Static task
static1
Behavioral task
behavioral1
Sample
caa407b354854869b4be71840c982a5b988309fcda9cd1ec9533a3f39c2cf073.dll
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
caa407b354854869b4be71840c982a5b988309fcda9cd1ec9533a3f39c2cf073.dll
Resource
win10v2004-20220812-en
General
-
Target
caa407b354854869b4be71840c982a5b988309fcda9cd1ec9533a3f39c2cf073
-
Size
108KB
-
MD5
529a9838ff84bf53b1283b5d5a19743d
-
SHA1
2819067728b55141d30928c6d02dacf9f226e71e
-
SHA256
caa407b354854869b4be71840c982a5b988309fcda9cd1ec9533a3f39c2cf073
-
SHA512
c404e00caa3e8446f0d63932a941b44f50a48a2ab3001d0e8f5cfb4fc6139bd99c25794d88b3e50be07837ae4c50eaf7cef67ef4141790fe7ecb3d0cd3e78fb8
-
SSDEEP
1536:DsK26Cgyp5yEm3z7+L24vFfo6I7XujLJS0kRgmQX2SNF:r26Cgyp1mX4vBs7X/02SN
Malware Config
Signatures
Files
-
caa407b354854869b4be71840c982a5b988309fcda9cd1ec9533a3f39c2cf073.dll windows x86
38a4a1011219ef1eacc275a0c9b8fdfd
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCommandLineA
GetCurrentDirectoryA
GetLogicalDrives
FatalAppExitA
InterlockedIncrement
EnumResourceNamesA
GetConsoleAliasA
GetComputerNameA
CallNamedPipeW
GetCommMask
VirtualAlloc
GetConsoleAliasExesW
SetTapePosition
OpenProfileUserMapping
WaitForSingleObject
lstrcatW
HeapAlloc
GetDiskFreeSpaceW
GetPrivateProfileStringW
OpenMutexW
user32
GetMessageA
DefMDIChildProcA
DlgDirListW
IsMenu
SetWindowStationUser
DdeAccessData
GetWindowRgn
MessageBoxW
SetMenu
CharLowerBuffA
ImpersonateDdeClientWindow
gdi32
OffsetRgn
GdiEntry11
GetTextFaceA
ExtFloodFill
AddFontResourceTracking
GdiGetLocalDC
SwapBuffers
PatBlt
GetEnhMetaFilePaletteEntries
GdiConvertEnhMetaFile
EnumFontsW
ScaleWindowExtEx
GetRandomRgn
GetRasterizerCaps
GdiGetSpoolMessage
GetICMProfileA
SetTextColor
GetTextExtentExPointW
GetTextMetricsW
SetGraphicsMode
PaintRgn
GdiEntry6
bInitSystemAndFontsDirectoriesW
Sections
.idata Size: 5KB - Virtual size: 32KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 62KB - Virtual size: 132KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 29KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 3KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ