Static task
static1
Behavioral task
behavioral1
Sample
dd8d4e37957e265a91bc4410e39861a5ad8259f9e0dbc7bc950bbab0638208cb.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
dd8d4e37957e265a91bc4410e39861a5ad8259f9e0dbc7bc950bbab0638208cb.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
General
-
Target
dd8d4e37957e265a91bc4410e39861a5ad8259f9e0dbc7bc950bbab0638208cb
-
Size
309KB
-
MD5
7c2f357db9bf48638e113708b82da87a
-
SHA1
fdd632bf2c1824ba423d8d9a62789c6754c9e89f
-
SHA256
dd8d4e37957e265a91bc4410e39861a5ad8259f9e0dbc7bc950bbab0638208cb
-
SHA512
b7be01fa88876c4e998ac3d09a4dd67314910dad5eced36f5bee6c7c9871cd54b47fd76279f572cca6751cecb742cdf1b006804551108c6061dabd35d502df20
-
SSDEEP
3072:Q3d1LWRmGF04pSMkILVD55bb735rv+I+RhUgJTlS4c9f+n3/k9ksYeoqUdk7Oq0g:QN0Rf/blq7UmTlK8utEVk7OhHjFILZJ
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource dd8d4e37957e265a91bc4410e39861a5ad8259f9e0dbc7bc950bbab0638208cb
Files
-
dd8d4e37957e265a91bc4410e39861a5ad8259f9e0dbc7bc950bbab0638208cb.exe windows:5 windows x86 arch:x86
af8bcd129a66792f5ca94ce800ea5616
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetPrivateProfileIntA
GetPrivateProfileSectionW
GetPrivateProfileStringA
GetPrivateProfileStringW
GetProcessHeap
GetProcessTimes
GetProcessVersion
GetProfileStringA
GetProfileStringW
GetShortPathNameA
GetShortPathNameW
GetStartupInfoA
GetStartupInfoW
GetStdHandle
GetStringTypeA
GetStringTypeW
GetSystemDefaultLangID
GetSystemDefaultUILanguage
GetSystemDirectoryA
GetSystemDirectoryW
GetSystemInfo
GetSystemTime
GetSystemTimeAsFileTime
GetSystemWindowsDirectoryW
GetSystemWow64DirectoryW
GetTempFileNameA
GetTempFileNameW
GetTempPathA
GetTempPathW
GetThreadContext
GetThreadLocale
GetThreadPriority
GetTickCount
GetTimeFormatW
GetTimeZoneInformation
GetUserDefaultLCID
GetUserDefaultUILanguage
GetVersion
GetVersionExA
GetVersionExW
GetVolumeInformationA
GetVolumeInformationW
GetVolumeNameForVolumeMountPointA
GetVolumeNameForVolumeMountPointW
GetVolumePathNameW
GetWindowsDirectoryA
GetWindowsDirectoryW
GlobalAddAtomA
GlobalAddAtomW
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalFindAtomW
GlobalFlags
GlobalFree
GlobalGetAtomNameA
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalMemoryStatusEx
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSetInformation
HeapSize
InitializeCriticalSection
InitializeCriticalSectionAndSpinCount
InterlockedCompareExchange
InterlockedDecrement
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadStringPtrA
IsBadWritePtr
IsDBCSLeadByte
IsDebuggerPresent
IsProcessorFeaturePresent
IsValidCodePage
IsValidLocale
LCMapStringA
LCMapStringW
LeaveCriticalSection
LoadLibraryExA
LoadLibraryExW
LoadLibraryW
LoadResource
LocalAlloc
LocalFlags
LocalFree
LocalReAlloc
LocalSize
LockFile
LockResource
MapViewOfFile
Module32FirstW
Module32NextW
MoveFileA
MoveFileExA
MoveFileExW
MoveFileW
MulDiv
MultiByteToWideChar
OpenEventW
OpenFile
OpenFileMappingA
OpenFileMappingW
GetPriorityClass
GetLocaleInfoW
OutputDebugStringW
PeekNamedPipe
Process32FirstW
Process32NextW
PulseEvent
QueryDosDeviceW
QueryPerformanceCounter
QueryPerformanceFrequency
RaiseException
ReadConsoleA
ReadConsoleOutputCharacterA
ReadConsoleW
ReadFile
ReadProcessMemory
RegisterWaitForSingleObject
ReleaseMutex
RemoveDirectoryA
RemoveDirectoryW
ResetEvent
ResumeThread
RtlUnwind
SearchPathA
SearchPathW
SetCommConfig
SetConsoleCtrlHandler
SetConsoleCursorPosition
SetConsoleMode
SetConsoleScreenBufferSize
SetConsoleTextAttribute
SetCurrentDirectoryA
SetCurrentDirectoryW
SetDllDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
SetErrorMode
SetEvent
SetFileApisToOEM
SetFileAttributesA
SetFileAttributesW
SetFilePointer
SetFilePointerEx
SetFileTime
SetHandleCount
SetLastError
SetPriorityClass
SetStdHandle
SetThreadLocale
SetThreadPriority
SetThreadUILanguage
SetTimeZoneInformation
SetUnhandledExceptionFilter
SetVolumeLabelA
SignalObjectAndWait
SizeofResource
Sleep
SuspendThread
SwitchToThread
SystemTimeToFileTime
SystemTimeToTzSpecificLocalTime
TerminateProcess
TerminateThread
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
TryEnterCriticalSection
UnhandledExceptionFilter
UnlockFile
UnmapViewOfFile
UnregisterWait
VerSetConditionMask
VerifyVersionInfoW
VirtualAlloc
VirtualFree
VirtualProtect
VirtualQuery
VirtualQueryEx
WaitForMultipleObjects
WaitForMultipleObjectsEx
WaitForSingleObject
WideCharToMultiByte
WinExec
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileSectionA
WritePrivateProfileStringA
WritePrivateProfileStringW
WriteProcessMemory
WriteProfileStringA
WriteProfileStringW
_lclose
_lcreat
_llseek
_lopen
_lread
_lwrite
lstrcatA
lstrcatW
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrcpyW
lstrcpynA
lstrcpynW
lstrlenA
lstrlenW
GetOEMCP
GetNumberFormatW
GetNativeSystemInfo
GetModuleHandleW
GetModuleHandleExW
GetModuleFileNameW
GetModuleFileNameA
GetLongPathNameW
GetLogicalDrives
GetLogicalDriveStringsW
OpenMutexA
GetLogicalDriveStringsA
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameW
GetFullPathNameA
GetFileType
GetFileTime
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExW
GetFileAttributesA
GetExitCodeThread
GetExitCodeProcess
GetEnvironmentVariableW
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetDriveTypeW
GetDriveTypeA
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetDiskFreeSpaceA
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetCurrentDirectoryA
GetConsoleScreenBufferInfo
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetConsoleAliasExesW
GetComputerNameW
GetComputerNameA
GetCommandLineW
GetCommandLineA
GetCPInfoExW
GetCPInfo
GetACP
FreeResource
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FreeConsole
FormatMessageW
FormatMessageA
FlushInstructionCache
FlushFileBuffers
FindVolumeClose
FindResourceW
FindResourceExA
FindResourceA
FindNextVolumeW
FindNextFileW
FindNextFileA
FindFirstVolumeW
FindFirstFileW
FindFirstFileExW
FindFirstFileA
FindClose
FillConsoleOutputCharacterW
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExpandEnvironmentStringsW
ExpandEnvironmentStringsA
ExitThread
ExitProcess
EnumUILanguagesW
EnumSystemLocalesW
EnumSystemLocalesA
EnumSystemCodePagesA
EnumResourceNamesW
EnumCalendarInfoW
EnterCriticalSection
EncodePointer
DuplicateHandle
DnsHostnameToComputerNameW
DeviceIoControl
DeleteFileW
DeleteFileA
DeleteCriticalSection
DecodePointer
DebugBreak
DeactivateActCtx
CreateToolhelp32Snapshot
CreateThread
CreateRemoteThread
CreateProcessW
CreateProcessA
CreatePipe
CreateMutexW
CreateMutexA
CreateFileW
CreateFileMappingW
CreateFileMappingA
CreateFileA
CreateEventW
CreateDirectoryW
CreateDirectoryExW
CreateDirectoryA
CreateActCtxW
CopyFileW
CopyFileA
CompareStringW
CompareStringA
CompareFileTime
CloseHandle
Beep
BackupWrite
BackupRead
ActivateActCtx
LoadLibraryA
GetProcAddress
OpenProcess
GetModuleHandleA
user32
GetPropW
GetScrollInfo
GetScrollPos
GetScrollRange
GetSubMenu
GetSysColor
GetSystemMenu
GetTopWindow
GetWindow
GetWindowDC
GetWindowLongA
GetWindowLongW
GetWindowPlacement
GetWindowRect
GetWindowRgnBox
GetWindowTextA
GetWindowTextLengthA
GetWindowTextLengthW
GetWindowTextW
GetWindowThreadProcessId
GetWindowWord
GrayStringA
HideCaret
IMPGetIMEA
InflateRect
InsertMenuItemW
InsertMenuW
IntersectRect
InvalidateRect
IsChild
IsDialogMessageA
IsDialogMessageW
IsDlgButtonChecked
IsRectEmpty
IsWindowUnicode
IsWindowVisible
IsZoomed
KillTimer
LoadAcceleratorsW
LoadBitmapA
LoadBitmapW
LoadCursorA
LoadCursorW
LoadIconW
LoadImageA
LoadImageW
LoadKeyboardLayoutW
LoadMenuW
LoadStringA
LoadStringW
MapDialogRect
MapVirtualKeyW
MapWindowPoints
MessageBeep
MessageBoxA
MessageBoxW
ModifyMenuA
MonitorFromRect
MonitorFromWindow
MoveWindow
MsgWaitForMultipleObjects
MsgWaitForMultipleObjectsEx
NotifyWinEvent
OemToCharA
OffsetRect
OpenClipboard
OpenDesktopW
PeekMessageA
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
PostThreadMessageA
PostThreadMessageW
PtInRect
RedrawWindow
RegisterClassA
RegisterClassExW
RegisterClassW
RegisterClipboardFormatA
RegisterClipboardFormatW
RegisterWindowMessageA
RegisterWindowMessageW
ReleaseDC
RemoveMenu
RemovePropA
RemovePropW
ScreenToClient
ScrollWindow
SendDlgItemMessageA
SendMessageA
SendMessageTimeoutA
SendMessageW
SetActiveWindow
SetCapture
SetClassLongW
SetClipboardData
SetCursor
SetDlgItemTextA
SetFocus
SetForegroundWindow
SetMenu
SetMenuItemBitmaps
SetMenuItemInfoW
SetParent
SetProcessDPIAware
SetProcessWindowStation
SetPropA
SetPropW
SetRect
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
SetWindowsHookExW
ShowCaret
GetPropA
ShowScrollBar
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutA
TrackPopupMenu
TranslateAcceleratorW
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
WaitForInputIdle
WaitMessage
WinHelpA
WindowFromPoint
mouse_event
wsprintfA
wsprintfW
GetInputState
GetIconInfo
GetGUIThreadInfo
GetForegroundWindow
GetDlgItem
GetDlgCtrlID
GetDCEx
GetDC
GetCursorPos
GetCursor
GetClipboardData
GetClientRect
GetClassNameW
GetClassNameA
GetClassLongW
GetClassLongA
GetClassInfoW
GetClassInfoExW
GetClassInfoA
GetCapture
GetActiveWindow
FrameRect
FindWindowW
FindWindowExW
FindWindowA
FillRect
ExitWindowsEx
ExcludeUpdateRgn
EqualRect
EnumWindows
EnumThreadWindows
EnumClipboardFormats
EnumChildWindows
EndPaint
EndDialog
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextExW
DrawTextA
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DispatchMessageA
DialogBoxParamA
DestroyIcon
DestroyCursor
DeleteMenu
DefWindowProcW
DefWindowProcA
DefMDIChildProcW
DefFrameProcW
DefDlgProcA
DdeCreateStringHandleA
CreateWindowExW
CreateWindowExA
CreatePopupMenu
CreateIconIndirect
CreateIcon
CreateDialogParamW
CreateDialogParamA
CreateDialogIndirectParamA
CopyRect
CopyAcceleratorTableA
CloseClipboard
ClientToScreen
ChildWindowFromPoint
CheckRadioButton
CheckDlgButton
CharUpperW
CharUpperBuffW
CharToOemW
CharToOemA
CharPrevA
CharNextW
CharLowerBuffW
CharLowerA
CallWindowProcW
CallWindowProcA
CallNextHookEx
BringWindowToTop
BeginPaint
AttachThreadInput
AppendMenuA
AdjustWindowRectEx
ActivateKeyboardLayout
IsCharUpperW
GetMessageTime
IsClipboardFormatAvailable
CreateMenu
GetDoubleClickTime
CloseWindow
GetParent
CharUpperA
GetDialogBaseUnits
LoadCursorFromFileW
GetSysColorBrush
IsWindowEnabled
IsWindow
GetNextDlgTabItem
GetNextDlgGroupItem
GetMonitorInfoW
GetMessageW
GetMessagePos
GetMessageA
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetMenu
GetLastActivePopup
GetKeyboardType
GetKeyboardState
GetKeyboardLayoutNameW
GetKeyboardLayoutList
ShowOwnedPopups
GetKeyNameTextW
LoadIconA
CloseWindowStation
IsCharAlphaA
IsIconic
CountClipboardFormats
DestroyMenu
DestroyWindow
GetKeyState
OpenIcon
CharNextA
GetProcessWindowStation
InSendMessage
GetClipboardViewer
GetListBoxInfo
IsCharAlphaW
IsGUIThread
CharLowerW
IsCharAlphaNumericW
GetSystemMetrics
CopyIcon
GetFocus
GetDesktopWindow
ReleaseCapture
GetClipboardSequenceNumber
GetWindowContextHelpId
GetQueueStatus
GetKeyboardLayout
GetThreadDesktop
CheckMenuItem
gdi32
CreateFontIndirectA
CreateFontIndirectW
CreateRectRgn
CreateRoundRectRgn
DPtoLP
DeleteDC
DeleteMetaFile
DeleteObject
EngLineTo
EnumFontsW
EnumICMProfilesA
Escape
ExtEscape
ExtTextOutA
GdiConsoleTextOut
GdiEndPageEMF
GdiEntry3
GdiEntry9
GdiFixUpHandle
GdiGetLocalFont
GdiPlayJournal
GdiProcessSetup
GetBkColor
GetCharABCWidthsA
GetClipBox
GetDeviceCaps
GetEnhMetaFileHeader
GetMapMode
GetObjectA
GetPixel
GetTextColor
GetTextExtentPointA
CreateFontA
GetTextFaceAliasW
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LPtoDP
OffsetRgn
OffsetViewportOrgEx
PatBlt
Polyline
PtVisible
RectVisible
Rectangle
RestoreDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectClipRgn
SelectObject
SetBkColor
SetBkMode
SetMapMode
SetMetaFileBitsEx
SetPolyFillMode
SetRelAbs
SetTextCharacterExtra
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
StretchBlt
TextOutA
TextOutW
gdiPlaySpoolStream
CreateDIBitmap
CreateCompatibleBitmap
CreateBrushIndirect
CreateColorSpaceA
CreateBitmap
CombineRgn
BitBlt
BRUSHOBJ_pvAllocRbrush
AddFontResourceExW
CreateCompatibleDC
CreateMetaFileA
CloseFigure
SaveDC
GetEnhMetaFileA
RealizePalette
GetROP2
GetFontLanguageInfo
CreatePatternBrush
GetTextCharset
AddFontResourceW
GetLayout
GetColorSpace
CreateSolidBrush
CloseEnhMetaFile
GetTextFaceA
GetStockObject
GetBkMode
comdlg32
GetSaveFileNameA
GetFileTitleA
PrintDlgW
advapi32
RegOpenKeyW
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueA
RegSetValueExA
RegQueryValueExA
shell32
ExtractIconA
ExtractIconExW
SHAppBarMessage
SHBrowseForFolderA
SHFreeNameMappings
SHGetDiskFreeSpaceA
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetSpecialFolderPathW
SHLoadInProc
SHPathPrepareForWriteW
ShellExecuteA
ShellExecuteExA
ShellExecuteW
Shell_NotifyIconA
Shell_NotifyIconW
ExtractAssociatedIconExA
ole32
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
OleUninitialize
OleIsCurrentClipboard
OleInitialize
OleFlushClipboard
CreateILockBytesOnHGlobal
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
CoRegisterMessageFilter
CoInitialize
CoGetClassObject
CoFreeUnusedLibraries
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
comctl32
ImageList_DrawEx
ImageList_Draw
ImageList_GetIcon
ImageList_Create
ImageList_AddMasked
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_GetImageInfo
ImageList_LoadImageW
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Destroy
_TrackMouseEvent
imm32
ImmAssociateContext
ImmGetCompositionStringW
ImmGetContext
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionFontA
ImmSetCompositionFontW
ImmSetCompositionWindow
ImmSetOpenStatus
ImmGetCompositionStringA
Sections
.text Size: 29KB - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 49KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 192KB - Virtual size: 194KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 21KB - Virtual size: 21KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.htext Size: 16KB - Virtual size: 16KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE