Static task
static1
Behavioral task
behavioral1
Sample
f8adfc081b219da15ac894f3e880b4a5fcae276daedb100c3722c8860c1da826.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
f8adfc081b219da15ac894f3e880b4a5fcae276daedb100c3722c8860c1da826.exe
Resource
win10v2004-20240226-en
windows10-2004-x64
General
-
Target
f8adfc081b219da15ac894f3e880b4a5fcae276daedb100c3722c8860c1da826
-
Size
4.7MB
-
MD5
8a4528091cad4243e8e237cdc7d816d1
-
SHA1
a411625c498bd0aa887d87388909b09933ad7bc9
-
SHA256
f8adfc081b219da15ac894f3e880b4a5fcae276daedb100c3722c8860c1da826
-
SHA512
982a9f8d019f56a7894f3cec91df4a0b10c9ed6bbe99cec16898b67fd47e589d1d7ec80f90952ca381b2925e435518d6cbc5d3f1db204c2af98ed66ab6129610
-
SSDEEP
98304:xkTNZbAoX2sQjfTvhf7OYCHNgxiChQGPnRDC3NJ0ajGUfsDJco3XxS:xsasQfoghPnNaNJXzsDJco
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource f8adfc081b219da15ac894f3e880b4a5fcae276daedb100c3722c8860c1da826
Files
-
f8adfc081b219da15ac894f3e880b4a5fcae276daedb100c3722c8860c1da826.exe windows:6 windows x86 arch:x86
2295ec61a7a496b1700aef71b44d1ffb
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
version
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA
kernel32
WriteConsoleW
SetFilePointerEx
LCMapStringW
CompareStringW
GetTimeFormatW
GetDateFormatW
GetTimeZoneInformation
GetStdHandle
HeapQueryInformation
GetCommandLineW
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
SetStdHandle
VirtualQuery
VirtualAlloc
GetSystemInfo
GetFileType
CreateFileW
GetConsoleCP
ReadConsoleW
GetConsoleMode
RtlUnwind
InterlockedPushEntrySList
GetUserDefaultLangID
ExitProcess
CreateFileMappingA
UnmapViewOfFile
MapViewOfFile
lstrcpynW
EnumResourceLanguagesA
EnumResourceNamesA
EnumResourceTypesA
CreateThread
SetEnvironmentVariableA
InitializeCriticalSectionEx
RaiseException
OutputDebugStringW
FindFirstFileExA
IsValidCodePage
GetEnvironmentStringsW
GetFileAttributesExW
LoadResource
LockResource
SizeofResource
FindResourceW
WideCharToMultiByte
GetModuleFileNameA
CreateDirectoryA
FindClose
FindFirstFileA
FindNextFileA
GetFileAttributesA
RemoveDirectoryA
GetLastError
SetErrorMode
GetTempFileNameA
GetVolumeInformationA
GetComputerNameA
SystemTimeToTzSpecificLocalTime
FileTimeToSystemTime
MultiByteToWideChar
GetVersion
Sleep
lstrcpynA
lstrlenA
CopyFileA
GetProcAddress
LoadLibraryA
GetVersionExA
DecodePointer
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
GetProcessHeap
InitializeCriticalSectionAndSpinCount
DeleteCriticalSection
FindResourceA
SetLastError
QueryPerformanceCounter
QueryPerformanceFrequency
GetCurrentThread
GlobalAlloc
GlobalSize
GlobalUnlock
GlobalLock
GetSystemTimeAsFileTime
GetStartupInfoW
IsDebuggerPresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
IsProcessorFeaturePresent
SleepConditionVariableSRW
WakeAllConditionVariable
AcquireSRWLockExclusive
ReleaseSRWLockExclusive
InitializeSListHead
GetTickCount
SearchPathA
GetProfileIntA
GlobalFree
LocalFree
MulDiv
FreeEnvironmentStringsW
GetTickCount64
GetTempPathA
VerifyVersionInfoA
VerSetConditionMask
GetWindowsDirectoryA
FindResourceExW
GetCurrentDirectoryA
lstrcpyA
GetACP
GetCPInfo
GetOEMCP
VirtualProtect
GlobalFlags
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
LocalReAlloc
LocalAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
FormatMessageA
LeaveCriticalSection
EnterCriticalSection
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpA
ResumeThread
SetThreadPriority
CreateEventA
WaitForSingleObject
SetEvent
GetCurrentProcessId
CompareStringA
GlobalGetAtomNameA
GlobalFindAtomA
GlobalAddAtomA
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
FreeLibrary
GetSystemDirectoryW
GetCurrentThreadId
EncodePointer
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExA
FileTimeToLocalFileTime
GetThreadLocale
MoveFileA
lstrcmpiA
LoadLibraryW
LoadLibraryExA
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetCurrentProcess
DuplicateHandle
CloseHandle
OutputDebugStringA
WriteFile
UnlockFile
SetFilePointer
SetEndOfFile
ReadFile
LockFile
GetFullPathNameA
GetFileSize
FlushFileBuffers
DeleteFileA
CreateFileA
GetStringTypeW
user32
ToAsciiEx
GetKeyboardState
MapVirtualKeyExA
IsCharLowerA
GetKeyboardLayout
WaitMessage
PostThreadMessageA
GetComboBoxInfo
ReuseDDElParam
UnpackDDElParam
InsertMenuItemA
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
MonitorFromPoint
UpdateLayeredWindow
UnionRect
CopyIcon
SetCursorPos
BringWindowToTop
LoadMenuW
IsZoomed
DrawFrameControl
GetFocus
GetKeyState
GetParent
EnableWindow
GetSystemMetrics
DrawEdge
SetParent
SetWindowRgn
SetClassLongA
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
EnumDisplayMonitors
SetLayeredWindowAttributes
GetMenuDefaultItem
CreatePopupMenu
NotifyWinEvent
LoadCursorW
InvertRect
HideCaret
EnableScrollBar
DrawIconEx
IsRectEmpty
GetNextDlgGroupItem
MessageBeep
GetTabbedTextExtentA
IsClipboardFormatAvailable
DeleteMenu
GetDialogBaseUnits
LoadImageW
DestroyIcon
TrackMouseEvent
MapDialogRect
GetAsyncKeyState
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
GetUpdateRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
LoadAcceleratorsW
GetMenu
SetMenu
TrackPopupMenu
SetActiveWindow
BeginPaint
EndPaint
ValidateRect
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
GetDCEx
DrawIcon
GetClientRect
FillRect
SetRect
LoadIconW
SendMessageA
IsWindow
GetDC
ReleaseDC
GetWindowRect
PeekMessageA
IsIconic
GetActiveWindow
GetCapture
SetCapture
ReleaseCapture
DrawStateA
GetForegroundWindow
InvalidateRect
RedrawWindow
SetCursor
GetCursorPos
ClientToScreen
ScreenToClient
WindowFromPoint
GetSysColor
InvalidateRgn
SetWindowContextHelpId
CharNextA
SendMessageTimeoutA
SetFocus
GetKeyboardLayoutList
SetWindowLongW
GetWindowLongW
IsWindowUnicode
ShowCaret
GetClipboardData
GetCursor
CharUpperW
LoadStringA
LookupIconIdFromDirectoryEx
LoadBitmapA
GetMenuStringW
CreateIconIndirect
CreateIconFromResourceEx
DrawFocusRect
FrameRect
CopyRect
InflateRect
OffsetRect
GetWindowLongA
DestroyCursor
LoadImageA
GetIconInfo
SetTimer
KillTimer
UpdateWindow
LoadCursorA
TranslateMessage
DispatchMessageA
PostMessageA
SetForegroundWindow
FindWindowA
GetLastActivePopup
GetSystemMenu
AppendMenuA
RegisterWindowMessageA
UnregisterClassA
wsprintfA
RealChildWindowFromPoint
CopyImage
GetSysColorBrush
MapVirtualKeyA
GetKeyNameTextA
SystemParametersInfoA
GetMenuItemInfoA
DestroyMenu
ShowOwnedPopups
PostQuitMessage
GetMessageA
IntersectRect
GetDesktopWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
IsDialogMessageA
SetWindowTextA
CheckDlgButton
SetDlgItemTextA
MoveWindow
ShowWindow
LoadBitmapW
SetMenuItemInfoA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
SetRectEmpty
SendDlgItemMessageA
GetWindowDC
TabbedTextOutA
GrayStringA
DrawTextExA
DrawTextA
GetWindowThreadProcessId
VkKeyScanExA
GetMenuStringA
GetMenuState
GetSubMenu
GetMenuItemID
GetMenuItemCount
InsertMenuA
RemoveMenu
CharUpperA
UnhookWindowsHookEx
GetMessagePos
GetMessageTime
DefWindowProcA
CallWindowProcA
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
IsMenu
IsChild
DestroyWindow
SetWindowPos
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsWindowVisible
ShowScrollBar
IsWindowEnabled
GetMonitorInfoA
MonitorFromWindow
WinHelpA
GetScrollInfo
SetScrollInfo
LoadIconA
CallNextHookEx
GetDlgItem
GetDlgCtrlID
SetWindowsHookExA
GetWindow
GetTopWindow
GetClassNameA
GetClassLongA
SetWindowLongA
PtInRect
EqualRect
MapWindowPoints
MessageBoxA
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
RemovePropA
GetPropA
SetPropA
gdi32
SaveDC
RestoreDC
RectVisible
PtVisible
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetPixel
GetObjectType
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExcludeClipRect
Escape
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateDCA
CopyMetaFileA
ScaleWindowExtEx
DPtoLP
SetAbortProc
AbortDoc
EndPage
StartPage
EndDoc
StartDocA
GetDeviceCaps
SetViewportOrgEx
GetViewportOrgEx
CreateSolidBrush
CreateFontIndirectA
CreateHalftonePalette
GetDIBColorTable
CreatePalette
GetObjectA
SetTextColor
SetBkColor
SelectObject
DeleteObject
DeleteDC
CreateBitmap
BitBlt
GetTextExtentPoint32A
StretchBlt
Rectangle
GetStockObject
CreateCompatibleDC
CreateCompatibleBitmap
GetNearestPaletteIndex
SetTextAlign
GetSystemPaletteEntries
RealizePalette
GetBkColor
ExtSelectClipRgn
EnumFontFamiliesA
GetTextCharsetInfo
GetDIBits
SetPixel
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
CreateRoundRectRgn
LPtoDP
StretchDIBits
GetRgnBox
OffsetRgn
GetCurrentObject
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetBkMode
GetTextAlign
GetTextExtentPoint32W
GetTextFaceA
MoveToEx
TextOutA
ExtTextOutA
PolyBezierTo
SetViewportExtEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
SelectClipRgn
SelectPalette
SetBkMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
CreateDIBitmap
ScaleViewportExtEx
ExtTextOutW
StrokeAndFillPath
FillPath
CloseFigure
GetBitmapBits
ExtCreateRegion
StrokePath
EndPath
BeginPath
CreateBrushIndirect
CombineRgn
CreateRectRgnIndirect
GetMapMode
PatBlt
SetRectRgn
GetTextMetricsA
GetCharWidthA
GetPaletteEntries
Polyline
EnumFontFamiliesExA
msimg32
TransparentBlt
AlphaBlend
winspool.drv
ClosePrinter
DocumentPropertiesA
OpenPrinterA
advapi32
RegQueryValueA
RegEnumKeyA
IsTextUnicode
RegUnLoadKeyA
RegSetValueExA
RegSetKeySecurity
RegSaveKeyA
RegRestoreKeyA
RegReplaceKeyA
RegQueryValueExA
RegQueryInfoKeyA
RegOpenKeyExA
RegNotifyChangeKeyValue
RegLoadKeyA
RegGetKeySecurity
RegFlushKey
RegEnumValueA
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegConnectRegistryA
RegCloseKey
shell32
SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA
ShellExecuteA
ShellExecuteExA
SHGetFileInfoA
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHAppBarMessage
DragFinish
DragQueryFileA
SHFileOperationA
shlwapi
PathStripToRootA
PathFindExtensionA
PathFindFileNameA
PathIsUNCA
PathRemoveFileSpecW
StrFormatKBSizeA
PathRemoveFileSpecA
PathCombineA
uxtheme
DrawThemeText
GetThemeSysColor
GetWindowTheme
IsAppThemed
IsThemeBackgroundPartiallyTransparent
GetThemePartSize
GetCurrentThemeName
GetThemeColor
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeParentBackground
ole32
CreateILockBytesOnHGlobal
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
CoGetClassObject
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
OleDuplicateData
ReleaseStgMedium
CoUninitialize
CoCreateGuid
CoInitialize
CoInitializeEx
CoDisconnectObject
CLSIDFromString
CreateStreamOnHGlobal
OleFlushClipboard
OleIsCurrentClipboard
DoDragDrop
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
StgOpenStorageOnILockBytes
OleUninitialize
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
StgCreateDocfileOnILockBytes
OleRun
CoFreeUnusedLibraries
OleInitialize
oleaut32
VariantTimeToSystemTime
VarUdateFromDate
SysFreeString
SysStringByteLen
SysAllocStringByteLen
SysAllocStringLen
VariantInit
VariantClear
VariantChangeType
LoadTypeLi
SysStringLen
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
VarBstrFromDate
SysAllocString
OleLoadPicturePath
OleCreateFontIndirect
GetErrorInfo
oledlg
ord8
ord1
gdiplus
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipFree
GdipAlloc
GdiplusShutdown
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipFillPieI
GdipSetPathGradientBlend
GdipGetPathGradientPointCount
GdipSetPathGradientCenterPointI
GdipSetPathGradientSurroundColorsWithCount
GdipSetPathGradientCenterColor
GdipCreatePathGradientFromPath
GdipSetLineBlend
GdipCreateLineBrushI
GdipAddPathEllipseI
GdipCreatePath
GdipSetStringFormatTrimming
GdipSetStringFormatLineAlign
GdipCreateFontFromDC
GdipFillRectangle
GdipSetCompositingQuality
GdipSetCompositingMode
GdipCloneBrush
GdipGetStringFormatFlags
GdipSetStringFormatFlags
GdipCloneStringFormat
GdipDeleteStringFormat
GdipStringFormatGetGenericTypographic
GdipCreateStringFormat
GdipMeasureString
GdipDrawString
GdipGetFontSize
GdipCreateFromHDC
GdipGetFamily
GdipDeleteFont
GdipCreateFontFromLogfontW
GdipCreateFontFromLogfontA
GdipGetCellDescent
GdipGetCellAscent
GdipGetEmHeight
GdipDeleteFontFamily
GdipGetClipBoundsI
GdipGetClip
GdipSetClipRegion
GdipSetClipRectI
GdipDrawImageRectRect
GdipDrawImageRect
GdipDrawImage
GdipFillPath
GdipFillEllipse
GdipFillPolygonI
GdipFillPolygon
GdipFillRectangleI
GdipDrawPath
GdipDrawPolygonI
GdipDrawPolygon
GdipDrawEllipse
GdipDrawLinesI
GdipDrawLines
GdipDrawLineI
GdipSetPageUnit
GdipGetWorldTransform
GdipTranslateWorldTransform
GdipSetWorldTransform
GdipSetTextRenderingHint
GdipSetPixelOffsetMode
GdipSetSmoothingMode
GdipReleaseDC
GdipGetDC
GdipCreateFromHDC2
GdipSetImageAttributesColorKeys
GdipSetImageAttributesColorMatrix
GdipDisposeImageAttributes
GdipCreateImageAttributes
GdipGetPropertyItem
GdipGetPropertyItemSize
GdipImageRotateFlip
GdipImageSelectActiveFrame
GdipImageGetFrameCount
GdipImageGetFrameDimensionsList
GdipImageGetFrameDimensionsCount
GdipGetImageFlags
GdipLoadImageFromStream
GdipSetPenDashArray
GdipDeleteGraphics
GdipDrawImageRectI
GdipSetInterpolationMode
GdipGetFontStyle
GdipCreateLineBrush
GdipSetPenLineJoin
GdipSetPenEndCap
GdipSetPenStartCap
GdipDeletePen
GdipCreatePen2
GdipCreatePen1
GdipCreatePath2
GdipDeletePath
GdipCreateMatrix
GdipCloneMatrix
GdipDeleteMatrix
GdipTranslateMatrix
GdipScaleMatrix
GdipRotateMatrix
GdipShearMatrix
GdipInvertMatrix
GdipTransformMatrixPoints
GdipTransformMatrixPointsI
GdipCreateRegion
GdipDeleteRegion
GdipDeleteBrush
GdipCreateSolidFill
GdipSetLinePresetBlend
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
imm32
ImmGetContext
ImmReleaseContext
ImmGetOpenStatus
winmm
PlaySoundA
comctl32
ImageList_GetImageCount
ImageList_Add
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_DrawEx
ImageList_GetIcon
ImageList_GetIconSize
ImageList_GetImageInfo
_TrackMouseEvent
ImageList_Draw
ImageList_Destroy
Sections
.text Size: 3.1MB - Virtual size: 3.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 713KB - Virtual size: 712KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 61KB - Virtual size: 94KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 587KB - Virtual size: 586KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 268KB - Virtual size: 267KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ