JHZaucqPmzZNkrDY
KhvPZ
LrTCKJXlENuI
MwDekjnQKvH
NYDncOmIPXkEdyGk
RyNdsTIBH
VisibleEntry
bqAOhYJLyswNpABz
cWWVywgWqDZErz
mNpIMAMdFJZ
szIDjjtFlOoPLbmaXB
wRCJOahk
waDhSnPzBwveVNzIi
zDEIvbBDkbANqWhaa
Static task
static1
1 signatures
General
-
Target
042c7f134b2d4772737111dab30a0c558b53a9e2aed88e9763c7b4bb717b6e47
-
Size
7.5MB
-
MD5
732b5d5c94fb07f144f9f3560e959f68
-
SHA1
5df5932bd43a89763bc44c649418437b59034a70
-
SHA256
042c7f134b2d4772737111dab30a0c558b53a9e2aed88e9763c7b4bb717b6e47
-
SHA512
15ea83e46d0aee19a78e33fac74eefc06d0faf5819c5850954b6a2238cbd9d417018e81750ac55728a8c3dc26f64305e9ac057cec6908daf315f85eb5e734933
-
SSDEEP
196608:fxw/rAe02cab099K/Z8UG5I9OV6GELvIvTa5A34cMmbFLOyomFHKnP:urAe07ab099mcTF
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 042c7f134b2d4772737111dab30a0c558b53a9e2aed88e9763c7b4bb717b6e47
Files
-
042c7f134b2d4772737111dab30a0c558b53a9e2aed88e9763c7b4bb717b6e47.dll windows:6 windows x64 arch:x64
363fd837d27e5311fdf6e15583b87379
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Imports
kernel32
GetACP
IsValidCodePage
FindNextFileW
FindFirstFileExW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleOutputCP
GetTimeZoneInformation
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
FlsFree
FlsSetValue
FlsGetValue
FlsAlloc
GetCPInfo
GetFileType
SetStdHandle
HeapQueryInformation
GetCommandLineW
GetCommandLineA
QueryPerformanceFrequency
VirtualQuery
VirtualAlloc
GetSystemInfo
FreeLibraryAndExitThread
ExitThread
CreateThread
InterlockedFlushSList
InterlockedPushEntrySList
RtlPcToFileHeader
RtlUnwindEx
RaiseException
OutputDebugStringW
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetConsoleCtrlHandler
GetStringTypeW
WriteConsoleW
LoadLibraryExA
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
SetEnvironmentVariableW
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
LocalUnlock
LocalLock
GetWindowsDirectoryW
SearchPathW
GetProfileIntW
SetErrorMode
SystemTimeToTzSpecificLocalTime
SetFileAttributesW
LocalFileTimeToFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
GetTempPathW
FindResourceExW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GlobalFlags
FileTimeToSystemTime
GetAtomNameW
LocalReAlloc
LocalAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetUserDefaultLCID
SystemTimeToFileTime
ReplaceFileW
SetFileTime
GetTempFileNameW
GetFileTime
GetDiskFreeSpaceW
GetTickCount64
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
CompareStringA
GetCurrentThread
GetVersionExW
GetThreadLocale
GetStringTypeExW
MoveFileW
lstrcmpiW
GetCurrentProcess
DuplicateHandle
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetVolumeInformationW
GetShortPathNameW
GetFullPathNameW
FlushFileBuffers
FindFirstFileW
FindClose
DeleteFileW
VerifyVersionInfoW
VerSetConditionMask
GetTickCount
GetCurrentDirectoryW
lstrcpyW
GlobalReAlloc
InitializeCriticalSectionAndSpinCount
GetFileSize
GetFileAttributesW
CreateFileW
VirtualProtect
ResumeThread
SuspendThread
SetThreadPriority
CreateEventW
WaitForSingleObject
SetEvent
CloseHandle
GlobalGetAtomNameW
lstrcmpA
GetCurrentProcessId
CompareStringW
QueryActCtxW
FindActCtxSectionStringW
DeactivateActCtx
ActivateActCtx
CreateActCtxW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryW
LoadLibraryExW
GetProcAddress
GetModuleHandleExW
GetModuleHandleW
GetModuleFileNameW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
WideCharToMultiByte
CopyFileW
FormatMessageW
LocalFree
GlobalFree
GlobalLock
GlobalUnlock
GlobalSize
GlobalAlloc
SetLastError
DeleteCriticalSection
InitializeCriticalSectionEx
LeaveCriticalSection
EnterCriticalSection
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
GetLastError
DecodePointer
GetModuleHandleA
ExitProcess
Sleep
DebugBreak
MultiByteToWideChar
MulDiv
FindResourceW
SizeofResource
LockResource
GetStdHandle
LoadResource
RtlUnwind
user32
IsZoomed
DrawIconEx
DrawFocusRect
GetSysColorBrush
SetWindowRgn
GetSystemMetrics
DrawFrameControl
DrawEdge
CopyImage
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
MapDialogRect
GetAsyncKeyState
TranslateMessage
GetMessageW
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
LoadImageW
DestroyIcon
IntersectRect
SetCursor
InsertMenuItemW
DestroyMenu
CreatePopupMenu
LoadMenuW
TranslateAcceleratorW
LoadAcceleratorsW
ReleaseCapture
BringWindowToTop
DrawStateW
GetCursorPos
GetWindowThreadProcessId
GetDesktopWindow
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
IsDialogMessageW
SetWindowTextW
ScrollWindowEx
IsWindowEnabled
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
MoveWindow
ShowWindow
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
LoadIconW
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExW
GetLastActivePopup
GetTopWindow
GetClassNameW
GetClassLongPtrW
SetWindowLongPtrW
GetWindowLongPtrW
SetWindowLongW
TrackMouseEvent
EqualRect
CopyRect
MapWindowPoints
MessageBoxW
AdjustWindowRectEx
GetWindowRect
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
ScrollWindow
EnableScrollBar
SetForegroundWindow
GetForegroundWindow
SetActiveWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
GetDlgCtrlID
GetDlgItem
IsIconic
IsWindowVisible
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
SystemParametersInfoW
NotifyWinEvent
UpdateLayeredWindow
EnableWindow
SendMessageW
PostMessageW
SetTimer
KillTimer
IsChild
IsMenu
IsWindow
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
LoadBitmapW
SetCapture
UnionRect
MonitorFromPoint
GetDoubleClickTime
LockWindowUpdate
SetParent
ModifyMenuW
GetMenuDefaultItem
WindowFromPoint
DestroyAcceleratorTable
MessageBeep
SetLayeredWindowAttributes
EnumDisplayMonitors
IsClipboardFormatAvailable
GetSystemMenu
DeleteMenu
GetMenuItemInfoW
SetMenuDefaultItem
SetRect
LoadCursorW
PtInRect
CharUpperW
RedrawWindow
IsRectEmpty
FillRect
InflateRect
OffsetRect
UpdateWindow
InvalidateRect
GetClientRect
SetRectEmpty
GetParent
GetSysColor
UnregisterClassW
GetMenuStringW
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuW
AppendMenuW
RemoveMenu
DrawTextW
DrawTextExW
GrayStringW
TabbedTextOutW
GetDC
GetWindowDC
ReleaseDC
BeginPaint
EndPaint
ClientToScreen
ScreenToClient
SetFocus
SetScrollPos
GetScrollPos
GetWindowTextW
GetWindowTextLengthW
GetWindowLongW
GetWindow
GetFocus
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoW
SetClassLongPtrW
GetUpdateRect
FrameRect
PostQuitMessage
ShowOwnedPopups
RegisterClipboardFormatW
SetWindowContextHelpId
PostThreadMessageW
WaitMessage
RealChildWindowFromPoint
SendDlgItemMessageA
InvertRect
HideCaret
GetWindowRgn
CreateMenu
GetTabbedTextExtentW
WindowFromDC
GetDialogBaseUnits
IsCharLowerW
GetDCEx
DrawIcon
DestroyCursor
InvalidateRgn
CharNextW
EnumChildWindows
InSendMessage
SendNotifyMessageW
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
CharUpperBuffW
MonitorFromRect
SubtractRect
GetComboBoxInfo
GetNextDlgGroupItem
CopyAcceleratorTableW
CreateAcceleratorTableW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
CopyIcon
GetIconInfo
SetCursorPos
MapVirtualKeyW
GetKeyNameTextW
ValidateRect
MapVirtualKeyExW
gdi32
CreateHatchBrush
CreatePen
CreatePatternBrush
CreateRectRgn
DeleteObject
Escape
ExcludeClipRect
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextColor
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
TextOutW
ExtTextOutW
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
CreateDIBPatternBrushPt
ScaleViewportExtEx
ScaleWindowExtEx
CreateCompatibleBitmap
CombineRgn
GetDIBits
PatBlt
RealizePalette
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
CreateRectRgnIndirect
Ellipse
GetBkColor
GetTextColor
GetTextExtentPoint32W
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsW
CreateRoundRectRgn
CreatePalette
GetPaletteEntries
Rectangle
GetMapMode
SetRectRgn
DPtoLP
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
StartPage
EndPage
SetAbortProc
GetCharWidthW
StretchDIBits
EnumFontFamiliesExW
GetRgnBox
OffsetRgn
GetCurrentObject
GetNearestPaletteIndex
GetSystemPaletteEntries
GetViewportOrgEx
LPtoDP
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
GetWindowOrgEx
FillRgn
GetBoundsRect
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextFaceW
CloseMetaFile
CreateMetaFileW
DeleteMetaFile
CreateCompatibleDC
CreateBitmap
BitBlt
CreateDCW
CopyMetaFileW
DeleteDC
CreateSolidBrush
AbortDoc
EndDoc
StartDocW
GetDeviceCaps
CreateFontW
CreateFontIndirectW
OffsetWindowOrgEx
RoundRect
GetObjectW
msimg32
TransparentBlt
AlphaBlend
winspool.drv
DocumentPropertiesW
OpenPrinterW
GetJobW
ClosePrinter
advapi32
RegEnumValueW
RegEnumKeyExW
SetFileSecurityW
GetFileSecurityW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegQueryValueExW
RegOpenKeyExW
RegSetValueW
RegCloseKey
shell32
SHGetDesktopFolder
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
ShellExecuteW
SHAppBarMessage
ShellExecuteExW
DragFinish
DragQueryFileW
ExtractIconW
SHGetFileInfoW
SHAddToRecentDocs
SHGetSpecialFolderLocation
shlwapi
PathRemoveExtensionW
PathFindFileNameW
PathFindExtensionW
PathStripToRootW
PathIsUNCW
PathRemoveFileSpecW
StrFormatKBSizeW
uxtheme
GetWindowTheme
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetCurrentThemeName
DrawThemeParentBackground
GetThemePartSize
GetThemeSysColor
DrawThemeText
IsThemeBackgroundPartiallyTransparent
ole32
GetHGlobalFromILockBytes
WriteClassStm
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
OleRegEnumVerbs
OleRegGetMiscStatus
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
CoRevokeClassObject
CoRegisterClassObject
CoGetClassObject
DoDragDrop
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
CreateItemMoniker
OleCreate
CreateFileMoniker
CreateILockBytesOnHGlobal
StgIsStorageFile
StgOpenStorageOnILockBytes
OleCreateFromData
StgCreateDocfile
OleLockRunning
OleSetMenuDescriptor
OleCreateLinkFromData
OleCreateStaticFromData
CoDisconnectObject
StringFromGUID2
PropVariantCopy
CLSIDFromProgID
CLSIDFromString
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitialize
CoCreateGuid
CoCreateInstance
CoInitializeEx
CoUninitialize
CreateStreamOnHGlobal
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
CreateBindCtx
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
OleCreateLinkToFile
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
OleRun
CreateDataAdviseHolder
CreateOleAdviseHolder
GetRunningObjectTable
OleIsRunning
CoGetMalloc
CreateGenericComposite
OleQueryLinkFromData
OleQueryCreateFromData
StgOpenStorage
oleaut32
SysStringLen
LoadTypeLi
LoadRegTypeLi
RegisterTypeLi
SysReAllocStringLen
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCreate
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayRedim
SafeArrayGetDim
SafeArrayGetElemsize
SysAllocStringLen
SysAllocString
SafeArrayLock
SafeArrayUnlock
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayCopy
SafeArrayPtrOfIndex
VariantCopy
VarDateFromStr
SysAllocStringByteLen
VarCyFromStr
VarBstrFromCy
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
OleCreateFontIndirect
SysStringByteLen
VariantChangeType
VariantClear
SafeArrayGetLBound
VariantInit
SafeArrayGetUBound
SysFreeString
oledlg
OleUIBusyW
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
imm32
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
winmm
PlaySoundW
Exports
Exports
Sections
.text Size: 4.4MB - Virtual size: 4.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 985KB - Virtual size: 984KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 44KB - Virtual size: 75KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 169KB - Virtual size: 168KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
memcpy_ Size: 512B - Virtual size: 264B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
_RDATA Size: 512B - Virtual size: 500B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1.9MB - Virtual size: 1.9MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 80KB - Virtual size: 80KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ