Static task
static1
Behavioral task
behavioral1
Sample
a18b2b6648a6e116fb85974ed5b174eb.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
a18b2b6648a6e116fb85974ed5b174eb.exe
Resource
win10v2004-20220812-en
General
-
Target
a18b2b6648a6e116fb85974ed5b174eb.exe
-
Size
532KB
-
MD5
a18b2b6648a6e116fb85974ed5b174eb
-
SHA1
2335736ebb5b727dd221adaaf4a6e319d54650c1
-
SHA256
7f69f2fe22dfaa47d7fdb7dd3a78b6feae38ea490dc2b81b7d044cd64836429b
-
SHA512
179c9a08696e37c4d5b46b8e5195edee16d93098f2f400cd4312a2879edc149fb3472b1bb6e50bd3022cd88074950fea369c93a54d25e2d05842add78e9ade9e
-
SSDEEP
12288:J7EaM88A/SFXR2i8u+kkXdXoDzXQfYw4wunnq:lP/KpR2pL5XtoDDQf4bq
Malware Config
Signatures
Files
-
a18b2b6648a6e116fb85974ed5b174eb.exe.exe windows x86
9bfab4dfd6d8a257133e2d17c18547b2
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FoldStringW
InterlockedDecrement
_lwrite
BuildCommDCBW
GetConsoleAliasExesLengthA
PeekConsoleInputA
CreateFileW
FindNextFileA
SetWaitableTimer
WaitNamedPipeW
EnumResourceTypesA
GetCPInfoExA
GetFirmwareEnvironmentVariableW
GetModuleFileNameA
BeginUpdateResourceA
DeleteFileW
WriteConsoleW
FillConsoleOutputCharacterW
WriteConsoleOutputCharacterW
LocalAlloc
GetProcAddress
GetModuleHandleW
GetSystemDefaultLangID
GetConsoleAliasA
FindNextChangeNotification
RemoveDirectoryA
lstrcpynW
FindFirstFileExW
GetVolumeInformationA
GetCurrentDirectoryA
GetConsoleAliasesLengthW
SetConsoleTitleW
GetThreadLocale
GetCurrentProcess
FindNextFileW
OpenJobObjectA
_lclose
GetFileAttributesExW
CreateDirectoryExA
GetLastError
HeapFree
RtlUnwind
MultiByteToWideChar
GetCommandLineW
HeapSetInformation
GetStartupInfoW
EncodePointer
DecodePointer
IsProcessorFeaturePresent
HeapCreate
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TerminateProcess
ExitProcess
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
WriteFile
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
RaiseException
LeaveCriticalSection
EnterCriticalSection
Sleep
SetFilePointer
WideCharToMultiByte
GetConsoleCP
GetConsoleMode
LoadLibraryW
LCMapStringW
GetStringTypeW
HeapAlloc
HeapReAlloc
SetStdHandle
HeapSize
CloseHandle
FlushFileBuffers
Sections
.text Size: 68KB - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 388KB - Virtual size: 766KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 74KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ