Static task
static1
Behavioral task
behavioral1
Sample
3cc7d97e07aa3c294b79fec9833263301ec0fbd470a5f4d912a2e0fe94cfae43.exe
Resource
win7-20240221-en
windows7-x64
Behavioral task
behavioral2
Sample
3cc7d97e07aa3c294b79fec9833263301ec0fbd470a5f4d912a2e0fe94cfae43.exe
Resource
win10v2004-20240508-en
windows10-2004-x64
General
-
Target
3cc7d97e07aa3c294b79fec9833263301ec0fbd470a5f4d912a2e0fe94cfae43.exe
-
Size
449KB
-
MD5
031747b3db3d959025175c25725396c0
-
SHA1
3c56e6654a499cec9a86f2fef8531d0839ff20b5
-
SHA256
3cc7d97e07aa3c294b79fec9833263301ec0fbd470a5f4d912a2e0fe94cfae43
-
SHA512
b27a4db97ec01db029c26b81f9a48ed384e9901842462c9033af3a9ef8696085ad46d4a282ab7eeaefdeb62e3f44e4122ab8745322035b72df8ece904ab0db2f
-
SSDEEP
12288:mjNKs6o71mSC56efVvsm76eLsPWhFC35MRy:mjNtZmnVvtrs0FC3f
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 3cc7d97e07aa3c294b79fec9833263301ec0fbd470a5f4d912a2e0fe94cfae43.exe
Files
-
3cc7d97e07aa3c294b79fec9833263301ec0fbd470a5f4d912a2e0fe94cfae43.exe.exe windows:4 windows x86 arch:x86
046802375f54b6c7261bf492a525f125
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
ResetEvent
GlobalGetAtomNameW
GetFileTime
GetTempPathA
EnumResourceNamesA
GetStartupInfoA
GetVersion
lstrcatA
SetVolumeLabelA
OpenFileMappingW
HeapCompact
GetProfileStringA
TransactNamedPipe
GetStringTypeA
FindFirstChangeNotificationA
GetPrivateProfileStructA
CreateNamedPipeA
GetHandleInformation
HeapLock
GetComputerNameA
FreeLibraryAndExitThread
VirtualQueryEx
FoldStringW
EnumCalendarInfoW
SetThreadAffinityMask
ReadDirectoryChangesW
WaitCommEvent
SetEvent
TlsFree
GetSystemInfo
VirtualFreeEx
EnumSystemCodePagesA
EnumTimeFormatsW
EnumResourceNamesW
GetConsoleTitleA
Heap32ListNext
LockFile
VirtualProtectEx
GlobalUnWire
OutputDebugStringW
SetEnvironmentVariableA
BeginUpdateResourceW
WaitForMultipleObjects
FoldStringA
ContinueDebugEvent
GetPrivateProfileIntW
OpenEventW
RemoveDirectoryA
GetTempFileNameA
GetMailslotInfo
SetThreadPriority
GetPriorityClass
MoveFileW
SetLocalTime
GetConsoleTitleW
lstrcpyA
FillConsoleOutputCharacterA
HeapDestroy
FlushConsoleInputBuffer
HeapUnlock
FindFirstChangeNotificationW
WriteConsoleOutputW
GetVolumeInformationA
SetConsoleTextAttribute
ReadConsoleA
FillConsoleOutputAttribute
BeginUpdateResourceA
LocalFileTimeToFileTime
Module32First
GlobalCompact
LoadLibraryExA
MapViewOfFileEx
GetLogicalDrives
SetFileTime
GetCalendarInfoA
PeekConsoleInputW
WritePrivateProfileSectionW
InitAtomTable
EnumSystemLocalesW
ReadConsoleOutputA
CreateDirectoryW
GetProcessPriorityBoost
GetDiskFreeSpaceA
GlobalDeleteAtom
GetThreadPriority
lstrcmpA
SetConsoleTitleA
UnhandledExceptionFilter
GetStringTypeExA
SetConsoleActiveScreenBuffer
SuspendThread
DeleteFileA
SetEndOfFile
GetPrivateProfileStringA
ExpandEnvironmentStringsA
FileTimeToLocalFileTime
ReadConsoleOutputCharacterW
GetProcessTimes
FlushViewOfFile
LockResource
LocalUnlock
FreeEnvironmentStringsA
FindAtomA
FillConsoleOutputCharacterW
GetDriveTypeW
FileTimeToDosDateTime
GetThreadPriorityBoost
WritePrivateProfileStructW
CreateDirectoryExW
TlsAlloc
SetLocaleInfoA
ReadFileScatter
LoadLibraryExW
LocalShrink
OpenEventA
GetNumberOfConsoleInputEvents
TlsGetValue
GetTimeZoneInformation
UnmapViewOfFile
GlobalReAlloc
GlobalFix
GetVersionExW
CreateThread
LeaveCriticalSection
ReleaseSemaphore
WaitForDebugEvent
GetModuleHandleW
lstrcpyn
GetCurrentDirectoryA
GetQueuedCompletionStatus
FindAtomW
PulseEvent
DeleteFileW
SetConsoleCursorInfo
OpenSemaphoreA
GetCurrentDirectoryW
GetNamedPipeInfo
WriteFile
SetWaitableTimer
GetDiskFreeSpaceExA
GetWindowsDirectoryA
GetFileAttributesA
SetThreadContext
GetStartupInfoW
GetShortPathNameW
CopyFileExA
GlobalLock
GetProfileSectionA
MultiByteToWideChar
GetPrivateProfileIntA
GetFileAttributesExA
Toolhelp32ReadProcessMemory
FormatMessageA
GetEnvironmentVariableA
GetPrivateProfileStringW
WriteConsoleW
SetConsoleTitleW
lstrcmpi
ReadConsoleInputA
GetProcessShutdownParameters
CreateSemaphoreA
GetDateFormatA
FreeResource
FindFirstFileA
IsValidLocale
AddAtomA
lstrcmpiA
GetProfileIntW
FindNextChangeNotification
GetWriteWatch
WaitForMultipleObjectsEx
GetProcessVersion
LoadResource
IsValidCodePage
GetProfileStringW
GetExitCodeProcess
WriteFileEx
GetEnvironmentStringsW
MoveFileExW
lstrcatW
OpenWaitableTimerW
DosDateTimeToFileTime
ReadFile
lstrlenA
ReadFileEx
GetLastError
UnlockFile
EnumCalendarInfoA
EnumTimeFormatsA
AllocConsole
FormatMessageW
GlobalMemoryStatus
GetSystemDefaultLCID
SearchPathW
GetConsoleMode
LocalHandle
IsDebuggerPresent
GetTempFileNameW
GetACP
EnumSystemCodePagesW
DebugBreak
FreeEnvironmentStringsW
lstrcpyW
CreateMutexW
GetLocaleInfoA
GetShortPathNameA
InterlockedDecrement
DisconnectNamedPipe
FindNextFileW
WaitNamedPipeA
Process32Next
EnumResourceLanguagesA
DeleteCriticalSection
CreateProcessA
FindResourceExA
GlobalGetAtomNameA
WriteConsoleOutputA
GetFullPathNameW
FindFirstFileExW
OpenProcess
SetPriorityClass
EnumResourceLanguagesW
GetTimeFormatW
CreateDirectoryExA
WaitForSingleObjectEx
ReleaseMutex
GetCurrentThread
FindResourceW
DebugActiveProcess
ResumeThread
EnumCalendarInfoExA
OpenFileMappingA
SetConsoleCursorPosition
CreateWaitableTimerW
AddAtomW
CloseHandle
FlushInstructionCache
EscapeCommFunction
GetAtomNameA
GetAtomNameW
DefineDosDeviceA
CreateFileA
OpenSemaphoreW
EnumResourceTypesW
ReadConsoleInputW
LocalLock
TerminateThread
GetFileInformationByHandle
DeleteAtom
WinExec
GetCommandLineA
GetVersionExA
LoadModule
GetCommandLineW
GetPrivateProfileSectionW
GetSystemPowerStatus
EraseTape
InitializeCriticalSection
GetThreadContext
GetExitCodeThread
MulDiv
GetFileType
TryEnterCriticalSection
Module32Next
GlobalFindAtomW
LocalAlloc
SetEnvironmentVariableW
GetLogicalDriveStringsA
SleepEx
GetConsoleScreenBufferInfo
VirtualProtect
CreateConsoleScreenBuffer
WritePrivateProfileStringA
ReadProcessMemory
EnumSystemLocalesA
GlobalFindAtomA
EnumDateFormatsW
MoveFileA
ConnectNamedPipe
FindNextFileA
SetLocaleInfoW
SetThreadPriorityBoost
SetComputerNameA
SetVolumeLabelW
SetFileAttributesA
GetCompressedFileSizeW
InitializeCriticalSectionAndSpinCount
EnumResourceTypesA
WriteProfileStringA
HeapWalk
GetCompressedFileSizeA
EnterCriticalSection
LocalSize
GlobalFlags
GetSystemDirectoryW
lstrcmpiW
Heap32Next
lstrcat
GetSystemTimeAdjustment
advapi32
CryptSetProviderA
RegOpenKeyW
RegCreateKeyExA
CryptExportKey
RegDeleteValueW
RegSetValueA
LookupSecurityDescriptorPartsW
LookupSecurityDescriptorPartsA
LookupAccountNameA
CryptCreateHash
RegDeleteKeyA
RegQueryInfoKeyW
RegSetValueExW
CryptSignHashW
RegCreateKeyExW
RegEnumValueA
CryptSignHashA
CryptDecrypt
GetUserNameW
RegLoadKeyA
CryptReleaseContext
gdi32
GetCharWidthFloatW
TextOutA
SetTextAlign
CopyMetaFileA
MaskBlt
SetWindowOrgEx
GdiSetBatchLimit
SetMetaRgn
CreateDIBSection
PolyTextOutW
GetTextExtentPoint32A
AbortDoc
SetMapMode
Rectangle
GetNearestPaletteIndex
DeleteMetaFile
GetROP2
UnrealizeObject
CreateEllipticRgn
GetKerningPairsA
PlayMetaFileRecord
ExtCreateRegion
CheckColorsInGamut
LPtoDP
CloseMetaFile
GetCharWidth32W
CreateDIBPatternBrush
GetStretchBltMode
BitBlt
GetObjectW
EnumFontsW
UpdateICMRegKeyA
EnableEUDC
ColorMatchToTarget
GetOutlineTextMetricsA
GetPolyFillMode
GdiFlush
GetObjectType
UpdateICMRegKeyW
GetLogColorSpaceW
CreateColorSpaceA
GetDeviceCaps
GetClipBox
GetTextExtentPoint32W
GetBkMode
CreateDiscardableBitmap
EnumFontFamiliesW
SetMapperFlags
IntersectClipRect
CreateColorSpaceW
EnumMetaFile
SetDIBits
OffsetClipRgn
SetICMProfileW
GetEnhMetaFileA
ChoosePixelFormat
GetRgnBox
GetSystemPaletteUse
GdiPlayJournal
GetGlyphOutline
MoveToEx
PtVisible
SetColorSpace
DeleteDC
GetTextFaceW
GetEnhMetaFileW
ExtSelectClipRgn
ExtEscape
StartDocA
GetTextCharset
SetPixel
StrokeAndFillPath
EnumFontFamiliesExA
EnumICMProfilesA
FixBrushOrgEx
CreateDCW
Arc
GetDIBits
DPtoLP
OffsetRgn
OffsetWindowOrgEx
GetOutlineTextMetricsW
GdiPlayScript
CreateBitmap
CreatePalette
SetBrushOrgEx
SetBitmapBits
GetWinMetaFileBits
SetAbortProc
GetPixelFormat
CopyEnhMetaFileA
GetLogColorSpaceA
GetPaletteEntries
DeviceCapabilitiesExA
GetMapMode
ColorCorrectPalette
GetCharABCWidthsW
AngleArc
RealizePalette
CreateScalableFontResourceA
WidenPath
GetFontData
GetEnhMetaFileBits
GetPixel
Pie
SetViewportOrgEx
FillRgn
GetBoundsRect
EnumObjects
CreateCompatibleBitmap
SetColorAdjustment
CreateDIBitmap
FillPath
SetTextColor
EnumEnhMetaFile
SetBoundsRect
GetCharWidthFloatA
SetLayout
ExtTextOutW
LineTo
GetTextFaceA
EnumFontFamiliesA
SetWorldTransform
CloseEnhMetaFile
PolyPolygon
PlayMetaFile
GetGlyphOutlineW
GetRegionData
PolyPolyline
CreateICW
StartDocW
CreateEnhMetaFileW
GetCharWidthW
AnimatePalette
GetDIBColorTable
ResizePalette
CreatePolygonRgn
CreateFontA
PaintRgn
GetRandomRgn
AddFontResourceW
RectVisible
SaveDC
CreatePen
SetGraphicsMode
GetCharABCWidthsFloatW
CancelDC
RestoreDC
SetTextJustification
GetSystemPaletteEntries
DescribePixelFormat
gdiPlaySpoolStream
CreateMetaFileA
GetArcDirection
GetLayout
SetBkColor
GetDeviceGammaRamp
SetRectRgn
GetCharABCWidthsFloatA
ArcTo
CreateFontIndirectA
EnumICMProfilesW
DeleteObject
GetCharacterPlacementA
PlayEnhMetaFileRecord
GdiPlayDCScript
SetMiterLimit
GetTextExtentExPointW
GetTextExtentExPointA
GetTextColor
GdiGetBatchLimit
CreateHatchBrush
SetICMProfileA
PolyBezierTo
GetGraphicsMode
SetTextCharacterExtra
PathToRegion
CreatePenIndirect
ScaleViewportExtEx
CloseFigure
GetColorAdjustment
SetPixelFormat
StretchBlt
CopyMetaFileW
DeleteColorSpace
GetCurrentObject
ResetDCW
CreateCompatibleDC
GetGlyphOutlineA
PatBlt
CreatePolyPolygonRgn
DeleteEnhMetaFile
GetICMProfileW
SetSystemPaletteUse
SetPolyFillMode
GetWorldTransform
SetFontEnumeration
SetWindowExtEx
PolyBezier
GetWindowOrgEx
SetViewportExtEx
StretchDIBits
CreateEnhMetaFileA
PolyDraw
Polygon
ExtCreatePen
GetNearestColor
CreateDCA
TextOutW
SetICMMode
CreatePatternBrush
SetArcDirection
RemoveFontResourceA
CreateHalftonePalette
SelectClipRgn
GetViewportOrgEx
EnumFontFamiliesExW
Chord
CreateICA
PolyTextOutA
GetEnhMetaFileDescriptionA
SetBkMode
PlgBlt
GetEnhMetaFileDescriptionW
Escape
CreateFontW
Ellipse
EndPath
SelectPalette
GetAspectRatioFilterEx
GetBitmapDimensionEx
GetTextMetricsA
SetMagicColors
SetDIBColorTable
SetStretchBltMode
GetMetaFileBitsEx
PlayEnhMetaFile
SelectObject
DrawEscape
ExcludeClipRect
CopyEnhMetaFileW
SetPaletteEntries
SetMetaFileBitsEx
RemoveFontResourceW
InvertRgn
PtInRegion
FloodFill
OffsetViewportOrgEx
SetWinMetaFileBits
ExtFloodFill
FrameRgn
StartPage
GetMetaRgn
CreateSolidBrush
EnumFontsA
GetObjectA
CreateBrushIndirect
SelectClipPath
ResetDCA
LineDDA
SetROP2
SetPixelV
GetCharacterPlacementW
GetTextAlign
GetMetaFileA
BeginPath
GetMiterLimit
CombineRgn
RectInRegion
GetViewportExtEx
GetClipRgn
RoundRect
AbortPath
SwapBuffers
GetBitmapBits
TranslateCharsetInfo
GetKerningPairs
ModifyWorldTransform
CreateBitmapIndirect
GetTextCharsetInfo
GetTextExtentPointW
GetKerningPairsW
CreateFontIndirectW
GetICMProfileA
GetCharABCWidthsA
shell32
DuplicateIcon
SHGetDiskFreeSpaceA
ExtractAssociatedIconW
FindExecutableW
SHGetPathFromIDListW
SHGetDataFromIDListW
InternalExtractIconListA
SHGetSpecialFolderLocation
DragAcceptFiles
ShellExecuteEx
SHBrowseForFolderA
ShellExecuteExA
DoEnvironmentSubstA
ExtractAssociatedIconExW
SHChangeNotify
ExtractIconEx
SHFileOperation
FindExecutableA
CommandLineToArgvW
SHFreeNameMappings
SHLoadInProc
RealShellExecuteA
DoEnvironmentSubstW
ShellExecuteA
SheChangeDirA
SHGetSpecialFolderPathA
SheChangeDirExW
SHQueryRecycleBinA
RealShellExecuteW
RealShellExecuteExA
ExtractIconExW
ShellAboutA
SHFileOperationA
DragQueryFileA
SHGetDataFromIDListA
CheckEscapesW
SHEmptyRecycleBinA
SheGetDirA
SHGetDesktopFolder
ShellExecuteW
SHEmptyRecycleBinW
SHBrowseForFolderW
SHInvokePrinterCommandW
DragQueryFileW
SHGetMalloc
SHAppBarMessage
DragQueryFileAorW
wininet
InternetGetCookieW
FtpOpenFileW
FtpRenameFileW
FindFirstUrlCacheEntryW
FtpRemoveDirectoryA
InternetConnectW
GopherCreateLocatorA
InternetQueryFortezzaStatus
GetUrlCacheEntryInfoA
FindNextUrlCacheEntryExA
InternetSetDialStateA
InternetTimeFromSystemTimeW
UnlockUrlCacheEntryFileA
HttpEndRequestA
InternetCombineUrlW
InternetAutodialHangup
FtpCommandW
SetUrlCacheEntryInfoW
DeleteUrlCacheGroup
FtpFindFirstFileW
GopherCreateLocatorW
InternetGetCertByURL
CreateUrlCacheEntryW
InternetGoOnline
GetUrlCacheEntryInfoExW
ShowX509EncodedCertificate
FtpRemoveDirectoryW
DeleteUrlCacheContainerA
InternetGoOnlineW
InternetCrackUrlA
UnlockUrlCacheEntryStream
FtpSetCurrentDirectoryW
SetUrlCacheConfigInfoW
InternetReadFileExW
GetUrlCacheConfigInfoW
InternetFortezzaCommand
InternetGetLastResponseInfoW
InternetOpenW
UnlockUrlCacheEntryFileW
DeleteUrlCacheEntry
GetUrlCacheConfigInfoA
RetrieveUrlCacheEntryFileW
InternetWriteFileExA
LoadUrlCacheContent
CommitUrlCacheEntryA
InternetSetOptionA
InternetConfirmZoneCrossing
InternetAutodial
InternetSecurityProtocolToStringA
FindNextUrlCacheGroup
ShowCertificate
GopherGetAttributeA
InternetOpenA
GopherOpenFileW
InternetWriteFileExW
InternetConfirmZoneCrossingA
FtpPutFileW
CommitUrlCacheEntryW
FindFirstUrlCacheEntryExW
InternetAlgIdToStringA
SetUrlCacheEntryGroup
FtpFindFirstFileA
GetUrlCacheGroupAttributeW
InternetDialW
FtpCreateDirectoryA
InternetCombineUrlA
DeleteUrlCacheEntryA
InternetDial
InternetQueryOptionW
HttpSendRequestExA
InternetSecurityProtocolToStringW
InternetFindNextFileA
FindFirstUrlCacheGroup
InternetCanonicalizeUrlW
FindFirstUrlCacheEntryExA
InternetGetLastResponseInfoA
RunOnceUrlCache
IncrementUrlCacheHeaderData
FreeUrlCacheSpaceW
FtpGetFileSize
IsUrlCacheEntryExpiredA
InternetWriteFile
FtpOpenFileA
InternetCloseHandle
InternetGetConnectedStateExW
GopherGetAttributeW
InternetConnectA
user32
WINNLSGetEnableStatus
UnregisterClassA
SetDlgItemInt
EnumPropsA
GetParent
TrackPopupMenuEx
GetMessageExtraInfo
GetDC
GetMessageW
MsgWaitForMultipleObjectsEx
FlashWindow
SendDlgItemMessageA
EnumPropsW
WINNLSGetIMEHotkey
MenuItemFromPoint
SetClipboardViewer
RedrawWindow
CloseDesktop
FillRect
ShowOwnedPopups
SetCursor
IsIconic
MapVirtualKeyExW
RegisterHotKey
RemovePropA
SetMenuContextHelpId
DlgDirListComboBoxW
EnumDesktopsW
ChangeMenuW
DdeConnectList
DrawFrameControl
GetKeyboardType
WindowFromDC
ShowWindow
DdeFreeDataHandle
LoadMenuIndirectW
FindWindowExA
DrawTextA
GetClipboardSequenceNumber
ToUnicodeEx
GetDoubleClickTime
DlgDirSelectExA
SetDebugErrorLevel
CharNextA
MoveWindow
DdeInitializeW
ValidateRgn
PostMessageA
RegisterClassExA
EnumClipboardFormats
TileChildWindows
ArrangeIconicWindows
ScreenToClient
RegisterClassA
SetUserObjectInformationW
MapDialogRect
CreateIconIndirect
LoadCursorW
RealGetWindowClass
AttachThreadInput
OemToCharBuffW
DdeGetLastError
IsMenu
SetActiveWindow
DdeCreateStringHandleW
UnionRect
GetCursor
DeleteMenu
SetDeskWallpaper
CloseWindow
CharLowerW
EndPaint
IsWindowVisible
SetMessageQueue
GetAncestor
Sections
.text Size: 128KB - Virtual size: 128KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 296KB - Virtual size: 295KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 18KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.bss Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE