Static task
static1
Behavioral task
behavioral1
Sample
ac4b4e04c9c131564606c5479a04081098c42401e7adfd9edd946d088aa6f656.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
ac4b4e04c9c131564606c5479a04081098c42401e7adfd9edd946d088aa6f656.exe
Resource
win10v2004-20220812-en
General
-
Target
ac4b4e04c9c131564606c5479a04081098c42401e7adfd9edd946d088aa6f656
-
Size
749KB
-
MD5
734497771faabd174fe39bd995281980
-
SHA1
1b2c1d06a1dce37fb7b610b9858fba4493af37c1
-
SHA256
ac4b4e04c9c131564606c5479a04081098c42401e7adfd9edd946d088aa6f656
-
SHA512
c759c7663afc5c01e4acd3143ce625f8377145e0a0def9223d5e790c6d5e41f157a25c7512586788140005eb72bea70f6a9d59acc0aa00405e7c767249bd2d48
-
SSDEEP
12288:XRSdo+ZmkaKIg3gqAQPLY76FkiGBEseQzxK7Pf+s5ztUlpT/5eb4E2DMmMQnKnKL:ao+ZmkegcQPLFFqufQzofT5zty1NshKV
Malware Config
Signatures
Files
-
ac4b4e04c9c131564606c5479a04081098c42401e7adfd9edd946d088aa6f656.exe windows x86
8581ed96a7cffd50203c41d5dc0900c0
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateDirectoryA
SetEvent
WriteFile
RemoveDirectoryA
GetSystemTime
CreateSemaphoreW
GetCommandLineA
WriteConsoleA
ExitThread
HeapFree
GetFileType
GetVersion
GetModuleHandleA
SetStdHandle
FindAtomA
CreateMailslotA
ReleaseMutex
FindClose
SetVolumeLabelW
ResetEvent
VirtualProtectEx
RemoveDirectoryA
IsBadCodePtr
FindClose
GetDriveTypeW
uxtheme
GetThemeTextMetrics
OpenThemeData
DrawThemeBackground
GetThemeColor
CloseThemeData
GetThemeSysSize
GetWindowTheme
DrawThemeEdge
IsThemeActive
CloseThemeData
SetWindowTheme
GetThemeTextExtent
GetThemeRect
pstorsvc
Start
Start
Start
Start
Sections
.text Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 740KB - Virtual size: 740KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: - Virtual size: 4KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ