Static task
static1
Behavioral task
behavioral1
Sample
a15afc2a3b09c8b7df5125f8828751f5.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
a15afc2a3b09c8b7df5125f8828751f5.exe
Resource
win10v2004-20240221-en
General
-
Target
a15afc2a3b09c8b7df5125f8828751f5
-
Size
548KB
-
MD5
a15afc2a3b09c8b7df5125f8828751f5
-
SHA1
cd519a7d05fc7cd6139313b60d522005015f7ff5
-
SHA256
2dfcf8a76f9885e3b61b2aba503dde8758c0028e4376d005aea6e2bd73b71b70
-
SHA512
e96272bab7eb02374404dfba5ef764e48d63fe62ce34ffcaa8ac23b9ddf60c8f8d0859f6722ce09878175aaaf3395e3426cb5b87c533f18483bcb37e3e214328
-
SSDEEP
12288:0MMnMMMMMtzyPJhi6YUbSHi1oe9miKMUyCl2nFuM2Aj3hSU:0MMnMMMMMtz6W6lb2Moe9miGyCaBFj3R
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource a15afc2a3b09c8b7df5125f8828751f5
Files
-
a15afc2a3b09c8b7df5125f8828751f5.exe windows:4 windows x86 arch:x86
077db9211320d80e4f1b4831e7a56236
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
CheckTokenMembership
RegCloseKey
RegOpenKeyExA
RegOpenCurrentUser
RegQueryValueW
RegOpenKeyExW
RegCreateKeyExW
OpenProcessToken
RegQueryValueExW
RegSetValueExW
AllocateAndInitializeSid
RegCreateKeyW
RegQueryValueExA
FreeSid
ddraw
DirectDrawCreate
ntdll
RtlAddAuditAccessAce
user32
GetScrollRange
GetDlgCtrlID
GetAsyncKeyState
FrameRect
DrawEdge
GetMenu
LoadStringW
WaitMessage
FillRect
InvalidateRect
EnumChildWindows
CopyRect
DrawIconEx
GetSystemMetrics
IntersectRect
ShowWindow
CreateDialogIndirectParamW
GetDCEx
ScreenToClient
KillTimer
GetDC
GetNextDlgTabItem
EnableWindow
SetCursor
MapVirtualKeyW
ShowCaret
PeekMessageW
DrawIcon
IsChild
GetCapture
GetSystemMenu
GetWindowRect
EndPaint
CopyImage
EnumDesktopsW
IsIconic
GetWindow
RegisterClassW
GetSysColorBrush
CreateCaret
GetDesktopWindow
GetKeyboardLayout
RegisterWindowMessageW
GetMenuState
IsWindowVisible
CopyIcon
SetRect
DialogBoxIndirectParamW
GetDoubleClickTime
CheckMenuItem
UpdateWindow
SetForegroundWindow
CreateWindowExW
GetMenuItemInfoW
AppendMenuW
CreatePopupMenu
SetWindowTextA
LoadImageW
GetWindowTextW
MessageBeep
SetCapture
GetMessageW
OpenDesktopW
PtInRect
IsRectEmpty
SetCursorPos
GetCaretBlinkTime
DestroyCaret
DestroyMenu
IsWindow
GetUpdateRgn
PostQuitMessage
CreateDialogIndirectParamA
GetCursor
GetClientRect
GetWindowThreadProcessId
HideCaret
ValidateRect
MapDialogRect
TrackPopupMenu
GetMenuItemCount
DrawTextW
GetScrollInfo
GetFocus
IsZoomed
CharLowerW
GetWindowLongA
IsDialogMessageW
GetIconInfo
TranslateMessage
GetSysColor
DrawFrameControl
BeginDeferWindowPos
LockWindowUpdate
DispatchMessageW
GetScrollPos
GetActiveWindow
GetMessageTime
CreateWindowExA
WinHelpW
MapWindowPoints
InvertRect
WindowFromPoint
GetWindowLongW
GetWindowRgn
SetDlgItemTextW
GetParent
SetFocus
InvalidateRgn
CreateIconIndirect
ShowScrollBar
DrawFocusRect
DestroyCursor
ReleaseCapture
DrawTextExW
SetWindowLongW
GetForegroundWindow
ClientToScreen
DestroyIcon
GetKeyState
ChildWindowFromPoint
SetRectEmpty
AdjustWindowRect
DestroyWindow
AdjustWindowRectEx
DefWindowProcW
SetThreadDesktop
GetDlgItem
SetWindowPos
SetMenu
UnregisterClassW
GetWindowTextLengthW
SetTimer
ScrollWindowEx
CloseDesktop
GetPropW
SetWindowTextW
GrayStringW
GetMenuItemID
RedrawWindow
InflateRect
SubtractRect
MoveWindow
SendDlgItemMessageW
OffsetRect
GetCursorPos
EndDialog
GetKeyNameTextW
SetScrollRange
SendMessageW
EnableScrollBar
GetClassNameW
EnumWindows
GetSubMenu
SystemParametersInfoW
SetLastErrorEx
CallWindowProcW
SetWindowRgn
LoadCursorW
SetParent
SendNotifyMessageW
BeginPaint
GetMessagePos
EqualRect
GetWindowPlacement
SetScrollPos
CharPrevW
SetKeyboardState
RemovePropW
GetProcessWindowStation
EndDeferWindowPos
UnionRect
SetActiveWindow
SystemParametersInfoA
LoadIconW
IsWindowEnabled
GetWindowDC
SetScrollInfo
PostMessageW
GetThreadDesktop
CallMsgFilterW
GetShellWindow
SetCaretPos
GetUpdateRect
DeferWindowPos
SetPropW
GetKeyboardState
ReleaseDC
gdi32
CreateSolidBrush
ExtTextOutA
OffsetRgn
FrameRgn
GetBkColor
GetPixel
ExtTextOutW
StretchBlt
CreateFontIndirectW
CreateCompatibleDC
CreateFontW
OffsetWindowOrgEx
Polyline
SetBkMode
GetClipBox
LineTo
GetDCOrgEx
MaskBlt
SetPixelV
FillRgn
TextOutW
GetTextColor
GetTextExtentPointA
EnumFontFamiliesExW
GetCurrentObject
GetWindowExtEx
SetBrushOrgEx
CreateHalftonePalette
SetTextAlign
CreateDIBSection
CreatePolygonRgn
CreateBitmap
Ellipse
DeleteDC
CreateBitmapIndirect
GetTextExtentPoint32W
ExtSelectClipRgn
BitBlt
ExcludeClipRect
RestoreDC
RealizePalette
UnrealizeObject
GetDIBits
GetCharWidthW
CreateRectRgn
GetDeviceCaps
GetNearestColor
GetBitmapBits
GetTextMetricsW
SelectPalette
Arc
SetBkColor
GetTextCharsetInfo
SetDIBits
MoveToEx
GetClipRgn
SelectClipRgn
CreateRectRgnIndirect
SetDIBColorTable
StretchDIBits
GetStockObject
CreatePen
GetTextExtentPointW
TranslateCharsetInfo
CombineRgn
GetCharWidthA
SetTextColor
SelectObject
CreatePalette
CreateRoundRectRgn
SaveDC
CreateCompatibleBitmap
GetViewportExtEx
Rectangle
PatBlt
GetDIBColorTable
GetTextAlign
IntersectClipRect
GetObjectW
GetPaletteEntries
RectVisible
SetPixel
SetWindowOrgEx
CreatePatternBrush
DeleteObject
atl
AtlModuleRegisterClassObjects
kernel32
SizeofResource
lstrcmpA
DeleteCriticalSection
lstrcmpiW
LoadResource
GlobalAddAtomW
FreeLibrary
QueryPerformanceCounter
InterlockedIncrement
WriteFile
DisableThreadLibraryCalls
InitializeCriticalSection
SetEvent
InterlockedExchange
GetCPInfo
GetFileType
ExitProcess
VirtualProtect
GetEnvironmentStrings
GetNumberFormatW
LocalAlloc
GetModuleHandleW
TlsGetValue
GetStringTypeExW
SetHandleCount
GetStartupInfoA
GetUserDefaultLCID
HeapReAlloc
TlsAlloc
LeaveCriticalSection
FreeResource
Sleep
HeapAlloc
LCMapStringA
GetEnvironmentStringsW
InterlockedDecrement
TerminateProcess
FindResourceW
GetSystemDefaultLCID
GetLocaleInfoW
UnmapViewOfFile
InterlockedCompareExchange
MapViewOfFile
LoadLibraryA
EnumCalendarInfoW
GetStringTypeW
GetUserDefaultLangID
LocalFree
GetWindowsDirectoryW
GetTickCount
GetTimeFormatW
CloseHandle
SetUnhandledExceptionFilter
IsBadReadPtr
GetModuleHandleA
WaitForSingleObject
GetFileSize
WideCharToMultiByte
VirtualFree
GetCurrentProcessId
CreateFileMappingW
CompareStringA
GlobalUnlock
GetCurrentProcess
IsBadWritePtr
GetOEMCP
lstrcpynW
GlobalHandle
SetStdHandle
GetCurrentThreadId
EnterCriticalSection
GetSystemInfo
lstrlenA
HeapDestroy
UnhandledExceptionFilter
GetStringTypeA
LCMapStringW
GetLastError
SetFilePointer
LoadLibraryW
GetSystemTimeAsFileTime
LocalSize
GetProcessHeap
TlsFree
FindResourceExA
GetLocaleInfoA
EnumResourceLanguagesW
SetLastError
HeapCreate
FlushFileBuffers
CreateEventW
lstrcmpiA
GetDateFormatW
FreeEnvironmentStringsW
lstrlenW
FindResourceExW
MultiByteToWideChar
GetCommandLineA
VirtualQuery
LockResource
GetModuleFileNameA
lstrcmpW
GetVersionExA
TlsSetValue
CompareStringW
GetLocalTime
GlobalAlloc
GetProcAddress
MulDiv
GlobalReAlloc
GetStdHandle
FreeEnvironmentStringsA
GetACP
CreateThread
GetModuleFileNameW
LocalReAlloc
HeapFree
VirtualAlloc
CreateFileW
GlobalFree
GetThreadLocale
Sections
.text Size: 4KB - Virtual size: 924B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 140KB - Virtual size: 137KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 2.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 380KB - Virtual size: 376KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE