Static task
static1
Behavioral task
behavioral1
Sample
71eeb1bc2c91dae2a0684e166b05abacf0079fde574331b20629f45378fe774b.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
71eeb1bc2c91dae2a0684e166b05abacf0079fde574331b20629f45378fe774b.exe
Resource
win10v2004-20220812-en
General
-
Target
71eeb1bc2c91dae2a0684e166b05abacf0079fde574331b20629f45378fe774b
-
Size
108KB
-
MD5
62179ff53eb0ea65cebe7382cc01b6c0
-
SHA1
556cd174eb0eab91663f6f970738a9b6f8c20329
-
SHA256
71eeb1bc2c91dae2a0684e166b05abacf0079fde574331b20629f45378fe774b
-
SHA512
0612e2547ec05537b211a9d985ec47d8ac738e29ede0113b9355ad8717cbef2cf032878508c1677734f63c25b69723a1b2e00940352d6253d4a5c395ba6974a5
-
SSDEEP
1536:6vsWNwL1N1SwRro/ITEfxSeNWh7543P6GN49nT1BRY+Z7MFT:10u8yTTEZSdtMSK49nJ0+MF
Malware Config
Signatures
Files
-
71eeb1bc2c91dae2a0684e166b05abacf0079fde574331b20629f45378fe774b.exe windows x86
0fb474e6f91f40eafd59729c5997c30e
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
QueryPerformanceCounter
InterlockedIncrement
CompareFileTime
GetCurrentProcess
GetStartupInfoA
GetCurrentThread
GetModuleHandleA
GetCurrentThreadId
GetStartupInfoW
InterlockedDecrement
GetCurrentProcessId
VirtualAlloc
lstrlenA
ResetEvent
GetModuleHandleW
lstrlenW
FindFirstFileW
CreateThread
HeapDestroy
ExitProcess
LCMapStringW
SetStdHandle
GetFileAttributesA
GetVersionExW
WaitForSingleObject
WaitForSingleObjectEx
FlushFileBuffers
CreateEventW
SizeofResource
InterlockedExchangeAdd
GetModuleFileNameA
GetACP
GlobalFree
OutputDebugStringA
FreeEnvironmentStringsW
GetCommandLineW
TlsAlloc
GetStdHandle
GetFileSize
FormatMessageW
GetProcessHeap
Sleep
InitializeCriticalSection
GetModuleFileNameW
HeapAlloc
GetStringTypeW
MultiByteToWideChar
HeapSize
RtlUnwind
HeapFree
IsValidCodePage
GetOEMCP
GetCPInfo
GetLocaleInfoW
LoadLibraryW
InterlockedExchange
FreeLibrary
SetConsoleCtrlHandler
EnterCriticalSection
FatalAppExitA
LeaveCriticalSection
IsProcessorFeaturePresent
GetSystemTimeAsFileTime
GetTickCount
HeapCreate
GetLastError
SetLastError
TlsFree
TlsSetValue
TlsGetValue
DeleteCriticalSection
GetFileType
InitializeCriticalSectionAndSpinCount
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
WriteFile
GetProcAddress
TerminateProcess
DecodePointer
EncodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
HeapSetInformation
GetCommandLineA
HeapReAlloc
user32
SetWindowLongW
wsprintfA
SetWindowTextW
GetWindowInfo
MoveWindow
CreateWindowExW
DialogBoxParamA
DestroyWindow
MessageBoxW
SetRectEmpty
FillRect
PtInRect
DrawIcon
GetForegroundWindow
DispatchMessageA
IsWindowVisible
GetWindowPlacement
CopyRect
GetWindowRgn
EnableWindow
DrawIconEx
SendDlgItemMessageA
DestroyMenu
ShowWindowAsync
GetDlgItemTextA
GetCapture
GetDlgItemInt
GetWindowLongW
CreatePopupMenu
GetDCEx
GetActiveWindow
PostQuitMessage
GetMenuItemRect
MessageBoxA
IsWindowUnicode
GetDlgItemTextW
GetWindowTextLengthW
IsChild
OffsetRect
AdjustWindowRectEx
SetCursorPos
SetFocus
LoadStringW
IntersectRect
GetMessagePos
PostMessageA
GetMenuDefaultItem
GetMenuItemCount
GetSystemMetrics
GetWindowTextA
GetDlgItem
BeginPaint
GetClientRect
CharNextW
GetDesktopWindow
KillTimer
DrawTextW
EndPaint
LoadCursorW
SetMenuItemInfoW
ChildWindowFromPoint
MessageBeep
ScreenToClient
SendMessageW
GetMenuStringA
LoadIconW
CharNextA
ExitWindowsEx
EndDialog
InflateRect
MapWindowPoints
GetMenuItemInfoW
GetParent
SetWindowTextA
SetRect
GetMessageW
RegisterClassA
TranslateMessage
GetFocus
TrackPopupMenu
ScrollWindowEx
GetWindowDC
IsIconic
IsWindowEnabled
ReleaseDC
GetMenuItemInfoA
SetCapture
SetWindowPos
CheckMenuItem
UnhookWindowsHookEx
PeekMessageA
ole32
OleNoteObjectVisible
msi
ord50
Sections
.text Size: 44KB - Virtual size: 42KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 40KB - Virtual size: 43KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 4KB - Virtual size: 17B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ