Static task
static1
Behavioral task
behavioral1
Sample
4a12ef3a67bea2d832857ab34c23444b4ad130da6e471713a60728e567b7db33.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
4a12ef3a67bea2d832857ab34c23444b4ad130da6e471713a60728e567b7db33.exe
Resource
win10v2004-20220901-en
General
-
Target
4a12ef3a67bea2d832857ab34c23444b4ad130da6e471713a60728e567b7db33
-
Size
261KB
-
MD5
03d5595f4f6888a9903d5b62a59960c6
-
SHA1
55cba569e43487c266a188be093a654b016ada8f
-
SHA256
4a12ef3a67bea2d832857ab34c23444b4ad130da6e471713a60728e567b7db33
-
SHA512
cc606bd9e17eaf8b9de36ebd804975af9df040e4d9a18f8110fb5c4251a3729213735cac4e2476c0c255837c03aaf2a96e3cd3b4f33a9e6808389d293f79656e
-
SSDEEP
3072:GKcE+XkGWVkUyDbnz0HcAYV8HSnR43kOywLQrzVTz:GKnkbzjlaV0
Malware Config
Signatures
Files
-
4a12ef3a67bea2d832857ab34c23444b4ad130da6e471713a60728e567b7db33.exe windows x86
cb0f921cdfb1cc93283940f6f63e6c72
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
QueryPerformanceCounter
lstrlenA
ExitProcess
GetShortPathNameA
CloseHandle
MoveFileA
lstrlenW
lstrcmpiA
GetTickCount
SizeofResource
InterlockedIncrement
GetCurrentProcessId
lstrcpynA
GetThreadLocale
FindResourceA
LockResource
EnterCriticalSection
LoadLibraryA
RaiseException
FreeLibrary
DeleteCriticalSection
GetVersionExA
OutputDebugStringA
WaitForSingleObject
CreateFileA
WideCharToMultiByte
DeleteFileA
GetProcAddress
GetLocaleInfoA
GetModuleHandleA
InterlockedExchange
GetStartupInfoA
SetHandleInformation
InitializeCriticalSection
CreatePipe
GetACP
LocalAlloc
GetCurrentThreadId
SuspendThread
LoadResource
CreateProcessA
MultiByteToWideChar
InterlockedDecrement
GetModuleHandleA
IsDBCSLeadByte
GetModuleFileNameA
GetLastError
LeaveCriticalSection
GetSystemTimeAsFileTime
LoadLibraryExA
VirtualQuery
GetSystemDirectoryA
WriteFile
SetCommConfig
lstrcatA
ReadFile
version
GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA
advapi32
RegOpenKeyExA
RegQueryValueExA
OpenProcessToken
RegCloseKey
LookupPrivilegeValueA
user32
LoadStringA
wsprintfA
CharNextA
MessageBoxA
Sections
.text Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 5KB - Virtual size: 129KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.xdezph Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.edata Size: 236KB - Virtual size: 263KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE