Static task
static1
Behavioral task
behavioral1
Sample
5e1e415ea5e85b16f3a2b59513e83cab54c040a8a9d2a5a394899e20ad5bfbe9.exe
Resource
win7-20220715-en
Behavioral task
behavioral2
Sample
5e1e415ea5e85b16f3a2b59513e83cab54c040a8a9d2a5a394899e20ad5bfbe9.exe
Resource
win10v2004-20220721-en
General
-
Target
5e1e415ea5e85b16f3a2b59513e83cab54c040a8a9d2a5a394899e20ad5bfbe9
-
Size
572KB
-
MD5
0aa715ff6b2f8e78cbc44a9f977945f4
-
SHA1
e5887f7026b8033c3b6a77c15d3c48dde07fa21b
-
SHA256
5e1e415ea5e85b16f3a2b59513e83cab54c040a8a9d2a5a394899e20ad5bfbe9
-
SHA512
64e35085985738c470d0b54826bb2a8bbfc67d4548d7ad646031ef22b21b8d6a53d0c3482b48f2ca40576dff663bd32e148e14ad52a3bf3da2407ee6b07b74b8
-
SSDEEP
12288:Rj1hFUYsftv644fkXZRbsAYjAp7oINcA7wPJEXJPcI3brBG4hte5y5hW:fhaYs1v644fKL5KAp7NwP6XJUILEsZ
Malware Config
Signatures
Files
-
5e1e415ea5e85b16f3a2b59513e83cab54c040a8a9d2a5a394899e20ad5bfbe9.exe windows x86
f7cc2fd4368a0324ef3a591014dec83a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetWindow
GetWindowDC
GetWindowLongA
GetWindowPlacement
GetWindowRect
GetWindowTextA
GetWindowThreadProcessId
HideCaret
InflateRect
InsertMenuA
InsertMenuItemA
IntersectRect
InvalidateRect
IsChild
IsClipboardFormatAvailable
IsDialogMessageA
IsIconic
IsRectEmpty
IsWindow
IsWindowEnabled
IsWindowVisible
IsZoomed
KillTimer
LoadBitmapA
LoadCursorA
LoadIconA
LoadImageA
LoadKeyboardLayoutA
LoadStringA
LockWindowUpdate
MapVirtualKeyA
MapWindowPoints
MessageBeep
MessageBoxA
MsgWaitForMultipleObjects
OemToCharA
OffsetRect
OpenClipboard
PeekMessageA
PostMessageA
PostQuitMessage
PtInRect
RedrawWindow
RegisterClassA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
ScrollWindow
SendDlgItemMessageA
SendMessageA
SendNotifyMessageA
SetActiveWindow
SetCapture
SetCaretPos
SetClassLongA
SetClipboardData
SetCursor
SetFocus
SetForegroundWindow
SetMenu
SetMenuItemInfoA
SetParent
SetPropA
SetRect
SetRectEmpty
SetScrollInfo
SetScrollPos
SetScrollRange
SetTimer
SetWindowLongA
SetWindowPlacement
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowsHookExA
SetWindowsHookExW
ShowCaret
ShowCursor
ShowOwnedPopups
ShowScrollBar
ShowWindow
SystemParametersInfoA
TrackPopupMenu
TranslateMDISysAccel
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UpdateWindow
ValidateRect
WaitMessage
WinHelpA
WindowFromPoint
wsprintfA
wvsprintfA
GetSysColor
kernel32
SetLastError
IsProcessorFeaturePresent
HeapReAlloc
LCMapStringW
HeapSize
LoadLibraryW
GetCurrentProcess
TerminateProcess
IsDebuggerPresent
GetSystemTimeAsFileTime
HeapCreate
InterlockedDecrement
InterlockedIncrement
EncodePointer
InitializeCriticalSectionAndSpinCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameW
DecodePointer
GetModuleHandleW
SetUnhandledExceptionFilter
GetStartupInfoW
HeapSetInformation
CloseHandle
CompareStringA
CopyFileA
CreateDirectoryA
CreateEventA
CreateFileA
CreateThread
DeleteCriticalSection
DeleteFileA
EnterCriticalSection
EnumCalendarInfoA
ExitProcess
ExitThread
FileTimeToDosDateTime
FileTimeToLocalFileTime
FindClose
FindFirstFileA
FindNextFileA
FindResourceA
FormatMessageA
FreeLibrary
FreeResource
GetACP
GetCPInfo
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetDiskFreeSpaceA
GetEnvironmentStrings
GetExitCodeThread
GetFileAttributesA
GetFileSize
GetFileType
GetFullPathNameA
GetLastError
GetLocalTime
GetLocaleInfoA
GetModuleFileNameA
GetModuleHandleA
GetOEMCP
GetPrivateProfileStringA
GetProcAddress
GetProcessHeap
GetProfileStringA
GetStartupInfoA
GetStdHandle
GetStringTypeExA
GetStringTypeW
GetSystemInfo
GetTempFileNameA
GetTempPathA
GetThreadLocale
GetTickCount
GetVersion
GetVersionExA
GetWindowsDirectoryA
GlobalAddAtomA
GlobalAlloc
GlobalDeleteAtom
GlobalFindAtomA
GlobalFree
GlobalHandle
GlobalLock
GlobalMemoryStatus
GlobalReAlloc
GlobalSize
GlobalUnlock
HeapAlloc
HeapFree
InitializeCriticalSection
IsValidCodePage
GetSystemDEPPolicy
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpA
lstrcatA
WritePrivateProfileStringA
WriteFile
WideCharToMultiByte
WaitForSingleObject
VirtualQuery
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
SuspendThread
Sleep
SizeofResource
SetThreadPriority
SetThreadLocale
SetHandleCount
SetFilePointer
SetEvent
SetErrorMode
SetEndOfFile
SetConsoleCtrlHandler
RtlUnwind
ResumeThread
ResetEvent
ReadFile
RaiseException
QueryPerformanceFrequency
QueryPerformanceCounter
OutputDebugStringA
MultiByteToWideChar
MulDiv
LockResource
LocalFree
LocalAlloc
LoadResource
LoadLibraryExA
LoadLibraryA
LeaveCriticalSection
Sections
.text Size: 31KB - Virtual size: 31KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 531KB - Virtual size: 530KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 134KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ