Static task
static1
Behavioral task
behavioral1
Sample
9e91c4019c91b12e04bff20bf3418ddb84e29ff54f275293b1cec9688ba18441.exe
Resource
win7-en-20211208
General
-
Target
9e91c4019c91b12e04bff20bf3418ddb84e29ff54f275293b1cec9688ba18441
-
Size
444KB
-
MD5
f856ddf2a166ec27c96922e0769d04dd
-
SHA1
2713ab53a0488134e35e74a9e802cf5781074102
-
SHA256
9e91c4019c91b12e04bff20bf3418ddb84e29ff54f275293b1cec9688ba18441
-
SHA512
49ffa116a41698c87d694c9dac47859868eb5518894a0cd8f32b84d79b9145e19c938b5d925f6a47ba652268b4fec31dcdec0654d2af4c78efe164375e42d752
-
SSDEEP
6144:jfxj/cx7YRRVLpEDyyCrKNdHbC8cBpj7XuRC6K7NoA9e+:jfB/cx7YPf2yrqd714pj7XuAoA
Malware Config
Signatures
Files
-
9e91c4019c91b12e04bff20bf3418ddb84e29ff54f275293b1cec9688ba18441.exe windows x86
39be55723ce6071649311bd1845b8050
Code Sign
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
crypt32
CryptStringToBinaryA
kernel32
GetModuleHandleA
LoadLibraryW
QueryPerformanceFrequency
SetThreadAffinityMask
GetCurrentThread
CompareStringW
CompareStringA
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
ReadFile
LoadLibraryA
SetStdHandle
InterlockedExchange
GetOEMCP
GetACP
SetConsoleCtrlHandler
VirtualQuery
GetSystemInfo
VirtualProtect
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
QueryPerformanceCounter
GetLocaleInfoW
WideCharToMultiByte
MultiByteToWideChar
HeapAlloc
RtlUnwind
RaiseException
HeapFree
GetStartupInfoA
GetCommandLineA
GetVersionExA
ExitProcess
GetCPInfo
LCMapStringA
GetLastError
LCMapStringW
GetProcAddress
TerminateProcess
GetCurrentProcess
GetStringTypeA
GetStringTypeW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
WriteFile
GetStdHandle
GetModuleFileNameA
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
IsBadReadPtr
IsBadCodePtr
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
FlushFileBuffers
SetFilePointer
CloseHandle
HeapSize
SetEnvironmentVariableA
user32
GetMessageW
DispatchMessageW
TranslateMessage
LoadIconW
LoadCursorW
RegisterClassExW
CreateWindowExW
ShowWindow
UpdateWindow
DefWindowProcW
BeginPaint
EndPaint
PostQuitMessage
SetTimer
InvalidateRect
GetDesktopWindow
FillRect
DrawTextW
KillTimer
gdi32
GetStockObject
Sections
.text Size: 144KB - Virtual size: 141KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 28KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 12KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 252KB - Virtual size: 250KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ