Static task
static1
Behavioral task
behavioral1
Sample
Gunz.exe
Resource
win11-20240709-en
windows11-21h2-x64
General
-
Target
Gunz.exe
-
Size
14.6MB
-
MD5
f2ba8c9bd92f429ebb2d730fda618924
-
SHA1
636d5c57e7499c037638d60cd874421ae9f03cca
-
SHA256
1452ac8afb749e61e717742b14bd60749dc933dc99dc3a1211e0f5dd201f3ca5
-
SHA512
ddf7a58fe5b2d8802c47408a4681c856c567de46e2e5b8dab067f7dc9f3fc748667ba1be4b59a6f41dcf7448c9e8fce3df7326601abf0eeb4fa90cc717e5542f
-
SSDEEP
393216:7TfX9s8ldygWsLZHYoSP0N9KVxpLhr0+Aw+kvyG/wsUa1OUng:7jXTrypuZHRD8LNJh6GB
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource Gunz.exe
Files
-
Gunz.exe.exe windows:6 windows x86 arch:x86
7cf455e2b471eeb117f8e97e3d3efece
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
fmod
_FSOUND_Stream_GetMode@4
_FSOUND_Stream_SetMode@8
_FSOUND_Stream_Stop@4
_FSOUND_Stream_PlayEx@16
_FSOUND_Stream_Close@4
_FSOUND_Stream_Open@16
_FSOUND_Stream_SetBufferSize@4
_FSOUND_3D_SetRolloffFactor@4
_FSOUND_3D_SetDistanceFactor@4
_FSOUND_3D_SetDopplerFactor@4
_FSOUND_3D_Listener_SetAttributes@32
_FSOUND_GetVolume@4
_FSOUND_3D_SetMinMaxDistance@12
_FSOUND_3D_SetAttributes@12
_FSOUND_SetPaused@8
_FSOUND_SetPriority@8
_FSOUND_SetMute@8
_FSOUND_Sample_Free@4
_FSOUND_SetVolume@8
_FSOUND_PlaySoundEx@16
_FSOUND_Sample_GetMode@4
_FSOUND_Sample_Load@20
_FSOUND_GetMaxChannels@0
_FSOUND_GetDriverCaps@8
_FSOUND_GetDriverName@4
_FSOUND_GetNumDrivers@0
_FSOUND_GetVersion@0
_FSOUND_GetError@0
_FSOUND_Update@0
_FSOUND_Close@0
_FSOUND_Init@12
_FSOUND_SetMaxHardwareChannels@4
_FSOUND_SetMinHardwareChannels@4
_FSOUND_SetHWND@4
_FSOUND_SetDriver@4
_FSOUND_SetOutput@4
_FSOUND_Sample_SetMinMaxDistance@12
_FSOUND_Stream_SetEndCallback@12
_FSOUND_StopSound@4
psapi
GetModuleFileNameExA
EnumProcessModules
kernel32
WaitForMultipleObjects
LocalFree
SetThreadPriority
CreateEventA
ResetEvent
GetVersionExW
GetThreadTimes
SetEvent
GetEnvironmentVariableA
GlobalFree
UnregisterWait
RegisterWaitForSingleObject
SetThreadAffinityMask
GetProcessAffinityMask
GetNumaHighestNodeNumber
DeleteTimerQueueTimer
ChangeTimerQueueTimer
CreateTimerQueueTimer
GetLogicalProcessorInformation
CreateTimerQueue
WriteConsoleW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
FormatMessageA
FindFirstFileExA
GetFileAttributesExW
MoveFileExW
GetTimeZoneInformation
GetCurrentDirectoryW
DeleteFileW
SetFilePointerEx
ReadConsoleW
GetConsoleMode
GetConsoleCP
EnumSystemLocalesW
IsValidLocale
GetTimeFormatW
GetDateFormatW
GetFullPathNameW
GetCommandLineW
GetCommandLineA
HeapQueryInformation
FindNextFileW
FindFirstFileExW
GetFileType
GetDriveTypeW
GetModuleHandleExW
FreeLibraryAndExitThread
InterlockedFlushSList
SignalObjectAndWait
GetThreadPriority
GetPriorityClass
lstrcmpW
DeviceIoControl
UnregisterWaitEx
QueryDepthSList
ReleaseSemaphore
IsValidCodePage
InterlockedPushEntrySList
RtlUnwind
GetStdHandle
SetStdHandle
GetSystemInfo
IsDBCSLeadByte
ExitThread
FindNextFileA
GlobalMemoryStatusEx
GetStringTypeW
LCMapStringW
CompareStringW
TryEnterCriticalSection
GetExitCodeThread
SwitchToThread
OutputDebugStringW
InitializeSListHead
WideCharToMultiByte
SetFilePointer
CreateFileA
GetFileSize
IsBadReadPtr
InitializeCriticalSectionAndSpinCount
GetProcessHeap
HeapSize
HeapFree
HeapReAlloc
HeapAlloc
RaiseException
DecodePointer
SetPriorityClass
GlobalMemoryStatus
DeleteCriticalSection
InitializeCriticalSection
lstrcmpiA
QueryPerformanceFrequency
QueryPerformanceCounter
CopyFileA
lstrlenA
lstrcmpA
GetVersionExA
TerminateProcess
CreateMutexA
FindFirstFileA
FindClose
DeleteFileA
CreateDirectoryA
SetCurrentDirectoryA
GetVolumeInformationA
GetModuleFileNameA
CreateProcessA
WaitForSingleObject
Sleep
GetSystemTimeAsFileTime
GetStartupInfoW
GlobalUnlock
GlobalLock
GlobalAlloc
OutputDebugStringA
GetTickCount
LoadLibraryA
GetProcAddress
FreeLibrary
GetLocalTime
LeaveCriticalSection
EnterCriticalSection
Module32Next
Module32First
CreateToolhelp32Snapshot
GetWindowsDirectoryA
CreateThread
IsDebuggerPresent
RemoveDirectoryA
GetCurrentDirectoryA
MultiByteToWideChar
lstrlenW
GetModuleFileNameW
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
ResumeThread
GetCurrentThreadId
GetCurrentThread
GetCurrentProcess
GetCurrentProcessId
WaitNamedPipeW
PeekNamedPipe
GetLastError
CloseHandle
WriteFile
ReadFile
CreateFileW
GetModuleHandleA
ExitProcess
OpenProcess
K32EnumProcesses
K32EnumProcessModules
K32GetModuleBaseNameA
K32GetModuleFileNameExA
IsProcessorFeaturePresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
CreateEventW
WaitForSingleObjectEx
GetUserDefaultLCID
InterlockedPopEntrySList
GlobalDeleteAtom
GlobalAddAtomA
GlobalSize
GetSystemDirectoryA
MulDiv
MapViewOfFile
UnmapViewOfFile
CreateFileMappingA
SetLastError
GetModuleHandleW
LoadLibraryW
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalAlloc
LocalReAlloc
LoadResource
LockResource
SizeofResource
FindResourceW
CompareStringA
GlobalGetAtomNameA
FileTimeToSystemTime
SystemTimeToFileTime
EncodePointer
GetSystemDirectoryW
LoadLibraryExW
FindResourceA
GlobalFindAtomA
FlushFileBuffers
GetFullPathNameA
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
GlobalFlags
GetLocaleInfoW
GetUserDefaultUILanguage
GetOEMCP
GetCPInfo
FileTimeToLocalFileTime
GetFileAttributesA
GetFileAttributesExA
GetFileSizeEx
GetFileTime
SetFileTime
SystemTimeToTzSpecificLocalTime
GetACP
lstrcpyA
FindResourceExW
VerSetConditionMask
VerifyVersionInfoA
GetTempPathA
GetProfileIntA
SearchPathA
GetTempFileNameA
user32
ValidateRect
GetSystemMetrics
GetSysColor
GetSysColorBrush
LoadCursorA
GetWindowTextLengthA
CheckMenuItem
EnableMenuItem
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
SetMenuItemInfoA
LoadBitmapW
RegisterWindowMessageA
GetMessagePos
GetMessageTime
CallWindowProcA
GetClassInfoA
GetClassInfoExA
IsWindow
IsMenu
IsChild
DestroyWindow
GetWindowPlacement
SetWindowPlacement
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
IsIconic
GetDlgItem
GetDlgCtrlID
GetCapture
GetMenu
SetMenu
TrackPopupMenu
SetActiveWindow
GetForegroundWindow
SetForegroundWindow
BeginPaint
EndPaint
RedrawWindow
ScrollWindow
SetScrollPos
GetScrollPos
SetScrollRange
GetScrollRange
ShowScrollBar
SetPropA
GetPropA
RemovePropA
AdjustWindowRectEx
MapWindowPoints
CopyRect
EqualRect
PtInRect
GetClassLongA
LoadIconW
SetScrollInfo
GetScrollInfo
WinHelpA
IsWindowVisible
CheckDlgButton
SendDlgItemMessageA
SetWindowTextA
IsDialogMessageA
DestroyIcon
CharUpperA
GetDesktopWindow
RealChildWindowFromPoint
DrawTextA
DrawTextExA
GrayStringA
TabbedTextOutA
GetWindowDC
FillRect
DestroyMenu
GetMenuItemInfoA
InflateRect
SystemParametersInfoA
RemoveMenu
SetRectEmpty
OffsetRect
CreateDialogIndirectParamA
EndDialog
GetNextDlgTabItem
MapDialogRect
IntersectRect
TrackMouseEvent
InvalidateRect
LoadImageW
ShowOwnedPopups
SetCursor
DeleteMenu
SetTimer
KillTimer
GetNextDlgGroupItem
SetCapture
ReleaseCapture
WindowFromPoint
DrawFocusRect
IsRectEmpty
LoadImageA
DrawIconEx
GetIconInfo
MessageBeep
EnableScrollBar
HideCaret
InvertRect
LoadCursorW
NotifyWinEvent
CreatePopupMenu
GetMenuDefaultItem
SetLayeredWindowAttributes
EnumDisplayMonitors
DrawStateA
SetClassLongA
SetWindowRgn
SetParent
DrawEdge
DrawFrameControl
IsZoomed
LoadMenuW
GetSystemMenu
BringWindowToTop
CopyIcon
FrameRect
DrawIcon
UnionRect
UpdateLayeredWindow
MonitorFromPoint
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
InsertMenuItemA
UnpackDDElParam
ReuseDDElParam
GetComboBoxInfo
WaitMessage
IsCharLowerA
MapVirtualKeyExA
GetKeyboardState
ToAsciiEx
LoadAcceleratorsW
CreateAcceleratorTableA
DestroyAcceleratorTable
CopyAcceleratorTableA
SetRect
LockWindowUpdate
SetMenuDefaultItem
GetDoubleClickTime
ModifyMenuA
RegisterClipboardFormatA
CharUpperBuffA
GetUpdateRect
DrawMenuBar
DefFrameProcA
DefMDIChildProcA
TranslateMDISysAccel
SubtractRect
CreateMenu
GetWindowRgn
DestroyCursor
FindWindowExA
GetWindowTextA
GetFocus
GetMonitorInfoA
MonitorFromWindow
EnumDisplaySettingsA
GetActiveWindow
ShowCursor
SetFocus
ShowWindow
DefWindowProcA
MessageBoxA
IsClipboardFormatAvailable
GetClipboardData
wsprintfA
PostMessageA
PostQuitMessage
EmptyClipboard
SetClipboardData
CloseClipboard
OpenClipboard
GetKeyState
ClientToScreen
SetCursorPos
GetAsyncKeyState
ClipCursor
GetWindowRect
PostThreadMessageA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
DispatchMessageA
TranslateMessage
GetMessageA
AppendMenuA
InsertMenuA
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
GetMenuStringA
GetLastActivePopup
GetWindowThreadProcessId
GetParent
IsWindowEnabled
EnableWindow
LoadIconA
CreateWindowExA
RegisterClassA
PeekMessageA
ReleaseDC
GetDC
SetWindowLongA
GetWindowLongA
GetClientRect
UpdateWindow
SetWindowPos
MoveWindow
FlashWindowEx
MapVirtualKeyA
GetKeyNameTextA
ScreenToClient
GetCursorPos
UnregisterHotKey
GetKeyboardLayout
GetClassNameA
GetTopWindow
GetWindow
SendMessageA
CopyImage
gdi32
CreateFontIndirectA
CombineRgn
CreateRectRgnIndirect
PtVisible
PatBlt
SetRectRgn
DPtoLP
EnumFontFamiliesExA
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
GetSystemPaletteEntries
RealizePalette
GetBkColor
CreateCompatibleBitmap
CreateDIBitmap
EnumFontFamiliesA
GetTextCharsetInfo
SetPixel
StretchBlt
SetDIBColorTable
CreateEllipticRgn
Ellipse
GetTextColor
CreatePolygonRgn
Polygon
Polyline
CreateRoundRectRgn
LPtoDP
Rectangle
GetRgnBox
OffsetRgn
RoundRect
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
ExtFloodFill
ScaleWindowExtEx
SetPixelV
GetWindowOrgEx
GetViewportOrgEx
SetWindowOrgEx
GetTextFaceA
RectVisible
RestoreDC
SaveDC
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
ScaleViewportExtEx
OffsetWindowOrgEx
SetPaletteEntries
OffsetViewportOrgEx
SetViewportOrgEx
MoveToEx
TextOutA
ExtTextOutA
SetViewportExtEx
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetStockObject
GetPixel
GetObjectType
GetClipBox
ExcludeClipRect
Escape
CreateSolidBrush
CreateRectRgn
CreatePatternBrush
CreatePen
CreateHatchBrush
BitBlt
SetTextColor
SetBkColor
CreateBitmap
CreateDCA
CopyMetaFileA
GetObjectA
CreateDIBSection
GetTextMetricsA
SetMapMode
SelectObject
GetTextExtentPoint32A
GetDeviceCaps
DeleteObject
DeleteDC
CreateFontA
CreateCompatibleDC
RemoveFontResourceA
AddFontResourceA
SetWindowExtEx
advapi32
RegOpenKeyExA
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
OpenProcessToken
GetTokenInformation
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegCreateKeyA
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
RegCloseKey
shell32
DragQueryFileA
DragFinish
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetFileInfoA
ExtractIconA
SHGetDesktopFolder
SHChangeNotify
SHGetPathFromIDListA
SHAppBarMessage
ShellExecuteA
ole32
CoCreateInstance
OleLockRunning
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
OleGetClipboard
DoDragDrop
CoInitializeEx
CreateStreamOnHGlobal
CoDisconnectObject
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoMarshalInterThreadInterfaceInStream
CoGetInterfaceAndReleaseStream
PropVariantClear
CoTaskMemFree
CoInitialize
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoUninitialize
OleRun
version
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA
msimg32
AlphaBlend
TransparentBlt
shlwapi
PathIsDirectoryA
PathRemoveFileSpecA
PathStripPathA
PathSearchAndQualifyA
PathFindFileNameA
PathIsUNCA
PathStripToRootA
PathFindExtensionA
PathRemoveFileSpecW
StrFormatKBSizeA
StrStrA
StrStrIA
PathFileExistsA
uxtheme
GetWindowTheme
IsAppThemed
IsThemeBackgroundPartiallyTransparent
GetThemeSysColor
GetThemePartSize
DrawThemeBackground
CloseThemeData
OpenThemeData
GetThemeColor
DrawThemeParentBackground
DrawThemeText
GetCurrentThemeName
imm32
ImmGetOpenStatus
ImmSetConversionStatus
ImmNotifyIME
ImmGetCompositionStringA
ImmGetConversionStatus
ImmGetCandidateListA
ImmAssociateContext
ImmReleaseContext
ImmGetContext
ImmGetDefaultIMEWnd
d3dx9_43
D3DXPlaneNormalize
D3DXPlaneTransform
D3DXPlaneFromPoints
D3DXMatrixTranspose
D3DXCreateTextureFromFileInMemoryEx
D3DXGetImageInfoFromFileInMemory
D3DXMatrixInverse
D3DXVec3Transform
D3DXIntersectTri
D3DXBoxBoundProbe
D3DXMatrixRotationAxis
D3DXQuaternionRotationMatrix
D3DXVec3TransformCoord
D3DXMatrixScaling
D3DXCreateSphere
D3DXMatrixRotationX
D3DXMatrixTranslation
D3DXMatrixPerspectiveFovLH
D3DXMatrixLookAtLH
D3DXQuaternionRotationAxis
D3DXMatrixRotationQuaternion
D3DXMatrixMultiply
D3DXPlaneFromPointNormal
D3DXPlaneIntersectLine
D3DXMatrixRotationZ
D3DXMatrixRotationY
D3DXVec3Normalize
D3DXVec2Normalize
D3DXCreateTexture
D3DXVec3CatmullRom
D3DXQuaternionSlerp
winmm
waveOutGetPosition
waveOutReset
waveOutRestart
waveOutPause
waveOutWrite
waveOutUnprepareHeader
waveOutPrepareHeader
waveOutClose
waveOutOpen
waveInGetNumDevs
waveInGetDevCapsA
waveInGetErrorTextA
waveInOpen
waveInClose
waveOutGetErrorTextA
waveOutGetDevCapsA
timeEndPeriod
timeBeginPeriod
timeGetDevCaps
timeGetTime
waveInPrepareHeader
waveInUnprepareHeader
waveOutMessage
waveOutGetNumDevs
waveInAddBuffer
waveInStart
waveInReset
waveInMessage
PlaySoundA
ws2_32
gethostname
send
ioctlsocket
gethostbyname
inet_addr
ntohs
recv
inet_ntoa
connect
closesocket
bind
setsockopt
socket
WSAStartup
WSACleanup
WSAGetLastError
WSACloseEvent
WSACreateEvent
WSAEnumNetworkEvents
WSAEventSelect
WSAWaitForMultipleEvents
shutdown
sendto
recvfrom
htonl
htons
sensapi
IsNetworkAlive
wininet
HttpOpenRequestA
InternetCrackUrlA
HttpQueryInfoA
InternetSetStatusCallback
InternetReadFileExA
InternetConnectA
InternetCloseHandle
InternetOpenA
HttpSendRequestA
d3d9
Direct3DCreate9
gdiplus
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdiplusShutdown
GdiplusStartup
GdipStringFormatGetGenericTypographic
GdipDrawString
GdipGetFamily
GdipDeleteFont
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipDeleteFontFamily
GdipFillPath
GdipGraphicsClear
GdipDrawPath
GdipDrawImageRectI
GdipSetSmoothingMode
GdipDeleteGraphics
GdipCreateFromHDC
GdipDeletePen
GdipCreatePen1
GdipCreateSolidFill
GdipDeleteBrush
GdipCloneBrush
GdipAddPathString
GdipDeletePath
GdipCreatePath
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromScan0
GdipSetInterpolationMode
GdipSaveImageToFile
GdipDisposeImage
GdipCloneImage
GdipFree
GdipAlloc
GdipDrawImageI
oleacc
AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject
dbghelp
MiniDumpWriteDump
winspool.drv
ClosePrinter
DocumentPropertiesA
OpenPrinterA
oleaut32
VariantClear
VariantCopy
VariantChangeType
VariantTimeToSystemTime
SystemTimeToVariantTime
SysAllocStringLen
SysStringLen
VarBstrFromDate
VariantInit
SysAllocString
GetErrorInfo
LoadTypeLi
SysAllocStringByteLen
SysFreeString
Sections
.text Size: - Virtual size: 7.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 30.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.jgc Size: - Virtual size: 7.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.hg\ Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.$Wj Size: 14.4MB - Virtual size: 14.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 157KB - Virtual size: 156KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ