Static task
static1
Behavioral task
behavioral1
Sample
7a9bcbe7d25d6d87ab54be78ae303619c265d21f4de906b48beba837e7b10271.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
7a9bcbe7d25d6d87ab54be78ae303619c265d21f4de906b48beba837e7b10271.exe
Resource
win10v2004-20220812-en
General
-
Target
7a9bcbe7d25d6d87ab54be78ae303619c265d21f4de906b48beba837e7b10271
-
Size
138KB
-
MD5
cd57d94540257ccab57776581e949f9b
-
SHA1
a33eac232c8686d4af05a21acac52a0385b33bb1
-
SHA256
7a9bcbe7d25d6d87ab54be78ae303619c265d21f4de906b48beba837e7b10271
-
SHA512
f47f26bb55df0cf8c0d1352bbef40249ce29025bfe3b4f7a387c6d17800929909a4cbfcc7fba38d0be306076502460958491d0710f937a86d32245c23bc50b55
-
SSDEEP
3072:TFc99STx8+8iHpPQ5w3gYKgwM7xf4gZTw/I8kjnIpxYb:TEo+dep4bYKgnxf4gS/Y2s
Malware Config
Signatures
Files
-
7a9bcbe7d25d6d87ab54be78ae303619c265d21f4de906b48beba837e7b10271.exe windows x86
20473a4524215dac7c0e8b5ae8cdfef3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
VirtualAlloc
GetDriveTypeA
LoadLibraryA
GetThreadPriority
GetModuleFileNameA
CloseHandle
Sleep
ExitThread
GetCurrentThreadId
GetCommandLineA
GetCurrentProcessId
GetCurrentThread
GetLogicalDrives
GetStartupInfoA
GetProcessTimes
TlsAlloc
IsDebuggerPresent
GetCurrentProcess
IsValidCodePage
FreeLibrary
user32
GetClassLongA
UpdateWindow
OpenIcon
RegisterClassA
GetForegroundWindow
GetWindow
IsWindowVisible
ReleaseDC
GetWindowTextA
GetWindowTextLengthA
GetActiveWindow
GetFocus
GetDC
GetWindowDC
ShowWindow
GetWindowLongA
GetSystemMetrics
CreateWindowExA
BeginPaint
advapi32
RegQueryValueExA
RegCloseKey
IsTextUnicode
RegCreateKeyExA
GetUserNameA
RegOpenKeyExA
version
GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA
VerLanguageNameA
Sections
.text Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 2KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 102KB - Virtual size: 104KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE