c:\sourcecode\drawpad\release\Drawpad.pdb
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
df580a993810409a346b55fc5910d4b697b3e8203ecf48da3282464f1b90957d.exe
Resource
win7-20240729-en
windows7-x64
2 signatures
150 seconds
Behavioral task
behavioral2
Sample
df580a993810409a346b55fc5910d4b697b3e8203ecf48da3282464f1b90957d.exe
Resource
win10v2004-20240802-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
df580a993810409a346b55fc5910d4b697b3e8203ecf48da3282464f1b90957d
-
Size
6.7MB
-
MD5
109ee6d9b2d516417784279da3054af9
-
SHA1
e5fb1ba7dbf9dd6e9b8945428cb917f723342e70
-
SHA256
df580a993810409a346b55fc5910d4b697b3e8203ecf48da3282464f1b90957d
-
SHA512
daabb952e04592ba6b4251e925db8fa5be1b79cbcd4b598eb12a5342ef56fd293868d3ef21672086b39cf0ebd7b080afc744c5253562b4dcb05bcf5ee6257ebc
-
SSDEEP
196608:RbvvWucqZXlvLglK3kvKs5a+3C50y21wEY:RjvWutXlvLg83kvZy50ycwEY
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource df580a993810409a346b55fc5910d4b697b3e8203ecf48da3282464f1b90957d
Files
-
df580a993810409a346b55fc5910d4b697b3e8203ecf48da3282464f1b90957d.exe windows:4 windows x86 arch:x86
3abf88dc1e6558f5c99e0aab1a262d29
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
imm32
ImmGetVirtualKey
ImmNotifyIME
ImmReleaseContext
ImmGetCompositionStringW
ImmSetCandidateWindow
ImmGetContext
kernel32
GetStdHandle
CreateMutexW
GetPrivateProfileIntW
FindResourceW
CreateToolhelp32Snapshot
GetCurrentProcessId
ProcessIdToSessionId
CreateThread
FileTimeToLocalFileTime
CreateFileMappingW
GetTickCount
DuplicateHandle
GetThreadContext
GetACP
SystemTimeToTzSpecificLocalTime
ExitProcess
GetStartupInfoW
GetEnvironmentVariableA
TerminateProcess
RemoveDirectoryW
LocalAlloc
GetOverlappedResult
GetPrivateProfileStringW
GetModuleFileNameA
GetModuleHandleW
QueryPerformanceFrequency
QueryPerformanceCounter
RtlCaptureContext
SetThreadPriority
SetEnvironmentVariableW
LoadResource
GetCurrentDirectoryA
GlobalUnlock
GetComputerNameW
GetSystemTime
SizeofResource
SetCurrentDirectoryW
ConnectNamedPipe
GetShortPathNameW
SetEndOfFile
GlobalHandle
GetDiskFreeSpaceExW
GetProcessHeap
CancelIo
FreeResource
LoadLibraryExW
GlobalSize
GetCommandLineW
SetUnhandledExceptionFilter
SetFileAttributesW
GetPrivateProfileSectionNamesW
ReadProcessMemory
MoveFileExW
lstrcpyW
ResumeThread
FileTimeToSystemTime
PeekNamedPipe
GetExitCodeProcess
FormatMessageW
Process32FirstW
GetTimeZoneInformation
ReadFile
WaitForMultipleObjects
FindFirstFileW
lstrlenA
SetEnvironmentVariableA
CompareStringW
GetEnvironmentVariableW
LocalFree
GlobalLock
VirtualQuery
GetDriveTypeW
SetLastError
LoadLibraryW
WaitNamedPipeW
UnmapViewOfFile
Process32NextW
GetCurrentProcess
HeapAlloc
OpenFileMappingW
SuspendThread
ReleaseMutex
SetFilePointer
GlobalMemoryStatusEx
GetCPInfo
GetFileAttributesA
LockResource
GetModuleFileNameW
CreateNamedPipeW
HeapFree
GetFileTime
CreatePipe
MapViewOfFile
GlobalAlloc
GetThreadPriority
DeleteCriticalSection
LoadLibraryA
VerSetConditionMask
CreateProcessW
MulDiv
GetLocaleInfoW
CreateDirectoryW
CreateFileW
FindClose
GetFileSizeEx
CopyFileW
DisconnectNamedPipe
MultiByteToWideChar
GetFileAttributesW
InterlockedExchangeAdd
Sleep
OpenProcess
InitializeCriticalSection
GetSystemInfo
SetFilePointerEx
WaitForSingleObject
GetCurrentThread
InterlockedExchange
DeleteFileW
GetCurrentThreadId
InterlockedIncrement
SetEvent
InterlockedDecrement
FreeLibrary
GetProcAddress
GetLastError
EnterCriticalSection
FindNextFileW
WriteFile
ResetEvent
GetTempPathW
FlushFileBuffers
VerifyVersionInfoW
CreateEventW
CompareStringA
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetConsoleMode
GetConsoleCP
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapReAlloc
VirtualAlloc
GetVersionExW
GlobalFree
GetVersionExA
WideCharToMultiByte
LeaveCriticalSection
CloseHandle
GetSystemTimeAsFileTime
UnhandledExceptionFilter
IsDebuggerPresent
RtlUnwind
GetCommandLineA
GetStartupInfoA
VirtualFree
HeapCreate
HeapDestroy
RaiseException
HeapSize
LCMapStringW
LCMapStringA
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleA
IsValidCodePage
GetOEMCP
advapi32
FreeSid
RegQueryValueExW
CryptDestroyKey
InitializeSecurityDescriptor
RegDeleteKeyW
GetUserNameW
CryptHashData
CryptDeriveKey
SetSecurityDescriptorDacl
GetAce
CheckTokenMembership
InitializeAcl
CryptReleaseContext
RegCloseKey
GetTokenInformation
CryptCreateHash
RegDeleteValueW
RegOpenKeyExW
DuplicateTokenEx
CryptDestroyHash
RegSetValueExW
CryptSetKeyParam
AllocateAndInitializeSid
RegCreateKeyExW
RegOpenKeyW
CryptDuplicateKey
CryptAcquireContextW
InitializeSid
RegEnumKeyExW
OpenProcessToken
CryptEncrypt
RegEnumKeyW
RegQueryInfoKeyW
CryptImportKey
SetFileSecurityW
AddAccessAllowedAce
GetSidLengthRequired
GetSidSubAuthority
RegEnumValueW
CryptDecrypt
CryptGetKeyParam
RegSetKeySecurity
ConvertSidToStringSidW
comctl32
ImageList_ReplaceIcon
InitCommonControlsEx
PropertySheetW
CreatePropertySheetPageW
_TrackMouseEvent
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_Create
ImageList_GetIcon
ord17
ImageList_DragEnter
ImageList_Merge
ImageList_EndDrag
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_DrawEx
ImageList_GetImageInfo
ImageList_Destroy
ImageList_DragLeave
ImageList_AddMasked
ImageList_Add
ImageList_DragMove
comdlg32
CommDlgExtendedError
GetOpenFileNameW
GetSaveFileNameW
PrintDlgW
gdi32
CreateFontW
CreateFontIndirectW
EndPage
CreatePen
PolyPolyline
GetObjectW
CreateSolidBrush
GetCurrentObject
GetTextMetricsW
DeleteObject
MoveToEx
SetTextColor
CreateRectRgnIndirect
StartPage
GetDeviceCaps
CreateBitmap
CreateDIBSection
SetWindowExtEx
GetTextMetricsA
GetTextCharset
SetBitmapBits
GetOutlineTextMetricsW
SetViewportExtEx
FillRgn
Polygon
CreateCompatibleDC
GetFontData
CreateDIBitmap
GetDIBits
GetTextAlign
ExtTextOutW
GetObjectA
Polyline
GetBkMode
CreateBrushIndirect
CombineRgn
SetBrushOrgEx
GetClipBox
CreateDCW
StartDocW
CreateRectRgn
SetBkColor
SetDIBitsToDevice
BitBlt
GetWindowExtEx
StretchBlt
GetBitmapBits
SetStretchBltMode
SetPixel
SetTextAlign
GetViewportExtEx
SetDIBits
CreatePatternBrush
GetGlyphIndicesW
SetDCBrushColor
CreateCompatibleBitmap
GetTextExtentPoint32W
EnumFontFamiliesExW
GetStockObject
GetGlyphOutlineW
LineTo
SelectObject
EndDoc
TextOutW
SetBkMode
DeleteDC
ole32
CoAddRefServerProcess
CoResumeClassObjects
CoTaskMemFree
CoInitialize
CoRegisterClassObject
CoRevokeClassObject
CoTaskMemAlloc
CoCreateFreeThreadedMarshaler
CoUninitialize
CoCreateInstance
CoSetProxyBlanket
CreateStreamOnHGlobal
CoInitializeSecurity
oleaut32
OleLoadPicture
SysFreeString
VariantInit
SafeArrayGetElement
SysStringByteLen
VariantClear
SysAllocStringByteLen
SysAllocStringLen
SysAllocString
OleLoadPicturePath
SafeArrayGetUBound
shell32
ord680
SHGetFolderPathW
ShellExecuteExW
DragQueryFileW
ShellExecuteA
SHBrowseForFolderW
SHEmptyRecycleBinW
CommandLineToArgvW
Shell_NotifyIconW
ShellExecuteW
DragFinish
DragAcceptFiles
ord155
SHChangeNotify
SHGetMalloc
SHParseDisplayName
SHGetPathFromIDListW
SHGetDesktopFolder
SHCreateShellItem
shlwapi
SHDeleteKeyW
StrCmpLogicalW
PathRelativePathToW
PathCompactPathExW
SHDeleteEmptyKeyW
user32
CreatePopupMenu
DrawTextW
FrameRect
SetMenu
GetFocus
CharLowerW
EndPaint
SetClassLongW
SetPropW
BeginPaint
SetWindowLongW
GetDC
CloseClipboard
SystemParametersInfoW
GetKeyState
MoveWindow
GetScrollInfo
SendMessageW
ReleaseCapture
DestroyMenu
GetForegroundWindow
ShowWindow
GetAsyncKeyState
RedrawWindow
DeleteMenu
SetTimer
LoadImageW
GetPropW
SetWindowsHookExW
GetWindowTextLengthW
PostMessageW
GetMessageExtraInfo
RemoveMenu
CreateWindowExW
SetFocus
IsIconic
SetDlgItemTextW
DestroyWindow
CheckMenuItem
IsWindowVisible
GetDlgItem
SetWindowPos
SendDlgItemMessageW
GetSystemMetrics
LoadStringW
LoadIconW
GetIconInfo
ClientToScreen
RemovePropW
MapVirtualKeyW
EnumThreadWindows
GetDlgCtrlID
SetLayeredWindowAttributes
SetClipboardData
GetMenuItemCount
AttachThreadInput
SetActiveWindow
SetMenuDefaultItem
RegisterClipboardFormatW
ChildWindowFromPoint
EnumDisplayMonitors
InvalidateRgn
CreateDialogParamW
DrawEdge
CopyImage
GetSysColorBrush
GetDialogBaseUnits
AllowSetForegroundWindow
FindWindowW
GetSubMenu
MonitorFromWindow
CheckDlgButton
EqualRect
PeekMessageW
PostQuitMessage
EndMenu
MonitorFromRect
MsgWaitForMultipleObjectsEx
CallNextHookEx
GetPriorityClipboardFormat
MsgWaitForMultipleObjects
MapDialogRect
SendInput
GetWindow
TranslateMessage
IsDialogMessageW
SetMenuInfo
SetScrollInfo
CountClipboardFormats
DrawFocusRect
CallWindowProcW
InsertMenuW
DrawStateW
InflateRect
GetMonitorInfoW
OffsetRect
GetDlgItemTextW
GetKeyNameTextW
EnumChildWindows
IsCharAlphaW
DialogBoxIndirectParamW
DrawTextExW
GetWindowThreadProcessId
GetKeyboardState
ModifyMenuW
GetMenuInfo
GetMenuBarInfo
keybd_event
MonitorFromPoint
WindowFromPoint
IsClipboardFormatAvailable
GetClassNameA
ShowScrollBar
SetWindowPlacement
AdjustWindowRectEx
FindWindowExW
EnumDisplayDevicesW
ValidateRect
wsprintfW
NotifyWinEvent
EnumDisplaySettingsW
WindowFromDC
CreateIconIndirect
PtInRect
FlashWindowEx
GetMessageW
EndDialog
EnumWindows
DispatchMessageW
GetWindowTextW
GetAncestor
GetComboBoxInfo
GetClipboardData
DrawIconEx
GetUpdateRect
GetScrollBarInfo
GetCapture
GetClassNameW
DialogBoxParamW
InsertMenuItemW
DestroyCursor
ReleaseDC
GetCursor
MessageBoxW
VkKeyScanW
DestroyIcon
InvalidateRect
GetDlgItemInt
WaitForInputIdle
GetSysColor
SetCapture
ScreenToClient
GetCursorInfo
EnableMenuItem
IsDlgButtonChecked
FillRect
IsZoomed
GetMenu
GetActiveWindow
MapWindowPoints
GetWindowRect
KillTimer
LoadCursorW
GetMenuItemInfoW
UnhookWindowsHookEx
UpdateWindow
RegisterClassW
EnableWindow
SetMenuItemInfoW
SetCursor
GetWindowLongW
SetForegroundWindow
AppendMenuW
OpenClipboard
ScrollWindowEx
SetWindowTextW
IsWindow
CreateDialogIndirectParamW
TrackPopupMenu
GetNextDlgGroupItem
GetClientRect
SetMenuItemBitmaps
IsWindowEnabled
GetWindowDC
EmptyClipboard
DefWindowProcW
GetWindowPlacement
GetClassInfoW
GetParent
GetDesktopWindow
ws2_32
ntohs
send
select
setsockopt
WSAStartup
WSAGetLastError
connect
htons
gethostbyaddr
__WSAFDIsSet
inet_addr
ioctlsocket
gethostname
gethostbyname
recv
closesocket
socket
winspool.drv
OpenPrinterW
rpcrt4
UuidToStringW
UuidCreate
RpcStringFreeW
UuidFromStringW
netapi32
NetApiBufferFree
NetUserGetInfo
gdiplus
GdipAddPathBeziers
GdipGetWorldTransform
GdipGetPathWorldBounds
GdipBitmapUnlockBits
GdipSetCompositingMode
GdipRestoreGraphics
GdipSetSmoothingMode
GdipCreateSolidFill
GdipRotateWorldTransform
GdipTranslateWorldTransform
GdipDeleteGraphics
GdipClosePathFigure
GdipResetWorldTransform
GdipGetPathPoints
GdipAddPathRectangle
GdipImageSelectActiveFrame
GdipFillRectangle
GdipStartPathFigure
GdipDeletePathIter
GdipCreatePathIter
GdipDeletePath
GdipDrawImageRectRect
GdipGetEmHeight
GdipGetRegionBounds
GdipDrawImageI
GdipGetTextRenderingHint
GdipSetStringFormatTrimming
GdipCreateBitmapFromHICON
GdipSetPathGradientWrapMode
GdipReleaseDC
GdipGetFontCollectionFamilyList
GdipFillPath
GdipGetCellAscent
GdipSetPathGradientCenterColor
GdipSetPathGradientPresetBlend
GdipCreateCachedBitmap
GdipSetPathGradientCenterPoint
GdipSetInterpolationMode
GdipCreatePen1
GdipRotateMatrix
GdipDrawCachedBitmap
GdipDeleteStringFormat
GdipGetClip
GdipSetPenStartCap
GdipTranslateMatrix
GdipSetTextureTransform
GdipDisposeImageAttributes
GdipIsOutlineVisiblePathPoint
GdipStringFormatGetGenericTypographic
GdipCreateBitmapFromScan0
GdipCreateImageAttributes
GdipSetPenLineJoin
GdipSetPathGradientTransform
GdipGetImageEncodersSize
GdipSetPenDashOffset
GdipGetCellDescent
GdipCreateTexture
GdipSetLineWrapMode
GdipGetPathGradientPointCount
GdipSetPenDashArray
GdipCreateFontFromLogfontA
GdipMeasureString
GdipMeasureCharacterRanges
GdipSetStringFormatMeasurableCharacterRanges
GdipSetLinePresetBlend
GdipGetFamilyName
GdipGetImageEncoders
GdipSetStringFormatLineAlign
GdipCloneStringFormat
GdipGetPropertyIdList
GdipGetFamily
GdipCreatePathGradientFromPath
GdipGetImageGraphicsContext
GdipGetDC
GdipCreateFontFromDC
GdipNewInstalledFontCollection
GdipAddPathStringI
GdipCreateTextureIAI
GdipSetPathGradientSurroundColorsWithCount
GdipFlattenPath
GdipSetLineTransform
GdipBitmapSetResolution
GdipSetImageAttributesWrapMode
GdipAddPathString
GdiplusStartup
GdipSetPenEndCap
GdiplusShutdown
GdipCreateLineBrush
GdipWidenPath
GdipGetFontSize
GdipRotateTextureTransform
GdipGetFontCollectionFamilyCount
GdipCreateRegion
GdipSetPenMiterLimit
GdipCombineRegionPath
GdipSetStringFormatAlign
GdipCreateFromHDC
GdipSetStringFormatFlags
GdipSetPenDashCap197819
GdipDeleteCachedBitmap
GdipCloneFontFamily
GdipSetPenDashStyle
GdipGetStringFormatFlags
GdipSetWorldTransform
GdipSetPageUnit
GdipSetImageAttributesColorMatrix
GdipCreateBitmapFromHBITMAP
GdipDrawImageRect
GdipSetStringFormatHotkeyPrefix
GdipCreateStringFormat
GdipGetPenLineJoin
GdipGetPenDashStyle
GdipGetPenMiterLimit
GdipGetPenStartCap
GdipSetPenColor
GdipSetPenLineCap197819
GdipSetMatrixElements
GdipSetPenWidth
GdipCreateRegionPath
GdipGetPenWidth
GdipGetPenEndCap
GdipPathIterGetSubpathCount
GdipDeleteFont
GdipBitmapLockBits
GdipGetPathFillMode
GdipDrawPath
GdipAddPathArc
GdipDeleteFontFamily
GdipCreatePen2
GdipSaveImageToStream
GdipGetImageVerticalResolution
GdipPathIterNextSubpathPath
GdipDrawString
GdipGraphicsClear
GdipGetPropertyItemSize
GdipCreateFont
GdipCreateMatrix
GdipGetImageHorizontalResolution
GdipAddPathBezier
GdipImageGetFrameDimensionsList
GdipAddPathLine
GdipSaveGraphics
GdipDeleteBrush
GdipClonePath
GdipCreateRegionRect
GdipCreateFontFamilyFromName
GdipDeleteRegion
GdipAddPathLine2
GdipCloneImage
GdipGetPropertyItem
GdipSetPathFillMode
GdipCreateBitmapFromStream
GdipReversePath
GdipResetClip
GdipImageGetFrameCount
GdipTransformPath
GdipGetPathTypes
GdipGetImagePixelFormat
GdipCloneBrush
GdipSetPixelOffsetMode
GdipAddPathEllipse
GdipDrawEllipse
GdipResetPath
GdipWindingModeOutline
GdipGetImageWidth
GdipGetMatrixElements
GdipCreatePath
GdipDisposeImage
GdipDeleteMatrix
GdipDrawRectangle
GdipGetPathLastPoint
GdipRemovePropertyItem
GdipImageRotateFlip
GdipSetTextRenderingHint
GdipGetGenericFontFamilySansSerif
GdipAddPathPath
GdipScaleWorldTransform
GdipImageGetFrameDimensionsCount
GdipGetPropertyCount
GdipFillEllipse
GdipMultiplyWorldTransform
GdipDrawLine
GdipDeletePen
GdipGetImageHeight
GdipSetClipRegion
GdipIsVisiblePathPoint
GdipGetPointCount
GdipGetFontStyle
GdipSetSolidFillColor
GdipCreateMatrix2
msimg32
GradientFill
AlphaBlend
iphlpapi
GetIpAddrTable
GetAdaptersAddresses
wininet
InternetAutodialHangup
InternetGetConnectedState
InternetAutodial
InternetQueryOptionA
dnsapi
DnsQuery_W
DnsRecordListFree
secur32
DeleteSecurityContext
FreeCredentialsHandle
ApplyControlToken
QueryContextAttributesW
DecryptMessage
FreeContextBuffer
InitializeSecurityContextW
AcquireCredentialsHandleW
EncryptMessage
crypt32
CertVerifySubjectCertificateContext
CryptQueryObject
CertCloseStore
CertFreeCertificateContext
CertFindCertificateInStore
wintrust
WinVerifyTrust
Sections
.text Size: 2.6MB - Virtual size: 2.6MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 562KB - Virtual size: 562KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 45KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 512B - Virtual size: 3B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3.5MB - Virtual size: 3.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ