Static task
static1
Behavioral task
behavioral1
Sample
583f599963e8a010f16c64c4b7879f0e55e957ee944e1813b53926604512f6f9.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
583f599963e8a010f16c64c4b7879f0e55e957ee944e1813b53926604512f6f9.exe
Resource
win10v2004-20220812-en
General
-
Target
583f599963e8a010f16c64c4b7879f0e55e957ee944e1813b53926604512f6f9
-
Size
88KB
-
MD5
671b441a3a0fd43378b6ad9a802616e0
-
SHA1
4ed99781057f93472bcef3282e23ae255f141d2c
-
SHA256
583f599963e8a010f16c64c4b7879f0e55e957ee944e1813b53926604512f6f9
-
SHA512
9635e25abc0f2926386dba17d00eb9f89e47a2d847ca1d9cd7c85f596ea8dd3c06f916e20b11e554145bac20a5948fc2fea85db1ee569f7c1adf3611f27d8fe4
-
SSDEEP
1536:NGGrDEhnnO79C+cSlSvTRmbPv7yavS/ZU+oaM0QswAMRhQO0dz:NG6UnnO7/TSW7y5U+oa5rM36z
Malware Config
Signatures
Files
-
583f599963e8a010f16c64c4b7879f0e55e957ee944e1813b53926604512f6f9.exe windows x86
26b2dac94a10b27725cdb5f62b542ccc
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
miktex209-core
?WideCharToUTF8@Utils@Core@MiKTeX@@SA?AV?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@PB_W@Z
miktex209-cjklatex
cjklatexmain
msvcp100
?_Xlength_error@std@@YAXPBD@Z
?_Xout_of_range@std@@YAXPBD@Z
msvcr100
_exit
_XcptFilter
exit
__winitenv
_initterm
_initterm_e
_configthreadlocale
__CxxFrameHandler3
_commode
_fmode
__set_app_type
?terminate@@YAXXZ
?_type_info_dtor_internal_method@type_info@@QAEXXZ
_crt_debugger_hook
_cexit
__dllonexit
_lock
_onexit
_except_handler4_common
_invoke_watson
_controlfp_s
??0exception@std@@QAE@ABV01@@Z
_CxxThrowException
??2@YAPAXI@Z
memmove
memcpy
??3@YAXPAX@Z
??1exception@std@@UAE@XZ
?what@exception@std@@UBEPBDXZ
??0exception@std@@QAE@ABQBD@Z
__wgetmainargs
_unlock
_amsg_exit
__setusermatherr
kernel32
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
QueryPerformanceCounter
DecodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
EncodePointer
HeapSetInformation
InterlockedCompareExchange
Sleep
InterlockedExchange
GetTickCount
Sections
.text Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 392B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 57KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE