0.6
低危
该样本未表现出任何异常!
重新分析
更多

798750bc8828efaedfc9bda0755065346cbe4c68c06d9fd9082eae4b478b0311

b5f27dda5d4fb1084f3a1b9f1d6c47e1.exe

分析耗时

81s

最近分析

文件大小

4.6MB
静态报毒 动态报毒
鹰眼引擎
未检测 暂无鹰眼引擎检测结果
静态判定
反病毒引擎
未检测 暂无反病毒引擎检测结果
静态指标
行为判定
动态指标
网络通信
Communicates with host for which no DNS query was performed (2 个事件)
host 172.217.24.14
host 52.218.105.220
可视化分析
二进制图像
暂无二进制图像 该样本未生成二进制可视化图像
运行截图
暂无运行截图 该样本运行过程中未生成截图

👋 欢迎使用 ChatHawk

我是您的恶意软件分析助手,可以帮您分析和解读恶意软件报告。请随时向我提问!

🔍 主要威胁分析
⚡ 行为特征
🛡️ 防护建议
🔧 技术手段
🎯 检测方法
🤖

PE Compile Time

2020-02-11 17:17:01

Imports

Library KERNEL32.dll:
0x77f268 SwitchToThread
0x77f26c TlsAlloc
0x77f270 TlsGetValue
0x77f274 TlsSetValue
0x77f278 TlsFree
0x77f280 GetModuleHandleW
0x77f284 EncodePointer
0x77f288 DecodePointer
0x77f28c CompareStringW
0x77f290 LCMapStringW
0x77f294 GetLocaleInfoW
0x77f298 GetCPInfo
0x77f2a0 FreeConsole
0x77f2a4 AttachConsole
0x77f2a8 WriteConsoleA
0x77f2ac WriteConsoleW
0x77f2c0 ExitProcess
0x77f2c4 MulDiv
0x77f2c8 GetCommandLineW
0x77f2cc HeapSize
0x77f2d0 GetProcessHeap
0x77f2d4 GlobalAlloc
0x77f2d8 GlobalSize
0x77f2dc GlobalFree
0x77f2e0 SetErrorMode
0x77f2e4 CreateMutexW
0x77f2e8 SetThreadPriority
0x77f2ec TerminateThread
0x77f2f0 GetExitCodeThread
0x77f2f4 ResumeThread
0x77f2fc GetFileType
0x77f300 CopyFileW
0x77f304 WriteFile
0x77f30c CreatePipe
0x77f314 PeekNamedPipe
0x77f318 SetEvent
0x77f320 CreateProcessW
0x77f324 GetLongPathNameW
0x77f328 GetTempFileNameW
0x77f330 IsDebuggerPresent
0x77f334 GetModuleFileNameW
0x77f338 LoadResource
0x77f33c LockResource
0x77f340 SizeofResource
0x77f344 FindResourceW
0x77f348 GetComputerNameW
0x77f34c IsValidCodePage
0x77f350 GetACP
0x77f354 IsValidLocale
0x77f358 GetUserDefaultLCID
0x77f364 RaiseException
0x77f368 IsBadReadPtr
0x77f36c IsBadStringPtrA
0x77f370 GetDiskFreeSpaceExA
0x77f380 ResetEvent
0x77f388 GetStartupInfoW
0x77f38c InitializeSListHead
0x77f390 RtlUnwind
0x77f394 LoadLibraryExW
0x77f3a0 GetFullPathNameW
0x77f3a4 GetModuleHandleExW
0x77f3a8 ExitThread
0x77f3b0 MoveFileExW
0x77f3b4 SetStdHandle
0x77f3b8 FlushFileBuffers
0x77f3bc GetConsoleMode
0x77f3c0 ReadConsoleW
0x77f3c4 GetConsoleCP
0x77f3c8 SetFilePointerEx
0x77f3d0 HeapAlloc
0x77f3d4 HeapFree
0x77f3d8 GetDateFormatW
0x77f3dc GetTimeFormatW
0x77f3e0 EnumSystemLocalesW
0x77f3e4 GetFileSizeEx
0x77f3ec HeapReAlloc
0x77f3f0 GetOEMCP
0x77f400 SetEndOfFile
0x77f404 FindFirstFileExW
0x77f408 GetCommandLineA
0x77f40c GetStringTypeW
0x77f410 FormatMessageW
0x77f414 CreateEventW
0x77f424 Process32NextW
0x77f428 Process32FirstW
0x77f434 WideCharToMultiByte
0x77f438 MultiByteToWideChar
0x77f440 SetVolumeLabelW
0x77f444 MoveFileW
0x77f448 LocalFree
0x77f44c LocalAlloc
0x77f450 GlobalLock
0x77f454 GlobalUnlock
0x77f458 LoadLibraryW
0x77f45c GetProcAddress
0x77f460 FreeLibrary
0x77f464 GetVersionExW
0x77f468 GetSystemDirectoryW
0x77f46c GetTickCount
0x77f470 GetSystemTime
0x77f474 OpenProcess
0x77f478 GetProcessId
0x77f47c GetCurrentThreadId
0x77f480 GetCurrentThread
0x77f484 CreateThread
0x77f488 GetExitCodeProcess
0x77f48c TerminateProcess
0x77f490 GetCurrentProcessId
0x77f494 GetCurrentProcess
0x77f498 Sleep
0x77f49c WaitForSingleObject
0x77f4b0 DeviceIoControl
0x77f4b4 SetLastError
0x77f4b8 GetLastError
0x77f4bc CloseHandle
0x77f4c0 OutputDebugStringW
0x77f4c4 GetTempPathW
0x77f4c8 SetFileAttributesW
0x77f4cc ReadFile
0x77f4d0 QueryDosDeviceW
0x77f4dc GetFileTime
0x77f4e4 GetFileAttributesW
0x77f4e8 GetDriveTypeW
0x77f4ec GetDriveTypeA
0x77f4f0 GetDiskFreeSpaceExW
0x77f4f4 GetDiskFreeSpaceW
0x77f4f8 FindNextFileW
0x77f4fc FindFirstFileW
0x77f500 FindClose
0x77f508 DeleteFileW
0x77f50c CreateFileW
0x77f510 CreateDirectoryW
0x77f514 GetStdHandle
Library USER32.dll:
0x77f5dc FindWindowExW
0x77f5e0 UnionRect
0x77f5e4 GetWindowTextW
0x77f5e8 MessageBeep
0x77f5ec GetClassNameW
0x77f5f0 GetMessageW
0x77f5f4 PostThreadMessageW
0x77f5f8 ValidateRect
0x77f608 GetDoubleClickTime
0x77f60c GetWindowDC
0x77f610 BeginPaint
0x77f614 EndPaint
0x77f618 ValidateRgn
0x77f61c IsRectEmpty
0x77f624 wsprintfW
0x77f630 MonitorFromPoint
0x77f634 MonitorFromWindow
0x77f638 GetMonitorInfoW
0x77f63c EnumDisplayMonitors
0x77f640 GetDesktopWindow
0x77f644 WaitForInputIdle
0x77f64c SetTimer
0x77f650 KillTimer
0x77f654 DdeInitializeW
0x77f658 DdeUninitialize
0x77f65c DdeConnect
0x77f660 DdeDisconnect
0x77f664 DdePostAdvise
0x77f668 DdeNameService
0x77f670 DdeCreateDataHandle
0x77f674 DdeGetData
0x77f678 DdeFreeDataHandle
0x77f67c DdeGetLastError
0x77f684 DdeQueryStringW
0x77f688 DdeFreeStringHandle
0x77f68c GetDialogBaseUnits
0x77f694 IsZoomed
0x77f698 IsIconic
0x77f69c FlashWindowEx
0x77f6a4 GetWindowPlacement
0x77f6a8 SetWindowRgn
0x77f6ac GetDlgItem
0x77f6b0 CreateDialogParamW
0x77f6b4 DestroyIcon
0x77f6b8 CreateIconIndirect
0x77f6bc DestroyCursor
0x77f6c0 GetIconInfo
0x77f6c4 LoadIconW
0x77f6c8 LoadBitmapW
0x77f6cc SetMenu
0x77f6d0 PostMessageW
0x77f6d8 HideCaret
0x77f6e0 keybd_event
0x77f6e4 IsMenu
0x77f6e8 GetScrollInfo
0x77f6ec SetScrollInfo
0x77f6f0 IsDialogMessageW
0x77f6f4 CallNextHookEx
0x77f6f8 UnhookWindowsHookEx
0x77f6fc GetComboBoxInfo
0x77f700 DrawStateW
0x77f704 GetParent
0x77f708 SetMenuInfo
0x77f70c InflateRect
0x77f710 FillRect
0x77f714 GetSysColor
0x77f71c WindowFromPoint
0x77f720 MapWindowPoints
0x77f724 ScreenToClient
0x77f728 ClientToScreen
0x77f72c GetCursorPos
0x77f730 SetCursor
0x77f734 SetCursorPos
0x77f738 GetWindowRect
0x77f73c GetClientRect
0x77f740 SetWindowTextW
0x77f744 EnableScrollBar
0x77f748 ScrollWindow
0x77f74c RedrawWindow
0x77f750 InvalidateRect
0x77f754 GetUpdateRgn
0x77f758 GetMenuItemInfoW
0x77f75c TrackPopupMenu
0x77f760 GetMenuItemCount
0x77f764 GetSystemMetrics
0x77f768 IsWindowEnabled
0x77f76c ReleaseCapture
0x77f770 SetCapture
0x77f774 GetCapture
0x77f778 MapVirtualKeyW
0x77f77c VkKeyScanW
0x77f780 GetAsyncKeyState
0x77f784 GetFocus
0x77f788 GetActiveWindow
0x77f78c SetFocus
0x77f790 EndDeferWindowPos
0x77f794 DeferWindowPos
0x77f798 BeginDeferWindowPos
0x77f79c MoveWindow
0x77f7a0 AnimateWindow
0x77f7a4 DestroyWindow
0x77f7a8 IsWindow
0x77f7ac CreateWindowExW
0x77f7b0 CallWindowProcW
0x77f7b4 PostQuitMessage
0x77f7b8 DefWindowProcW
0x77f7bc GetMessageTime
0x77f7c0 GetMessagePos
0x77f7c4 UnregisterHotKey
0x77f7c8 RegisterHotKey
0x77f7cc PeekMessageW
0x77f7d0 DispatchMessageW
0x77f7d4 TranslateMessage
0x77f7d8 LoadCursorW
0x77f7e0 UnregisterClassW
0x77f7e4 RegisterClassW
0x77f7e8 SendMessageW
0x77f7ec AttachThreadInput
0x77f7f0 ShowWindow
0x77f7f4 SetWindowPos
0x77f7f8 IsWindowVisible
0x77f7fc BringWindowToTop
0x77f800 OpenClipboard
0x77f804 CloseClipboard
0x77f808 GetClipboardData
0x77f80c EmptyClipboard
0x77f810 GetKeyState
0x77f814 SetActiveWindow
0x77f818 EnableWindow
0x77f81c GetSystemMenu
0x77f820 AppendMenuW
0x77f824 UpdateWindow
0x77f828 GetForegroundWindow
0x77f82c SetForegroundWindow
0x77f830 GetDC
0x77f834 ReleaseDC
0x77f838 MessageBoxW
0x77f83c GetWindowLongW
0x77f840 SetWindowLongW
0x77f854 GetWindow
0x77f858 InsertMenuItemW
0x77f85c RemoveMenu
0x77f860 ModifyMenuW
0x77f864 InsertMenuW
0x77f868 DestroyMenu
0x77f86c CreatePopupMenu
0x77f870 CreateMenu
0x77f874 CheckMenuRadioItem
0x77f878 SetRect
0x77f87c GetSysColorBrush
0x77f880 SetMenuItemInfoW
0x77f884 GetMenuItemID
0x77f888 GetSubMenu
0x77f88c LoadImageW
0x77f894 CheckMenuItem
0x77f898 GetMenuState
0x77f89c DrawEdge
0x77f8a0 DrawIconEx
0x77f8a4 DrawFrameControl
0x77f8a8 DrawFocusRect
0x77f8ac OffsetRect
0x77f8b0 CopyRect
0x77f8b4 PtInRect
0x77f8b8 DrawTextW
0x77f8bc SetRectEmpty
0x77f8c0 EnableMenuItem
0x77f8c4 SetParent
0x77f8c8 DrawMenuBar
0x77f8cc SetWindowsHookExW
Library GDI32.dll:
0x77f0dc CreateICW
0x77f0e4 EnumFontFamiliesExW
0x77f0e8 ExcludeClipRect
0x77f0ec RealizePalette
0x77f0f0 SelectObject
0x77f0f4 SelectPalette
0x77f0f8 GetTextMetricsW
0x77f0fc SetBrushOrgEx
0x77f100 GdiFlush
0x77f104 DeleteObject
0x77f108 GetObjectW
0x77f10c CreateCompatibleDC
0x77f110 DeleteDC
0x77f114 StretchBlt
0x77f118 GetDIBColorTable
0x77f11c CreateDIBSection
0x77f120 GetDIBits
0x77f124 CreateDIBitmap
0x77f128 ExtCreatePen
0x77f130 GetCharABCWidthsW
0x77f138 GetPaletteEntries
0x77f140 CreatePalette
0x77f144 RectInRegion
0x77f148 PtInRegion
0x77f14c GetRgnBox
0x77f150 GetDeviceCaps
0x77f154 SetAbortProc
0x77f158 EqualRgn
0x77f15c CombineRgn
0x77f160 MoveToEx
0x77f164 LineTo
0x77f16c CreatePen
0x77f170 SetWindowOrgEx
0x77f174 SetWindowExtEx
0x77f178 SetViewportOrgEx
0x77f17c SetViewportExtEx
0x77f180 PolyBezier
0x77f184 Polyline
0x77f188 Polygon
0x77f18c ExtTextOutW
0x77f194 SetWorldTransform
0x77f198 GetWorldTransform
0x77f19c SetStretchBltMode
0x77f1a0 SetROP2
0x77f1a4 StretchDIBits
0x77f1a8 SetPolyFillMode
0x77f1ac SetPixel
0x77f1b0 GetLayout
0x77f1b4 SetLayout
0x77f1b8 SetMapMode
0x77f1bc CreateFontIndirectW
0x77f1c4 ExtCreateRegion
0x77f1c8 GetRegionData
0x77f1cc OffsetRgn
0x77f1d0 SetBkColor
0x77f1d4 SetBkMode
0x77f1d8 SetTextColor
0x77f1dc BitBlt
0x77f1e0 CreateBitmap
0x77f1e4 SetGraphicsMode
0x77f1e8 ExtSelectClipRgn
0x77f1ec SelectClipRgn
0x77f1f0 RoundRect
0x77f1f4 Rectangle
0x77f1f8 PolyPolygon
0x77f1fc Pie
0x77f200 MaskBlt
0x77f204 GetPixel
0x77f208 GetObjectType
0x77f20c GetClipBox
0x77f210 GetBkColor
0x77f214 PlayEnhMetaFile
0x77f21c GetEnhMetaFileW
0x77f220 DeleteEnhMetaFile
0x77f224 CreateEnhMetaFileW
0x77f228 CloseEnhMetaFile
0x77f22c ExtFloodFill
0x77f230 Ellipse
0x77f234 Arc
0x77f238 GetStockObject
0x77f23c CreateSolidBrush
0x77f240 CreatePatternBrush
0x77f244 CreateHatchBrush
0x77f248 CreateRectRgn
0x77f24c EndPage
0x77f250 StartPage
0x77f254 EndDoc
0x77f258 CreateDCW
0x77f25c StartDocW
Library ADVAPI32.dll:
0x77f000 RegCreateKeyExW
0x77f004 AddAccessAllowedAce
0x77f00c DuplicateToken
0x77f010 FreeSid
0x77f014 GetLengthSid
0x77f018 InitializeAcl
0x77f030 RegCloseKey
0x77f034 RegDeleteKeyW
0x77f038 OpenProcessToken
0x77f03c OpenThreadToken
0x77f040 GetUserNameW
0x77f044 RegEnumKeyW
0x77f048 RegDeleteValueW
0x77f04c AccessCheck
0x77f050 RegSetValueExW
0x77f054 RegQueryValueExW
0x77f058 RegOpenKeyExW
0x77f05c RegEnumValueW
0x77f060 RegEnumKeyExW
Library SHELL32.dll:
0x77f594 ShellExecuteExW
0x77f598 ShellExecuteW
0x77f59c SHChangeNotify
0x77f5a0
0x77f5a4 SHGetFileInfoW
0x77f5a8 CommandLineToArgvW
0x77f5ac ExtractIconExW
0x77f5b0 ExtractIconW
0x77f5b4 DragAcceptFiles
0x77f5b8 DragFinish
0x77f5bc DragQueryPoint
0x77f5c0 DragQueryFileW
0x77f5c4 SHGetFolderPathW
Library ole32.dll:
0x77f9dc RegisterDragDrop
0x77f9e4 CoTaskMemAlloc
0x77f9e8 CoCreateInstance
0x77f9ec ReleaseStgMedium
0x77f9f4 OleRun
0x77f9f8 OleLockRunning
0x77f9fc CoTaskMemFree
0x77fa00 OleSetClipboard
0x77fa04 OleGetClipboard
0x77fa08 OleFlushClipboard
0x77fa0c RevokeDragDrop
0x77fa10 OleUninitialize
0x77fa14 OleInitialize
0x77fa18 CoCreateGuid
0x77fa1c CoUninitialize
0x77fa24 CoInitialize
Library RPCRT4.dll:
0x77f570 RpcStringFreeA
0x77f574 UuidToStringA
0x77f578 RpcStringFreeW
0x77f57c UuidToStringW
0x77f580 UuidCreate
Library SHLWAPI.dll:
0x77f5cc StrToIntW
0x77f5d0 SHAutoComplete
0x77f5d4 UrlCanonicalizeW
Library WININET.dll:
0x77f924 HttpOpenRequestW
0x77f92c HttpSendRequestW
0x77f930 InternetSetOptionW
0x77f934 InternetOpenUrlW
0x77f938 InternetConnectW
0x77f940 InternetOpenW
0x77f944 InternetCloseHandle
0x77f94c HttpQueryInfoW
0x77f950 InternetReadFile
Library WS2_32.dll:
0x77f968 WSAStartup
0x77f96c WSACleanup
0x77f970 inet_addr
0x77f974 ioctlsocket
0x77f978 closesocket
0x77f97c WSAGetLastError
0x77f980 getservbyname
0x77f984 gethostbyname
0x77f988 __WSAFDIsSet
0x77f98c accept
0x77f990 bind
0x77f994 connect
0x77f998 getsockname
0x77f99c getsockopt
0x77f9a0 listen
0x77f9a4 recv
0x77f9a8 recvfrom
0x77f9ac select
0x77f9b0 send
0x77f9b4 sendto
0x77f9b8 setsockopt
0x77f9bc shutdown
0x77f9c0 socket
0x77f9c4 htonl
0x77f9c8 htons
0x77f9cc gethostbyaddr
0x77f9d0 ntohl
0x77f9d4 ntohs
Library CRYPT32.dll:
0x77f0b8 CertOpenStore
0x77f0c8 CertCloseStore
0x77f0d0 CertGetNameStringW
Library WINSPOOL.DRV:
0x77f958 DocumentPropertiesW
0x77f95c ClosePrinter
0x77f960 OpenPrinterW
Library COMDLG32.dll:
0x77f09c PrintDlgW
0x77f0a0 ChooseFontW
0x77f0a8 GetSaveFileNameW
0x77f0ac GetOpenFileNameW
0x77f0b0 PageSetupDlgW
Library OLEAUT32.dll:
0x77f534 SafeArrayPtrOfIndex
0x77f538 SafeArrayDestroy
0x77f53c SafeArrayCreate
0x77f540 SysFreeString
0x77f544 VariantInit
0x77f548 SysAllocString
0x77f54c SysStringLen
0x77f558 SafeArrayGetVartype
0x77f55c VarBstrFromCy
0x77f560 SafeArrayLock
0x77f564 VariantClear
0x77f568 SafeArrayUnlock
Library MSIMG32.dll:
0x77f520 GradientFill
0x77f524 AlphaBlend
Library OLEACC.dll:
0x77f52c LresultFromObject
Library UxTheme.dll:
0x77f8d4 IsThemePartDefined
0x77f8d8 GetCurrentThemeName
0x77f8e0 GetThemeFont
0x77f8e4 IsAppThemed
0x77f8e8 IsThemeActive
0x77f8ec SetWindowTheme
0x77f8f0 GetThemeSysFont
0x77f8f4 GetThemeSysColor
0x77f8f8 GetThemeInt
0x77f8fc GetThemePartSize
0x77f900 GetThemeMargins
0x77f908 OpenThemeData
0x77f90c CloseThemeData
0x77f910 DrawThemeBackground
0x77f91c GetThemeColor
Library COMCTL32.dll:
0x77f068 ImageList_Create
0x77f06c ImageList_Destroy
0x77f074 ImageList_Add
0x77f07c ImageList_Draw
0x77f080 ImageList_Replace
0x77f084 ImageList_AddMasked
0x77f090
0x77f094

Hosts

No hosts contacted.

TCP

Source Source Port Destination Destination Port
52.218.105.220 80 192.168.56.101 49182

UDP

Source Source Port Destination Destination Port
192.168.56.101 51378 114.114.114.114 53
192.168.56.101 51808 114.114.114.114 53
192.168.56.101 53657 114.114.114.114 53
192.168.56.101 55368 114.114.114.114 53
192.168.56.101 137 192.168.56.255 137
192.168.56.101 138 192.168.56.255 138
192.168.56.101 51963 224.0.0.252 5355
192.168.56.101 56804 224.0.0.252 5355
192.168.56.101 58367 224.0.0.252 5355
192.168.56.101 62191 224.0.0.252 5355
192.168.56.101 63429 224.0.0.252 5355
192.168.56.101 65004 224.0.0.252 5355
192.168.56.101 1900 239.255.255.250 1900
192.168.56.101 51379 239.255.255.250 3702
192.168.56.101 55369 239.255.255.250 3702
192.168.56.101 58707 239.255.255.250 3702
192.168.56.101 63432 239.255.255.250 1900

HTTP & HTTPS Requests

No HTTP requests performed.

ICMP traffic

No ICMP traffic performed.

IRC traffic

No IRC requests performed.

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

Snort Alerts

No Snort Alerts

Sorry! No dropped files.
Sorry! No dropped buffers.