E:\P4V\depot\Projects\KMC\StatusMonitor\Release\KDSSTMC.pdb
Static task
static1
Behavioral task
behavioral1
Sample
37e02c5103ce940a75439d07fd7f43e4945da7ffb17501b04a137a9969c858a1.exe
Resource
win7-20240221-en
General
-
Target
37e02c5103ce940a75439d07fd7f43e4945da7ffb17501b04a137a9969c858a1
-
Size
602KB
-
MD5
d7d05f1d921be037982d8c1fa20e6be5
-
SHA1
b31b9ea455ce1fc0ad6c8bcdd3a5d923b3b5a60a
-
SHA256
37e02c5103ce940a75439d07fd7f43e4945da7ffb17501b04a137a9969c858a1
-
SHA512
44b7bdb4e3edc8cff779d76730a23bebce25c07ba63a670d26bfbda4bb339dce490f46aba996e8dcbd8d68cbdccc73a1b2504dfaebccacb0a4bb3cc0344884af
-
SSDEEP
6144:r0+URhIb8NDgt1n6+p5XWv5QzQArJa+156g0EP4IZne+Mlcp:vUDIbOgt1n6IdWqHa+15lHZne+Mlcp
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 37e02c5103ce940a75439d07fd7f43e4945da7ffb17501b04a137a9969c858a1
Files
-
37e02c5103ce940a75439d07fd7f43e4945da7ffb17501b04a137a9969c858a1.exe windows:6 windows x86 arch:x86
5e32395a81db9da1704b77dc6d43eeac
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
xmllite
CreateXmlReader
CreateXmlReaderInputWithEncodingCodePage
winmm
PlaySoundW
comctl32
ImageList_Create
ImageList_Add
ImageList_Draw
InitCommonControlsEx
ImageList_Destroy
ImageList_LoadImageW
opengl32
glGetBooleanv
glLightfv
glEnable
glPushMatrix
glTranslatef
glRotatef
glMaterialfv
glPopMatrix
glBegin
glEnd
glNormal3fv
glVertex3fv
wglMakeCurrent
wglDeleteContext
glMatrixMode
glDepthFunc
glCullFace
glPolygonMode
glBlendFunc
glLoadIdentity
glViewport
glClearColor
glClear
glFinish
wglCreateContext
glLightf
glu32
gluPerspective
gdiplus
GdiplusStartup
GdiplusShutdown
kernel32
LockResource
GetSystemTime
CreateMutexW
GetLastError
CloseHandle
GetTickCount
InitializeCriticalSection
DeleteCriticalSection
MultiByteToWideChar
OutputDebugStringW
FindFirstFileW
FindClose
GetWindowsDirectoryW
SetCurrentDirectoryW
OpenMutexW
EnterCriticalSection
OutputDebugStringA
LeaveCriticalSection
GetUserGeoID
GetTimeZoneInformation
GetPrivateProfileIntW
CreateEventW
GlobalAlloc
GlobalFree
WideCharToMultiByte
RaiseException
DecodePointer
InitializeCriticalSectionAndSpinCount
CreateFileW
SetEvent
WaitForSingleObject
ReadFile
ResetEvent
GetPrivateProfileStringW
ConnectNamedPipe
DisconnectNamedPipe
WaitForMultipleObjects
LoadResource
GlobalLock
GlobalUnlock
ExpandEnvironmentStringsW
WriteFile
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
EncodePointer
RtlUnwind
InitializeSListHead
GetSystemTimeAsFileTime
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
IsDebuggerPresent
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FindNextFileW
IsValidCodePage
GetOEMCP
GetCPInfo
GetUserDefaultLCID
GetCurrentDirectoryW
GetModuleHandleW
GetModuleFileNameW
GetProcessHeap
GetOverlappedResult
FindResourceExW
FreeLibrary
GetProcAddress
LoadLibraryExW
CreateThread
ExitThread
GetCommandLineA
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
FindFirstFileExW
ResumeThread
FreeLibraryAndExitThread
GetModuleHandleExW
ExitProcess
GetStdHandle
GetACP
HeapFree
HeapAlloc
GetFileType
GetStringTypeW
GetConsoleMode
ReadConsoleW
SetFilePointerEx
LCMapStringW
GetConsoleCP
SetStdHandle
HeapSize
HeapReAlloc
FlushFileBuffers
WriteConsoleW
CreateNamedPipeW
SetEndOfFile
user32
EndDialog
SetFocus
IsWindowVisible
GetParent
GetDlgItemTextW
IsDlgButtonChecked
CheckDlgButton
SendDlgItemMessageW
SendMessageW
OffsetRect
EnableWindow
SetWindowTextW
MapWindowPoints
GetDlgItem
GetWindowRect
GetSysColor
DispatchMessageW
TranslateMessage
GetMessageW
ShowWindow
SetDlgItemTextW
GetSystemMetrics
IsWindow
DestroyWindow
DialogBoxIndirectParamW
SetScrollPos
ShowScrollBar
DrawTextExW
FillRect
GetClientRect
SetWindowPos
ScrollWindowEx
InvalidateRect
PtInRect
GetScrollInfo
EndPaint
BeginPaint
DefWindowProcW
SetWindowLongW
UpdateWindow
LoadBitmapW
ReleaseDC
GetDC
SetScrollInfo
RegisterClassExW
CreateWindowExW
LoadCursorW
GetWindowLongW
KillTimer
GetWindowPlacement
LoadStringW
LoadIconW
GetClassNameW
MessageBoxW
SetWindowPlacement
SystemParametersInfoW
EnumWindows
IntersectRect
SetTimer
PostQuitMessage
CreateDialogParamW
LoadImageW
DrawIconEx
FindWindowW
CreatePopupMenu
AppendMenuW
GetCursorPos
TrackPopupMenu
PostMessageW
DestroyMenu
InflateRect
IsIconic
SetForegroundWindow
wsprintfW
MoveWindow
GetFocus
gdi32
GetObjectW
CreateDIBSection
SetPixelFormat
CreatePen
GdiAlphaBlend
MoveToEx
LineTo
SetStretchBltMode
StretchDIBits
RoundRect
SetTextColor
StretchBlt
SetBkMode
BitBlt
SetLayout
GetLayout
GdiFlush
CreateFontW
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
DeleteDC
ChoosePixelFormat
CreateSolidBrush
DeleteObject
winspool.drv
EnumPrintersW
comdlg32
GetOpenFileNameW
advapi32
CryptDestroyHash
CryptHashData
CryptReleaseContext
CryptCreateHash
CryptAcquireContextW
RegOpenKeyExW
RegSetValueExW
RegCloseKey
RegQueryValueExW
RegCreateKeyExW
CryptGetHashParam
shell32
ShellExecuteW
ole32
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
CoInitialize
Sections
.text Size: 180KB - Virtual size: 180KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 57KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 22KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 181KB - Virtual size: 181KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text Size: 160KB - Virtual size: 160KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE