Static task
static1
Behavioral task
behavioral1
Sample
f1d890163f681d1c94337e6459b9c233180ebe755e94095315f7acf0171e1eea.exe
Resource
win7-20220310-en
General
-
Target
f1d890163f681d1c94337e6459b9c233180ebe755e94095315f7acf0171e1eea
-
Size
274KB
-
MD5
4fe6296c8b2154cf5f562aabafd9c5fb
-
SHA1
297b3aac174cf4a4730725e817171ab329265c29
-
SHA256
f1d890163f681d1c94337e6459b9c233180ebe755e94095315f7acf0171e1eea
-
SHA512
7db839a57e78c59324dfa38f31e10e17704cdd47d9dc228d52150153fe875e8ec2ac745bcc8ea62c080e3e94007fe025212c1325aaabb41f7200eda724c0dc50
Malware Config
Signatures
Files
-
f1d890163f681d1c94337e6459b9c233180ebe755e94095315f7acf0171e1eea.exe windows x86
beef0e239bafb748de7fe31ae987ee1f
Code Sign
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
AddConsoleAliasW
FreeEnvironmentStringsA
GlobalAlloc
WideCharToMultiByte
SetVolumeMountPointA
LeaveCriticalSection
ReplaceFileW
GetAtomNameW
SetLastError
AttachConsole
VirtualAlloc
HeapSize
WriteProfileSectionA
ZombifyActCtx
LoadLibraryA
WriteConsoleA
AddVectoredExceptionHandler
BeginUpdateResourceA
GetModuleFileNameA
SetConsoleTitleW
FindFirstChangeNotificationA
EnumResourceNamesA
GetConsoleTitleW
SetCalendarInfoA
GetVersionExA
LocalFree
SetStdHandle
GetDefaultCommConfigW
UnhandledExceptionFilter
SetUnhandledExceptionFilter
HeapAlloc
GetStartupInfoW
RaiseException
RtlUnwind
GetModuleHandleW
Sleep
GetProcAddress
ExitProcess
GetLastError
WriteFile
GetStdHandle
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
HeapFree
DeleteCriticalSection
EnterCriticalSection
VirtualFree
HeapReAlloc
HeapCreate
SetFilePointer
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
MultiByteToWideChar
FlushFileBuffers
GetLocaleInfoA
GetConsoleOutputCP
WriteConsoleW
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
CreateFileA
CloseHandle
Sections
.text Size: 195KB - Virtual size: 194KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 209KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 53KB - Virtual size: 53KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ