Static task
static1
Behavioral task
behavioral1
Sample
017a38c8b1ea67cc72ade902f1c5551a785f5c5a1f515fb43b5e7d2109225cb5.exe
Resource
win7-20220414-en
General
-
Target
017a38c8b1ea67cc72ade902f1c5551a785f5c5a1f515fb43b5e7d2109225cb5
-
Size
148KB
-
MD5
7893d57cd60b412ef68220ce395f9a59
-
SHA1
a20fd845d6569d26ffcbc4a1c9c9aae51f7ffb85
-
SHA256
017a38c8b1ea67cc72ade902f1c5551a785f5c5a1f515fb43b5e7d2109225cb5
-
SHA512
14fd790842e5cc420bba09bf08fe0732b1c0d145b696515f3e43535f55f8ff3aa49a3ce7d04af245a62b8d2e023f3ea2a4a04a997f3eafec3386b4f861249a61
-
SSDEEP
3072:l4ePeQDQksQ0UBq+SlTp9PjsYLqUaB25:pPeQDXsQ0UQ9Pj/GUaB
Malware Config
Signatures
Files
-
017a38c8b1ea67cc72ade902f1c5551a785f5c5a1f515fb43b5e7d2109225cb5.exe windows x86
618e2aede71542ca9336114d4b1da351
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_GUARD_CF
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
gdi32
GetDIBColorTable
StretchBlt
OffsetRgn
CancelDC
GetStretchBltMode
oleaut32
LHashValOfNameSysA
DispGetIDsOfNames
VarBstrFromR4
urlmon
CoInternetGetSecurityUrl
esent
JetSetIndexRange
user32
IsZoomed
IsDlgButtonChecked
GetMenuCheckMarkDimensions
AddClipboardFormatListener
LoadStringW
DefWindowProcA
LoadKeyboardLayoutA
IsClipboardFormatAvailable
CharPrevExA
GetWindowDC
ntdll
VerSetConditionMask
setupapi
SetupDiGetActualSectionToInstallW
CM_Get_Device_Interface_List_SizeW
advapi32
QueryServiceConfigW
RegEnableReflectionKey
RegSetKeySecurity
CreatePrivateObjectSecurityWithMultipleInheritance
SetServiceStatus
RegEnumKeyExA
kernel32
HeapWalk
InitializeCriticalSection
QueryIdleProcessorCycleTime
WriteProfileStringW
ReplaceFileW
SetConsoleTextAttribute
WriteConsoleInputA
GetNumberOfConsoleMouseButtons
SetCriticalSectionSpinCount
GetSystemInfo
GetThreadPriority
GetCommandLineA
AllocConsole
GetCommState
OpenFileById
Sections
.text Size: 12KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.CRT Size: 100KB - Virtual size: 96KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 20KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.crt1 Size: 4KB - Virtual size: 436B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ