Static task
static1
Behavioral task
behavioral1
Sample
2c21e78c2ae52a2aedc97822579343b2f8e63455de97645d6dc52a50d3a2fe31.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
2c21e78c2ae52a2aedc97822579343b2f8e63455de97645d6dc52a50d3a2fe31.exe
Resource
win10v2004-20220414-en
General
-
Target
2c21e78c2ae52a2aedc97822579343b2f8e63455de97645d6dc52a50d3a2fe31
-
Size
752KB
-
MD5
8bc39d61f41a5c6dfac7ad4dc9e158c6
-
SHA1
1192620ceb20e80fcfdf93ef2b81e5e142d0a4cc
-
SHA256
2c21e78c2ae52a2aedc97822579343b2f8e63455de97645d6dc52a50d3a2fe31
-
SHA512
3b4e3bad2c14be164abf0b0b9e263bda2c349bafce2d19c93156d226f43df384882285b7cb5162f19c5645da9a242ea99108110135ff7fc362c9d3c943d92464
-
SSDEEP
12288:9H+H3n8it6yGiXch/2VvsPxvEy3QLBfOpQKge2EsAWUkfhhBZeZpeGQ2Tj:9H+fwysp2yxv4VG9uEQUMhB4Zpen2Tj
Malware Config
Signatures
Files
-
2c21e78c2ae52a2aedc97822579343b2f8e63455de97645d6dc52a50d3a2fe31.exe windows x86
b3a88ea65a9493dc381beb992a0563df
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetTickCount
SetThreadPriority
GetThreadPriority
GetCurrentThread
EnterCriticalSection
LeaveCriticalSection
InterlockedIncrement
InterlockedDecrement
GetModuleHandleA
GetModuleFileNameA
MultiByteToWideChar
lstrlenW
InitializeCriticalSection
WideCharToMultiByte
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
lstrcmpiA
IsDBCSLeadByte
ReadFile
SetEndOfFile
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetFilePointer
FlushFileBuffers
SetStdHandle
FlushInstructionCache
IsValidCodePage
GetOEMCP
GetCPInfo
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
ExitProcess
HeapSize
HeapCreate
HeapDestroy
GetConsoleMode
GetConsoleCP
WriteFile
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStartupInfoA
GetCommandLineA
VirtualQuery
GetSystemInfo
VirtualProtect
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RtlUnwind
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
VirtualFree
IsProcessorFeaturePresent
InterlockedCompareExchange
GetVersionExA
SetLastError
RaiseException
DeleteCriticalSection
CloseHandle
CreateFileA
lstrcmpA
lstrcpyA
MulDiv
GetLastError
CreateEventA
WaitForSingleObject
lstrlenA
GetStdHandle
GetConsoleScreenBufferInfo
VirtualAlloc
GetSystemTime
GetFileTime
FileTimeToSystemTime
Sleep
SetSystemPowerState
GetCurrentProcess
CreateWaitableTimerA
SetWaitableTimer
SetThreadExecutionState
GetCurrentThreadId
CreateThread
FillConsoleOutputCharacterA
FillConsoleOutputAttribute
GetCommState
SetCommState
GetProcessHeap
HeapAlloc
GetCommProperties
HeapReAlloc
HeapFree
CreateNamedPipeA
ConnectNamedPipe
LoadLibraryA
LoadLibraryW
GetProcAddress
user32
CharNextA
UpdateWindow
RegisterClassA
ExitWindowsEx
CheckMenuRadioItem
CreateWindowExA
IsDialogMessageA
ReleaseDC
DrawIcon
GetIconInfo
GetCursorInfo
ShowWindow
PeekMessageA
GetMessageA
DrawFocusRect
GetDesktopWindow
PtInRect
KillTimer
GetForegroundWindow
ReleaseCapture
TranslateMessage
DispatchMessageA
LoadImageA
SendMessageA
SetWindowPos
MapWindowPoints
GetClientRect
SystemParametersInfoA
GetWindowLongA
GetWindowRect
GetWindow
GetParent
GetActiveWindow
PostQuitMessage
IsDlgButtonChecked
GetWindowDC
GetSystemMetrics
InvalidateRect
SetActiveWindow
UnregisterClassA
EnumWindows
GetDC
GetFocus
CopyRect
GetCapture
OffsetRect
SetRect
SetCapture
SetTimer
MoveWindow
RegisterWindowMessageA
CreateDialogParamA
DialogBoxParamA
DestroyWindow
DefWindowProcA
LoadIconA
SendDlgItemMessageA
GetDlgItem
EnableWindow
LoadBitmapA
CheckDlgButton
EndDialog
IsWindowVisible
SetWindowLongA
SetWindowTextA
GetDlgItemTextA
SetDlgItemInt
GetDlgItemInt
GetCursorPos
LoadCursorA
CreateWindowExW
GetMessageW
DispatchMessageW
IntersectRect
gdi32
CreateCompatibleDC
CreateCompatibleBitmap
SelectObject
StretchBlt
RealizePalette
MoveToEx
GetCurrentObject
GetTextExtentPoint32A
CreateDIBSection
CreateHalftonePalette
CreateFontIndirectA
GetObjectA
DeleteObject
CreatePatternBrush
DeleteDC
CreateBitmap
SelectPalette
PatBlt
comdlg32
FindTextW
GetOpenFileNameA
advapi32
RegSetValueExA
RegEnumKeyExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegDeleteValueA
RegDeleteKeyA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegQueryInfoKeyA
shell32
Shell_NotifyIconA
SHAppBarMessage
ole32
CoCreateInstance
PropVariantClear
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoInitialize
CoUninitialize
oleaut32
SafeArrayUnaccessData
VarUI4FromStr
SafeArrayAccessData
SystemTimeToVariantTime
VariantInit
SafeArrayCreateVector
shlwapi
StrCmpW
StrCmpNIA
comctl32
InitCommonControlsEx
CreateStatusWindowW
ord413
ws2_32
WSAEventSelect
WSAStartup
socket
gethostname
gethostbyname
htons
bind
WSAIoctl
netapi32
NetApiBufferFree
NetGetJoinInformation
avifil32
AVIStreamGetFrameOpen
AVIStreamGetFrame
AVIStreamGetFrameClose
avicap32
capCreateCaptureWindowA
rpcrt4
RpcEpUnregister
RpcErrorGetNumberOfRecords
gdiplus
GdipAlloc
GdiplusStartup
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromHBITMAP
GdipCloneImage
GdipDisposeImage
GdipFree
GdipCreateBitmapFromFileICM
GdipCreateBitmapFromFile
GdipSaveImageToFile
GdiplusShutdown
setupapi
SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
wsnmp32
ord302
ord320
Sections
.text Size: 160KB - Virtual size: 159KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 44KB - Virtual size: 43KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 536KB - Virtual size: 534KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ