Static task
static1
Behavioral task
behavioral1
Sample
601735cf7c17e17dbdc3d9ef0b01e0bf.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
601735cf7c17e17dbdc3d9ef0b01e0bf.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
601735cf7c17e17dbdc3d9ef0b01e0bf
-
Size
186KB
-
MD5
601735cf7c17e17dbdc3d9ef0b01e0bf
-
SHA1
300f8bcffe8730665e3c1551d8e034c429d66282
-
SHA256
62fb6d7038f48132a7ff2c24e8a544562363bb3e37493034817de9fc13f0770c
-
SHA512
2f9d9b7031bf2a768f9de881c27431ffa02fec5e2208f8e2ae48f8e528d68726cc39b5644c7d6dc6c45de012e361044d26525fe440c55425e5276d714e938b60
-
SSDEEP
3072:R48x/9hgRTh1MeH/e+XDMxhFaCbSxbGYsuG3zr1hNzbR1EalSppDyWoPOp:R48x/vOF9bXmo7yYHwn1PbtlSpYWt
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 601735cf7c17e17dbdc3d9ef0b01e0bf
Files
-
601735cf7c17e17dbdc3d9ef0b01e0bf.exe windows:5 windows x86 arch:x86
d0da5713eb570b8074d0223a47793d2c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ntdll
RtlIntegerToChar
_chkstk
RtlInitializeCriticalSection
RtlDeleteCriticalSection
RtlEnterCriticalSection
RtlLeaveCriticalSection
NtQuerySystemInformation
_splitpath
RtlDosPathNameToNtPathName_U
RtlFreeHeap
isalpha
NtQueryInformationThread
NtOpenThread
NtClose
RtlInitUnicodeString
DbgBreakPoint
RtlCharToInteger
toupper
_strlwr
NtQueryPerformanceCounter
CsrIdentifyAlertableThread
sprintf
strrchr
RtlPcToFileHeader
_strnicmp
RtlDestroyEnvironment
_stricmp
strchr
strncpy
memmove
RtlUnicodeToMultiByteN
wcslen
RtlImageNtHeader
RtlMultiByteToUnicodeN
strstr
_strupr
RtlFillMemoryUlong
NtProtectVirtualMemory
atoi
strncmp
strtoul
RtlAnsiStringToUnicodeString
RtlUnicodeStringToAnsiString
RtlFreeAnsiString
RtlSetCurrentDirectory_U
RtlGetCurrentDirectory_U
RtlAllocateHeap
RtlGetFullPathName_U
NlsMbOemCodePageTag
RtlxUnicodeStringToOemSize
RtlInitAnsiString
RtlNtStatusToDosError
RtlAcquirePebLock
RtlEqualUnicodeString
RtlReleasePebLock
RtlOemStringToUnicodeString
ZwAllocateVirtualMemory
RtlCreateEnvironment
RtlSetEnvironmentVariable
RtlFreeUnicodeString
NtWaitForSingleObject
RtlInitString
_strcmpi
RtlFreeOemString
RtlUnicodeStringToOemString
RtlOemToUnicodeN
NtTerminateProcess
RtlUnwind
NtQueryInformationProcess
NtQueryVirtualMemory
kernel32
GetPrivateProfileSectionNamesA
RemoveDirectoryA
DeleteFileA
WritePrivateProfileStructA
GetPrivateProfileStructA
GetCurrentDirectoryA
SetCurrentDirectoryA
WritePrivateProfileSectionA
WriteProfileSectionA
GetPrivateProfileSectionA
GetProfileSectionA
GetFileAttributesA
SetFileAttributesA
GetDiskFreeSpaceA
FileTimeToLocalFileTime
GlobalFindAtomA
GetACP
GetThreadTimes
GetTempPathA
GetTempFileNameA
TlsAlloc
TlsSetValue
GetLocalTime
GlobalGetAtomNameA
GlobalAddAtomA
GlobalDeleteAtom
lstrcmpA
SetupComm
SetCommTimeouts
WaitCommEvent
BuildCommDCBA
SetCommState
SetCommBreak
GetCommState
EscapeCommFunction
ClearCommBreak
GetCommModemStatus
ClearCommError
PurgeComm
SetCommMask
TransmitCommChar
GetOverlappedResult
GetAtomNameA
GetProcessShutdownParameters
SetProcessShutdownParameters
SearchPathA
lstrcatA
ExpandEnvironmentStringsA
lstrlenW
CopyFileA
WideCharToMultiByte
MultiByteToWideChar
OpenFileMappingA
GetDriveTypeA
GetPrivateProfileIntA
lstrcmpiA
GetPrivateProfileStringA
GetSystemWindowsDirectoryA
ReadFile
WritePrivateProfileStringA
SetEndOfFile
WriteFile
FindNextFileA
FindFirstFileA
LockFile
UnlockFile
DosDateTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
SetFilePointer
GetFileSize
DuplicateHandle
DebugBreak
ResumeThread
WaitForMultipleObjects
CreateFileA
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
SetProcessWorkingSetSize
SetEnvironmentVariableA
GetNextVDMCommand
ResetEvent
GetCurrentThreadId
Sleep
ExitThread
CreateThread
OutputDebugStringA
GetExitCodeProcess
OpenProcess
RegisterWowExec
TlsGetValue
LoadLibraryExA
GetVersionExA
CreateDirectoryA
FreeLibrary
GlobalMemoryStatus
VirtualFree
VirtualAlloc
IsDBCSLeadByte
lstrlenA
SizeofResource
LockResource
FreeResource
LoadResource
FindResourceExA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
lstrcpyA
LocalFree
LocalSize
LocalUnlock
LocalLock
LocalReAlloc
LocalAlloc
SetLastError
EnterCriticalSection
LeaveCriticalSection
GetTickCount
GetFullPathNameA
lstrcpynA
GetSystemDefaultLangID
GetSystemDirectoryA
GetShortPathNameA
GetWindowsDirectoryA
GetSystemDefaultLCID
GetProfileIntA
SetPriorityClass
HeapCreate
InitializeCriticalSection
GetProcAddress
LoadLibraryA
GetModuleHandleA
RegisterWowBaseHandlers
DeleteCriticalSection
HeapDestroy
GetCurrentProcess
GetModuleFileNameA
GetCurrentProcessId
SetErrorMode
CreateEventA
GetLastError
CloseHandle
CreateProcessA
WaitForSingleObject
SetEvent
ExitVDM
ExitProcess
HeapFree
HeapSize
HeapAlloc
GetProfileStringA
WriteProfileStringA
GetEnvironmentVariableA
GetVolumeInformationW
DeleteFileW
GetFileAttributesW
CreateFileW
SetFileAttributesW
gdi32
StrokeAndFillPath
StrokePath
WidenPath
CloseFigure
CloseEnhMetaFile
CopyEnhMetaFileA
SelectClipPath
GetEnhMetaFileA
GetEnhMetaFileBits
GetEnhMetaFileDescriptionA
GetEnhMetaFileHeader
GetEnhMetaFilePaletteEntries
PlayEnhMetaFileRecord
PathToRegion
GetPath
FlattenPath
FillPath
EndPath
BeginPath
AbortPath
CreateSolidBrush
SetTextAlign
SetRectRgn
CombineRgn
LineTo
SetTextColor
SetBkMode
SetBkColor
PatBlt
DeleteEnhMetaFile
RemoveFontResourceW
SetEnhMetaFileBits
GdiComment
SetMetaRgn
ExtSelectClipRgn
CreateHalftonePalette
ExtCreateRegion
ExtCreatePen
GetArcDirection
GetFontLanguageInfo
GetMiterLimit
SetMiterLimit
SetArcDirection
GetTextCharset
SetMagicColors
BitBlt
GetRelAbs
SetRelAbs
Chord
CreateCompatibleBitmap
CreateDiscardableBitmap
CreateEllipticRgn
CreateHatchBrush
CreatePen
CreateRoundRectRgn
Ellipse
GetRegionData
EqualRgn
ExcludeClipRect
ExtFloodFill
FillRgn
FloodFill
FrameRgn
GetBkColor
GetBkMode
GetMapMode
GetNearestColor
GetPixel
GetPolyFillMode
GetROP2
GetStretchBltMode
IntersectClipRect
InvertRgn
OffsetClipRgn
OffsetRgn
PaintRgn
PtInRegion
PtVisible
Rectangle
RestoreDC
RoundRect
SaveDC
SetMapperFlags
SetPixel
SetPolyFillMode
SetROP2
SetStretchBltMode
StretchBlt
UnrealizeObject
GetCurrentObject
AnimatePalette
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteUse
RealizePalette
ResizePalette
SelectPalette
SetPaletteEntries
SetSystemPaletteUse
UpdateColors
EndPage
GetFontData
GetTextAlign
GetTextCharacterExtra
SetTextCharacterExtra
GetTextColor
GetTextFaceA
SetTextJustification
TextOutA
SetDIBColorTable
GetDIBColorTable
CreateDIBSection
GetBitmapBits
GdiCleanCacheDC
GdiFlush
GdiSetBatchLimit
UnloadNetworkFonts
GetTextMetricsA
ExtTextOutA
GetSystemPaletteEntries
PlayMetaFileRecord
PlayMetaFile
GetMetaFileA
EnumMetaFile
CreateMetaFileA
CopyMetaFileA
CloseMetaFile
SetMetaFileBitsEx
GetMetaFileBitsEx
CreateFontA
AddFontResourceTracking
AddFontResourceA
AddFontResourceExA
GetHFONT
RemoveFontResourceTracking
RemoveFontResourceA
GetCharWidthA
EnumFontFamiliesA
EnumFontsA
DrawEscape
StartPage
GetETM
SetMapMode
SelectClipRgn
StretchDIBits
SetDIBitsToDevice
SetDIBits
CreateDIBitmap
GetFontAssocStatus
Escape
SetBrushOrgEx
SetBitmapBits
RectVisible
RectInRegion
Polyline
GetStockObject
Polygon
PolyPolyline
PolyPolygon
LineDDA
LPtoDP
GetRgnBox
GetObjectA
GetDeviceCaps
GetDIBits
GetClipBox
GetDCOrgEx
EnumObjects
GetObjectType
DeleteDC
DPtoLP
CreateRectRgnIndirect
CreatePolygonRgn
CreatePolyPolygonRgn
CreatePenIndirect
CreateICA
CreateEllipticRgnIndirect
CreateDCA
CreateCompatibleDC
CreateBrushIndirect
CreateBitmapIndirect
CreateBitmap
GetCharABCWidthsA
EndDoc
AbortDoc
GetClipRgn
CreateRectRgn
GetRandomRgn
StartDocA
ExtEscape
SetWindowOrgEx
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetBoundsRect
GdiQueryTable
GetCharacterPlacementA
CreateEnhMetaFileA
DeleteMetaFile
CreateScalableFontResourceA
GetAspectRatioFilterEx
GetBitmapDimensionEx
GetBoundsRect
GetBrushOrgEx
GetCurrentPositionEx
GetGlyphOutlineWow
GetKerningPairsA
GetOutlineTextMetricsA
GetRasterizerCaps
DeleteObject
GetTextExtentPointA
SelectObject
CreateFontIndirectA
GetViewportExtEx
GetViewportOrgEx
GetWindowExtEx
GetWindowOrgEx
MoveToEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ResetDCA
ScaleViewportExtEx
ScaleWindowExtEx
SetAbortProc
SetBitmapDimensionEx
user32
GetMenuItemID
GetMenuState
GetAsyncKeyState
GetPropA
SetPropA
CheckMenuRadioItem
GetMenuContextHelpId
SetMenuContextHelpId
EnableMenuItem
MessageBoxA
GetDesktopWindow
LoadStringA
wsprintfA
UserRegisterWowHandlers
ShowStartGlass
DrawAnimatedRects
DrawCaption
DrawTextExA
GetIconInfo
GetMenuItemInfoA
InsertMenuItemA
SetMenuItemInfoA
GetMenuItemRect
TrackPopupMenuEx
DrawStateA
CopyImage
MessageBoxIndirectA
TileWindows
CascadeWindows
DrawEdge
DrawFrameControl
CharNextA
RegisterWindowMessageA
GetWindowThreadProcessId
GetClassLongA
GetClassInfoA
GetDlgItem
GetWindowLongA
GetKeyState
SendMessageA
PackDDElParam
GetSubMenu
FreeDDElParam
UnpackDDElParam
SetForegroundWindow
CallWindowProcA
DefWindowProcA
PostMessageA
ReleaseDC
SystemParametersInfoA
GetDC
CharUpperBuffA
ToAscii
OemKeyScan
VkKeyScanA
GetKeyboardType
MapVirtualKeyA
GetKBCodePage
GetKeyNameTextA
CharToOemBuffA
OemToCharBuffA
SetWindowsHookExA
UnhookWindowsHookEx
GetShellWindow
WaitForInputIdle
PeekMessageA
MsgWaitForMultipleObjects
PostThreadMessageA
SendMessageTimeoutA
KillTimer
SetTimer
ChangeDisplaySettingsA
EnumDisplaySettingsA
CharToOemA
OemToCharA
IsCharAlphaA
CharUpperA
DispatchMessageA
TranslateMessage
SetWindowLongA
MessageBeep
GetClipCursor
GetDCEx
RedrawWindow
ScrollWindowEx
SetWindowPlacement
GetWindowPlacement
ExitWindowsEx
MapWindowPoints
DlgDirSelectComboBoxExA
DlgDirSelectExA
mouse_event
keybd_event
CreateCaret
DestroyCaret
GetCaretBlinkTime
GetCaretPos
HideCaret
SetCaretBlinkTime
SetCaretPos
ShowCaret
GetClassWord
SetClassLongA
SetClassWord
ChangeClipboardChain
CloseClipboard
CountClipboardFormats
EnumClipboardFormats
GetClipboardFormatNameA
GetClipboardOwner
GetClipboardViewer
GetPriorityClipboardFormat
IsClipboardFormatAvailable
OpenClipboard
RegisterClipboardFormatA
SetClipboardViewer
EmptyClipboard
GetClipboardData
SetClipboardData
IsWindow
ClipCursor
CreateCursor
DestroyCursor
SetCursor
SetCursorPos
ShowCursor
MBToWCSEx
CheckDlgButton
CheckRadioButton
DialogBoxIndirectParamAorW
DlgDirListA
DlgDirListComboBoxA
DestroyWindow
RealGetWindowClassA
EndDialog
GetDialogBaseUnits
GetDlgCtrlID
GetDlgItemInt
GetDlgItemTextA
GetNextDlgGroupItem
GetNextDlgTabItem
IsDialogMessageA
IsDlgButtonChecked
MapDialogRect
SetDlgItemInt
SetDlgItemTextA
CharLowerA
CharLowerBuffA
CharPrevA
IsCharAlphaNumericA
IsCharLowerA
IsCharUpperA
ChangeMenuA
CheckMenuItem
CreateMenu
CreatePopupMenu
DeleteMenu
DestroyMenu
DrawMenuBar
GetMenuCheckMarkDimensions
GetMenuStringA
GetSystemMenu
HiliteMenuItem
InsertMenuA
LoadMenuIndirectA
IsMenu
ModifyMenuA
RemoveMenu
SetMenu
SetMenuItemBitmaps
TrackPopupMenu
GetForegroundWindow
GetActiveWindow
AppendMenuA
CallMsgFilterA
DefDlgProcA
DefFrameProcA
DefMDIChildProcA
GetMessageA
GetMessagePos
GetMessageTime
InSendMessage
PostQuitMessage
ReplyMessage
TranslateAcceleratorA
TranslateMDISysAccel
WaitMessage
CreateIcon
DestroyIcon
DragDetect
DrawFocusRect
DrawTextA
EndPaint
EnumPropsA
FillRect
FrameRect
GetScrollRange
GetUpdateRect
GrayStringA
InvalidateRect
InvalidateRgn
InvertRect
ScrollDC
SetCapture
SetKeyboardState
SetSysColors
ValidateRect
ValidateRgn
WinHelpA
BeginPaint
GetTabbedTextExtentA
TabbedTextOutA
AdjustWindowRect
AdjustWindowRectEx
ChildWindowFromPoint
ChildWindowFromPointEx
DeferWindowPos
EndDeferWindowPos
EnumChildWindows
EnumThreadWindows
EnumWindows
FindWindowA
GetWindowDC
GetWindowTextA
MenuItemFromPoint
MoveWindow
GetParent
GetWindowRect
ScrollWindow
GetClassNameA
ShowWindow
SetWindowPos
SetWindowTextA
SetWindowWord
UpdateWindow
WindowFromPoint
GetWindowWord
CallNextHookEx
SetCursorContents
LoadCursorA
CreateAcceleratorTableA
CopyAcceleratorTableA
DestroyAcceleratorTable
GetWindow
ClientToScreen
GetClientRect
GetCursorPos
GetMenu
GetMenuItemCount
GetSysColor
GetSystemMetrics
GetTopWindow
ScreenToClient
IsChild
IsIconic
IsWindowEnabled
IsWindowVisible
IsZoomed
GetKeyboardState
SendIMEMessageExA
WINNLSGetIMEHotkey
WINNLSEnableIME
WINNLSGetEnableStatus
IMPSetIMEA
GetFocus
IMPQueryIMEA
IMPGetIMEA
UnregisterClassA
ShowScrollBar
SetParent
SetActiveWindow
GetWindowTextLengthA
FlashWindow
EnableWindow
CloseWindow
BringWindowToTop
BeginDeferWindowPos
ArrangeIconicWindows
AnyPopup
SwapMouseButton
ShowOwnedPopups
SetScrollRange
SetScrollPos
SetFocus
SetDoubleClickTime
ReleaseCapture
OpenIcon
GetUpdateRgn
GetScrollPos
GetLastActivePopup
GetDoubleClickTime
GetCapture
ExcludeUpdateRgn
DrawIcon
DragObject
WindowFromDC
GetInputState
GetQueueStatus
LockWindowUpdate
GetOpenClipboardWindow
GetCursor
EnableScrollBar
SetMessageExtraInfo
GetMessageExtraInfo
RemovePropA
LookupIconIdFromDirectoryEx
LoadImageA
SetWindowRgn
GetWindowRgn
SetWindowContextHelpId
GetWindowContextHelpId
GetSysColorBrush
SetScrollInfo
GetScrollInfo
UnloadKeyboardLayout
LoadKeyboardLayoutA
GetKeyboardLayoutNameA
GetKeyboardLayoutList
GetKeyboardLayout
ActivateKeyboardLayout
FindWindowExA
DrawIconEx
CreateIconFromResourceEx
SetMenuDefaultItem
GetMenuDefaultItem
advapi32
RegCloseKey
RegOpenKeyExA
RegQueryValueA
RegOpenKeyA
RegSetValueA
RegCreateKeyA
RegEnumKeyA
RegSetValueExA
RegQueryInfoKeyA
RegDeleteKeyA
RegSaveKeyA
RegUnLoadKeyA
RegLoadKeyA
RegFlushKey
RegDeleteValueA
RegEnumValueA
RegQueryValueExA
shell32
DragQueryFileAorW
WOWShellExecute
DragFinish
ExtractIconA
FindExecutableA
ShellAboutA
DragAcceptFiles
SHGetSpecialFolderPathA
comdlg32
ChooseFontA
ReplaceTextA
FindTextA
ChooseColorA
GetSaveFileNameA
GetOpenFileNameA
PrintDlgA
CommDlgExtendedError
Ssync_ANSI_UNICODE_Struct_For_WOW
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
userenv
GetAllUsersProfileDirectoryA
Sections
.text Size: 68KB - Virtual size: 69KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 232KB - Virtual size: 232KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 37KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ