Static task
static1
Behavioral task
behavioral1
Sample
f763519992365b9918cd7ae8b5e9d8e415867a290f75c477c0f3638c6dae3ec5.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
f763519992365b9918cd7ae8b5e9d8e415867a290f75c477c0f3638c6dae3ec5.exe
Resource
win10v2004-20220812-en
General
-
Target
f763519992365b9918cd7ae8b5e9d8e415867a290f75c477c0f3638c6dae3ec5
-
Size
770KB
-
MD5
6324ca6a6a8dc742b08b805a9944f770
-
SHA1
600d14071ce2b65683d0775840cb96850e64e676
-
SHA256
f763519992365b9918cd7ae8b5e9d8e415867a290f75c477c0f3638c6dae3ec5
-
SHA512
e7b63d5c5d8d4df9fbcc972e9f0395d2c006b623415b1d76522ba0cf0ae6e3a371a9bb646edb7838c2919441d47be6d367ce9625db847ed77131d83b374bcd92
-
SSDEEP
24576:1KXpCdKIpRS8b/M2rrujcljE6l6HH2ET:oCdKJ8DMHc1lET
Malware Config
Signatures
Files
-
f763519992365b9918cd7ae8b5e9d8e415867a290f75c477c0f3638c6dae3ec5.exe windows x86
7551e0956c127a605f30c3d479df8a12
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
lstrlenW
GetStartupInfoA
VirtualQueryEx
WriteConsoleW
DeleteFileA
GetFileAttributesA
AddAtomW
SetEvent
CancelIo
VirtualProtect
WriteConsoleW
GetCommandLineA
GetModuleHandleA
Sleep
lstrcpyA
WriteConsoleW
GetDriveTypeW
GetProcessHeap
GetPrivateProfileSectionW
CopyFileA
HeapDestroy
mmcndmgr
DllGetClassObject
DllRegisterServer
DllCanUnloadNow
DllRegisterServer
uxtheme
SetWindowTheme
GetThemeColor
DrawThemeBackground
CloseThemeData
GetThemeBool
DrawThemeEdge
GetThemeTextMetrics
GetWindowTheme
OpenThemeData
GetThemeSysSize
CloseThemeData
IsThemeActive
GetThemeTextExtent
Sections
.text Size: 1024B - Virtual size: 855B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 274B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 765KB - Virtual size: 2.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 83B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.export Size: 512B - Virtual size: 112B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ