c:\Temp\HProMICS\AsTrmM\Release.143\Win32\AsTrmM.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
1e4c13cd4177f382fcdb1d7446bbfeb0N.exe
Resource
win7-20240704-en
windows7-x64
4 signatures
120 seconds
Behavioral task
behavioral2
Sample
1e4c13cd4177f382fcdb1d7446bbfeb0N.exe
Resource
win10v2004-20240709-en
windows10-2004-x64
4 signatures
120 seconds
General
-
Target
1e4c13cd4177f382fcdb1d7446bbfeb0N.exe
-
Size
4.5MB
-
MD5
1e4c13cd4177f382fcdb1d7446bbfeb0
-
SHA1
ca42dffbf605f1856c9351106f53b83b0fec8205
-
SHA256
674316b2a84fecfd8d06177db02700941c0ae88d8f1a7098a43d5732531507fb
-
SHA512
41f8e3a321fe8dc4a7b84e8d09ba858b47d6e23a0cc5c113f6748b07c1fa0f009eeb5d67122959e875e27a79d7b2634344baabf7e87591799e9c4ba087e85af3
-
SSDEEP
98304:zQ6t6lzU7pXeBYoIRJVw7WsBw06s2F/PE9LeA7A4WvOb:zQC6lIzoabwJeb4WvO
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 1e4c13cd4177f382fcdb1d7446bbfeb0N.exe
Files
-
1e4c13cd4177f382fcdb1d7446bbfeb0N.exe.exe windows:6 windows x86 arch:x86
ea05b0a28f9e70debf9a7ba477ab9d8a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
version
GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW
gdiplus
GdipCreateFromHDC
GdipDeleteGraphics
GdipCreateLineBrushI
GdipFillRectangle
GdipFillRectangleI
GdipFillPie
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdiplusShutdown
GdipSetSmoothingMode
GdipFree
GdipSetInterpolationMode
GdipCreateBitmapFromHBITMAP
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromFile
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageGraphicsContext
GdipDisposeImage
GdipCloneImage
GdiplusStartup
GdipDrawImageRectI
GdipGetImageWidth
GdipAlloc
kernel32
GlobalReAlloc
GlobalHandle
LocalReAlloc
GlobalGetAtomNameW
GetAtomNameW
GlobalFlags
GetLocaleInfoW
GetSystemDefaultUILanguage
GetUserDefaultUILanguage
VirtualProtect
lstrcpyW
FindResourceExW
GetProfileIntW
SearchPathW
GetTempFileNameW
ReplaceFileW
LocalLock
LocalUnlock
ReleaseSRWLockExclusive
AcquireSRWLockExclusive
WakeAllConditionVariable
SleepConditionVariableSRW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TerminateProcess
IsProcessorFeaturePresent
QueryPerformanceCounter
GetSystemTimeAsFileTime
TlsSetValue
IsDebuggerPresent
GetStartupInfoW
GetStdHandle
QueryPerformanceFrequency
SetStdHandle
HeapQueryInformation
VirtualQuery
VirtualAlloc
GetCommandLineW
GetCommandLineA
GetModuleHandleExW
FreeLibraryAndExitThread
ExitThread
CreateThread
PeekNamedPipe
GetFileType
GetFileInformationByHandle
InterlockedFlushSList
InterlockedPushEntrySList
RtlUnwind
GetCPInfo
CompareStringEx
LCMapStringEx
GetLocaleInfoEx
GetStringTypeW
FormatMessageA
RaiseException
OutputDebugStringW
TlsFree
TlsGetValue
TlsAlloc
GetThreadLocale
GetStringTypeExW
MoveFileW
lstrcmpiW
DuplicateHandle
UnlockFile
SetFilePointer
SetEndOfFile
LockFile
GetShortPathNameW
GetFullPathNameW
FlushFileBuffers
DeleteFileW
CreateSemaphoreW
WaitForMultipleObjects
ReleaseMutex
GetTickCount64
InitializeCriticalSection
CompareStringA
lstrcmpA
GetVersionExW
GetCurrentThread
ResumeThread
SuspendThread
SetThreadPriority
CreateEventW
SetEvent
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
lstrcmpW
GlobalDeleteAtom
LoadLibraryExW
GetCurrentThreadId
EncodePointer
OutputDebugStringA
FindNextFileW
FindFirstFileW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
SetFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
CreateFileW
FormatMessageW
MulDiv
GlobalSize
SetLastError
CreateSemaphoreA
WaitForSingleObject
ReleaseSemaphore
OpenSemaphoreA
SearchPathA
FindClose
GetVersion
GetFileSize
LoadLibraryA
DeviceIoControl
FindNextFileA
GetModuleHandleA
GetLocalTime
LocalFree
LocalAlloc
GetModuleFileNameA
WriteFile
CreateFileA
SystemTimeToFileTime
GetSystemTime
SetErrorMode
GetEnvironmentVariableA
GetCurrentProcessId
ReadFile
FindFirstFileA
InitializeCriticalSectionEx
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
HeapDestroy
DecodePointer
GetUserDefaultLCID
LCMapStringW
lstrlenW
lstrcpynW
LoadLibraryW
FreeLibrary
GetSystemInfo
GlobalMemoryStatusEx
OpenProcess
CreateProcessW
DeleteCriticalSection
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
RemoveDirectoryW
CreateDirectoryW
GetACP
GetWindowsDirectoryW
GetSystemDirectoryW
WideCharToMultiByte
GetComputerNameW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
GetVolumeInformationW
GetLogicalDrives
GetDriveTypeW
GetDiskFreeSpaceW
MultiByteToWideChar
VerifyVersionInfoW
GlobalFree
GlobalLock
GlobalUnlock
GlobalAlloc
GetProcAddress
GetModuleHandleW
GetTickCount
GetCurrentProcess
VerSetConditionMask
CopyFileW
FindResourceW
SizeofResource
LockResource
LoadResource
GetModuleFileNameW
Sleep
CreateMutexW
GetLastError
CloseHandle
GetTempPathW
SetFileAttributesW
GetLongPathNameW
GetFileAttributesW
GetCurrentDirectoryW
ExitProcess
GetDateFormatW
GetTimeFormatW
IsValidLocale
EnumSystemLocalesW
GetTimeZoneInformation
SetCurrentDirectoryW
GetConsoleOutputCP
GetConsoleMode
SetFilePointerEx
ReadConsoleW
FindFirstFileExW
IsValidCodePage
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
WriteConsoleW
SetEnvironmentVariableW
SetConsoleCtrlHandler
InitializeSListHead
user32
SetTimer
DeleteMenu
GetDialogBaseUnits
GetAsyncKeyState
CopyImage
RealChildWindowFromPoint
LoadCursorW
GetSysColorBrush
IsZoomed
CharUpperW
IsDialogMessageW
SetWindowTextW
ScrollWindowEx
SendDlgItemMessageW
IsDlgButtonChecked
CheckRadioButton
CheckDlgButton
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
SetDlgItemInt
ShowWindow
SendDlgItemMessageA
GetMenuItemInfoW
DestroyMenu
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
DrawTextW
MsgWaitForMultipleObjectsEx
MapDialogRect
SetWindowContextHelpId
GetWindowThreadProcessId
RegisterClipboardFormatW
SetCursor
ShowOwnedPopups
PostQuitMessage
GetCursorPos
TranslateMessage
GetMessageW
IsWindowEnabled
GetActiveWindow
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamW
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
CallNextHookEx
SetWindowsHookExW
GetLastActivePopup
GetTopWindow
GetClassLongW
SetWindowLongW
GetWindowLongW
PtInRect
EqualRect
MapWindowPoints
ScreenToClient
AdjustWindowRectEx
GetWindowTextLengthW
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
KillTimer
EndPaint
BeginPaint
GetForegroundWindow
SetActiveWindow
UpdateWindow
TrackPopupMenuEx
TrackPopupMenu
SetMenu
GetMenu
TranslateMDISysAccel
GetKeyState
SetFocus
GetDlgCtrlID
GetDlgItem
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
SetWindowPos
DestroyWindow
IsChild
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetMessagePos
DispatchMessageW
RegisterWindowMessageW
LoadBitmapW
GetParent
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetFocus
UnhookWindowsHookEx
RemoveMenu
InsertMenuW
GetMenuStringW
UnregisterClassW
SystemParametersInfoW
GetWindow
GetClassNameW
EnumWindows
DefMDIChildProcW
DefFrameProcW
EnumChildWindows
GetDCEx
IsIconic
SetForegroundWindow
FindWindowW
SendMessageW
IsRectEmpty
OffsetRect
ClientToScreen
GetWindowTextW
InvalidateRect
SetMenuDefaultItem
ModifyMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
DrawMenuBar
GetMenuState
LoadMenuW
IsWindowVisible
PeekMessageW
SetRectEmpty
DestroyIcon
PostThreadMessageW
WaitMessage
SetCapture
ReleaseCapture
WindowFromPoint
CharNextW
CopyAcceleratorTableW
InvalidateRgn
SetRect
IntersectRect
GetNextDlgGroupItem
TrackMouseEvent
LoadImageW
BringWindowToTop
SubtractRect
GetTabbedTextExtentW
DestroyCursor
GetWindowRgn
WindowFromDC
CreateMenu
InSendMessage
MonitorFromRect
ValidateRect
GetUpdateRect
IsClipboardFormatAvailable
CharUpperBuffW
GetDoubleClickTime
LockWindowUpdate
DestroyAcceleratorTable
CreateAcceleratorTableW
GetKeyboardState
ToUnicodeEx
MapVirtualKeyExW
IsCharLowerW
GetKeyboardLayout
PostMessageW
IsWindow
MoveWindow
OpenClipboard
CloseClipboard
SetClipboardData
EmptyClipboard
EnableWindow
GetSystemMetrics
GetSystemMenu
AppendMenuW
DrawIcon
GetDC
ReleaseDC
GetClientRect
GetWindowRect
MessageBoxW
MessageBeep
GetDesktopWindow
LoadIconW
GetSysColor
FillRect
CopyRect
InflateRect
wsprintfW
GetComboBoxInfo
MonitorFromPoint
UpdateLayeredWindow
UnionRect
SendNotifyMessageW
FrameRect
CopyIcon
SetCursorPos
DrawFrameControl
DrawEdge
SetParent
SetWindowRgn
SetClassLongW
DrawStateW
EnumDisplayMonitors
SetLayeredWindowAttributes
GetKeyNameTextW
MapVirtualKeyW
NotifyWinEvent
InvertRect
HideCaret
EnableScrollBar
GetIconInfo
DrawIconEx
DrawFocusRect
GetMenuDefaultItem
ReuseDDElParam
UnpackDDElParam
GetMenuBarInfo
InsertMenuItemW
CreatePopupMenu
TranslateAcceleratorW
GetCapture
LoadAcceleratorsW
gdi32
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Escape
ExcludeClipRect
GetClipBox
GetClipRgn
GetCurrentPositionEx
GetObjectType
GetPixel
GetStockObject
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
OffsetClipRgn
PlayMetaFile
PtVisible
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetMapperFlags
SetGraphicsMode
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextCharacterExtra
SetTextAlign
SetTextJustification
PlayMetaFileRecord
EnumMetaFile
SetWorldTransform
ModifyWorldTransform
SetColorAdjustment
StartDocW
ArcTo
PolyDraw
SelectClipPath
SetArcDirection
ExtCreatePen
MoveToEx
TextOutW
ExtTextOutW
PolyBezierTo
PolylineTo
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreatePatternBrush
GetTextExtentPoint32W
GetTextMetricsW
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
CombineRgn
GetMapMode
PatBlt
SetRectRgn
DPtoLP
CreateCompatibleBitmap
EnumFontFamiliesExW
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetDIBits
SetPixel
StretchBlt
CreateDIBSection
SetDIBColorTable
CreateEllipticRgn
CreatePolygonRgn
Polyline
CreateRoundRectRgn
LPtoDP
CreateFontW
GetCharWidthW
StretchDIBits
Rectangle
OffsetRgn
GetCurrentObject
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
SetPaletteEntries
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
CloseMetaFile
CreateMetaFileW
DeleteMetaFile
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextFaceW
CreatePen
CreateHatchBrush
CreateDIBPatternBrushPt
CreateCompatibleDC
BitBlt
GetObjectW
SetTextColor
SetBkColor
CreateBitmap
CreateDCW
CopyMetaFileW
SelectObject
RoundRect
Ellipse
CreateFontIndirectW
Polygon
GetDeviceCaps
msimg32
AlphaBlend
TransparentBlt
winspool.drv
ClosePrinter
DocumentPropertiesW
OpenPrinterW
GetJobW
advapi32
SetFileSecurityW
GetFileSecurityW
RegQueryValueW
RegEnumKeyW
RegSetValueW
RegSetValueExW
RegQueryValueExW
RegOpenKeyExW
RegEnumValueW
RegEnumKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
GetUserNameW
shell32
ShellExecuteW
SHGetMalloc
SHGetPathFromIDListW
SHBrowseForFolderW
SHGetDesktopFolder
SHGetFileInfoW
SHAddToRecentDocs
ExtractIconW
DragQueryFileW
ShellExecuteExW
SHAppBarMessage
SHGetSpecialFolderLocation
DragFinish
SHGetFolderPathW
shlwapi
PathRemoveExtensionW
UrlUnescapeW
PathFindExtensionW
PathStripToRootW
PathRemoveFileSpecW
StrFormatKBSizeW
PathIsUNCW
PathFindFileNameW
uxtheme
GetCurrentThemeName
GetThemeColor
DrawThemeParentBackground
IsAppThemed
GetWindowTheme
GetThemePartSize
DrawThemeBackground
CloseThemeData
OpenThemeData
DrawThemeText
IsThemeBackgroundPartiallyTransparent
GetThemeSysColor
ole32
OleCreateFromFile
OleLoad
OleSave
OleSaveToStream
OleSetContainedObject
OleGetIconOfClass
CreateDataAdviseHolder
OleIsRunning
OleQueryCreateFromData
OleCreateLinkFromData
CLSIDFromProgID
CLSIDFromString
CoRevokeClassObject
CoRegisterClassObject
OleCreateFromData
OleCreate
CreateItemMoniker
CreateGenericComposite
GetHGlobalFromILockBytes
CreateOleAdviseHolder
WriteClassStm
OleRegEnumVerbs
OleRegGetMiscStatus
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
CreateFileMoniker
StgIsStorageFile
StgOpenStorage
OleCreateLinkToFile
OleLockRunning
OleSetMenuDescriptor
PropVariantCopy
RevokeDragDrop
OleUninitialize
OleInitialize
CoFreeUnusedLibraries
CoInitialize
CoCreateInstance
CoCreateGuid
CoUninitialize
SetConvertStg
OleRegGetUserType
ReleaseStgMedium
OleDuplicateData
ReadFmtUserTypeStg
WriteFmtUserTypeStg
CreateBindCtx
CoTreatAsClass
WriteClassStg
ReadClassStg
CoTaskMemFree
CoTaskMemAlloc
StringFromCLSID
OleQueryLinkFromData
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CreateStreamOnHGlobal
StgCreateDocfile
OleRun
CreateILockBytesOnHGlobal
CoInitializeEx
StringFromGUID2
CoDisconnectObject
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
GetRunningObjectTable
OleCreateStaticFromData
CoGetMalloc
oleaut32
SafeArrayDestroy
SafeArrayRedim
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayLock
SafeArrayUnlock
SafeArrayAccessData
SafeArrayDestroyData
SafeArrayGetElement
SafeArrayPutElement
SafeArrayCopy
SafeArrayPtrOfIndex
VarCyFromStr
SysReAllocStringLen
VarBstrFromDate
VarBstrFromDec
VarDecFromStr
OleCreateFontIndirect
SafeArrayDestroyDescriptor
SafeArrayCreate
SafeArrayAllocData
SafeArrayUnaccessData
LoadTypeLi
VariantCopy
VarDateFromStr
VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
SysAllocString
VariantChangeType
VariantClear
VariantInit
SysAllocStringByteLen
SysStringByteLen
RegisterTypeLi
SafeArrayAllocDescriptor
VarBstrFromCy
SysAllocStringLen
LoadRegTypeLi
SysFreeString
oledlg
OleUIBusyW
vcomp140
_vcomp_leave_critsect
_vcomp_enter_critsect
omp_get_num_procs
omp_get_max_threads
omp_get_nested
oleacc
AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject
wininet
HttpSendRequestW
HttpAddRequestHeadersW
HttpOpenRequestW
GopherGetAttributeW
GopherOpenFileW
GopherFindFirstFileW
GopherCreateLocatorW
FtpCommandW
FtpGetCurrentDirectoryW
FtpSetCurrentDirectoryW
FtpRemoveDirectoryW
FtpCreateDirectoryW
FtpOpenFileW
FtpRenameFileW
HttpEndRequestW
FtpPutFileW
FtpGetFileW
FtpFindFirstFileW
InternetSetStatusCallbackW
InternetGetLastResponseInfoW
InternetSetOptionW
InternetQueryOptionW
InternetFindNextFileW
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetOpenUrlW
InternetConnectW
InternetCloseHandle
InternetOpenW
InternetCanonicalizeUrlW
InternetCrackUrlW
HttpQueryInfoW
InternetSetCookieW
InternetGetCookieW
InternetErrorDlg
HttpSendRequestExW
FtpDeleteFileW
imm32
ImmReleaseContext
ImmGetOpenStatus
ImmGetContext
winmm
PlaySoundW
Sections
.text Size: 3.6MB - Virtual size: 3.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
CONST Size: 512B - Virtual size: 48B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 697KB - Virtual size: 697KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 149KB - Virtual size: 607KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 30KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ