Static task
static1
Behavioral task
behavioral1
Sample
3835517f385a159da1694283594863b94980da7f767f8e3bf2653b3f076a0513.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
3835517f385a159da1694283594863b94980da7f767f8e3bf2653b3f076a0513.exe
Resource
win10v2004-20220414-en
General
-
Target
3835517f385a159da1694283594863b94980da7f767f8e3bf2653b3f076a0513
-
Size
308KB
-
MD5
7800dce6bbde60e92c43f767c137286b
-
SHA1
129d1703e459dde4b3e89f46f01b9bb826f962ec
-
SHA256
3835517f385a159da1694283594863b94980da7f767f8e3bf2653b3f076a0513
-
SHA512
90b8cdc2b26cd9eba82db1eeedad2b4ed76ec17c1f579ca54ad4cf65557d9ae6070e78162629c4c07ad163085cd0af7d032d5431176ffddb703aeb105102354f
-
SSDEEP
6144:XNAZ93GY8YtBfeeLENYQsaYmtXWc42Lca6w3WSsc+5rl6ZF46U:dAZlhDtseLEj7Oc3owmSG5rIXt
Malware Config
Signatures
Files
-
3835517f385a159da1694283594863b94980da7f767f8e3bf2653b3f076a0513.exe windows x86
bb03199165bc4d91dbbaa43bc06189ef
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
_exit
_controlfp
_tell
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exp
_fullpath
tan
_rmdir
_wexecl
_wexecve
gdi32
GetRgnBox
CreateFontA
SetTextAlign
CopyEnhMetaFileA
OffsetClipRgn
CreateFontIndirectW
RealizePalette
GetTextMetricsA
UnrealizeObject
SetWorldTransform
GetEnhMetaFileBits
SetBkMode
DPtoLP
PolyBezierTo
GetDeviceCaps
Rectangle
CreateDCA
CreateRoundRectRgn
GetClipRgn
GetBkColor
EqualRgn
StrokePath
CreateICA
Ellipse
GetCharABCWidthsW
GetNearestPaletteIndex
CreateDCW
GetEnhMetaFilePaletteEntries
GetKerningPairsA
ExtCreateRegion
CreateBitmap
RectVisible
SetROP2
ScaleWindowExtEx
EnumFontFamiliesA
CreateRectRgn
CopyEnhMetaFileW
GetTextFaceA
GetROP2
GetWinMetaFileBits
GetPixel
PolyPolyline
GetTextCharsetInfo
Arc
RestoreDC
GetDIBColorTable
GetTextExtentPoint32W
SelectPalette
FillRgn
version
GetFileVersionInfoSizeW
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerInstallFileW
VerFindFileA
advapi32
RegCreateKeyExW
DeleteService
ChangeServiceConfigW
RegSetValueA
GetSidIdentifierAuthority
RegCreateKeyA
GetAce
QueryServiceConfigW
RevertToSelf
ChangeServiceConfig2W
OpenSCManagerA
SetNamedSecurityInfoW
LogonUserA
CloseServiceHandle
CreateProcessAsUserW
RegSetKeySecurity
CopySid
EnumServicesStatusA
RegEnumKeyExA
StartServiceCtrlDispatcherA
RegNotifyChangeKeyValue
RegisterServiceCtrlHandlerA
LsaQueryInformationPolicy
AdjustTokenPrivileges
GetKernelObjectSecurity
StartServiceCtrlDispatcherW
SetEntriesInAclW
RegDeleteKeyA
GetSidSubAuthority
GetFileSecurityW
user32
LoadBitmapW
GetDlgItemTextW
MapVirtualKeyA
LoadImageA
DeferWindowPos
ChangeDisplaySettingsA
EnumDisplaySettingsW
IsWindow
LoadBitmapA
SetCursor
SetWindowPlacement
KillTimer
BlockInput
GetClassNameW
SendNotifyMessageW
CharToOemA
DestroyMenu
DdeConnect
SetWindowPos
DestroyCaret
CloseDesktop
IsIconic
GetClassInfoExW
GetMessagePos
GetClassInfoW
IsClipboardFormatAvailable
IsDialogMessageA
WindowFromDC
GetMenuState
SetCapture
CopyAcceleratorTableW
WinHelpA
InvalidateRect
GetWindowLongA
GetWindowTextLengthA
RegisterWindowMessageA
mouse_event
DrawTextA
VkKeyScanW
GetScrollPos
SetFocus
DdeQueryStringA
GetCursorPos
ClientToScreen
UnhookWinEvent
CallMsgFilterA
RegisterClipboardFormatA
TranslateAcceleratorW
WinHelpW
CreateDialogIndirectParamA
IsChild
CharUpperW
CharPrevA
GetCaretPos
LoadIconA
ShowScrollBar
GetMessageExtraInfo
ModifyMenuA
DestroyCursor
InsertMenuA
CharLowerBuffA
MapDialogRect
DestroyAcceleratorTable
SetWindowTextW
GetCapture
GetKeyboardState
DispatchMessageW
CreateWindowExW
VkKeyScanExW
BringWindowToTop
SendInput
SetClassLongW
DdeFreeStringHandle
LoadStringW
LoadCursorFromFileA
DrawStateA
Sections
.text Size: 68KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 52KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 539KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 180KB - Virtual size: 178KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ