Radpofadifjaoeigaehg
Wewsregioaegoiadafdh
timeGetTime
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
winmm.dll
Resource
win7-20241010-en
windows7-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
winmm.dll
Resource
win10v2004-20241007-en
windows10-2004-x64
4 signatures
150 seconds
General
-
Target
winmm.dll
-
Size
841KB
-
MD5
d6a8c7fd490cd1149c0b51d961eab9f3
-
SHA1
73bb1220ead897fcc36df8d8622104ae82a9ad12
-
SHA256
119f71276feb0064a7382ae036cc9a7ef9a2cdef69f8b4ca65a0e0ce4643245a
-
SHA512
0273f74c072f48a3aaac1c6e808fcdcab465513651c5a7815fc75e767af85cd1654073f776a5f41ad2d9606264302333d4524cbe838dacfeae1e1d7ff413befc
-
SSDEEP
6144:oUCLuxLYxYooT5WjKkwxPQm9msflBOkV4ELEko/q+EIZtCn6Kyn3KzhJTTcAcYGR:TCv/o9rk8597u/PHvLKkAS84RQ8MoJ
Score
3/10
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource winmm.dll
Files
-
winmm.dll.dll windows:6 windows x64 arch:x64
24f5d332262cd821a9719b770c4a0be6
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_DLL
Imports
kernel32
SetProcessPriorityBoost
GetSystemFirmwareTable
GetCPInfoExW
SetSystemTimeAdjustment
IsValidNLSVersion
GetProcessWorkingSetSizeEx
InitializeSRWLock
QueryUnbiasedInterruptTime
EnumLanguageGroupLocalesW
PowerSetRequest
FindStringOrdinal
GetCommConfig
BackupWrite
QueryDosDeviceW
RemoveDirectoryTransactedW
TryEnterCriticalSection
SetConsoleHistoryInfo
AddVectoredContinueHandler
EnumTimeFormatsW
GetProcessWorkingSetSize
SetInformationJobObject
CancelIo
WriteProfileStringW
LocalLock
QueryThreadpoolStackInformation
GetNamedPipeServerSessionId
FindFirstVolumeMountPointW
GetCurrentProcessorNumberEx
EnumResourceTypesExW
GetOEMCP
EnumTimeFormatsEx
GetFileInformationByHandleEx
InitOnceBeginInitialize
SearchPathW
GetProcessShutdownParameters
CreateThreadpool
WriteProcessMemory
SetHandleInformation
CreateTimerQueueTimer
HeapCreate
GetBinaryTypeW
SetProcessAffinityUpdateMode
EraseTape
SetWaitableTimer
CompareStringW
MapUserPhysicalPagesScatter
SetThreadDescription
FindFirstVolumeW
VirtualProtect
CopyFileTransactedW
GetConsoleScreenBufferInfo
CreateSemaphoreExW
CreateDirectoryTransactedW
SetPriorityClass
SetDefaultDllDirectories
CreateEventExW
GetCommProperties
SetLocalTime
EnterCriticalSection
GetCommandLineW
GetHandleInformation
CreateTapePartition
SetConsoleActiveScreenBuffer
IsThreadpoolTimerSet
QueryProtectedPolicy
SetSystemPowerState
FindNextFileW
GetCurrentProcess
SetConsoleScreenBufferSize
GetConsoleOutputCP
lstrlenW
SetProcessAffinityMask
CreateWaitableTimerW
GetProcessDEPPolicy
EnumCalendarInfoW
EnumResourceTypesW
SetDynamicTimeZoneInformation
CreateFileMappingNumaW
WriteFile
GetThreadIdealProcessorEx
lstrcpynW
CheckTokenMembershipEx
DeleteTimerQueue
RegisterWaitForSingleObject
GetModuleHandleExW
SetTimeZoneInformation
GetFileBandwidthReservation
GetSystemDefaultUILanguage
UnregisterWait
GetShortPathNameW
GetDiskFreeSpaceW
GetAppContainerNamedObjectPath
GetConsoleCursorInfo
SetCurrentConsoleFontEx
GetPrivateProfileIntW
RtlPcToFileHeader
SetFileBandwidthReservation
DeviceIoControl
VirtualAlloc
AssignProcessToJobObject
TerminateProcess
RemoveDirectoryW
WakeAllConditionVariable
SetThreadpoolWaitEx
SetFileTime
GetUserDefaultLangID
GetModuleFileNameW
WakeConditionVariable
CreateThreadpoolIo
ReOpenFile
DeleteFiber
CreateNamedPipeW
GetSystemTimes
InitializeProcThreadAttributeList
GetCommModemStatus
RequestWakeupLatency
GetConsoleCP
GetThreadLocale
SetEnvironmentVariableW
AddScopedPolicyIDAce
GetLocaleInfoEx
SetConsoleWindowInfo
GetNumaProcessorNodeEx
GetUserDefaultLocaleName
LocalHandle
GetProcessId
SignalObjectAndWait
VirtualUnlock
CreateJobObjectW
DeleteTimerQueueEx
GetUserDefaultUILanguage
GetNamedPipeClientComputerNameW
GetProductInfo
GetConsoleFontSize
CompareStringOrdinal
LockFile
DnsHostnameToComputerNameW
InitializeCriticalSectionAndSpinCount
CreateConsoleScreenBuffer
GetDynamicTimeZoneInformation
LeaveCriticalSection
CreatePipe
GetConsoleAliasExesW
FoldStringW
SetSystemTime
InitializeConditionVariable
SetFilePointer
TryAcquireSRWLockShared
EnumUILanguagesW
GetNumaAvailableMemoryNode
GetCompressedFileSizeW
GetNumaProcessorNode
FlsGetValue
GetEnvironmentVariableW
WriteFileEx
GetConsoleAliasW
EnumResourceNamesW
UnlockFileEx
FlushProcessWriteBuffers
GetTempPathW
InitializeCriticalSectionEx
GetLargePageMinimum
GetPrivateProfileSectionW
GetConsoleScreenBufferInfoEx
FindClose
LocalAlloc
CreateFileW
GetDateFormatEx
FreeLibraryAndExitThread
SetComputerNameExW
OpenJobObjectW
DebugActiveProcessStop
GetPrivateProfileSectionNamesW
ReleaseMutex
WriteTapemark
OpenFileMappingW
WaitForThreadpoolWorkCallbacks
SetThreadpoolThreadMinimum
ApplicationRecoveryFinished
IsSystemResumeAutomatic
GetComputerNameExW
FreeEnvironmentStringsW
HeapWalk
ContinueDebugEvent
GetAtomNameW
UnmapViewOfFile
DuplicateHandle
lstrcatA
GetSystemDefaultLangID
GetACP
GetSystemDefaultLocaleName
DisconnectNamedPipe
RtlCaptureStackBackTrace
GlobalAddAtomW
LCIDToLocaleName
HeapSize
SetProcessMitigationPolicy
ApplicationRecoveryInProgress
PostQueuedCompletionStatus
CancelWaitableTimer
ClosePrivateNamespace
SetFileAttributesW
IsValidCodePage
GetLogicalDriveStringsW
CloseThreadpoolCleanupGroup
EndUpdateResourceW
CreateEventW
RemoveSecureMemoryCacheCallback
ConvertThreadToFiberEx
MultiByteToWideChar
CloseThreadpoolCleanupGroupMembers
GetPrivateProfileStringW
ResolveLocaleName
GetConsoleMode
GetFileInformationByHandle
SetTapeParameters
QueryThreadProfiling
WritePrivateProfileStructW
GetTimeZoneInformation
ReadThreadProfilingData
SetConsoleScreenBufferInfoEx
GetDevicePowerState
VerifyScripts
LCMapStringEx
OpenWaitableTimerW
SetCalendarInfoW
Wow64RevertWow64FsRedirection
FlsSetValue
GetLastError
GetLargestConsoleWindowSize
GetCurrencyFormatEx
WaitForThreadpoolWaitCallbacks
EnumSystemLocalesEx
SetUserGeoID
AttachConsole
GetCalendarInfoW
UpdateProcThreadAttribute
GetFileAttributesA
TzSpecificLocalTimeToSystemTime
SetThreadpoolThreadMaximum
SetConsoleCursorInfo
SetCriticalSectionSpinCount
GetConsoleDisplayMode
GetConsoleProcessList
GetNumaHighestNodeNumber
ConvertDefaultLocale
WaitCommEvent
FillConsoleOutputCharacterW
FlushViewOfFile
GlobalSize
GetThreadUILanguage
GetUserDefaultLCID
SetEvent
FileTimeToSystemTime
GetNamedPipeHandleStateW
GetDiskFreeSpaceExW
GetSystemFileCacheSize
OfferVirtualMemory
GetCurrentThread
GetMailslotInfo
ReadConsoleOutputW
TerminateThread
EnumDateFormatsExEx
FindCloseChangeNotification
GetApplicationRestartSettings
GetTapeParameters
WaitForSingleObjectEx
SetWaitableTimerEx
CreateThreadpoolWait
PulseEvent
GetCommState
GlobalFlags
CreateHardLinkTransactedW
DeleteFileW
InterlockedPushListSListEx
TransmitCommChar
MoveFileTransactedW
HeapReAlloc
CloseHandle
SetProcessPreferredUILanguages
CreateThreadpoolCleanupGroup
GetProcessIoCounters
ReleaseSRWLockShared
ReleaseMutexWhenCallbackReturns
AllocateUserPhysicalPagesNuma
CompareStringEx
EnumResourceLanguagesW
FindNLSStringEx
RaiseException
FreeConsole
PowerClearRequest
WriteProfileSectionW
BindIoCompletionCallback
ReadFileEx
HeapSetInformation
IsDBCSLeadByte
ScrollConsoleScreenBufferW
SetComputerNameW
GetActiveProcessorCount
LoadResource
DiscardVirtualMemory
FindResourceW
EnumDateFormatsExW
GlobalFindAtomW
HeapAlloc
WriteConsoleInputW
Wow64SuspendThread
GetCurrencyFormatW
ClearCommError
QueueUserAPC
GetConsoleOriginalTitleW
GetDefaultCommConfigW
GetMemoryErrorHandlingCapabilities
GetNLSVersionEx
GetQueuedCompletionStatusEx
GetCurrentDirectoryW
FillConsoleOutputAttribute
GetProcessPreferredUILanguages
SetStdHandle
SetCommMask
VirtualProtectEx
AddSIDToBoundaryDescriptor
AddVectoredExceptionHandler
SetFirmwareEnvironmentVariableW
FindNextFileNameW
HeapDestroy
GetNamedPipeClientSessionId
IsThreadAFiber
LocalSize
UnlockFile
GetDurationFormatEx
CreateFileMappingFromApp
SetThreadGroupAffinity
SetCurrentDirectoryW
GetWindowsDirectoryW
GetErrorMode
SetProcessDEPPolicy
GetPriorityClass
Beep
VirtualAllocEx
CreateMutexExW
GetTimeFormatW
MoveFileExW
GetThreadId
GetProcessorSystemCycleTime
ReplaceFileW
AcquireSRWLockShared
SetThreadStackGuarantee
IsProcessorFeaturePresent
GetFileSize
SetDefaultCommConfigW
DeleteCriticalSection
ExitProcess
VerSetConditionMask
LCMapStringW
FindVolumeClose
FindFirstStreamW
GetCurrentProcessId
EnumSystemLocalesW
GetProcessHeap
GetNumberOfConsoleInputEvents
GlobalMemoryStatusEx
CreateProcessW
SetThreadExecutionState
IsValidLocale
FreeLibrary
SetFirmwareEnvironmentVariableExW
TransactNamedPipe
CopyFileW
GetNumaProximityNode
WideCharToMultiByte
GetConsoleWindow
lstrcpyW
WinExec
CreateRemoteThread
DeleteBoundaryDescriptor
SleepConditionVariableSRW
LocaleNameToLCID
VerifyVersionInfoW
WritePrivateProfileSectionW
GetThreadTimes
BeginUpdateResourceW
SystemTimeToTzSpecificLocalTime
FreeUserPhysicalPages
GetTempFileNameW
CreateProcessA
ConvertFiberToThread
GetSystemTimeAsFileTime
DeleteTimerQueueTimer
LocalFlags
CreateDirectoryA
GetSystemTime
SetThreadErrorMode
VirtualFreeEx
CreateWaitableTimerExW
IsBadReadPtr
DebugBreak
SetProcessWorkingSetSize
CreateFileMappingW
GetTapeStatus
DosDateTimeToFileTime
SetThreadPreferredUILanguages
GetSystemWindowsDirectoryW
GetNumaNodeProcessorMaskEx
FindNextVolumeW
SetFileValidData
GetProcessGroupAffinity
GetNLSVersion
CreateMailslotW
GetStringTypeW
HeapUnlock
GetDateFormatW
InitializeSListHead
GetSystemPreferredUILanguages
FreeLibraryWhenCallbackReturns
CreateIoCompletionPort
GetTickCount
WaitNamedPipeW
GlobalUnlock
SetCommState
ConvertThreadToFiber
SetTapePosition
lstrcmpW
EnumDateFormatsW
WriteConsoleOutputW
GetProcessHandleCount
FlsAlloc
LocalUnlock
RegisterBadMemoryNotification
IsWow64Process
GetVolumeInformationByHandleW
GetProcessTimes
GetDriveTypeW
GetFileTime
OpenThread
LoadLibraryExW
DebugBreakProcess
GenerateConsoleCtrlEvent
GetConsoleSelectionInfo
IsDebuggerPresent
ConnectNamedPipe
VirtualQueryEx
DebugSetProcessKillOnExit
CheckRemoteDebuggerPresent
ReadConsoleOutputAttribute
SetFileCompletionNotificationModes
WriteConsoleOutputCharacterW
CreateDirectoryExW
FlushFileBuffers
GetCurrentConsoleFont
FileTimeToDosDateTime
RegisterApplicationRecoveryCallback
WriteConsoleW
SetEndOfFile
GetEnvironmentStringsW
GetCommandLineA
FindFirstFileExW
GetLocaleInfoW
HeapFree
GetFileSizeEx
GetFileType
GetStdHandle
ReadConsoleW
SetFilePointerEx
ReadFile
GetProcAddress
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SetLastError
InterlockedFlushSList
RtlUnwindEx
GetCurrentThreadId
QueryPerformanceCounter
GetModuleHandleW
GetStartupInfoW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
RtlVirtualUnwind
RtlLookupFunctionEntry
RtlCaptureContext
GetCPInfo
DecodePointer
EncodePointer
OutputDebugStringW
AreFileApisANSI
RtlUnwind
user32
DdeCreateDataHandle
GetDlgCtrlID
GetKeyboardLayoutNameW
SetTimer
GetCapture
ChangeDisplaySettingsW
BeginDeferWindowPos
ReplyMessage
GetSubMenu
SetCaretPos
TileWindows
GetWindowLongPtrW
MsgWaitForMultipleObjects
RemovePropW
DdeReconnect
GetIconInfo
SetCoalescableTimer
MessageBoxExW
GetPropW
InvertRect
SetMessageExtraInfo
GetIconInfoExW
DeregisterShellHookWindow
GetDC
InsertMenuItemW
SendMessageTimeoutW
VkKeyScanExW
GetMessageExtraInfo
EnumDesktopsW
GetSystemMenu
DefWindowProcW
TabbedTextOutW
CreateDialogParamW
IsCharLowerW
GetGuiResources
SetDoubleClickTime
DrawFocusRect
SendDlgItemMessageW
MessageBoxA
DdeUninitialize
GetSysColor
IsWindowEnabled
UnhookWindowsHookEx
CreateAcceleratorTableW
IsRectEmpty
SetLayeredWindowAttributes
IntersectRect
CharNextW
TranslateAcceleratorW
OpenInputDesktop
IsImmersiveProcess
RegisterRawInputDevices
LoadCursorW
GetWindowDC
DlgDirSelectComboBoxExW
InsertMenuW
PrintWindow
GetClientRect
GetTabbedTextExtentW
UpdateLayeredWindow
GetNextDlgGroupItem
CreateMenu
DdeFreeStringHandle
SwapMouseButton
DrawFrameControl
UnhookWinEvent
ReleaseCapture
InvalidateRect
GetAncestor
CreateWindowStationW
IsCharUpperW
GetGUIThreadInfo
UnpackDDElParam
GetClipCursor
crypt32
CryptStringToBinaryA
Exports
Exports
Sections
.code Size: 475KB - Virtual size: 474KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 235KB - Virtual size: 242KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pdata Size: 30KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
_RDATA Size: 1024B - Virtual size: 244B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.ndata Size: 96KB - Virtual size: 95KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ