Static task
static1
Behavioral task
behavioral1
Sample
02a84b34bba8face9fd7724abaa68eb53a8803342a0fc72927bd794be23da670.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
02a84b34bba8face9fd7724abaa68eb53a8803342a0fc72927bd794be23da670.exe
Resource
win10-20220901-en
General
-
Target
02a84b34bba8face9fd7724abaa68eb53a8803342a0fc72927bd794be23da670
-
Size
1.8MB
-
MD5
c75003e4900440b0e4eae8377a703f6a
-
SHA1
23b643f7bb4829b554fb18d4f624c6d96f22c383
-
SHA256
02a84b34bba8face9fd7724abaa68eb53a8803342a0fc72927bd794be23da670
-
SHA512
1bf9c3038156db7066f04257442e9b9b62b68a7f6751fbf206888e71106b692ce3f5bec73612ca73247ebc60027c0755189c495d552c05844342bc248aa004e6
-
SSDEEP
49152:r3myGdVDAN7TH688yQrabkBpK4NBZSghZBOE7PU6yaH7:rmS1qyQWIxvdOETUzab
Malware Config
Signatures
Files
-
02a84b34bba8face9fd7724abaa68eb53a8803342a0fc72927bd794be23da670.exe windows x86
2d939382f2e63001c19821990a4b8eeb
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
ImageList_Create
ImageList_ReplaceIcon
ImageList_Destroy
InitCommonControlsEx
CreateToolbarEx
ws2_32
shutdown
WSACleanup
WSAGetLastError
ntohl
htonl
htons
ntohs
gethostbyname
connect
WSAStartup
getsockname
select
setsockopt
recv
bind
socket
__WSAFDIsSet
closesocket
send
listen
accept
kernel32
GetLogicalDriveStringsW
CreateDirectoryW
SetFileTime
CreateFileW
MoveFileW
FindClose
RemoveDirectoryW
FindNextFileW
CloseHandle
DeleteFileW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
WaitForSingleObject
Sleep
ResumeThread
CreateThread
GetModuleFileNameW
GetLastError
CreateProcessW
SetEvent
TerminateProcess
CreateEventW
GlobalLock
GlobalAlloc
GlobalUnlock
GlobalFree
GetCommandLineW
GetProcAddress
LocalFree
GetCurrentThreadId
GetCurrentProcessId
SetErrorMode
WritePrivateProfileStringW
GetPrivateProfileIntW
GetStartupInfoA
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
WriteFile
VirtualAlloc
VirtualFree
HeapCreate
HeapSize
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
LCMapStringW
LCMapStringA
RaiseException
RtlUnwind
GetCPInfo
ExitProcess
HeapReAlloc
HeapAlloc
GetStartupInfoW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
HeapFree
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
FindFirstFileW
FormatMessageW
LockResource
LoadResource
FindResourceW
FreeResource
FileTimeToLocalFileTime
GetLocalTime
FileTimeToSystemTime
GetTimeFormatW
SystemTimeToFileTime
GetDateFormatW
MultiByteToWideChar
WideCharToMultiByte
GetModuleHandleW
QueryPerformanceCounter
GetTickCount
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetModuleHandleA
SetFilePointer
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
SetStdHandle
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
GetFileSizeEx
GetSystemTimeAsFileTime
GetACP
GetOEMCP
IsValidCodePage
ReadFile
GetPrivateProfileStringW
user32
IsDialogMessageW
PostQuitMessage
GetKeyState
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
GetDC
ReleaseDC
GetParent
LoadBitmapW
FillRect
EndPaint
BeginPaint
ScreenToClient
GetClientRect
ShowScrollBar
SetScrollInfo
GetSystemMenu
GetMenuItemID
InsertMenuItemW
AppendMenuW
EnableMenuItem
CreatePopupMenu
GetMenuItemCount
SetMenuDefaultItem
DestroyMenu
CreateWindowExW
DestroyWindow
DialogBoxParamW
SetClassLongW
EndDialog
CreateDialogParamW
CloseClipboard
GetPriorityClipboardFormat
SystemParametersInfoW
GetClipboardData
EmptyClipboard
OpenClipboard
SetClipboardData
InvalidateRect
GetWindowTextW
SetWindowTextW
LoadAcceleratorsW
LoadIconW
SetWindowPlacement
GetWindowRect
KillTimer
LoadCursorW
MessageBeep
SetFocus
GetKeyboardLayoutNameW
GetWindowPlacement
MonitorFromWindow
GetDesktopWindow
SetWindowPos
ShowWindow
GetMonitorInfoW
TranslateAcceleratorW
SetTimer
GetMessageW
UnregisterClassW
TranslateMessage
SetWindowLongW
GetSysColorBrush
GetActiveWindow
RegisterClassW
DefWindowProcW
DispatchMessageW
EnableWindow
PostMessageW
GetWindowLongW
GetSystemMetrics
SendMessageW
DestroyIcon
CallWindowProcW
IsWindowVisible
TrackPopupMenu
RegisterWindowMessageW
SetForegroundWindow
GetCursorPos
GetDlgItem
MessageBoxW
SetClipboardViewer
IsWindow
CheckMenuItem
gdi32
GetCurrentObject
CreateDIBSection
StretchBlt
SetStretchBltMode
DeleteDC
SelectObject
CreateCompatibleDC
GetObjectW
CreateSolidBrush
GetDIBits
DeleteObject
comdlg32
GetSaveFileNameW
advapi32
RegEnumKeyW
RegQueryValueExW
RegOpenKeyW
SetSecurityInfo
RegCreateKeyW
RegSetValueExW
RegCloseKey
RegDeleteValueW
RegDeleteKeyW
shell32
CommandLineToArgvW
SHGetSpecialFolderPathW
ShellExecuteW
Shell_NotifyIconW
version
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
Sections
.text Size: 565KB - Virtual size: 565KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 111KB - Virtual size: 111KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 22KB - Virtual size: 30KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 696B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1.1MB - Virtual size: 1.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ