Static task
static1
Behavioral task
behavioral1
Sample
b60fd92445b6fdc27ef2f0c4df218cca586549ab8bb40942428bc9126c53d5d3.exe
Resource
win7-20220331-en
Behavioral task
behavioral2
Sample
b60fd92445b6fdc27ef2f0c4df218cca586549ab8bb40942428bc9126c53d5d3.exe
Resource
win10v2004-20220331-en
General
-
Target
b60fd92445b6fdc27ef2f0c4df218cca586549ab8bb40942428bc9126c53d5d3
-
Size
175KB
-
MD5
f76d275997d6aaf88919886cc037dcd5
-
SHA1
1689081f590e3b0ceed7371e3fa4e0236ad93ba7
-
SHA256
b60fd92445b6fdc27ef2f0c4df218cca586549ab8bb40942428bc9126c53d5d3
-
SHA512
6be034e198049cd81733e2498130ccbba9152f5a0546aeb0fe3653c6f74f399b2469d29324940c56ab8cb9fa671638d6b3013a18595f48bdced9b498b69fd1dd
Malware Config
Signatures
Files
-
b60fd92445b6fdc27ef2f0c4df218cca586549ab8bb40942428bc9126c53d5d3.exe windows x86
92c389636e5f4f3ae1599304ed7f25d0
Code Sign
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
RemoveDirectoryA
FindClose
FindNextFileA
CreateMutexA
FindNextFileW
DeleteFileA
FreeLibrary
WideCharToMultiByte
GetProcAddress
LoadLibraryA
GetPrivateProfileSectionNamesA
GetCurrentDirectoryA
GetVersionExA
GetComputerNameA
GlobalMemoryStatus
GetCurrentProcess
TzSpecificLocalTimeToSystemTime
GetTimeZoneInformation
IsWow64Process
GetLastError
GetSystemTime
GetTickCount
OpenProcess
ReadFile
SetFilePointer
UnmapViewOfFile
SystemTimeToFileTime
FileTimeToSystemTime
GetLocalTime
GetFileInformationByHandle
GetProcessHeap
SetEndOfFile
WriteConsoleW
HeapReAlloc
CompareStringW
FlushFileBuffers
FindFirstFileA
GetUserDefaultLangID
FindFirstFileExW
ExitProcess
GetFullPathNameW
CloseHandle
GetModuleHandleA
MultiByteToWideChar
WriteFile
GetFileSize
CreateFileA
LocalAlloc
lstrlenA
CopyFileA
SetStdHandle
LoadLibraryW
GetConsoleMode
GetConsoleCP
SetCurrentDirectoryA
GetCurrentProcessId
CreateDirectoryA
HeapSize
GetStringTypeW
QueryPerformanceCounter
GetEnvironmentStringsW
CreateFileW
FreeEnvironmentStringsW
GetModuleFileNameA
LCMapStringW
Sleep
SetEnvironmentVariableA
SetEnvironmentVariableW
DeleteCriticalSection
GetFileType
SetHandleCount
RtlUnwind
InitializeCriticalSectionAndSpinCount
LeaveCriticalSection
EnterCriticalSection
GetModuleFileNameW
GetStdHandle
FileTimeToLocalFileTime
FindFirstFileExA
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
DecodePointer
IsProcessorFeaturePresent
GetCPInfo
InterlockedIncrement
InterlockedDecrement
GetACP
GetOEMCP
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GetModuleHandleW
SetLastError
GetCurrentThreadId
HeapCreate
user32
GetDC
GetSystemMetrics
ReleaseDC
EnumDisplayDevicesA
GetDesktopWindow
gdi32
DeleteObject
SelectObject
CreateCompatibleDC
CreateCompatibleBitmap
GetDeviceCaps
CreateDCA
BitBlt
advapi32
RegQueryValueExA
RegCloseKey
GetUserNameA
RegOpenKeyExA
GetCurrentHwProfileA
shell32
SHGetFolderPathA
ShellExecuteA
ole32
CoUninitialize
CoCreateInstance
shlwapi
PathMatchSpecA
crypt32
CryptStringToBinaryA
CryptUnprotectData
wininet
InternetCloseHandle
InternetOpenA
HttpSendRequestA
InternetSetFilePointer
HttpOpenRequestA
InternetSetOptionA
InternetReadFile
InternetConnectA
InternetOpenUrlA
HttpQueryInfoA
HttpAddRequestHeadersA
gdiplus
GdipFree
GdiplusStartup
GdipCloneImage
GdipAlloc
GdipGetImageEncodersSize
GdipDisposeImage
GdipCreateBitmapFromHBITMAP
GdipGetImageEncoders
GdipSaveImageToFile
GdiplusShutdown
psapi
GetModuleFileNameExA
Sections
.text Size: 131KB - Virtual size: 131KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 26KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 5KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ