Static task
static1
Behavioral task
behavioral1
Sample
57a19fbb86ebd45b8a63974f6e9973e240720f087efff35bc81cd2dfb91af279.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
57a19fbb86ebd45b8a63974f6e9973e240720f087efff35bc81cd2dfb91af279.exe
Resource
win10v2004-20220901-en
General
-
Target
57a19fbb86ebd45b8a63974f6e9973e240720f087efff35bc81cd2dfb91af279
-
Size
520KB
-
MD5
51d2af0b2fe6f73914795a206caaa290
-
SHA1
b870ab5f9d9442b0fed3a439cbd2e947d5d52548
-
SHA256
57a19fbb86ebd45b8a63974f6e9973e240720f087efff35bc81cd2dfb91af279
-
SHA512
78b9edfdc7c927a41c7ea3c174889ea757c0f4b4774c1102e54575811431aad62fcd1ee0cd6651a67d6918068db9e9248f9ef1759f3c63ce93a9e77838bf4e44
-
SSDEEP
12288:IdxPspY7RyRMmYGj/cuqvmP+xZxedcKVEjbSsPdq:IdBspYtyRMm9/cutUZcvCSow
Malware Config
Signatures
Files
-
57a19fbb86ebd45b8a63974f6e9973e240720f087efff35bc81cd2dfb91af279.exe windows x86
ac20ac76b973a9e434c55f1ca17269f8
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
HeapSize
HeapAlloc
HeapFree
HeapReAlloc
RtlUnwind
GetProcAddress
FreeEnvironmentStringsW
UnhandledExceptionFilter
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
FreeEnvironmentStringsA
GetCurrentThreadId
WideCharToMultiByte
TlsAlloc
GetFileType
TlsGetValue
GetLastError
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
InterlockedIncrement
TlsSetValue
LCMapStringA
LCMapStringW
SetLastError
IsBadWritePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetCurrentProcess
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
ReadFile
SetStdHandle
FlushFileBuffers
GetTimeZoneInformation
CloseHandle
CompareStringA
CompareStringW
OutputDebugStringA
Sleep
TerminateProcess
GetVersion
InterlockedDecrement
ExitProcess
GetCommandLineA
GetModuleFileNameA
GetStartupInfoA
GetModuleHandleA
DebugBreak
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
VirtualAlloc
MultiByteToWideChar
SetFilePointer
SetThreadPriority
CreateThread
CreateEventA
ResetEvent
SetEvent
WaitForSingleObject
RaiseException
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
FindFirstFileA
ExitThread
GetFullPathNameA
GetCurrentDirectoryA
CreateFileA
SetEndOfFile
SetEnvironmentVariableA
user32
DestroyWindow
GetWindowThreadProcessId
GetForegroundWindow
UpdateWindow
ShowWindow
CreateWindowExA
AdjustWindowRect
RegisterClassA
LoadCursorA
LoadIconA
ReleaseDC
GetDC
ClientToScreen
SetActiveWindow
AttachThreadInput
ShowCursor
GetMessageA
SetForegroundWindow
PtInRect
GetWindowRect
GetCursorPos
MapVirtualKeyA
ScreenToClient
SetTimer
PostQuitMessage
ReleaseCapture
SetCapture
SetFocus
GetClientRect
DefWindowProcA
OpenClipboard
CloseClipboard
PeekMessageA
TranslateMessage
DispatchMessageA
GetDesktopWindow
MessageBoxA
GetClipboardData
advapi32
GetUserNameA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA
shell32
ShellExecuteA
winmm
waveOutClose
timeGetTime
waveOutOpen
waveOutGetDevCapsA
waveOutGetNumDevs
waveOutReset
waveOutWrite
waveOutSetVolume
waveOutUnprepareHeader
waveOutPrepareHeader
gdi32
GetDeviceCaps
DeleteDC
CreateCompatibleDC
SelectObject
GetObjectA
CreateDIBSection
BitBlt
GetStockObject
DeleteObject
ddraw
DirectDrawCreate
dsound
ord1
Sections
.text Size: 388KB - Virtual size: 386KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 20KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 60KB - Virtual size: 381KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 48KB - Virtual size: 45KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ