAX@Z
??_V@YAXPAX@Z
atoi
sprintf
strncat
malloc
isdigit
strrchr
atol
getenv
_localtime64
_time64
fputc
fputs
_unlock
__dllonexit
_lock
_onexit
_amsg_exit
__getmainargs
_cexit
_exit
_XcptFilter
_ismbblead
exit
_acmdln
_initterm
_initterm_e
_configthreadlocale
__setusermatherr
_commode
_fmode
__set_app_type
_crt_debugger_hook
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_except_handler4_common
_invoke_watson
_controlfp_s
_errno
_stricmp
_strupr
_access
strtod
strtol
realloc
_vsnprintf
__CxxFrameHandler3
memset
memcpy
_CxxThrowException
_setjmp3
duilib
?SetInstance@CPaintManagerUI@DuiLib@@SAXPAUHINSTANCE__@@@Z
??0WindowImplBase@DuiLib@@QAE@XZ
??1WindowImplBase@DuiLib@@UAE@XZ
?InitResource@WindowImplBase@DuiLib@@UAEXXZ
?SetBkImage@CControlUI@DuiLib@@QAEXPBD@Z
?SetButton1NormalImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?ShowWindow@CWindowWnd@DuiLib@@QAEX_N0@Z
?SetButton1PushedImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetButton1DisabledImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetButton2NormalImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetButton2HotImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetButton2PushedImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetButton2DisabledImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetThumbNormalImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetThumbHotImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetThumbPushedImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetThumbDisabledImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetRailNormalImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetRailHotImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetRailPushedImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?SetRailDisabledImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
??8CDuiString@DuiLib@@QBE_NPBD@Z
?FindControl@CPaintManagerUI@DuiLib@@QBEPAVCControlUI@2@PBD@Z
?OnFinalMessage@WindowImplBase@DuiLib@@UAEXPAUHWND__@@@Z
?GetMessageMap@WindowImplBase@DuiLib@@MBEPBUDUI_MSGMAP@2@XZ
?OnClick@WindowImplBase@DuiLib@@MAEXAAUtagTNotifyUI@2@@Z
?ResponseDefaultKeyEvent@WindowImplBase@DuiLib@@MAEJI@Z
?GetClassStyle@WindowImplBase@DuiLib@@UBEIXZ
?GetZIPFileName@WindowImplBase@DuiLib@@UBE?AVCDuiString@2@XZ
?CreateControl@WindowImplBase@DuiLib@@UAEPAVCControlUI@2@PBD@Z
??1CHorizontalLayoutUI@DuiLib@@UAE@XZ
?CompareNoCase@CDuiString@DuiLib@@QBEHPBD@Z
??0CHorizontalLayoutUI@DuiLib@@QAE@XZ
?GetClass@CHorizontalLayoutUI@DuiLib@@UBEPBDXZ
?GetInterface@CHorizontalLayoutUI@DuiLib@@UAEPAXPBD@Z
?QueryControlText@WindowImplBase@DuiLib@@UAEPBDPBD0@Z
?MessageHandler@WindowImplBase@DuiLib@@UAEJIIJAA_N@Z
?OnClose@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?MessageLoop@CPaintManagerUI@DuiLib@@SAXXZ
?GetHWND@CWindowWnd@DuiLib@@QBEPAUHWND__@@XZ
?SetButton1HotImage@CScrollBarUI@DuiLib@@QAEXPBD@Z
?GetScrollPos@CContainerUI@DuiLib@@UBE?AUtagSIZE@@XZ
?GetControlFlags@CHorizontalLayoutUI@DuiLib@@UBEIXZ
?SetAttribute@CHorizontalLayoutUI@DuiLib@@UAEXPBD0@Z
?DoEvent@CHorizontalLayoutUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?SetPos@CHorizontalLayoutUI@DuiLib@@UAEXUtagRECT@@_N@Z
?DoPostPaint@CHorizontalLayoutUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?OnDestroy@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcActivate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcCalcSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcPaint@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnNcHitTest@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnGetMinMaxInfo@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseWheel@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseHover@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSize@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnChar@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSysCommand@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnCreate@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKeyDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnKillFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnSetFocus@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonDown@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnLButtonUp@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?OnMouseMove@WindowImplBase@DuiLib@@UAEJIIJAAH@Z
?HandleMessage@WindowImplBase@DuiLib@@UAEJIIJ@Z
?GetStyle@WindowImplBase@DuiLib@@UAEJXZ
?SetWordWrap@CRichEditUI@DuiLib@@QAEX_N@Z
?SetSelNone@CRichEditUI@DuiLib@@QAEHXZ
?Close@CWindowWnd@DuiLib@@QAEXI@Z
?GetSuperClassName@CWindowWnd@DuiLib@@MBEPBDXZ
?GetName@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?SetName@CControlUI@DuiLib@@UAEXPBD@Z
?GetControlFlags@CControlUI@DuiLib@@UBEIXZ
?Activate@CControlUI@DuiLib@@UAE_NXZ
?GetManager@CControlUI@DuiLib@@UBEPAVCPaintManagerUI@2@XZ
?SetManager@CControlUI@DuiLib@@UAEXPAVCPaintManagerUI@2@PAV12@_N@Z
?GetParent@CControlUI@DuiLib@@UBEPAV12@XZ
?GetText@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?SetText@CControlUI@DuiLib@@UAEXPBD@Z
?IsResourceText@CControlUI@DuiLib@@UBE_NXZ
?SetResourceText@CControlUI@DuiLib@@UAEX_N@Z
?IsDragEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetDragEnable@CControlUI@DuiLib@@UAEX_N@Z
?IsDropEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetDropEnable@CControlUI@DuiLib@@UAEX_N@Z
?GetPos@CControlUI@DuiLib@@UBEABUtagRECT@@XZ
?SetPos@CControlUI@DuiLib@@UAEXUtagRECT@@_N@Z
?Move@CControlUI@DuiLib@@UAEXUtagSIZE@@_N@Z
?GetWidth@CControlUI@DuiLib@@UBEHXZ
?GetHeight@CControlUI@DuiLib@@UBEHXZ
?GetX@CControlUI@DuiLib@@UBEHXZ
?GetY@CControlUI@DuiLib@@UBEHXZ
?GetPadding@CControlUI@DuiLib@@UBE?AUtagRECT@@XZ
?SetPadding@CControlUI@DuiLib@@UAEXUtagRECT@@@Z
?GetFixedXY@CControlUI@DuiLib@@UBE?AUtagSIZE@@XZ
?SetFixedXY@CControlUI@DuiLib@@UAEXUtagSIZE@@@Z
?GetFixedWidth@CControlUI@DuiLib@@UBEHXZ
?SetFixedWidth@CControlUI@DuiLib@@UAEXH@Z
?GetFixedHeight@CControlUI@DuiLib@@UBEHXZ
?SetFixedHeight@CControlUI@DuiLib@@UAEXH@Z
?GetMinWidth@CControlUI@DuiLib@@UBEHXZ
?SetMinWidth@CControlUI@DuiLib@@UAEXH@Z
?GetMaxWidth@CControlUI@DuiLib@@UBEHXZ
?SetMaxWidth@CControlUI@DuiLib@@UAEXH@Z
?GetMinHeight@CControlUI@DuiLib@@UBEHXZ
?SetMinHeight@CControlUI@DuiLib@@UAEXH@Z
?GetMaxHeight@CControlUI@DuiLib@@UBEHXZ
?SetMaxHeight@CControlUI@DuiLib@@UAEXH@Z
?GetFloatPercent@CControlUI@DuiLib@@UBE?AUtagTPercentInfo@2@XZ
?SetFloatPercent@CControlUI@DuiLib@@UAEXUtagTPercentInfo@2@@Z
?GetToolTip@CControlUI@DuiLib@@UBE?AVCDuiString@2@XZ
?SetToolTip@CControlUI@DuiLib@@UAEXPBD@Z
?SetToolTipWidth@CControlUI@DuiLib@@UAEXH@Z
?GetToolTipWidth@CControlUI@DuiLib@@UAEHXZ
?GetShortcut@CControlUI@DuiLib@@UBEDXZ
?SetShortcut@CControlUI@DuiLib@@UAEXD@Z
?IsContextMenuUsed@CControlUI@DuiLib@@UBE_NXZ
?SetContextMenuUsed@CControlUI@DuiLib@@UAEX_N@Z
?GetUserData@CControlUI@DuiLib@@UAEABVCDuiString@2@XZ
?SetUserData@CControlUI@DuiLib@@UAEXPBD@Z
?GetTag@CControlUI@DuiLib@@UBEIXZ
?SetTag@CControlUI@DuiLib@@UAEXI@Z
?IsVisible@CControlUI@DuiLib@@UBE_NXZ
?SetVisible@CControlUI@DuiLib@@UAEX_N@Z
?SetInternVisible@CControlUI@DuiLib@@UAEX_N@Z
?IsEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetEnabled@CControlUI@DuiLib@@UAEX_N@Z
?IsMouseEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetMouseEnabled@CControlUI@DuiLib@@UAEX_N@Z
?IsKeyboardEnabled@CControlUI@DuiLib@@UBE_NXZ
?SetKeyboardEnabled@CControlUI@DuiLib@@UAEX_N@Z
?CenterWindow@CWindowWnd@DuiLib@@QAEXXZ
?ShowModal@CWindowWnd@DuiLib@@QAEIXZ
?Create@CWindowWnd@DuiLib@@QAEPAUHWND__@@PAU3@PBDKKHHHHPAUHMENU__@@@Z
?GetInstancePath@CPaintManagerUI@DuiLib@@SA?AVCDuiString@2@XZ
?Format@CDuiString@DuiLib@@QAAHPBDZZ
??4CDuiString@DuiLib@@QAEABV01@ABV01@@Z
??4CDuiString@DuiLib@@QAEABV01@PBD@Z
??BCDuiString@DuiLib@@QBEPBDXZ
?GetData@CDuiString@DuiLib@@QBEPBDXZ
?GetLength@CDuiString@DuiLib@@QBEHXZ
?Empty@CDuiString@DuiLib@@QAEXXZ
??1CDuiString@DuiLib@@QAE@XZ
??0CDuiString@DuiLib@@QAE@XZ
??0CDuiString@DuiLib@@QAE@ABV01@@Z
??0CDuiString@DuiLib@@QAE@PBDH@Z
?SetText@CLabelUI@DuiLib@@UAEXPBD@Z
?SetAutoCalcWidth@CLabelUI@DuiLib@@UAEX_N@Z
?GetAutoCalcWidth@CLabelUI@DuiLib@@UBE_NXZ
?PaintText@CLabelUI@DuiLib@@UAEXPAUHDC__@@@Z
?SetAttribute@CLabelUI@DuiLib@@UAEXPBD0@Z
?DoEvent@CLabelUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?EstimateSize@CLabelUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?GetInterface@CLabelUI@DuiLib@@UAEPAXPBD@Z
?GetClass@CLabelUI@DuiLib@@UBEPBDXZ
??1CLabelUI@DuiLib@@UAE@XZ
??0CLabelUI@DuiLib@@QAE@XZ
?ProcessScrollBar@CContainerUI@DuiLib@@MAEXUtagRECT@@HH@Z
?SetFloatPos@CContainerUI@DuiLib@@MAEXH@Z
?GetHorizontalScrollBar@CContainerUI@DuiLib@@UBEPAVCScrollBarUI@2@XZ
?GetVerticalScrollBar@CContainerUI@DuiLib@@UBEPAVCScrollBarUI@2@XZ
?EnableScrollBar@CContainerUI@DuiLib@@UAEX_N0@Z
?EndRight@CContainerUI@DuiLib@@UAEXXZ
?HomeLeft@CContainerUI@DuiLib@@UAEXXZ
?PageRight@CContainerUI@DuiLib@@UAEXXZ
?PageLeft@CContainerUI@DuiLib@@UAEXXZ
?LineRight@CContainerUI@DuiLib@@UAEXXZ
?LineLeft@CContainerUI@DuiLib@@UAEXXZ
?EndDown@CContainerUI@DuiLib@@UAEXXZ
?HomeUp@CContainerUI@DuiLib@@UAEXXZ
?PageDown@CContainerUI@DuiLib@@UAEXXZ
?PageUp@CContainerUI@DuiLib@@UAEXXZ
?LineDown@CContainerUI@DuiLib@@UAEXXZ
?LineUp@CContainerUI@DuiLib@@UAEXXZ
?GetScrollStepSize@CContainerUI@DuiLib@@UBEHXZ
?SetScrollStepSize@CContainerUI@DuiLib@@UAEXH@Z
?SetScrollPos@CContainerUI@DuiLib@@UAEXUtagSIZE@@_N@Z
?GetScrollRange@CContainerUI@DuiLib@@UBE?AUtagSIZE@@XZ
?IsFocused@CControlUI@DuiLib@@UBE_NXZ
?FindControl@CContainerUI@DuiLib@@UAEPAVCControlUI@2@P6GPAV32@PAV32@PAX@Z1I@Z
?SetManager@CContainerUI@DuiLib@@UAEXPAVCPaintManagerUI@2@PAVCControlUI@2@_N@Z
?DoPaint@CContainerUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?FindSelectable@CContainerUI@DuiLib@@UBEHH_N@Z
?SetMouseChildEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?IsMouseChildEnabled@CContainerUI@DuiLib@@UBE_NXZ
?SetDelayedDestroy@CContainerUI@DuiLib@@UAEX_N@Z
?IsDelayedDestroy@CContainerUI@DuiLib@@UBE_NXZ
?SetAutoDestroy@CContainerUI@DuiLib@@UAEX_N@Z
?IsAutoDestroy@CContainerUI@DuiLib@@UBE_NXZ
?SetChildPadding@CContainerUI@DuiLib@@UAEXH@Z
?GetChildPadding@CContainerUI@DuiLib@@UBEHXZ
?SetInset@CContainerUI@DuiLib@@UAEXUtagRECT@@@Z
?GetInset@CContainerUI@DuiLib@@UBE?AUtagRECT@@XZ
?SetMouseEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?SetEnabled@CContainerUI@DuiLib@@UAEX_N@Z
?SetInternVisible@CContainerUI@DuiLib@@UAEX_N@Z
?SetVisible@CContainerUI@DuiLib@@UAEX_N@Z
?DoPostPaint@CControlUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?PaintBorder@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintText@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintStatusImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintBkImage@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?PaintBkColor@CControlUI@DuiLib@@UAEXPAUHDC__@@@Z
?DoPaint@CControlUI@DuiLib@@UAEXPAUHDC__@@ABUtagRECT@@@Z
?EstimateSize@CControlUI@DuiLib@@UAE?AUtagSIZE@@U3@@Z
?ApplyAttributeList@CControlUI@DuiLib@@QAEPAV12@PBD@Z
?Event@CControlUI@DuiLib@@UAEXAAUtagTEventUI@2@@Z
?DoInit@CControlUI@DuiLib@@UAEXXZ
?Init@CControlUI@DuiLib@@UAEXXZ
?FindControl@CControlUI@DuiLib@@UAEPAV12@P6GPAV12@PAV12@PAX@Z1I@Z
?SetFloat@CControlUI@DuiLib@@UAEX_N@Z
?IsFloat@CControlUI@DuiLib@@UBE_NXZ
?SetFocus@CControlUI@DuiLib@@UAEXXZ
?SetValue@CProgressUI@DuiLib@@QAEXH@Z
zlib1
uncompress
shlwapi
PathFileExistsA
Sections
.text Size: 71KB - Virtual size: 70KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 41KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4.4MB - Virtual size: 4.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 19KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ