Static task
static1
Behavioral task
behavioral1
Sample
03755e45a72bdefc1e7dd7d253191490.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
03755e45a72bdefc1e7dd7d253191490.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
03755e45a72bdefc1e7dd7d253191490
-
Size
482KB
-
MD5
03755e45a72bdefc1e7dd7d253191490
-
SHA1
7ab53d4966dfabc0c41088bbb69dfb0c7eaa17c0
-
SHA256
8322b63cbc1cbe99979b49534516934438436cebb0137ffb5f0cd586fdd30936
-
SHA512
ea826919187d5571eead7a140def8f3f50187d9437179984a772a6965ff5571bd212bf3f25ee2abd8ae31377f0a09482fe70bca6c7f83b698b16dd3b89c5dfd3
-
SSDEEP
12288:jC8YDYV9IDQLGvn8epgkGKNnZfjt+ZR3oM9+zmfP:gBQkGEbwZRF+zmfP
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 03755e45a72bdefc1e7dd7d253191490
Files
-
03755e45a72bdefc1e7dd7d253191490.exe windows:4 windows x86 arch:x86
2fed0d0bf6d2aa9b5bdfee04da27e6ed
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
GetConsoleOutputCP
DosDateTimeToFileTime
CreateTapePartition
PeekConsoleInputW
CreateEventA
GetDateFormatA
DeleteFileW
CreateSemaphoreW
GetFileAttributesExA
GlobalSize
lstrcpyW
LoadLibraryExW
PeekNamedPipe
ContinueDebugEvent
CopyFileExA
GlobalAddAtomA
AllocConsole
WaitCommEvent
PulseEvent
GetStringTypeA
GlobalUnWire
GetSystemTime
SetFileTime
EnumCalendarInfoW
WriteProcessMemory
GetFileTime
GetPrivateProfileSectionA
FindResourceW
SetConsoleCtrlHandler
SetEndOfFile
GetModuleHandleW
SetComputerNameA
SetLocaleInfoA
GetEnvironmentStringsW
EnumSystemCodePagesA
GetFileInformationByHandle
GetCompressedFileSizeW
FindFirstChangeNotificationA
LockFileEx
FillConsoleOutputAttribute
CreateFileA
SetFileAttributesA
GetCalendarInfoW
OpenEventW
FindResourceExA
CreateSemaphoreA
WriteConsoleInputW
FileTimeToSystemTime
DeleteFiber
DisableThreadLibraryCalls
GetPriorityClass
GetSystemDefaultLCID
SetThreadPriority
EraseTape
InitAtomTable
GetTimeFormatA
FlushFileBuffers
lstrcatA
LocalCompact
LoadModule
Heap32ListFirst
SystemTimeToTzSpecificLocalTime
WaitForSingleObjectEx
SetCriticalSectionSpinCount
GetFileSize
GetDateFormatW
EnumResourceTypesW
WriteConsoleOutputCharacterA
ExpandEnvironmentStringsA
CreateDirectoryW
UpdateResourceW
ReadConsoleA
GlobalFix
SetConsoleMode
InterlockedIncrement
WriteConsoleW
EscapeCommFunction
GetNamedPipeHandleStateA
CreateFileMappingA
GetProcessHeaps
OpenWaitableTimerW
GetConsoleScreenBufferInfo
OpenEventA
SetCurrentDirectoryW
EnumDateFormatsExW
GetAtomNameA
OpenWaitableTimerA
WriteConsoleOutputCharacterW
GetStringTypeExW
VirtualFreeEx
ReadConsoleW
FindFirstFileW
FindClose
GlobalAlloc
SearchPathA
TryEnterCriticalSection
WriteConsoleOutputAttribute
SuspendThread
OpenProcess
SearchPathW
GetThreadLocale
GetVersion
GetFileAttributesA
InterlockedDecrement
ReadFileEx
GetLocalTime
GetProfileIntA
SetCurrentDirectoryA
DeviceIoControl
RtlFillMemory
lstrcmp
TlsFree
ReadDirectoryChangesW
GetPrivateProfileStructA
DefineDosDeviceA
FindNextFileA
ConvertDefaultLocale
FindResourceA
GetProfileSectionA
HeapUnlock
TlsSetValue
RemoveDirectoryW
WaitNamedPipeW
ReadProcessMemory
MultiByteToWideChar
GetACP
lstrcpynW
GlobalFlags
LocalLock
GlobalFindAtomA
CompareStringA
CreateDirectoryExW
CreateDirectoryA
CompareFileTime
lstrlen
GlobalCompact
lstrcpyn
SystemTimeToFileTime
WriteConsoleOutputA
SetConsoleTextAttribute
DeleteAtom
WritePrivateProfileStructA
GetTempFileNameA
IsValidLocale
LoadLibraryW
CreateNamedPipeA
SetSystemTime
ReadConsoleInputA
GetWindowsDirectoryA
lstrcmpiW
CreateWaitableTimerA
HeapWalk
GetEnvironmentVariableW
GetCommandLineA
GetLongPathNameW
GetVersionExW
GetModuleFileNameW
Thread32First
WritePrivateProfileSectionA
EnumDateFormatsW
GetPrivateProfileStringA
GlobalReAlloc
GetProcessHeap
GetNumberOfConsoleInputEvents
GetPrivateProfileIntW
OpenMutexW
CreateMutexW
WaitForDebugEvent
OpenFileMappingA
WriteProfileStringW
EnumCalendarInfoA
ReadConsoleOutputCharacterW
InterlockedExchangeAdd
WaitForMultipleObjects
CreateMailslotA
GetFullPathNameA
GetFullPathNameW
ReadConsoleOutputCharacterA
MoveFileW
WaitNamedPipeA
CreateProcessW
TlsGetValue
LocalHandle
GlobalUnlock
CreateRemoteThread
SetFileAttributesW
GetStdHandle
EnumSystemLocalesA
GetNumberFormatW
FreeResource
GetProfileIntW
HeapDestroy
GetStartupInfoW
EnumResourceLanguagesW
GetLargestConsoleWindowSize
MapViewOfFile
WriteProfileSectionA
lstrcpynA
GetSystemPowerStatus
GetComputerNameW
GetTimeZoneInformation
SetVolumeLabelW
lstrcmpi
GetCurrentDirectoryW
GetPrivateProfileStringW
DebugBreak
WriteFile
GlobalFree
GetComputerNameA
GetLogicalDrives
GetTempPathW
EnumTimeFormatsW
ReleaseSemaphore
CreateFileMappingW
lstrlenW
SetThreadExecutionState
RemoveDirectoryA
SetFilePointer
HeapValidate
SetSystemTimeAdjustment
CreateFileW
TransmitCommChar
Thread32Next
GetStartupInfoA
lstrcmpA
LocalUnlock
GetUserDefaultLangID
CreateEventW
GetProfileStringA
FlushInstructionCache
GetFileAttributesW
UnhandledExceptionFilter
GetConsoleTitleW
CreateMutexA
GetLogicalDriveStringsA
user32
RemovePropW
TranslateAcceleratorW
SetDeskWallpaper
LoadMenuA
SetDlgItemTextA
DestroyIcon
PostMessageW
TrackPopupMenu
SetThreadDesktop
DdeInitializeW
FindWindowExW
EndTask
EnumDisplaySettingsExW
UnregisterClassW
CreateIconIndirect
LockWindowUpdate
EnumDisplayDevicesA
IsDialogMessage
GetWindowDC
SetMessageQueue
SubtractRect
VkKeyScanExA
RegisterClassW
WINNLSGetIMEHotkey
BringWindowToTop
DdeDisconnect
IsDialogMessageA
TileWindows
CharPrevExA
GetAncestor
GetWindowTextA
SetSysColors
GetClipboardOwner
SetWindowContextHelpId
SetUserObjectInformationA
OpenWindowStationW
ClientToScreen
CallMsgFilterW
EnumClipboardFormats
SendMessageTimeoutA
DrawStateA
InflateRect
InSendMessage
DrawStateW
OpenClipboard
DefDlgProcA
ShowCaret
UnhookWinEvent
GetUpdateRect
IsCharLowerW
IsMenu
UnloadKeyboardLayout
GetMessagePos
ChildWindowFromPoint
DestroyCursor
MsgWaitForMultipleObjects
GetCursorInfo
SetWindowTextA
DdeCreateStringHandleW
GetLastActivePopup
GetMenuStringW
GetNextDlgTabItem
GetKeyboardType
UnregisterDeviceNotification
MessageBoxExW
LoadAcceleratorsA
GetUserObjectInformationA
ArrangeIconicWindows
FillRect
SetCursor
GetOpenClipboardWindow
ToUnicodeEx
GetWindowPlacement
EnumThreadWindows
GetKeyState
GetClipboardSequenceNumber
GetScrollBarInfo
FindWindowW
FindWindowExA
BroadcastSystemMessageW
ExcludeUpdateRgn
DdeQueryStringW
WaitMessage
GetCaretBlinkTime
SetClassLongW
DlgDirListW
GetClassInfoA
PtInRect
IsCharUpperW
KillTimer
ReleaseCapture
SendNotifyMessageA
EnumPropsA
SetClassWord
GetCursorPos
CloseClipboard
OemToCharA
LoadAcceleratorsW
CloseWindowStation
CloseWindow
WinHelpW
GetWindow
GrayStringW
UnpackDDElParam
GetCursor
CreateMDIWindowA
GetCaretPos
ToUnicode
OpenInputDesktop
MessageBoxA
CharPrevW
MapDialogRect
GetClipboardFormatNameW
InvalidateRgn
EnumDisplaySettingsA
GetPriorityClipboardFormat
GetMenuDefaultItem
SetWindowsHookExA
ScrollDC
CharNextA
CallMsgFilter
CreateDialogParamW
AttachThreadInput
comdlg32
GetFileTitleA
GetSaveFileNameW
ChooseFontA
ChooseColorA
GetFileTitleW
PageSetupDlgW
FindTextA
PrintDlgW
GetSaveFileNameA
GetOpenFileNameA
PrintDlgA
ReplaceTextW
FindTextW
LoadAlterBitmap
ReplaceTextA
GetOpenFileNameW
gdi32
GetViewportOrgEx
SetArcDirection
OffsetClipRgn
CloseEnhMetaFile
FillPath
DPtoLP
EnumFontFamiliesW
GetBkColor
FixBrushOrgEx
AngleArc
StrokeAndFillPath
ScaleWindowExtEx
SetMiterLimit
GetOutlineTextMetricsA
GetStretchBltMode
CopyMetaFileW
GetCurrentPositionEx
SetTextCharacterExtra
GetDeviceGammaRamp
PatBlt
InvertRgn
EnumFontFamiliesA
OffsetRgn
SetPaletteEntries
ExtSelectClipRgn
PlgBlt
SetFontEnumeration
GetBoundsRect
EndDoc
ResizePalette
GetTextFaceW
GetEnhMetaFileBits
PolylineTo
LineDDA
GetTextExtentPointW
FillRgn
GetTextColor
PlayMetaFileRecord
OffsetViewportOrgEx
SetBoundsRect
CreateRoundRectRgn
SetPolyFillMode
ColorMatchToTarget
EnumEnhMetaFile
SetBkColor
EnableEUDC
GetMetaFileBitsEx
GetCharWidth32A
CreateHalftonePalette
GetNearestPaletteIndex
SetICMMode
GetCharABCWidthsA
GetCharABCWidthsFloatW
CreateDiscardableBitmap
RectVisible
GetTextExtentExPointW
ArcTo
SelectClipRgn
GetDeviceCaps
GdiSetBatchLimit
CreateFontIndirectA
CreatePatternBrush
PolyTextOutA
GetPixelFormat
ExtEscape
LPtoDP
ExtCreateRegion
PolyBezier
GetBkMode
SetBrushOrgEx
GetCharABCWidthsFloatA
PaintRgn
SetBkMode
GetTextAlign
DrawEscape
CreateDIBitmap
PolyBezierTo
DeleteMetaFile
SetViewportOrgEx
EnumMetaFile
BitBlt
CreateScalableFontResourceA
GetICMProfileW
CreateBitmap
GetPath
GetBitmapBits
TextOutW
GetLayout
CloseFigure
CreateRectRgn
RoundRect
ExcludeClipRect
GetCharWidth32W
SetTextAlign
AbortPath
DeviceCapabilitiesExW
GetObjectW
AddFontResourceW
UpdateColors
CreateDCA
UpdateICMRegKeyW
GetLogColorSpaceA
OffsetWindowOrgEx
CombineTransform
SelectPalette
CreatePalette
GetEnhMetaFilePaletteEntries
RealizePalette
GetCharWidthW
GetViewportExtEx
GetObjectType
CreatePen
RectInRegion
FrameRgn
CreateFontIndirectW
ModifyWorldTransform
Arc
GetTextExtentPointA
SetTextColor
GetWorldTransform
ResetDCW
GetMetaFileW
GetRandomRgn
GetSystemPaletteUse
EnumFontsW
RemoveFontResourceA
SetTextJustification
SetMetaFileBitsEx
PathToRegion
GetBrushOrgEx
GetCharacterPlacementA
CreateFontA
GetTextFaceA
GetCharWidthFloatA
SetDeviceGammaRamp
DeleteDC
ResetDCA
GetGlyphOutlineA
CreateEllipticRgnIndirect
Ellipse
CreateColorSpaceW
RemoveFontResourceW
CopyEnhMetaFileW
CreatePenIndirect
SetLayout
CreateDIBPatternBrushPt
GetKerningPairs
GetSystemPaletteEntries
EnumFontFamiliesExA
SetICMProfileA
AnimatePalette
Polyline
gdiPlaySpoolStream
CancelDC
GetTextCharacterExtra
CreateICA
GetStockObject
StartPage
GetObjectA
GetCharWidthA
CreateColorSpaceA
CloseMetaFile
GetClipBox
CreateCompatibleDC
GetEnhMetaFileDescriptionA
SetWindowOrgEx
GetTextExtentExPointA
GetMetaFileA
CreateScalableFontResourceW
SetWinMetaFileBits
GetFontData
Rectangle
PtVisible
StretchBlt
DescribePixelFormat
SetICMProfileW
EnumICMProfilesA
GetEnhMetaFileW
UnrealizeObject
ColorCorrectPalette
SetBitmapDimensionEx
PolyPolygon
CreateEllipticRgn
WidenPath
TranslateCharsetInfo
SetSystemPaletteUse
CheckColorsInGamut
GetWinMetaFileBits
GetDIBColorTable
SetROP2
CreateICW
Escape
StretchDIBits
SetWindowExtEx
SetAbortProc
SetDIBColorTable
SetPixelFormat
SetGraphicsMode
SetBitmapBits
PlayEnhMetaFile
ChoosePixelFormat
AbortDoc
StrokePath
RestoreDC
GetPaletteEntries
PolyTextOutW
GetCharWidthFloatW
EqualRgn
GetDCOrgEx
StartDocW
GetColorAdjustment
IntersectClipRect
GetPolyFillMode
CreateSolidBrush
GetLogColorSpaceW
MoveToEx
Chord
GetCurrentObject
GetTextExtentPoint32A
advapi32
CryptEnumProviderTypesA
CryptDeriveKey
CryptVerifySignatureA
RegDeleteValueA
RegCreateKeyExW
CryptDestroyHash
CryptAcquireContextA
RegQueryInfoKeyA
CryptSetProviderW
CryptCreateHash
InitiateSystemShutdownW
RegOpenKeyA
RegSetValueExA
RegConnectRegistryW
RegQueryMultipleValuesW
RegCreateKeyExA
CryptDuplicateKey
RegRestoreKeyA
CryptReleaseContext
RegLoadKeyA
RegSaveKeyA
CryptSetProvParam
CryptSignHashA
CryptHashSessionKey
RegNotifyChangeKeyValue
CryptGetKeyParam
RegDeleteKeyA
LookupPrivilegeNameA
CryptGetDefaultProviderA
CreateServiceA
CryptContextAddRef
LookupPrivilegeValueA
CryptExportKey
AbortSystemShutdownW
LookupPrivilegeDisplayNameA
CryptSetKeyParam
CryptGenRandom
RegQueryValueA
RegFlushKey
LogonUserA
LogonUserW
RegEnumValueW
RegCreateKeyA
RegQueryValueW
CryptSetProviderA
CryptGenKey
RegQueryInfoKeyW
RegOpenKeyExA
RegSetValueExW
InitializeSecurityDescriptor
RegConnectRegistryA
InitiateSystemShutdownA
LookupAccountSidA
LookupAccountNameW
RegLoadKeyW
RegReplaceKeyW
LookupPrivilegeDisplayNameW
CryptEnumProvidersA
RegDeleteValueW
GetUserNameW
RegReplaceKeyA
LookupAccountSidW
CryptDecrypt
StartServiceA
RegOpenKeyExW
RegDeleteKeyW
CryptSignHashW
RegOpenKeyW
RegEnumKeyExW
CryptDuplicateHash
DuplicateTokenEx
CreateServiceW
RegSaveKeyW
RegCreateKeyW
CryptGetHashParam
CryptEnumProviderTypesW
DuplicateToken
CryptGetProvParam
CryptHashData
RegEnumKeyW
RegSetValueW
RegEnumKeyA
CryptSetProviderExA
CryptImportKey
GetUserNameA
CryptEnumProvidersW
RegQueryMultipleValuesA
RegRestoreKeyW
RevertToSelf
wininet
FtpOpenFileW
InternetOpenUrlA
FindNextUrlCacheEntryW
IsHostInProxyBypassList
SetUrlCacheEntryGroupA
HttpAddRequestHeadersA
DeleteUrlCacheEntryW
FtpGetFileEx
InternetTimeFromSystemTime
FtpPutFileEx
ShowX509EncodedCertificate
InternetSetCookieW
FtpRemoveDirectoryA
FtpDeleteFileA
InternetSetOptionA
HttpQueryInfoW
SetUrlCacheGroupAttributeW
InternetCrackUrlW
GetUrlCacheEntryInfoA
InternetCheckConnectionW
InternetQueryOptionA
SetUrlCacheConfigInfoA
InternetCanonicalizeUrlA
FindFirstUrlCacheContainerW
InternetSetDialStateW
FtpGetCurrentDirectoryA
FindFirstUrlCacheEntryW
InternetWriteFileExA
SetUrlCacheEntryGroupW
InternetShowSecurityInfoByURLW
CreateUrlCacheEntryA
FtpGetFileW
ShowClientAuthCerts
ShowSecurityInfo
InternetGetConnectedState
FtpCommandW
InternetOpenUrlW
SetUrlCacheConfigInfoW
GetUrlCacheGroupAttributeW
InternetCloseHandle
GetUrlCacheEntryInfoExA
InternetSetCookieA
RetrieveUrlCacheEntryStreamW
InternetTimeFromSystemTimeA
HttpOpenRequestW
LoadUrlCacheContent
GetUrlCacheEntryInfoW
DeleteUrlCacheContainerA
FindFirstUrlCacheGroup
InternetAlgIdToStringA
InternetAutodialHangup
InternetAttemptConnect
GopherOpenFileW
InternetConfirmZoneCrossing
FindNextUrlCacheGroup
FindNextUrlCacheContainerA
HttpEndRequestW
CreateUrlCacheContainerW
FtpRenameFileW
ResumeSuspendedDownload
FindNextUrlCacheEntryA
InternetGetCertByURL
RetrieveUrlCacheEntryStreamA
RegisterUrlCacheNotification
FindFirstUrlCacheContainerA
IsUrlCacheEntryExpiredW
InternetCombineUrlA
InternetSetDialState
InternetGetCertByURLA
InternetAlgIdToStringW
GetUrlCacheConfigInfoW
InternetGetConnectedStateEx
InternetTimeToSystemTime
HttpSendRequestA
SetUrlCacheEntryInfoA
FindCloseUrlCache
HttpCheckDavCompliance
IsUrlCacheEntryExpiredA
GetUrlCacheConfigInfoA
GopherGetLocatorTypeW
InternetOpenW
FreeUrlCacheSpaceW
FtpCreateDirectoryA
FtpCreateDirectoryW
InternetConnectA
SetUrlCacheHeaderData
InternetDialA
CommitUrlCacheEntryW
FtpOpenFileA
GetUrlCacheEntryInfoExW
InternetConfirmZoneCrossingA
InternetGetCookieA
UnlockUrlCacheEntryStream
InternetInitializeAutoProxyDll
InternetLockRequestFile
InternetGetConnectedStateExA
DetectAutoProxyUrl
GetUrlCacheGroupAttributeA
InternetGetLastResponseInfoW
GopherGetAttributeA
ReadUrlCacheEntryStream
FtpGetFileSize
FtpDeleteFileW
InternetSecurityProtocolToStringA
HttpQueryInfoA
FindFirstUrlCacheEntryExA
InternetReadFileExW
InternetGoOnlineA
InternetDial
DeleteUrlCacheEntry
CommitUrlCacheEntryA
UnlockUrlCacheEntryFile
CreateUrlCacheEntryW
InternetCreateUrlW
FtpPutFileW
UrlZonesDetach
InternetGetConnectedStateExW
InternetSecurityProtocolToStringW
HttpAddRequestHeadersW
InternetErrorDlg
HttpSendRequestW
FtpCommandA
InternetUnlockRequestFile
SetUrlCacheEntryGroup
InternetConfirmZoneCrossingW
InternetHangUp
InternetGoOnline
RetrieveUrlCacheEntryFileW
InternetCanonicalizeUrlW
InternetFortezzaCommand
FtpGetFileA
HttpSendRequestExW
InternetCrackUrlA
InternetWriteFile
DeleteUrlCacheContainerW
DeleteUrlCacheEntryA
CreateUrlCacheContainerA
GopherCreateLocatorA
InternetShowSecurityInfoByURL
InternetSetOptionExW
InternetSetDialStateA
InternetSetOptionExA
InternetCreateUrlA
UpdateUrlCacheContentPath
InternetSetOptionW
GopherCreateLocatorW
FtpSetCurrentDirectoryW
HttpEndRequestA
InternetWriteFileExW
InternetQueryOptionW
SetUrlCacheEntryInfoW
FtpFindFirstFileA
CreateUrlCacheGroup
IncrementUrlCacheHeaderData
InternetCombineUrlW
InternetFindNextFileW
FtpPutFileA
GopherOpenFileA
DeleteIE3Cache
InternetQueryDataAvailable
InternetCheckConnectionA
FreeUrlCacheSpaceA
RunOnceUrlCache
GetUrlCacheHeaderData
FindFirstUrlCacheEntryA
InternetConnectW
UnlockUrlCacheEntryFileA
InternetFindNextFileA
FindNextUrlCacheEntryExW
InternetReadFileExA
InternetTimeFromSystemTimeW
ShowCertificate
InternetQueryFortezzaStatus
FtpSetCurrentDirectoryA
FindNextUrlCacheEntryExA
FindFirstUrlCacheEntryExW
InternetGoOnlineW
InternetSetFilePointer
InternetTimeToSystemTimeA
FtpGetCurrentDirectoryW
InternetReadFile
GopherFindFirstFileA
InternetOpenA
InternetAutodial
GopherGetAttributeW
InternetGetLastResponseInfoA
FtpRenameFileA
FtpRemoveDirectoryW
HttpSendRequestExA
FtpFindFirstFileW
UnlockUrlCacheEntryFileW
Sections
.text Size: 182KB - Virtual size: 181KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 272KB - Virtual size: 271KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 27KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ