Static task
static1
Behavioral task
behavioral1
Sample
37141e5e8c496c11fdf5586e316aaea5.exe
Resource
win7-20231215-en
windows7-x64
Behavioral task
behavioral2
Sample
37141e5e8c496c11fdf5586e316aaea5.exe
Resource
win10v2004-20231215-en
windows10-2004-x64
General
-
Target
37141e5e8c496c11fdf5586e316aaea5
-
Size
400KB
-
MD5
37141e5e8c496c11fdf5586e316aaea5
-
SHA1
5d55d02e3499bd9a7bc23a274b2150a55cd67719
-
SHA256
c08269e2808ee3fbd9176c7a987126e17dcad35569b45d37e692378196f0bd17
-
SHA512
fa7232498990c66252e6fb42ec6d3a07b116798b66b49e6440fb0a7e38fece49a14eed24989f43af13af41e7bbe9a31b39ab316e3e65c628cbae162071eeb53c
-
SSDEEP
12288:T3Da2N9ZMHfkfEbe3SbTSH9Enztpij6R+u1qDj1:FGMPibTSKnxRJqD
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 37141e5e8c496c11fdf5586e316aaea5
Files
-
37141e5e8c496c11fdf5586e316aaea5.exe windows:4 windows x86 arch:x86
ce468f679bd39a3e2571278d15002c4c
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
GetProcessPriorityBoost
MapViewOfFileEx
CreateFileW
ResetWriteWatch
EnumResourceNamesA
GetLongPathNameA
InterlockedCompareExchange
GetVolumeInformationA
SystemTimeToFileTime
CreateToolhelp32Snapshot
SetConsoleOutputCP
WritePrivateProfileStructA
MultiByteToWideChar
lstrcpyA
FreeLibrary
Heap32First
SetThreadIdealProcessor
GetCommandLineW
GlobalMemoryStatus
Process32Next
CreateSemaphoreW
InterlockedDecrement
SetTimeZoneInformation
GetThreadPriorityBoost
GetProcessAffinityMask
TlsGetValue
GetTimeZoneInformation
GetCurrentThread
EscapeCommFunction
DeviceIoControl
DeleteFileA
GetNumberOfConsoleInputEvents
FindCloseChangeNotification
EnumDateFormatsA
EnumCalendarInfoExW
FlushViewOfFile
RtlMoveMemory
MoveFileExA
FreeConsole
lstrcmpi
GetLastError
SignalObjectAndWait
GetCurrentDirectoryA
LockFile
MoveFileW
GetVersion
GetModuleHandleW
GetSystemPowerStatus
GetThreadPriority
CreateFileMappingA
UnlockFileEx
OpenFileMappingA
SetConsoleActiveScreenBuffer
InterlockedIncrement
CreatePipe
GetWindowsDirectoryW
AddAtomW
GetAtomNameW
GetCompressedFileSizeA
EnumResourceTypesW
GetTempPathW
Toolhelp32ReadProcessMemory
SetSystemTime
WriteProfileStringW
GetStartupInfoA
GlobalAlloc
SearchPathA
FillConsoleOutputAttribute
GetLocalTime
AddAtomA
GetTempFileNameW
LocalReAlloc
ReleaseMutex
CopyFileExA
lstrcpyW
FillConsoleOutputCharacterA
CloseHandle
FreeResource
SetThreadContext
FindAtomA
SetConsoleCursorInfo
GetLongPathNameW
GetFullPathNameW
GetFullPathNameA
GetCommandLineA
OpenWaitableTimerW
TransmitCommChar
GetProcessShutdownParameters
CreateMailslotA
GetStringTypeExW
CreateWaitableTimerA
GetACP
WriteProcessMemory
RtlZeroMemory
GetQueuedCompletionStatus
HeapLock
UnlockFile
GetStringTypeExA
CreateDirectoryExA
SetEndOfFile
GetProcessTimes
DefineDosDeviceA
GetTimeFormatA
TryEnterCriticalSection
SetPriorityClass
GetShortPathNameW
Module32Next
lstrcpynW
GetNumberFormatA
WinExec
GetPrivateProfileIntW
GetProfileIntW
DefineDosDeviceW
lstrcatA
VirtualLock
ReadFileScatter
FindClose
CopyFileA
LocalFileTimeToFileTime
DisableThreadLibraryCalls
OpenEventA
GetStringTypeW
SetComputerNameA
DeleteCriticalSection
EnumTimeFormatsA
GlobalLock
TlsSetValue
SetFileAttributesA
GetModuleFileNameW
OutputDebugStringW
GetFileAttributesW
WritePrivateProfileStringA
FillConsoleOutputCharacterW
WriteProfileSectionW
GetLocaleInfoA
RtlFillMemory
ReadConsoleInputW
CommConfigDialogW
SetConsoleMode
VirtualFree
SetConsoleCtrlHandler
ReadConsoleOutputCharacterW
GetStdHandle
CreateEventW
SetThreadPriorityBoost
SetConsoleWindowInfo
lstrcpyn
GetConsoleOutputCP
CreateThread
SetCurrentDirectoryA
WriteFile
BeginUpdateResourceA
DebugBreak
GetNumberOfConsoleMouseButtons
VirtualFreeEx
WaitNamedPipeW
GetNamedPipeHandleStateA
GetDiskFreeSpaceW
ReleaseSemaphore
SetEnvironmentVariableW
GetDiskFreeSpaceExW
VirtualUnlock
IsDebuggerPresent
FileTimeToDosDateTime
FormatMessageW
GetDriveTypeW
FlushConsoleInputBuffer
CreateNamedPipeA
EnumDateFormatsExW
EnumResourceLanguagesA
GlobalGetAtomNameA
GetDiskFreeSpaceA
GetHandleInformation
DeleteAtom
CompareFileTime
WritePrivateProfileSectionA
lstrcmpiW
HeapWalk
Heap32Next
GetPrivateProfileSectionW
GlobalReAlloc
TlsAlloc
UpdateResourceA
GetCurrentDirectoryW
EnumSystemLocalesW
GlobalAddAtomA
FlushFileBuffers
GetSystemInfo
CreateRemoteThread
UnmapViewOfFile
GetAtomNameA
CompareStringA
GetDiskFreeSpaceExA
SetConsoleCursorPosition
FindFirstFileW
lstrcpy
Thread32First
MapViewOfFile
ReadConsoleOutputAttribute
FindFirstFileExW
SetVolumeLabelW
LocalCompact
HeapCreate
EnumTimeFormatsW
GlobalDeleteAtom
GetEnvironmentVariableA
LoadLibraryExW
EnumSystemCodePagesA
GlobalUnfix
OpenSemaphoreW
SetCriticalSectionSpinCount
WriteConsoleOutputW
Module32First
LocalAlloc
SetThreadAffinityMask
GetStartupInfoW
lstrlen
SetComputerNameW
HeapSize
FlushInstructionCache
GetThreadSelectorEntry
GetStringTypeA
GetProfileSectionA
OutputDebugStringA
EnumCalendarInfoExA
FindResourceExW
GetNumberFormatW
GetPrivateProfileStringA
MoveFileExW
PeekConsoleInputW
CreateSemaphoreA
GetProfileStringW
WriteProfileStringA
FoldStringA
GetCalendarInfoA
ReadProcessMemory
GetProcessVersion
ConnectNamedPipe
GetPrivateProfileSectionNamesA
EnumDateFormatsW
LocalFree
EnumResourceNamesW
LoadLibraryW
GetNamedPipeInfo
GetExitCodeProcess
GetPrivateProfileSectionNamesW
GetProcAddress
GetSystemDirectoryW
WriteFileEx
GetProfileSectionW
SetThreadPriority
GetDriveTypeA
EnumSystemLocalesA
ReadFile
GlobalAddAtomW
FileTimeToLocalFileTime
GetLargestConsoleWindowSize
GlobalWire
CreateDirectoryW
WritePrivateProfileSectionW
GetPrivateProfileSectionA
SetWaitableTimer
GetFileTime
GetProfileStringA
GetVersionExA
OpenMutexA
GetFileAttributesExW
GlobalFix
CreateMailslotW
GetPriorityClass
GetFileInformationByHandle
ResumeThread
GetThreadContext
HeapDestroy
GlobalSize
SetConsoleScreenBufferSize
SetEnvironmentVariableA
LeaveCriticalSection
EnumResourceTypesA
WritePrivateProfileStructW
FreeLibraryAndExitThread
CommConfigDialogA
GetConsoleMode
GetMailslotInfo
FindFirstFileExA
InitializeCriticalSection
GetConsoleCursorInfo
GlobalUnlock
GetCurrencyFormatW
TlsFree
WriteConsoleInputW
ReadConsoleOutputA
DosDateTimeToFileTime
ReadConsoleW
SuspendThread
ReadConsoleOutputCharacterA
GlobalGetAtomNameW
LocalHandle
lstrlenA
GetConsoleTitleA
GetSystemTime
FindFirstChangeNotificationA
GetUserDefaultLangID
IsValidLocale
lstrcmpiA
RemoveDirectoryA
LoadModule
user32
DefDlgProcA
SetCaretBlinkTime
MessageBoxIndirectA
ReleaseDC
GetProcessDefaultLayout
TileWindows
GetActiveWindow
SetWindowTextW
EnumPropsA
VkKeyScanA
IsDlgButtonChecked
WaitMessage
DeleteMenu
DrawIconEx
GetWindowLongA
ToUnicodeEx
RegisterWindowMessageA
EnumClipboardFormats
RegisterClassA
DialogBoxParamA
GetGUIThreadInfo
RealGetWindowClass
CreateIconIndirect
OffsetRect
RemoveMenu
MessageBoxW
GetMessageW
HideCaret
SetClipboardData
RedrawWindow
GetForegroundWindow
SetCursorPos
DlgDirListW
DispatchMessageA
GetMenuItemInfoA
CharPrevA
UpdateWindow
DialogBoxIndirectParamA
EndTask
SetDebugErrorLevel
LoadAcceleratorsA
LoadCursorFromFileA
DdeKeepStringHandle
GetKeyState
ClipCursor
GetMenuItemCount
GetKeyboardLayoutList
SetCursor
ShowWindow
FindWindowExA
FillRect
ModifyMenuW
CharPrevW
GetWindowInfo
DefFrameProcW
GetAncestor
SetClipboardViewer
OpenDesktopA
ChangeDisplaySettingsExW
ScrollWindowEx
SystemParametersInfoA
DrawIcon
ShowOwnedPopups
IsCharUpperA
GetCaretBlinkTime
MessageBeep
wvsprintfW
CascadeWindows
GetWindowThreadProcessId
CascadeChildWindows
GetUpdateRgn
TabbedTextOutW
GetSystemMenu
DestroyIcon
MsgWaitForMultipleObjectsEx
GetMenuContextHelpId
SetClassLongA
TranslateAccelerator
SystemParametersInfoW
GrayStringA
GetClassInfoExW
WinHelpW
SwitchDesktop
SetForegroundWindow
IsChild
SetDlgItemTextA
LockWindowUpdate
CharUpperBuffW
SetWindowsHookA
IsDialogMessageA
UnhookWindowsHook
CallMsgFilterW
BroadcastSystemMessage
TranslateAcceleratorA
MapVirtualKeyExA
RegisterDeviceNotificationA
GetClipboardViewer
FreeDDElParam
CallWindowProcA
CheckRadioButton
DefWindowProcW
SetDeskWallpaper
TranslateMDISysAccel
MonitorFromPoint
GetMenuDefaultItem
SwapMouseButton
PaintDesktop
DlgDirSelectComboBoxExW
ValidateRgn
IsCharAlphaNumericW
DdeDisconnect
GetKeyboardLayout
SendIMEMessageExW
SetWinEventHook
DrawFrameControl
ReplyMessage
GetTitleBarInfo
GetClipCursor
GetDCEx
SetPropW
IsIconic
GetWindowRect
CreateWindowStationA
IsClipboardFormatAvailable
GetSysColorBrush
CopyImage
RegisterClipboardFormatW
RegisterClipboardFormatA
ExitWindowsEx
GetClassNameW
LoadIconA
CharLowerBuffW
CharNextW
GetThreadDesktop
RegisterClassExW
SetUserObjectInformationA
GetMenuItemInfoW
MapWindowPoints
LookupIconIdFromDirectoryEx
EnumWindowStationsW
EnumDisplaySettingsExA
EnumThreadWindows
InSendMessage
CreateDesktopW
LoadStringA
CreatePopupMenu
GetClassInfoExA
SetProcessDefaultLayout
GetDlgCtrlID
MenuItemFromPoint
ImpersonateDdeClientWindow
SetMenuDefaultItem
SetUserObjectInformationW
ModifyMenuA
wvsprintfA
EnableWindow
ToUnicode
DdeCreateStringHandleA
ArrangeIconicWindows
MessageBoxExW
SendNotifyMessageW
WaitForInputIdle
CreateIconFromResourceEx
DragObject
DlgDirListComboBoxA
IsWindow
OemToCharA
SetRect
MessageBoxA
RealChildWindowFromPoint
InvalidateRgn
LoadCursorA
SetScrollInfo
CreateMDIWindowA
UnregisterClassA
SetDoubleClickTime
GetWindowModuleFileNameW
GetAltTabInfo
IsMenu
PeekMessageA
DdeCreateStringHandleW
LoadAcceleratorsW
SendDlgItemMessageA
CheckMenuItem
EnableScrollBar
GrayStringW
EnumDesktopsA
GetProcessWindowStation
WindowFromDC
CloseDesktop
LoadMenuA
DlgDirSelectComboBoxExA
DefWindowProcA
SetFocus
GetMenuStringA
WinHelpA
GetListBoxInfo
DdeQueryNextServer
ClientToScreen
GetCapture
SetWindowsHookW
InsertMenuItemW
GetMenuInfo
DdePostAdvise
SendMessageA
SetScrollPos
EnumPropsExW
WindowFromPoint
EnumDesktopsW
GetTabbedTextExtentW
EnumDisplayMonitors
GetMenuCheckMarkDimensions
BeginPaint
DdeNameService
ToAsciiEx
EditWndProc
GetMessageExtraInfo
GetMenuBarInfo
SetClassLongW
MonitorFromWindow
UnregisterHotKey
DrawFrame
GetCaretPos
EnableMenuItem
RegisterClassW
InsertMenuItemA
GetInputState
CreateIconFromResource
ScreenToClient
GetMessageTime
DrawTextW
FindWindowA
SetShellWindow
CloseClipboard
DdeSetQualityOfService
GetScrollPos
LoadIconW
BringWindowToTop
OemToCharW
OemToCharBuffW
CreateWindowStationW
SetWindowsHookExW
PostThreadMessageA
GetDlgItemTextA
DragDetect
AnimateWindow
GetSubMenu
DdeImpersonateClient
LoadImageW
IntersectRect
LoadMenuIndirectW
LoadStringW
ChangeClipboardChain
ShowCaret
SendInput
LoadMenuIndirectA
CallNextHookEx
GetMonitorInfoA
ReuseDDElParam
MsgWaitForMultipleObjects
IsCharUpperW
SendMessageW
GetClipboardOwner
IsCharLowerW
LoadBitmapA
CreateAcceleratorTableW
DdeClientTransaction
RegisterDeviceNotificationW
GetClassLongW
DestroyWindow
VkKeyScanExW
EnumWindowStationsA
MapDialogRect
DdeSetUserHandle
AppendMenuW
CreateWindowExW
CreateIcon
GetPriorityClipboardFormat
PeekMessageW
CheckMenuRadioItem
SetDlgItemInt
SendMessageTimeoutW
TranslateMessage
FlashWindowEx
LoadCursorFromFileW
RegisterClassExA
BlockInput
AdjustWindowRect
DdeConnectList
MapVirtualKeyA
ValidateRect
SetWindowsHookExA
DdeAccessData
GetClassLongA
DrawMenuBar
InvalidateRect
GetClassWord
CharNextExA
GetPropW
IsCharLowerA
SetUserObjectSecurity
UnloadKeyboardLayout
IsDialogMessageW
CloseWindowStation
LoadImageA
EnumDisplaySettingsA
SetMessageQueue
GetIconInfo
SetMenuItemBitmaps
AnyPopup
UnpackDDElParam
GetKeyboardType
SendDlgItemMessageW
IsWindowEnabled
SetMenuItemInfoW
DdeInitializeA
CopyAcceleratorTableA
SetLastErrorEx
DestroyCursor
DrawStateA
WINNLSGetEnableStatus
CreateDesktopA
GetClipboardFormatNameA
GetWindowModuleFileNameA
SetMenuContextHelpId
TrackPopupMenuEx
CreateMenu
DestroyMenu
SetCaretPos
Sections
.text Size: 121KB - Virtual size: 120KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 262KB - Virtual size: 261KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ