Static task
static1
Behavioral task
behavioral1
Sample
36dd37703b6b84eb31184299be5935fd79e46b4c7b9a3f7c2bbdd73a9bedb701.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
36dd37703b6b84eb31184299be5935fd79e46b4c7b9a3f7c2bbdd73a9bedb701.exe
Resource
win10v2004-20220414-en
General
-
Target
36dd37703b6b84eb31184299be5935fd79e46b4c7b9a3f7c2bbdd73a9bedb701
-
Size
108KB
-
MD5
3a7c9b7345930efda1b033b5ffd6888c
-
SHA1
cce9d9ece4bbf8666894d3d52ba3bcf243140a12
-
SHA256
36dd37703b6b84eb31184299be5935fd79e46b4c7b9a3f7c2bbdd73a9bedb701
-
SHA512
8b76eba6a981f493b1afac3a39d62f2c91eb1919dcb439f9d9b6aa86bce20e8c66c7a91f33d0f64244cde8c974a5cffe70384320db388b71d268f9e3938d0d9a
-
SSDEEP
3072:cyAoNx+7tvYNHzCxUJVpWYNGDPWh1BAt:cyAoNx+tv8jJVYY3C
Malware Config
Signatures
Files
-
36dd37703b6b84eb31184299be5935fd79e46b4c7b9a3f7c2bbdd73a9bedb701.exe windows x86
e2a261cc15de9138ca3f70794ed2e42a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ctl3d32
Ctl3dRegister
Ctl3dEnabled
Ctl3dUnregister
Ctl3dGetVer
Ctl3dCtlColor
kernel32
WriteConsoleA
FindResourceW
GetFileAttributesA
DecodePointer
CreateFileA
OpenSemaphoreA
LoadLibraryA
GetShortPathNameA
TlsGetValue
SetSystemTime
VirtualAlloc
WaitForSingleObject
LoadLibraryExW
WriteFile
cmpbk32
PhoneBookEnumCountries
PhoneBookLoad
PhoneBookCopyFilter
PhoneBookFreeFilter
Sections
.text Size: 21KB - Virtual size: 20KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.udata Size: 74KB - Virtual size: 74KB
IMAGE_SCN_MEM_READ
.odata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE
.relo�s Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ