Static task
static1
Behavioral task
behavioral1
Sample
2ecf0d4266b5aa683f9b28d2ca239d3a94ee73dbdfae09c9e15b1f5155a990ec.exe
Resource
win7-20240903-en
windows7-x64
Behavioral task
behavioral2
Sample
2ecf0d4266b5aa683f9b28d2ca239d3a94ee73dbdfae09c9e15b1f5155a990ec.exe
Resource
win10v2004-20241007-en
windows10-2004-x64
General
-
Target
2ecf0d4266b5aa683f9b28d2ca239d3a94ee73dbdfae09c9e15b1f5155a990ec
-
Size
2.0MB
-
MD5
27275202f258f96a69830b3e5f31ba04
-
SHA1
6a1f7910f6ff75735b9457d64f7b19038a1e0c0b
-
SHA256
2ecf0d4266b5aa683f9b28d2ca239d3a94ee73dbdfae09c9e15b1f5155a990ec
-
SHA512
abb4d169e7b2b393025b14b44d807d5b7fd53817352de9effc92f4daf4ead08b9f468005dca3e49d02a852d914c7bb576bebed8fe5a05168bf29333a9bc7605e
-
SSDEEP
49152:jbueF6qpVqWyuSUqzz2yBInb2C06twL17sk5qau:d6qpVqWyuSzhBWKN7sk+
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2ecf0d4266b5aa683f9b28d2ca239d3a94ee73dbdfae09c9e15b1f5155a990ec
Files
-
2ecf0d4266b5aa683f9b28d2ca239d3a94ee73dbdfae09c9e15b1f5155a990ec.exe windows:4 windows x86 arch:x86
7c11647ea6e88b19417cf54de0c27d31
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LeaveCriticalSection
InitializeCriticalSection
EnterCriticalSection
LCMapStringA
FreeLibrary
GetCommandLineA
GetFileSize
SetFileAttributesA
GlobalFree
GetUserDefaultLCID
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FindFirstFileA
FindNextFileA
GetDiskFreeSpaceA
GetDiskFreeSpaceExA
GetCurrentDirectoryA
GetVolumeInformationA
CreateDirectoryA
MoveFileA
CopyFileA
DeleteFileA
SetFilePointer
CreateFileA
WriteFile
CloseHandle
WritePrivateProfileStringA
GetLocalTime
Sleep
GetPrivateProfileStringA
GetTickCount
GetModuleFileNameA
IsBadReadPtr
HeapReAlloc
ExitProcess
GlobalUnlock
GlobalLock
GlobalAlloc
RtlZeroMemory
MulDiv
GetTempPathA
OpenEventA
GetWindowsDirectoryA
CreateThread
GetAtomNameW
GetModuleFileNameW
GetCommandLineW
GetModuleHandleW
VirtualFree
LoadLibraryA
VirtualAlloc
lstrcpynA
lstrcatW
lstrcmpiW
lstrcmpA
lstrlenW
lstrlenA
HeapFree
InterlockedDecrement
InterlockedIncrement
LocalSize
HeapAlloc
GetProcessHeap
WaitForSingleObject
ResumeThread
Beep
GetCurrentThreadId
InterlockedExchange
SetStdHandle
IsBadCodePtr
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
LCMapStringW
IsBadWritePtr
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetACP
HeapSize
RaiseException
RtlUnwind
GetStartupInfoA
GetOEMCP
GetCPInfo
SetErrorMode
GetProcessVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetCurrentProcess
WideCharToMultiByte
VirtualFreeEx
VirtualAllocEx
GetProcAddress
GetModuleHandleA
lstrcatA
MultiByteToWideChar
ReadFile
_lclose
GetFileSizeEx
_lopen
lstrcpyn
RtlMoveMemory
DeviceIoControl
GlobalSize
FlushFileBuffers
LocalFree
GlobalDeleteAtom
lstrcmpiA
GetCurrentThread
GetVersion
FindResourceA
LoadResource
LockResource
SetLastError
lstrcpyA
GetDriveTypeA
GetLastError
GetVersionExA
GetSystemDirectoryA
DeleteCriticalSection
GlobalMemoryStatusEx
GetComputerNameA
GetCurrentProcessId
TerminateProcess
OpenProcess
Process32Next
Process32First
CreateToolhelp32Snapshot
CreateEventA
user32
DestroyIcon
DestroyAcceleratorTable
GetSysColor
IsWindowEnabled
EnableWindow
GetWindowRect
GetIconInfo
GetNextDlgTabItem
SetFocus
CallWindowProcW
InvalidateRect
MapWindowPoints
GetMessageW
IsChild
TranslateMDISysAccel
TranslateAcceleratorW
IsDialogMessageW
TranslateMessage
DispatchMessageW
PostQuitMessage
CreateWindowExW
GetClassInfoExW
RegisterClassExW
CreateDialogIndirectParamW
GetClassLongW
SetClassLongW
DestroyWindow
DialogBoxIndirectParamW
EndDialog
CreateDialogParamW
DialogBoxParamW
CreateMDIWindowW
DefWindowProcW
ShowWindow
PostMessageW
CopyIcon
LoadCursorW
GetClassNameA
SetWindowPos
MessageBoxTimeoutA
ScreenToClient
ValidateRect
UpdateWindow
MoveWindow
SetParent
SetWindowTextW
ReleaseCapture
SetCapture
GetClientRect
EndPaint
BeginPaint
CallWindowProcA
GetCursorPos
ClientToScreen
GetFocus
UnhookWindowsHookEx
CallNextHookEx
SetWindowsHookExA
ChangeDisplaySettingsA
ExitWindowsEx
CreateWindowStationA
mouse_event
GetParent
GetWindowTextW
GetWindowTextLengthW
GetClassNameW
FindWindowExW
IsWindow
GetAsyncKeyState
SetWindowLongW
GetAncestor
GetDlgItem
MessageBoxW
SetTimer
KillTimer
SetPropW
SetPropA
GetPropW
GetPropA
RemovePropW
RemovePropA
EnumPropsExW
LoadIconW
SetWindowRgn
SetRect
IsIconic
IsZoomed
GetSystemMetrics
GetMenu
SetMenu
DrawMenuBar
RegisterWindowMessageW
SystemParametersInfoW
CreateIconFromResourceEx
PostThreadMessageA
UnregisterClassA
LoadStringA
GetSysColorBrush
LoadCursorA
LoadIconA
AdjustWindowRectEx
SetCursor
CopyRect
DestroyCursor
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
CreateWindowExA
GetClassLongA
DefWindowProcA
GetMessageTime
GetMessagePos
RegisterWindowMessageA
GetWindowPlacement
IsDialogMessageA
SendDlgItemMessageA
GetDlgCtrlID
GrayStringA
DrawTextA
TabbedTextOutA
RegisterClipboardFormatA
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
SetMenuItemBitmaps
EnableMenuItem
GetKeyState
GetLastActivePopup
GetWindow
PtInRect
SystemParametersInfoA
SetActiveWindow
GetActiveWindow
GetForegroundWindow
LoadImageW
DrawIconEx
LoadImageA
FillRect
PrintWindow
EmptyClipboard
SetClipboardData
MsgWaitForMultipleObjects
GetDialogBaseUnits
MapDialogRect
GetDlgItemInt
SetDlgItemInt
GetDlgItemTextW
SetDlgItemTextW
SendDlgItemMessageW
UpdateLayeredWindow
CreateMenu
CreatePopupMenu
GetSystemMenu
LoadMenuW
GetMenuInfo
DestroyMenu
GetMenuItemCount
GetMenuItemInfoW
AppendMenuW
InsertMenuW
SetMenuInfo
GetSubMenu
GetMenuItemID
CheckMenuRadioItem
SetForegroundWindow
TrackPopupMenu
GetMenuStringW
GetMenuItemRect
GetMenuState
GetMenuDefaultItem
MenuItemFromPoint
RemoveMenu
CheckMenuItem
SetMenuItemInfoW
SetMenuDefaultItem
MessageBoxA
wsprintfA
DispatchMessageA
GetMessageA
PeekMessageA
GetWindowTextLengthA
GetWindowLongA
SetWindowLongA
SetWindowTextA
SendMessageA
CreateDialogIndirectParamA
CloseClipboard
OpenClipboard
GetClipboardData
SendMessageW
GetWindowLongW
GetWindowTextA
IsWindowVisible
TrackMouseEvent
SetCursorPos
FindWindowA
MapVirtualKeyA
GetDC
ReleaseDC
EnumDisplaySettingsA
keybd_event
PostMessageA
GetWindowThreadProcessId
advapi32
CryptDestroyHash
RegOpenKeyExA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
CryptGetHashParam
CryptHashData
CryptReleaseContext
CryptCreateHash
CryptAcquireContextA
shell32
DragAcceptFiles
CommandLineToArgvW
Shell_NotifyIconW
DragFinish
DragQueryFileW
SHGetSpecialFolderPathA
ShellExecuteA
ole32
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoUninitialize
CoInitializeEx
CoCreateInstance
CoSetProxyBlanket
IIDFromString
CreateStreamOnHGlobal
StringFromGUID2
GetHGlobalFromStream
CLSIDFromString
OleRun
CLSIDFromProgID
CoInitializeSecurity
iphlpapi
GetAdaptersInfo
SendARP
shlwapi
PathAddBackslashW
PathFileExistsA
PathFindFileNameW
PathRemoveFileSpecW
ws2_32
recv
connect
gethostname
socket
send
accept
WSAStartup
select
gethostbyname
inet_ntoa
WSACleanup
bind
closesocket
listen
htons
WSACreateEvent
WSAEventSelect
ntohs
WSAEnumNetworkEvents
inet_addr
WSACloseEvent
gdi32
SetBkMode
SetTextColor
CreateCompatibleDC
CreateDIBSection
SelectObject
SetBkColor
GetTextMetricsA
SetViewportOrgEx
CreateRoundRectRgn
GetObjectW
BitBlt
CreateBitmap
SaveDC
RestoreDC
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
GdiFlush
DeleteObject
CreatePatternBrush
CreateFontIndirectW
StretchBlt
SetStretchBltMode
GetStretchBltMode
SetDIBitsToDevice
GetDIBits
SetPixelV
GetPixel
CreateCompatibleBitmap
GetObjectA
CreateSolidBrush
GetStockObject
GetDeviceCaps
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
DeleteDC
comdlg32
GetSaveFileNameW
GetOpenFileNameW
comctl32
InitCommonControlsEx
ord17
wininet
InternetGetConnectedState
InternetOpenA
InternetOpenUrlA
HttpQueryInfoA
InternetReadFile
InternetCloseHandle
oleaut32
VariantInit
SafeArrayGetDim
SafeArrayGetLBound
SafeArrayGetUBound
SysFreeString
SysAllocString
SafeArrayDestroy
VariantClear
SafeArrayCreate
VariantCopy
RegisterTypeLi
LHashValOfNameSys
LoadTypeLi
VariantChangeType
SafeArrayGetElemsize
SafeArrayUnaccessData
SafeArrayAccessData
gdiplus
GdipTransformMatrixPoints
GdipShearMatrix
GdipScaleMatrix
GdipInvertMatrix
GdipMultiplyMatrix
GdipGetMatrixElements
GdipSetMatrixElements
GdipCloneMatrix
GdipCreateMatrix3
GdipCreateMatrix2
GdipRotateMatrix
GdipTranslateMatrix
GdipCreateMatrix
GdipBitmapSetResolution
GdipCloneBitmapArea
GdipCreateBitmapFromResource
GdipCreateBitmapFromHICON
GdipCreateBitmapFromHBITMAP
GdipCreateBitmapFromGdiDib
GdipCreateBitmapFromGraphics
GdipCreateBitmapFromStream
GdipCreateBitmapFromFile
GdipGetRegionScans
GdipGetRegionScansCount
GdipIsVisibleRegionRect
GdipIsVisibleRegionPoint
GdipIsEqualRegion
GdipIsInfiniteRegion
GdipIsEmptyRegion
GdipGetRegionHRgn
GdipGetRegionData
GdipGetRegionDataSize
GdipGetRegionBounds
GdipTransformRegion
GdipTranslateRegion
GdipCombineRegionPath
GdipCombineRegionRegion
GdipCombineRegionRect
GdipSetEmpty
GdipSetInfinite
GdipCloneRegion
GdipCreateRegionRgnData
GdipCreateRegionHrgn
GdipCreateRegionPath
GdipCreateRegionRect
GdipIsOutlineVisiblePathPoint
GdipIsVisiblePathPoint
GdipWarpPath
GdipWindingModeOutline
GdipWidenPath
GdipFlattenPath
GdipGetPathWorldBounds
GdipTransformPath
GdipAddPathString
GdipAddPathPath
GdipAddPathPolygon
GdipAddPathPie
GdipAddPathEllipse
GdipPrivateAddMemoryFont
GdipGetFontCollectionFamilyCount
GdipGetFontCollectionFamilyList
GdipCloneFontFamily
GdipCreateFontFamilyFromName
GdipGetGenericFontFamilySansSerif
GdipAddPathRectangle
GdipAddPathClosedCurve2
GdipAddPathClosedCurve
GdipAddPathCurve2
GdipAddPathCurve
GdipAddPathBezier
GdipAddPathArc
GdipAddPathLine
GdipGetPathLastPoint
GdipReversePath
GdipClearPathMarkers
GdipSetPathMarker
GdipClosePathFigures
GdipClosePathFigure
GdipStartPathFigure
GdipGetPathData
GdipGetPointCount
GdipSetPathFillMode
GdipGetPathFillMode
GdipResetPath
GdipClonePath
GdipCreatePath2
GdipCreatePath
GdipGetImageGraphicsContext
GdipCreateFromHWND
GdipGetFontHeightGivenDPI
GdipGetFontHeight
GdipGetFontUnit
GdipGetFontSize
GdipGetFontStyle
GdipGetFamily
GdipGetLogFontA
GdipGetLogFontW
GdipCloneFont
GdipCreateFontFromLogfontA
GdipCreateFontFromDC
GdipDeleteFontFamily
GdipDeletePrivateFontCollection
GdipVectorTransformMatrixPoints
GdipCreateFont
GdipGetSolidFillColor
GdipSetSolidFillColor
GdipCreateSolidFill
GdipGetBrushType
GdipCloneBrush
GdipGetStringFormatMeasurableCharacterRangeCount
GdipSetStringFormatMeasurableCharacterRanges
GdipGetStringFormatDigitSubstitution
GdipSetStringFormatDigitSubstitution
GdipGetGenericFontFamilySerif
GdipGetStringFormatTabStopCount
GdipSetStringFormatTabStops
GdipGetStringFormatHotkeyPrefix
GdipSetStringFormatHotkeyPrefix
GdipGetStringFormatTrimming
GdipSetStringFormatTrimming
GdipGetStringFormatLineAlign
GdipSetStringFormatLineAlign
GdipGetStringFormatAlign
GdipSetStringFormatAlign
GdipGetStringFormatFlags
GdipSetStringFormatFlags
GdipCloneStringFormat
GdipStringFormatGetGenericTypographic
GdipStringFormatGetGenericDefault
GdipCreateStringFormat
GdipCreateHICONFromBitmap
GdipImageSelectActiveFrame
GdipIsMatrixInvertible
GdipGetImageThumbnail
GdipGetImageVerticalResolution
GdipGetImageHorizontalResolution
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageBounds
GdipGetImageDimension
GdipGetImageEncoders
GdipGetImageEncodersSize
GdipSaveImageToStream
GdipGetImagePixelFormat
GdipGetImageRawFormat
GdipCloneImage
GdipLoadImageFromStream
GdipLoadImageFromFile
GdipEndContainer
GdipBeginContainer2
GdipBeginContainer
GdipRestoreGraphics
GdipSaveGraphics
GdipIsVisibleRect
GdipIsVisiblePoint
GdipIsVisibleClipEmpty
GdipIsClipEmpty
GdipGetVisibleClipBounds
GdipGetClipBounds
GdipGetClip
GdipTranslateClip
GdipResetClip
GdipSetClipHrgn
GdipSetClipRegion
GdipSetClipRect
GdipSetClipPath
GdipSetClipGraphics
GdipDrawImagePointsRect
GdipDrawImagePointRect
GdipDrawImagePoints
GdipDrawImageRect
GdipDrawImageRectRect
GdipDrawImage
GdipDrawDriverString
GdipMeasureCharacterRanges
GdipCreateRegion
GdipMeasureString
GdipDrawString
GdipFillRegion
GdipGetGenericFontFamilyMonospace
GdipGetFamilyName
GdipIsStyleAvailable
GdipGetEmHeight
GdipGetCellAscent
GdipGetCellDescent
GdipGetLineSpacing
GdipIsMatrixIdentity
GdipIsMatrixEqual
GdipNewInstalledFontCollection
GdipNewPrivateFontCollection
GdipPrivateAddFontFile
GdipFillClosedCurve2
GdipFillClosedCurve
GdipFillPath
GdipFillPie
GdipFillEllipse
GdipFillPolygon
GdipGraphicsClear
GdipDrawClosedCurve2
GdipDrawClosedCurve
GdipDrawCurve2
GdipDrawCurve
GdipDrawPath
GdipDrawPolygon
GdipDrawPie
GdipDrawEllipse
GdipDrawRectangle
GdipDrawBezier
GdipDrawArc
GdipDrawLine
GdipCreateFontFromLogfontW
GdipGetNearestColor
GdipTransformPointsI
GdipTransformPoints
GdipGetDpiY
GdipGetDpiX
GdipGetPageScale
GdipSetPageScale
GdipGetPageUnit
GdipSetPageUnit
GdipRotateWorldTransform
GdipScaleWorldTransform
GdipTranslateWorldTransform
GdipResetWorldTransform
GdipDeleteMatrix
GdipGetWorldTransform
GdipSetWorldTransform
GdipGetPixelOffsetMode
GdipSetPixelOffsetMode
GdipGetSmoothingMode
GdipSetSmoothingMode
GdipGetInterpolationMode
GdipSetInterpolationMode
GdipGetTextRenderingHint
GdipSetTextRenderingHint
GdipReleaseDC
GdipGetDC
GdipFlush
GdipCreateFromHDC
GdipCreateHBITMAPFromBitmap
GdipSetImageAttributesColorMatrix
GdipGetImageAttributesAdjustedPalette
GdipSetImageAttributesWrapMode
GdipSetImageAttributesRemapTable
GdipSetImageAttributesOutputChannelColorProfile
GdipSetImageAttributesOutputChannel
GdipSetImageAttributesColorKeys
GdipSetImageAttributesGamma
GdipSetImageAttributesNoOp
GdipSetImageAttributesThreshold
GdipResetImageAttributes
GdipSetImageAttributesToIdentity
GdipCloneImageAttributes
GdipCreateImageAttributes
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipDeleteRegion
GdipDeletePath
GdiplusStartup
GdipDeleteFont
GdipDeleteStringFormat
GdipDisposeImage
GdipDeleteGraphics
GdipDisposeImageAttributes
GdipDeleteBrush
GdipFillRectangle
GdipCreateTexture
GdipImageGetFrameCount
GdipGetStringFormatTabStops
atl
ord42
msimg32
AlphaBlend
oledlg
ord8
winspool.drv
OpenPrinterA
ClosePrinter
DocumentPropertiesA
msvcrt
strncpy
psapi
GetMappedFileNameW
Sections
.text Size: 268KB - Virtual size: 820KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 40KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 324KB - Virtual size: 552KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.sedata Size: 1.3MB - Virtual size: 1.3MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.sedata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 4KB - Virtual size: 987B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE