Static task
static1
Behavioral task
behavioral1
Sample
bin_2020-08-18_13-38.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
bin_2020-08-18_13-38.exe
Resource
win10v2004-20220414-en
General
-
Target
3f8fda11518ddeef757b86d3cb3e4ec0e6b7ce697949b77e980ea1d7285fc137
-
Size
150KB
-
MD5
8be831b03c29c8d07e430236d0c04e7a
-
SHA1
9de1fc353f32b452517acb2875cfff4bb65dd21b
-
SHA256
3f8fda11518ddeef757b86d3cb3e4ec0e6b7ce697949b77e980ea1d7285fc137
-
SHA512
372bc240824d1c649dc77dbe98ad07bab5cb446070a3221ebc90c785d20f6ec7a5c83549073b2525e323d7cd02542c488086128ecd20d6c038978c4919a125ac
-
SSDEEP
3072:ZesRt50l3/3WrvFBo5RSNscC3+0Iq3XMojAqrfsB9fo101pPRvA3dtDeU3l:ZYl3gkk6cCu0IsXh8XB9QePRvWdlXl
Malware Config
Signatures
Files
-
3f8fda11518ddeef757b86d3cb3e4ec0e6b7ce697949b77e980ea1d7285fc137.gz
-
bin_2020-08-18_13-38.exe.exe windows x86
13734d160a2102c27d0efd3cb60e9b82
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCurrencyFormatA
GetUserDefaultLangID
GetCommandLineA
GetUserGeoID
GlobalAlloc
LoadLibraryW
FormatMessageW
ReadFile
lstrlenW
ReplaceFileA
LCMapStringA
GetLongPathNameW
GetTapeStatus
OpenWaitableTimerW
WritePrivateProfileStringA
CreateHardLinkW
DebugSetProcessKillOnExit
SetConsoleTitleW
VirtualProtect
GetTempPathA
OpenFileMappingA
LocalFree
FindNextVolumeMountPointA
SetComputerNameW
GlobalAddAtomA
GetProcessWorkingSetSize
IsBadStringPtrW
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
InterlockedCompareExchange
InterlockedExchange
MultiByteToWideChar
Sleep
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetLastError
HeapFree
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStartupInfoA
GetCPInfo
RtlUnwind
RaiseException
LCMapStringW
GetStringTypeW
SetHandleCount
GetStdHandle
GetFileType
HeapAlloc
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
GetModuleHandleW
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
ExitProcess
WriteFile
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
GetStringTypeA
HeapSize
GetACP
GetOEMCP
IsValidCodePage
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
InitializeCriticalSectionAndSpinCount
LoadLibraryA
GetLocaleInfoW
GetConsoleCP
GetConsoleMode
FlushFileBuffers
GetModuleHandleA
CloseHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetFilePointer
SetStdHandle
CreateFileA
user32
GetCursor
Sections
.text Size: 169KB - Virtual size: 168KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 18KB - Virtual size: 17KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 22.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 27KB - Virtual size: 27KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ