Static task
static1
Behavioral task
behavioral1
Sample
9d9be6c628204970cf06fb9faeaf69fa9100721db000ee9caba78330a0349cd0.exe
Resource
win7-20220311-en
General
-
Target
9d9be6c628204970cf06fb9faeaf69fa9100721db000ee9caba78330a0349cd0
-
Size
351KB
-
MD5
70ddf6f837dc763af27326e346a20727
-
SHA1
80526da73dc3d39d1c96fc99d485af711b5961b7
-
SHA256
9d9be6c628204970cf06fb9faeaf69fa9100721db000ee9caba78330a0349cd0
-
SHA512
750fb559350b01d3f45542301f5d3833c9aa2b7dfe258e897f30d9d0b38f459d67d2c4e408bb5537cbb60f752921ed4b553d7a81f0fdd4c76bce7371fdc5b0c4
Malware Config
Signatures
Files
-
9d9be6c628204970cf06fb9faeaf69fa9100721db000ee9caba78330a0349cd0.exe windows x86
e0099c0ba3b564d2d3b0381e49f6db7c
Code Sign
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
LoadLibraryA
GetComputerNameExW
WriteProfileSectionW
GetNumaHighestNodeNumber
FindFirstVolumeW
SetConsoleCursorInfo
HeapLock
FindFirstChangeNotificationA
WaitForMultipleObjects
GetNamedPipeHandleStateW
FileTimeToDosDateTime
EnumResourceTypesW
EnumResourceNamesW
ExitProcess
TerminateThread
ReleaseActCtx
GetVersionExW
VerifyVersionInfoA
GetConsoleOutputCP
SetEvent
FindNextFileW
GetConsoleAliasesLengthA
GetCompressedFileSizeW
CopyFileExA
BuildCommDCBAndTimeoutsW
ReadConsoleOutputCharacterW
SetDefaultCommConfigA
VerLanguageNameA
_hread
GetCommConfig
WritePrivateProfileStructW
FreeEnvironmentStringsW
CreateTimerQueue
FindVolumeClose
ResetWriteWatch
WriteConsoleInputA
CancelWaitableTimer
SetComputerNameExA
FindAtomA
ReleaseMutex
LocalUnlock
CallNamedPipeW
VirtualProtect
GlobalAlloc
TlsGetValue
GetCommandLineW
InterlockedIncrement
CopyFileW
AddRefActCtx
OutputDebugStringW
FormatMessageW
GetPriorityClass
WritePrivateProfileStringA
GetUserDefaultLCID
GlobalWire
GetVersionExA
HeapValidate
GetWindowsDirectoryA
GetStartupInfoW
ConnectNamedPipe
GetCPInfoExA
GetSystemWindowsDirectoryA
GetSystemWow64DirectoryA
GetLastError
GetCalendarInfoA
DebugBreak
SetLastError
OpenFileMappingA
ContinueDebugEvent
GlobalFix
GetOEMCP
GetConsoleAliasA
GetPrivateProfileIntW
ReadConsoleInputW
InterlockedDecrement
DefineDosDeviceW
SetVolumeMountPointW
SetThreadAffinityMask
SetConsoleActiveScreenBuffer
GetExitCodeProcess
EnumResourceNamesA
GetCPInfoExW
GetThreadContext
lstrlenA
GetLongPathNameW
LoadLibraryW
ReadConsoleW
WriteConsoleA
GetComputerNameW
InterlockedFlushSList
DeleteCriticalSection
GetDriveTypeA
GetFileAttributesExA
GetVolumePathNameW
GetConsoleMode
GetComputerNameA
ProcessIdToSessionId
ReadProcessMemory
MoveFileExW
DisableThreadLibraryCalls
CreateIoCompletionPort
FormatMessageA
InterlockedExchangeAdd
WaitNamedPipeA
LoadModule
GetPrivateProfileStructA
GlobalReAlloc
GetSystemTimeAsFileTime
GetLocalTime
EnumCalendarInfoExW
OpenSemaphoreA
GetMailslotInfo
GetCommMask
lstrcpyA
VerLanguageNameW
LockFile
EndUpdateResourceW
CreateConsoleScreenBuffer
GetConsoleAliasW
GetWindowsDirectoryW
GetProfileStringA
GetQueuedCompletionStatus
AllocConsole
GetNumaProcessorNode
CreateMailslotW
SetCommState
CheckRemoteDebuggerPresent
GetSystemTimeAdjustment
_lread
GetConsoleAliasExesLengthW
GetWriteWatch
GetPrivateProfileStringA
GetModuleHandleA
HeapWalk
WriteConsoleInputW
LocalFileTimeToFileTime
GetFileInformationByHandle
GetProfileStringW
MoveFileW
CreateActCtxW
GetUserDefaultLangID
LocalLock
SetCommMask
GetDevicePowerState
SetFileApisToANSI
OpenWaitableTimerA
SetProcessShutdownParameters
PeekNamedPipe
FillConsoleOutputCharacterA
FindNextVolumeMountPointA
SetThreadPriority
DeleteAtom
AddAtomA
WriteConsoleOutputCharacterW
QueryDosDeviceA
InitializeCriticalSection
GetConsoleAliasExesA
GetBinaryTypeA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
MoveFileA
RaiseException
GetCommandLineA
GetStartupInfoA
IsBadReadPtr
EnterCriticalSection
LeaveCriticalSection
GetModuleFileNameW
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
GetModuleHandleW
Sleep
GetProcAddress
GetModuleFileNameA
WriteFile
GetStdHandle
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
FreeEnvironmentStringsA
GetEnvironmentStrings
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsAlloc
TlsSetValue
TlsFree
HeapDestroy
HeapCreate
HeapFree
VirtualFree
HeapAlloc
HeapSize
HeapReAlloc
VirtualAlloc
GetACP
GetCPInfo
IsValidCodePage
RtlUnwind
InitializeCriticalSectionAndSpinCount
OutputDebugStringA
WriteConsoleW
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetFilePointer
GetConsoleCP
SetStdHandle
CreateFileA
CloseHandle
FlushFileBuffers
user32
CharToOemBuffW
Sections
.text Size: 147KB - Virtual size: 146KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 67KB - Virtual size: 38.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 56KB - Virtual size: 55KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 80KB - Virtual size: 79KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ