Static task
static1
Behavioral task
behavioral1
Sample
5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531.exe
Resource
win7-20220718-en
Behavioral task
behavioral2
Sample
5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531.exe
Resource
win10v2004-20220721-en
General
-
Target
5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531
-
Size
551KB
-
MD5
3454232330370e6c035524983677ac69
-
SHA1
45c6624631a989e37f91816021c97d80b3060de5
-
SHA256
5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531
-
SHA512
287d84bf8b3476a7d426f180ed601533524d8f0f441237db16fc0421c8d51a6e0d2cf63708328eac82e10797a78a376868ce8582239d1d740671bc1be67055be
-
SSDEEP
6144:5LLfQ0Dsvn/ZogJSz9v9fF4Ufo885K4pFJ2mPsgc0lwlVWZYWgZ74l+43WpQbx55:i7jSRVmUfoD1pudCluj7aWebxTH2JEvF
Malware Config
Signatures
Files
-
5a99bc6aa70681c21c6eb298a479f3d72ff16b033129d750cf8249ee24ed9531.exe windows x86
62395d8c09636c8c65b243c56bac3b61
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
HeapSize
GetVersionExA
AllocateUserPhysicalPages
HeapReAlloc
CreateThread
InitializeCriticalSection
GetDiskFreeSpaceA
HeapAlloc
GetStdHandle
GetVersion
GetTickCount
GetTempPathA
GetTempFileNameA
GetSystemDirectoryA
GetShortPathNameA
GetProcAddress
GetPrivateProfileStringA
GetModuleHandleA
GetModuleFileNameA
GetLastError
GetFullPathNameA
GetFileSize
GetFileAttributesA
GetExitCodeProcess
GetCurrentProcess
GetCommandLineA
FreeLibrary
FindNextFileA
FindFirstFileA
FindClose
ExpandEnvironmentStringsA
ExitProcess
DeleteFileA
CreateProcessA
CreateFileA
CreateDirectoryA
CopyFileA
CompareFileTime
CloseHandle
HeapFree
GetProcessHeap
GetStartupInfoA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EnterCriticalSection
LeaveCriticalSection
SetHandleCount
GetFileType
DeleteCriticalSection
SetStdHandle
WriteFile
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
RtlUnwind
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
FlushFileBuffers
Sleep
MultiByteToWideChar
ReadFile
SetFilePointer
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
LoadLibraryA
GetCPInfo
GetACP
GetOEMCP
SetEndOfFile
LCMapStringA
LCMapStringW
Sections
.text Size: 50KB - Virtual size: 49KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 488KB - Virtual size: 623KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ