Static task
static1
Behavioral task
behavioral1
Sample
fb127731dbf109c4b982ae5754c06878552a33bac373d03e69458be95fd96cc5.exe
Resource
win7-20220812-en
General
-
Target
fb127731dbf109c4b982ae5754c06878552a33bac373d03e69458be95fd96cc5
-
Size
145KB
-
MD5
033670d1509f78854fbade57191c7af0
-
SHA1
50606ef3b065a8ad0f75899ec4309ff76ca8b7d1
-
SHA256
fb127731dbf109c4b982ae5754c06878552a33bac373d03e69458be95fd96cc5
-
SHA512
5a4d4576df4886589e91e2227845add179640de0a5013101d744ac33c123570ef66bfe08776594716164dd32253ca00f078f000c692c5f8c2ca53609184f02ca
-
SSDEEP
3072:7nQxBtOgXyvZAi5lcEy8t3xbtMG1vjd5UtIMgo5M7W3Dh:FgivZMwh5MsvjQtIdoeuDh
Malware Config
Signatures
Files
-
fb127731dbf109c4b982ae5754c06878552a33bac373d03e69458be95fd96cc5.exe windows x86
9ba562b85c954564c9ee8e2c075dd747
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
shlwapi
PathFileExistsW
kernel32
GetVersionExW
CreateDirectoryW
SetPriorityClass
GetCurrentProcess
SetUnhandledExceptionFilter
GetModuleFileNameW
LoadLibraryW
RemoveDirectoryW
DeleteFileW
GetOEMCP
GetACP
GetPrivateProfileStringW
LCMapStringA
GetProcAddress
GetStdHandle
CloseHandle
ReadFile
ExitProcess
RaiseException
RtlUnwind
GetModuleHandleA
GetStartupInfoW
GetVersionExA
HeapAlloc
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
HeapFree
HeapReAlloc
TerminateProcess
HeapSize
WriteFile
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
GetCommandLineA
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LoadLibraryA
InterlockedExchange
VirtualQuery
SetFilePointer
IsBadReadPtr
IsBadCodePtr
WideCharToMultiByte
VirtualProtect
GetSystemInfo
SetStdHandle
GetStringTypeA
GetStringTypeW
FlushFileBuffers
GetLocaleInfoA
GetCPInfo
user32
MessageBoxW
advapi32
RegQueryValueExW
RegCloseKey
RegOpenKeyExW
shell32
SHGetSpecialFolderPathW
Sections
.text Size: 48KB - Virtual size: 46KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 12KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 4KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 72KB - Virtual size: 72KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE