Static task
static1
Behavioral task
behavioral1
Sample
1936dac8cacacf43ddf19ef29b3769e7.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
1936dac8cacacf43ddf19ef29b3769e7.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
1936dac8cacacf43ddf19ef29b3769e7
-
Size
264KB
-
MD5
1936dac8cacacf43ddf19ef29b3769e7
-
SHA1
022bc11b27c90af21edcd20c827a750349954eaf
-
SHA256
be6aa687e4d95307af8c7cacb3981ecd50cd55e08568859d66a36f1acec89570
-
SHA512
c81a197695b55c550fdb9dbb1e0884b9b844aaa5f04c311fb9af6a36a920d7a3f7b05d7f845410cd9f09b0fd360bdca688ca7ded67f81bff49196050b23d3710
-
SSDEEP
6144:XPzmLGebrTdS5XWcSdlm+81XM3pDHKHJI:/z5erA5X8GD1Mpqp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1936dac8cacacf43ddf19ef29b3769e7
Files
-
1936dac8cacacf43ddf19ef29b3769e7.exe windows:4 windows x86 arch:x86
93d506dbb752ee089cb5166d52c70be4
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
CreateServiceA
RegCreateKeyExW
RegDeleteValueA
CreateServiceW
RegEnumKeyExW
OpenThreadToken
RegSetValueExW
OpenServiceA
AccessCheck
RegisterEventSourceA
CryptEncrypt
RegQueryValueA
RegCreateKeyA
GetTokenInformation
CopySid
AdjustTokenPrivileges
RegCreateKeyExA
ImpersonateSelf
CryptGenRandom
CryptCreateHash
GetAce
RegSetValueExA
InitializeAcl
LookupPrivilegeValueW
RegEnumKeyA
RegCloseKey
SetSecurityDescriptorDacl
AddAce
FreeSid
QueryServiceStatus
SetFileSecurityA
IsValidSecurityDescriptor
GetSecurityDescriptorControl
DeleteService
RegDeleteKeyA
GetSidIdentifierAuthority
RegQueryValueExA
RegOpenKeyExA
EqualSid
OpenProcessToken
AllocateAndInitializeSid
GetLengthSid
CryptImportKey
LookupPrivilegeValueA
RegQueryValueExW
GetSidSubAuthority
RegQueryValueW
GetUserNameW
MapGenericMask
RegOpenKeyExW
RegSetValueA
OpenSCManagerA
GetUserNameA
RegQueryInfoKeyA
AddAccessAllowedAce
CryptHashData
CloseServiceHandle
ControlService
ReportEventA
RegOpenKeyA
CryptDecrypt
RegDeleteValueW
comctl32
DestroyPropertySheetPage
ImageList_DragShowNolock
ImageList_SetBkColor
ord17
InitCommonControlsEx
ImageList_DragEnter
ImageList_Replace
ImageList_AddMasked
ImageList_GetIcon
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_DrawEx
ImageList_Merge
ImageList_DragMove
ImageList_Draw
ImageList_Add
CreateStatusWindowW
PropertySheetW
ImageList_BeginDrag
ImageList_GetDragImage
PropertySheetA
ImageList_Write
ImageList_GetIconSize
ImageList_GetImageInfo
ImageList_GetImageCount
ImageList_Read
ImageList_Create
ImageList_EndDrag
ImageList_Remove
_TrackMouseEvent
CreatePropertySheetPageA
ImageList_DragLeave
ImageList_LoadImageA
kernel32
TerminateProcess
WaitForSingleObject
GetTimeZoneInformation
_lcreat
GetDriveTypeA
CreateEventW
GetPrivateProfileStringA
SetUnhandledExceptionFilter
HeapSize
lstrcmpW
GetModuleHandleA
ResetEvent
GetLongPathNameW
GetCurrentThreadId
GetFileTime
GetFileAttributesA
Beep
DeleteCriticalSection
GetShortPathNameA
GetEnvironmentStringsW
DeleteFileW
GetDateFormatA
MultiByteToWideChar
GetCommandLineW
TlsGetValue
IsBadReadPtr
SetFilePointer
GetEnvironmentStrings
OpenMutexA
GetConsoleMode
RtlUnwind
GetDiskFreeSpaceA
GetCommandLineA
GetCurrentThread
SetErrorMode
GetModuleFileNameW
GetLocaleInfoA
IsBadWritePtr
GetStringTypeW
CreateFileA
GetProfileStringA
EnumSystemLocalesA
WideCharToMultiByte
GlobalFlags
SetEndOfFile
InterlockedCompareExchange
GlobalSize
ResumeThread
GetStartupInfoW
lstrcpynA
GetModuleHandleW
VirtualQuery
TlsSetValue
OpenFile
GetVersionExW
CreateEventA
FindResourceA
GetShortPathNameW
SetThreadPriority
TlsAlloc
ReadFile
UnlockFile
GetTempPathA
GetSystemTimeAsFileTime
LoadLibraryW
ExitThread
lstrcmpA
CreateProcessW
MapViewOfFile
CreateDirectoryA
GetSystemInfo
WriteConsoleW
LCMapStringW
FindFirstFileA
InterlockedDecrement
HeapFree
DeviceIoControl
LocalFileTimeToFileTime
GetVersionExA
LockResource
Sleep
QueryPerformanceFrequency
lstrcatA
GetVersion
MulDiv
_lwrite
SystemTimeToFileTime
ReleaseMutex
TerminateThread
GetFileSize
CreateThread
CompareStringA
SizeofResource
SetStdHandle
GetNumberFormatA
lstrcmpiA
OutputDebugStringA
GlobalReAlloc
DuplicateHandle
GetTickCount
GlobalHandle
GetACP
IsDebuggerPresent
GlobalFindAtomA
GetFullPathNameW
lstrlenA
SetHandleCount
GetCurrentProcessId
GlobalLock
CreateSemaphoreA
FindFirstFileW
WriteFile
FreeEnvironmentStringsW
InitializeCriticalSection
FindClose
FreeLibrary
CompareStringW
HeapReAlloc
FatalAppExitA
GetThreadLocale
SetLastError
GetLocaleInfoW
LocalFree
GetEnvironmentVariableW
TlsFree
MoveFileA
WriteConsoleA
VirtualFree
FreeEnvironmentStringsA
LoadLibraryA
HeapAlloc
CreateProcessA
HeapDestroy
GetStartupInfoA
InterlockedExchange
AllocConsole
lstrlenW
CreateFileW
GetConsoleOutputCP
GetEnvironmentVariableA
DeleteFileA
RemoveDirectoryA
LockFile
LeaveCriticalSection
CreateFileMappingA
GetTimeFormatA
GetFileAttributesW
SetConsoleCtrlHandler
SetEvent
GlobalGetAtomNameA
GlobalDeleteAtom
GetStdHandle
GetTempFileNameW
GetVolumeInformationA
GetFileType
GetWindowsDirectoryA
GetProfileIntA
GetCPInfo
UnhandledExceptionFilter
EnterCriticalSection
LoadResource
lstrcpyA
CreateMutexA
GetThreadPriority
GetCurrentProcess
UnmapViewOfFile
LocalAlloc
LCMapStringA
VirtualAlloc
ExitProcess
IsValidCodePage
GetStringTypeA
FindNextFileW
GetUserDefaultLCID
GlobalAddAtomA
IsValidLocale
ConvertDefaultLocale
GetConsoleCP
GetModuleFileNameA
GetProcessHeap
FindNextFileA
WinExec
GetProcAddress
InterlockedIncrement
FlushInstructionCache
QueryPerformanceCounter
FreeResource
SetCurrentDirectoryA
GetOEMCP
FlushFileBuffers
SetEnvironmentVariableA
FileTimeToLocalFileTime
VirtualProtect
HeapValidate
RaiseException
GetSystemDirectoryA
LocalReAlloc
HeapCreate
lstrcatW
GetFullPathNameA
GlobalAlloc
GetLastError
CloseHandle
oleaut32
LoadTypeLi
mpr
WNetCloseEnum
WNetAddConnection2W
WNetGetUniversalNameA
WNetEnumResourceA
WNetOpenEnumA
shell32
DragFinish
ExtractIconExA
DragQueryFileW
DragAcceptFiles
ShellExecuteW
DragQueryPoint
FindExecutableA
SHGetMalloc
SHBrowseForFolderA
SHGetFileInfoA
ExtractIconW
SHGetFolderPathA
SHGetSpecialFolderLocation
ShellExecuteExA
SHGetFileInfoW
SHGetPathFromIDListA
ShellExecuteA
ord155
Shell_NotifyIconA
user32
GetParent
LoadCursorA
GetWindowRect
GetSysColorBrush
FindWindowA
CreateWindowExW
GetPropW
UpdateWindow
DestroyMenu
CloseClipboard
GetWindowTextLengthA
GetScrollInfo
DestroyWindow
CharNextW
OffsetRect
EqualRect
GetClientRect
IsIconic
SetWindowsHookExA
GetWindowTextLengthW
EnableMenuItem
DestroyAcceleratorTable
TrackPopupMenu
EnumChildWindows
EndPaint
SetWindowContextHelpId
GetForegroundWindow
GetWindowPlacement
GetSubMenu
GetClassInfoW
InsertMenuW
LoadCursorW
GetSystemMenu
EnableWindow
CreateAcceleratorTableA
DeleteMenu
GetMenu
GetWindow
UnregisterClassA
ScreenToClient
DefWindowProcA
GetCursorPos
MsgWaitForMultipleObjects
GetClassNameW
GetClassInfoExA
GetMessageW
GetMenuCheckMarkDimensions
CreateIconIndirect
CreateMenu
DispatchMessageA
GetKeyNameTextA
BringWindowToTop
RemoveMenu
AttachThreadInput
MoveWindow
DrawTextExW
GetMenuItemCount
TranslateAcceleratorA
GetMessageTime
TabbedTextOutA
CreateDialogIndirectParamA
DialogBoxParamW
MessageBeep
GetActiveWindow
GetDCEx
InsertMenuA
GetMenuStringA
LoadMenuA
MessageBoxW
GetClassNameA
MapWindowPoints
DdeGetLastError
GetCapture
UnregisterClassW
CopyAcceleratorTableA
ReuseDDElParam
ReleaseCapture
GetCursor
EndDialog
SetMenuItemBitmaps
TranslateAcceleratorW
CallWindowProcA
GetWindowDC
IsZoomed
SetRect
IsClipboardFormatAvailable
GetMessagePos
ShowWindow
LockWindowUpdate
SetClassLongA
SetWindowTextW
WindowFromPoint
keybd_event
RegisterWindowMessageW
GetSysColor
LoadIconA
CheckMenuItem
CreateDialogParamA
PostMessageW
CopyRect
EmptyClipboard
PtInRect
GetSystemMetrics
CopyIcon
LoadAcceleratorsA
SetScrollRange
ClientToScreen
EnableScrollBar
SendNotifyMessageA
MessageBoxA
GetAsyncKeyState
SetCursor
IsWindowVisible
UnhookWindowsHookEx
OpenClipboard
RegisterWindowMessageA
RemovePropA
GetClipboardOwner
ValidateRect
GetWindowLongW
wsprintfW
GetWindowTextA
wvsprintfW
ReplyMessage
IsWindow
DispatchMessageW
SendDlgItemMessageW
LoadIconW
TranslateMessage
MapDialogRect
SetWindowPos
SystemParametersInfoA
GetMenuItemID
SetWindowLongA
SetDlgItemTextA
FindWindowW
BeginDeferWindowPos
HideCaret
GetWindowThreadProcessId
RegisterClassExA
IsDialogMessageW
DestroyCursor
SendMessageW
BeginPaint
SetRectEmpty
GetMenuDefaultItem
ShowScrollBar
CreateDialogIndirectParamW
SetWindowTextA
GetIconInfo
CopyAcceleratorTableW
GetTopWindow
wsprintfA
ExitWindowsEx
GetDesktopWindow
GetDlgItem
LoadStringA
InsertMenuItemA
CharLowerA
SetForegroundWindow
CallWindowProcW
DrawTextA
ChangeClipboardChain
CharUpperW
DialogBoxParamA
SendDlgItemMessageA
DdeCreateStringHandleA
SetTimer
SetActiveWindow
FrameRect
SetScrollPos
SetScrollInfo
GetClipboardFormatNameA
LoadMenuW
DrawIconEx
CreateWindowExA
CheckDlgButton
GetMessageA
KillTimer
RegisterClassA
DrawIcon
DrawFocusRect
GrayStringA
SetFocus
FlashWindow
DefDlgProcA
AppendMenuA
GetScrollPos
EndDeferWindowPos
SetMenu
RegisterHotKey
SetPropA
RemovePropW
PostThreadMessageA
SystemParametersInfoW
GetClassInfoA
IsWindowEnabled
PeekMessageA
DialogBoxIndirectParamW
CheckRadioButton
GetPropA
SetCapture
GetDlgCtrlID
GetMenuState
SendMessageA
RedrawWindow
GetFocus
CallNextHookEx
GetWindowLongA
CharUpperA
GetDC
IsChild
MapVirtualKeyW
GetTabbedTextExtentA
PostMessageA
SetMenuDefaultItem
LoadBitmapA
AdjustWindowRectEx
IntersectRect
InvalidateRect
CharNextA
SetWindowLongW
IsRectEmpty
FillRect
ReleaseDC
GetKeyState
DrawStateA
GetKeyboardState
GetUpdateRect
PeekMessageW
LoadStringW
SendMessageTimeoutW
GetClassLongA
CreatePopupMenu
WinHelpA
DrawFrameControl
DrawEdge
DefMDIChildProcA
PostQuitMessage
MapVirtualKeyA
SetMenuItemInfoW
ModifyMenuW
ExcludeUpdateRgn
SetParent
gdi32
StrokeAndFillPath
CreateDIBSection
SetTextColor
ScaleWindowExtEx
GetBitmapDimensionEx
GetTextCharacterExtra
GetTextExtentPoint32A
SetDIBits
EqualRgn
SetRectRgn
GetClipRgn
DrawEscape
RectInRegion
TextOutW
CreateFontIndirectA
SetPixel
SetPixelV
GetAspectRatioFilterEx
PaintRgn
ExtSelectClipRgn
GetRegionData
GetDCOrgEx
GetTextFaceA
GetTextCharsetInfo
GetCharABCWidthsA
SetBkColor
FillRgn
GetWindowExtEx
GetPaletteEntries
CreateDCA
GetNearestPaletteIndex
CloseMetaFile
CreatePen
CreateMetaFileA
ExtTextOutA
SetMiterLimit
ExtTextOutW
GetMapMode
GetNearestColor
ExtEscape
SetBkMode
AbortDoc
DPtoLP
GetViewportOrgEx
GetMiterLimit
Ellipse
GetCurrentPositionEx
PlgBlt
StartDocA
PtInRegion
GetCharABCWidthsW
RoundRect
GetTextMetricsA
CombineRgn
GetViewportExtEx
Polyline
AbortPath
CloseFigure
GetCharABCWidthsFloatW
BitBlt
SetPaletteEntries
SetTextCharacterExtra
CreatePalette
GetRgnBox
GetTextColor
Arc
ExtFloodFill
SetStretchBltMode
SelectPalette
DeleteMetaFile
SetViewportOrgEx
GetBoundsRect
CreateHatchBrush
PolylineTo
SetBoundsRect
GetTextExtentPoint32W
PatBlt
IntersectClipRect
SetWindowExtEx
GetBkMode
SetPolyFillMode
GetFontData
EnumFontFamiliesExA
OffsetViewportOrgEx
SetTextAlign
Polygon
SetDIBitsToDevice
CopyMetaFileA
CreateDiscardableBitmap
CreatePenIndirect
GetGlyphOutlineW
CreateRectRgnIndirect
GdiComment
GdiFlush
GetClipBox
CreateBitmap
SelectObject
CreateRoundRectRgn
SaveDC
InvertRgn
StrokePath
SetMapMode
GetStockObject
GetTextExtentPointA
SetBitmapBits
SetTextJustification
GetObjectA
CreateRectRgn
CreateFontIndirectW
SetWorldTransform
StretchDIBits
LPtoDP
OffsetWindowOrgEx
CreateICW
CreateDIBitmap
StartPage
AnimatePalette
EnumObjects
EnumFontFamiliesA
SetWindowOrgEx
GetSystemPaletteEntries
ScaleViewportExtEx
GetCharABCWidthsFloatA
MaskBlt
PtVisible
GetPixel
Escape
GetBrushOrgEx
GetCharWidthA
FrameRgn
GetCurrentObject
SetBitmapDimensionEx
CreateBitmapIndirect
SetAbortProc
StretchBlt
SelectClipRgn
GetObjectW
CreatePatternBrush
RealizePalette
ExtCreatePen
EndDoc
CreateEllipticRgn
LineTo
CreateEllipticRgnIndirect
PolyPolyline
GetKerningPairsA
GetBitmapBits
UnrealizeObject
FillPath
AngleArc
SetArcDirection
CreateSolidBrush
RectVisible
PlayEnhMetaFile
GetWindowOrgEx
PlayMetaFile
OffsetClipRgn
DeleteDC
RestoreDC
CreatePolyPolygonRgn
GetBkColor
PolyBezierTo
MoveToEx
CreateFontA
GetObjectType
Rectangle
CreatePolygonRgn
SetROP2
OffsetRgn
CreateCompatibleBitmap
CreateCompatibleDC
PolyPolygon
SetDIBColorTable
CloseEnhMetaFile
GetCharWidthW
ExcludeClipRect
GetDeviceCaps
SetBrushOrgEx
CreateICA
Pie
GetTextFaceW
DeleteObject
ModifyWorldTransform
EndPage
CreateEnhMetaFileA
GetGlyphOutlineA
BeginPath
SetViewportExtEx
GetColorAdjustment
GetTextAlign
GetTextMetricsW
FloodFill
WidenPath
SelectClipPath
EndPath
GetCharWidthFloatA
TextOutA
Sections
.text Size: 96KB - Virtual size: 95KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 104KB - Virtual size: 102KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 76KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 40KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ