Static task
static1
Behavioral task
behavioral1
Sample
9b12d8d3d1902b81c5366eaf296033cc73bb8f4b01119f0a21bcc86e0cd320b4.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
9b12d8d3d1902b81c5366eaf296033cc73bb8f4b01119f0a21bcc86e0cd320b4.exe
Resource
win10v2004-20220812-en
General
-
Target
9b12d8d3d1902b81c5366eaf296033cc73bb8f4b01119f0a21bcc86e0cd320b4
-
Size
735KB
-
MD5
721230a3b332c1b6f3561a071362ebff
-
SHA1
ef29b2194f37cabcfd24a23a789d3076e1ff0894
-
SHA256
9b12d8d3d1902b81c5366eaf296033cc73bb8f4b01119f0a21bcc86e0cd320b4
-
SHA512
dc5c7f75d876ec5a8a2c61160c664494f6d6ff5664f2d93bc0c610f97cf67bfbf8dd320b81cd9d74cd86085ae54cd4602351be896c39a7bea41caddbbf64db52
-
SSDEEP
12288:49JnF4m3eBBwI6oZD8+lCgsAsMvOjt2B7a7Tv6VULYmEi3mw:4LqmWwkbCgsAhv/p6v6Sx/J
Malware Config
Signatures
Files
-
9b12d8d3d1902b81c5366eaf296033cc73bb8f4b01119f0a21bcc86e0cd320b4.exe windows x86
667a3bc4acb3c9a245eb0ab20baa982b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
GetProcAddress
wsock32
inet_addr
winmm
mixerOpen
version
VerQueryValueW
comctl32
ImageList_Create
psapi
GetModuleBaseNameW
wininet
InternetOpenW
user32
GetDC
gdi32
BitBlt
comdlg32
GetOpenFileNameW
advapi32
RegCloseKey
shell32
DragFinish
ole32
CoGetObject
oleaut32
OleLoadPicture
vcruntime140
memcmp
api-ms-win-crt-convert-l1-1-0
_wtoi
api-ms-win-crt-string-l1-1-0
strcat
api-ms-win-crt-heap-l1-1-0
free
api-ms-win-crt-runtime-l1-1-0
exit
api-ms-win-crt-stdio-l1-1-0
fwrite
api-ms-win-crt-utility-l1-1-0
qsort
api-ms-win-crt-filesystem-l1-1-0
_wsplitpath
api-ms-win-crt-math-l1-1-0
__setusermatherr
api-ms-win-crt-locale-l1-1-0
_configthreadlocale
Sections
.MPRESS1 Size: 659KB - Virtual size: 2.1MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.MPRESS2 Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 70KB - Virtual size: 70KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE