Static task
static1
Behavioral task
behavioral1
Sample
00d488af5b98567e708eedcb168b2a48.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
00d488af5b98567e708eedcb168b2a48.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
00d488af5b98567e708eedcb168b2a48
-
Size
468KB
-
MD5
00d488af5b98567e708eedcb168b2a48
-
SHA1
b6e53cea5344e8827889e8279b9fed3bc892e715
-
SHA256
8a075575c111fc827e51de1887e288bb58b2c1f0129acf0c33a9505a2473eca7
-
SHA512
59b9187a2066f5edcdb37d453aa931debaefd4e0a5b849e9ded737bae94a9b88dd7ae413ce93714c3a173d4177d54406afeb10e76c67ab7dc813acb5fa9f01ac
-
SSDEEP
6144:IVC07/poAs1TpGz5i+UojNbYFTpB9Fxi1Zv1744dHUrk7bzS/suUuQU/ZZ/N0nTW:S37/OARzJjNsFTYvS4t4FhUuQUBPcW
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 00d488af5b98567e708eedcb168b2a48
Files
-
00d488af5b98567e708eedcb168b2a48.exe windows:4 windows x86 arch:x86
04eef33c38f543f57b56892d3813c16d
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
ImageList_DragLeave
ImageList_DragMove
ImageList_GetIconSize
ImageList_Read
ImageList_Remove
ImageList_SetBkColor
ImageList_GetIcon
ImageList_DragShowNolock
ImageList_ReplaceIcon
ImageList_Replace
ord17
ImageList_Add
DestroyPropertySheetPage
ImageList_GetImageCount
ImageList_Write
PropertySheetA
PropertySheetW
ImageList_LoadImageA
ImageList_AddMasked
InitCommonControlsEx
CreateStatusWindowW
CreatePropertySheetPageA
ImageList_Destroy
ImageList_EndDrag
ImageList_LoadImageW
ImageList_DragEnter
ImageList_SetOverlayImage
ImageList_BeginDrag
ImageList_GetImageInfo
_TrackMouseEvent
ImageList_SetImageCount
ImageList_Create
ImageList_Draw
ole32
OleDestroyMenuDescriptor
OleIsRunning
CoFreeUnusedLibraries
CreateOleAdviseHolder
GetRunningObjectTable
OleGetClipboard
OleCreateStaticFromData
CoTreatAsClass
CreateBindCtx
OleSetContainedObject
CLSIDFromString
OleSetClipboard
CoRevokeClassObject
OleInitialize
DoDragDrop
CoCreateInstance
CLSIDFromProgID
ReleaseStgMedium
OleUninitialize
CoTaskMemAlloc
CoMarshalInterThreadInterfaceInStream
CoDisconnectObject
CoRegisterMessageFilter
CoTaskMemFree
CoLockObjectExternal
OleTranslateAccelerator
CreateDataAdviseHolder
StgOpenStorage
StgIsStorageILockBytes
StringFromGUID2
OleRegGetMiscStatus
StgOpenStorageOnILockBytes
CreateItemMoniker
OleRegEnumVerbs
OleSave
CoInitialize
OleRegGetUserType
GetClassFile
CreateFileMoniker
OleSetMenuDescriptor
OleDuplicateData
CreateStreamOnHGlobal
WriteClassStg
ReadClassStg
CoGetInterfaceAndReleaseStream
GetHGlobalFromILockBytes
OleCreateFromFile
OleCreateFromData
OleCreateLinkToFile
CoUninitialize
OleQueryLinkFromData
OleCreateLinkFromData
WriteFmtUserTypeStg
CreateGenericComposite
OleIsCurrentClipboard
RegisterDragDrop
CoInitializeEx
SetConvertStg
WriteClassStm
OleCreateMenuDescriptor
OleFlushClipboard
OleLockRunning
CoGetMalloc
CoGetClassObject
StringFromCLSID
OleCreate
StgCreateDocfile
OleQueryCreateFromData
IsAccelerator
ReadFmtUserTypeStg
OleGetIconOfClass
CoRegisterClassObject
user32
RegisterWindowMessageA
GetClassInfoA
ValidateRect
CopyRect
DefMDIChildProcA
EndDeferWindowPos
wsprintfA
GetWindowTextLengthW
ChangeClipboardChain
ShowWindow
ScreenToClient
TabbedTextOutA
RegisterClipboardFormatA
EndPaint
GetClassInfoW
SetWindowTextW
IsDlgButtonChecked
GetClipboardFormatNameW
SetActiveWindow
RedrawWindow
DefDlgProcA
DrawIcon
DrawTextW
GetSysColor
RegisterClassW
GetKeyNameTextA
GetWindow
CallWindowProcA
CreateWindowExA
InvalidateRect
OemToCharA
LoadStringA
EnableWindow
wvsprintfW
OffsetRect
RegisterClipboardFormatW
CopyIcon
MapWindowPoints
OemToCharBuffA
LoadAcceleratorsA
PeekMessageA
IntersectRect
CloseClipboard
PostThreadMessageA
ReuseDDElParam
SetPropA
ChildWindowFromPoint
EndDialog
GetIconInfo
DefWindowProcA
DeferWindowPos
DestroyMenu
RegisterClassExA
CreateAcceleratorTableA
SystemParametersInfoA
LoadCursorW
DrawTextExW
SetFocus
MessageBeep
GetAsyncKeyState
RemovePropW
PostMessageA
GetWindowTextA
GetClientRect
LockWindowUpdate
SetMenuDefaultItem
CreatePopupMenu
EnableMenuItem
GetTopWindow
CheckMenuItem
WindowFromPoint
TrackPopupMenu
RemoveMenu
SetTimer
UnhookWindowsHookEx
GetWindowTextW
CreateDialogIndirectParamA
wsprintfW
GetNextDlgGroupItem
SetClassLongW
CharUpperW
IsDialogMessageW
ScrollWindow
ShowScrollBar
EnumWindows
GetSystemMenu
SetRect
SetWindowTextA
GrayStringA
CharUpperA
EqualRect
TabbedTextOutW
GrayStringW
UpdateWindow
SetMenuItemBitmaps
ModifyMenuW
LoadCursorA
DestroyIcon
SetRectEmpty
WinHelpW
HideCaret
WaitMessage
IsWindow
SendMessageA
SetWindowLongA
CloseWindow
CreateMenu
InsertMenuW
GetDC
SetWindowsHookExA
IsWindowEnabled
KillTimer
DestroyCursor
GetMenuItemCount
GetMenuItemInfoW
GetKeyState
GetWindowDC
FindWindowW
ReleaseCapture
GetSystemMetrics
UnregisterClassA
PtInRect
GetSubMenu
TranslateMessage
InvertRect
MapVirtualKeyA
CharToOemA
ToAscii
ExcludeUpdateRgn
ClientToScreen
SetCaretPos
GetMessageA
GetDlgCtrlID
GetClipboardFormatNameA
IsWindowVisible
DispatchMessageA
GetKeyNameTextW
GetWindowTextLengthA
LoadBitmapA
SetWindowRgn
GetClassNameW
LoadIconA
BeginDeferWindowPos
SetScrollInfo
GetWindowRect
LoadMenuA
DrawFrameControl
GetTabbedTextExtentA
DrawStateW
MoveWindow
UnpackDDElParam
GetMessageW
GetActiveWindow
RemovePropA
GetWindowLongA
GetScrollInfo
SetParent
LoadMenuW
GetMenuDefaultItem
SetWindowPlacement
GetClipboardData
ModifyMenuA
SetWindowsHookExW
AdjustWindowRectEx
CreateWindowExW
PostQuitMessage
SetWindowPos
InvalidateRgn
DeleteMenu
FindWindowA
GetMenuState
MapDialogRect
InSendMessage
CallWindowProcW
LoadImageW
SetMenu
LoadImageA
GetCapture
GetMenuItemID
TrackPopupMenuEx
TranslateMDISysAccel
GetNextDlgTabItem
FillRect
IsRectEmpty
GetWindowRgn
BringWindowToTop
RegisterWindowMessageW
SetDlgItemTextA
GetMessagePos
IsMenu
IsZoomed
DrawTextExA
SetForegroundWindow
ScrollDC
IsClipboardFormatAvailable
GetMenu
GetWindowLongW
GetMenuStringA
DrawFocusRect
DispatchMessageW
GetForegroundWindow
DestroyWindow
MessageBoxA
FrameRect
DestroyCaret
CharNextA
UnregisterClassW
GetMenuCheckMarkDimensions
DefWindowProcW
GetClassNameA
DrawIconEx
OpenClipboard
GetWindowPlacement
SetScrollRange
GetMessageTime
IsChild
CallNextHookEx
GetDCEx
SetCursor
DrawEdge
ReleaseDC
GetCursorPos
BeginPaint
GetDlgItem
GetDesktopWindow
IsIconic
GetClassInfoExA
GetParent
CheckMenuRadioItem
IsWindowUnicode
SetCapture
GetWindowThreadProcessId
MsgWaitForMultipleObjects
DrawMenuBar
DrawTextA
SendDlgItemMessageW
WindowFromDC
MessageBoxW
GetSysColorBrush
RegisterClassA
EnableScrollBar
UnionRect
SendDlgItemMessageA
CheckDlgButton
oleaut32
LoadTypeLi
gdi32
SetTextJustification
MoveToEx
ResizePalette
StartPage
CreateDIBitmap
CreateFontIndirectA
GetTextCharacterExtra
GetTextMetricsA
CreateCompatibleBitmap
RestoreDC
CreateDiscardableBitmap
SetMapperFlags
Arc
GetROP2
ExtEscape
PolyPolyline
EnumFontsA
CopyMetaFileW
TextOutA
CreateHatchBrush
CloseFigure
DeleteEnhMetaFile
PolyPolygon
Chord
GdiFlush
DeleteDC
SetBitmapBits
SetViewportOrgEx
Polygon
GetObjectType
GetDIBits
SetViewportExtEx
OffsetRgn
SetTextColor
DPtoLP
ScaleViewportExtEx
InvertRgn
CreateICA
ArcTo
SetRectRgn
GetTextExtentPoint32A
UnrealizeObject
StrokeAndFillPath
GetKerningPairsA
RectInRegion
GetTextFaceW
GetCharWidthA
StretchDIBits
CreateRoundRectRgn
SetColorAdjustment
ExtTextOutW
GetCurrentPositionEx
IntersectClipRect
OffsetClipRgn
SelectPalette
GetBitmapBits
GetViewportOrgEx
CreateBrushIndirect
GetStockObject
OffsetViewportOrgEx
GetRegionData
CreateFontA
GetSystemPaletteEntries
GetArcDirection
GetCharABCWidthsA
SetPolyFillMode
SaveDC
GetPixel
CreateEllipticRgn
PolyBezierTo
GetCharABCWidthsFloatA
PtInRegion
GetMapMode
EnumFontFamiliesA
SelectObject
EnumObjects
EnumMetaFile
SetMapMode
GetTextExtentPoint32W
SetAbortProc
GetTextMetricsW
CombineRgn
CreatePatternBrush
CreateDIBPatternBrushPt
CreateFontIndirectW
CreateRectRgn
Rectangle
GetPolyFillMode
GetDeviceCaps
DeleteObject
AbortPath
CreateBitmapIndirect
StretchBlt
GetTextExtentPointW
StartDocA
PolyBezier
GetBrushOrgEx
GetCharABCWidthsW
PlayEnhMetaFile
WidenPath
PatBlt
GetClipRgn
UpdateColors
PaintRgn
GetRgnBox
SelectClipPath
ResetDCA
PolyDraw
MaskBlt
GetFontData
SetROP2
GetObjectW
SetMiterLimit
CreateHalftonePalette
SetBrushOrgEx
CloseMetaFile
GetTextColor
SetTextCharacterExtra
CreatePen
PtVisible
GetViewportExtEx
PlayMetaFile
CreateSolidBrush
GetNearestColor
EqualRgn
ExcludeClipRect
GetColorAdjustment
GetGlyphOutlineA
DeleteMetaFile
FlattenPath
Ellipse
PolylineTo
CreateCompatibleDC
EndDoc
AngleArc
RealizePalette
SetPixelV
GetAspectRatioFilterEx
SetTextAlign
CreateDCA
SetPaletteEntries
ExtTextOutA
GetEnhMetaFileHeader
GetMiterLimit
SetWindowOrgEx
RoundRect
PathToRegion
PlayMetaFileRecord
AbortDoc
CreateICW
DrawEscape
ScaleWindowExtEx
GetBkColor
GetTextFaceA
CreateFontW
GdiComment
EnumFontFamiliesExA
GetNearestPaletteIndex
SetStretchBltMode
GetCharWidthFloatA
CreateEllipticRgnIndirect
GetClipBox
RectVisible
GetPaletteEntries
SetPixel
SetBoundsRect
CreateEnhMetaFileA
Escape
ExtSelectClipRgn
GetBkMode
CreateMetaFileA
CreateDIBSection
CopyMetaFileA
ExtCreatePen
SetBkColor
SetArcDirection
LineTo
GetPath
Polyline
GetTextExtentPointA
EndPath
FloodFill
GetStretchBltMode
StrokePath
CloseEnhMetaFile
EndPage
CreateRectRgnIndirect
SetDIBitsToDevice
FillPath
SetBkMode
AnimatePalette
SetDIBits
GetObjectA
CreatePolygonRgn
PlgBlt
ExtCreateRegion
ExtFloodFill
GetTextAlign
GetWindowExtEx
FillRgn
SelectClipRgn
GetWindowOrgEx
GetCurrentObject
SetWindowExtEx
CreatePalette
Pie
CreateBitmap
FrameRgn
BitBlt
CreatePenIndirect
GetCharWidthW
BeginPath
LPtoDP
wininet
FtpOpenFileW
InternetQueryOptionA
InternetConnectA
InternetReadFile
InternetOpenA
InternetCanonicalizeUrlA
InternetQueryDataAvailable
InternetSetFilePointer
InternetCheckConnectionW
HttpQueryInfoW
InternetGetCookieA
InternetGetConnectedState
HttpQueryInfoA
InternetCloseHandle
FtpFindFirstFileW
HttpAddRequestHeadersA
HttpSendRequestA
InternetOpenUrlW
InternetOpenW
InternetSetCookieA
InternetErrorDlg
HttpOpenRequestW
FtpCreateDirectoryA
HttpOpenRequestA
FtpGetFileSize
InternetTimeToSystemTimeW
advapi32
RegOpenKeyExA
RegSetValueExA
LookupAccountSidW
StartServiceCtrlDispatcherW
RegEnumValueA
DeregisterEventSource
SetSecurityDescriptorDacl
GetUserNameA
RevertToSelf
FreeSid
OpenServiceA
AddAccessAllowedAce
RegCreateKeyA
RegQueryValueA
RegCloseKey
IsValidSecurityDescriptor
RegCreateKeyExW
RegEnumKeyExW
RegEnumKeyExA
GetTokenInformation
RegisterServiceCtrlHandlerA
RegDeleteValueA
SetEntriesInAclW
RegEnumKeyA
ControlService
RegSetValueA
RegEnumValueW
GetFileSecurityA
OpenThreadToken
RegQueryValueExW
RegDeleteKeyW
StartServiceA
EqualSid
GetAclInformation
RegDeleteValueW
RegOpenKeyExW
InitializeSecurityDescriptor
DeleteAce
RegOpenCurrentUser
CopySid
CreateProcessAsUserA
RegSetKeySecurity
DeleteService
RegOpenKeyA
IsValidSid
SetSecurityDescriptorOwner
RegDeleteKeyA
InitializeAcl
RegSetValueExW
AdjustTokenPrivileges
OpenSCManagerA
RegQueryValueExA
RegCreateKeyExA
LookupPrivilegeValueA
OpenProcessToken
RegQueryInfoKeyW
SetSecurityDescriptorGroup
CloseServiceHandle
AllocateAndInitializeSid
GetLengthSid
AccessCheck
RegisterServiceCtrlHandlerW
winspool.drv
AddPrinterA
GetPrinterA
GetPrinterDriverDirectoryA
ord204
DeviceCapabilitiesA
EnumPrintersA
SetPrinterA
OpenPrinterA
ClosePrinter
DocumentPropertiesA
EnumJobsA
AddPrinterDriverA
EnumPrinterDriversA
kernel32
GetThreadLocale
lstrcpynA
SetErrorMode
RaiseException
GetModuleFileNameW
GetVersion
SetEndOfFile
LocalReAlloc
LoadLibraryA
GetDiskFreeSpaceExA
DeleteFileW
GetLastError
EnumResourceLanguagesA
GetProfileStringA
lstrcpyW
LoadLibraryW
InterlockedExchange
GlobalAddAtomA
GetCurrentDirectoryA
ReleaseMutex
CreateProcessA
WritePrivateProfileStringA
TlsFree
GetVolumeInformationA
InitializeCriticalSectionAndSpinCount
TlsSetValue
GetLocaleInfoA
GetCPInfo
GetCurrentProcessId
SearchPathA
FindClose
WriteConsoleA
FindNextFileA
WinExec
CreateMutexA
FreeResource
GetStringTypeA
GlobalReAlloc
GetSystemDirectoryA
lstrcpyA
TerminateProcess
CompareStringW
CopyFileA
IsBadWritePtr
FindResourceExA
WideCharToMultiByte
CreateSemaphoreA
ResumeThread
GetEnvironmentStrings
CreateEventW
GetFullPathNameA
TlsAlloc
InterlockedDecrement
lstrcmpA
GetExitCodeProcess
QueryPerformanceCounter
HeapCreate
GetTempFileNameA
VirtualAlloc
GetVersionExW
GlobalUnlock
MultiByteToWideChar
GetTempPathA
WriteFile
SizeofResource
LockFile
LeaveCriticalSection
UnlockFile
SetFileTime
SuspendThread
FormatMessageA
VirtualFree
GlobalGetAtomNameA
GetSystemTime
GetFileTime
FindFirstFileA
FreeEnvironmentStringsA
lstrlenA
GetCommandLineA
GetDriveTypeA
VirtualQuery
GetModuleFileNameA
IsValidCodePage
ExitProcess
SetEnvironmentVariableA
GetPrivateProfileIntA
SetUnhandledExceptionFilter
lstrlenW
CreateThread
FatalAppExitA
GetProcessTimes
ExitThread
SetLastError
GetStartupInfoA
FileTimeToLocalFileTime
OpenProcess
IsBadReadPtr
UnhandledExceptionFilter
GlobalDeleteAtom
GetCurrentProcess
LocalFree
GlobalAlloc
GetEnvironmentVariableW
GetFileSize
GetFileType
FindNextFileW
Sleep
HeapFree
HeapReAlloc
GetProcAddress
GetDateFormatW
GetFileAttributesW
InterlockedIncrement
TlsGetValue
GetNumberFormatA
SetStdHandle
FindFirstFileW
DeleteCriticalSection
GetStringTypeW
VirtualProtect
DuplicateHandle
CreateDirectoryA
EnterCriticalSection
GetSystemInfo
MoveFileW
GetACP
RtlUnwind
WritePrivateProfileStringW
CreateFileMappingA
SetCurrentDirectoryA
GetSystemTimeAsFileTime
FormatMessageW
InterlockedCompareExchange
GlobalFree
GetTempFileNameW
GetTempPathW
EnumSystemLocalesA
GetDateFormatA
ReadFile
CompareStringA
FlushFileBuffers
WaitForSingleObject
LCMapStringW
CreateEventA
SetFileAttributesA
FileTimeToDosDateTime
GetCurrentThreadId
GetModuleHandleW
GlobalHandle
HeapDestroy
GetProcessVersion
GetOEMCP
GetCurrentThread
FreeEnvironmentStringsW
GetPrivateProfileStringA
OpenFile
IsValidLocale
FreeLibrary
LoadLibraryExW
LocalAlloc
DeleteFileA
GetFileAttributesA
GetTickCount
GetStdHandle
lstrcmpiA
WriteConsoleW
MulDiv
CreateDirectoryW
GetWindowsDirectoryW
GetEnvironmentVariableA
GetLogicalDrives
GetEnvironmentStringsW
FindResourceW
GetShortPathNameA
InitializeCriticalSection
GetModuleHandleA
FindResourceA
lstrcatA
GetLongPathNameW
LocalFileTimeToFileTime
GetTimeZoneInformation
CreateFileW
GlobalLock
GetWindowsDirectoryA
HeapSize
LCMapStringA
lstrcmpW
CloseHandle
SetEvent
LoadResource
HeapAlloc
CreateFileA
SetFilePointer
IsBadCodePtr
GetLocalTime
GetUserDefaultLangID
GetLocaleInfoW
SystemTimeToFileTime
GetVersionExA
FileTimeToSystemTime
PeekNamedPipe
OpenMutexA
SetHandleCount
Sections
.text Size: 84KB - Virtual size: 81KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 272KB - Virtual size: 268KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 92KB - Virtual size: 94KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ