Static task
static1
Behavioral task
behavioral1
Sample
71a7ef2aa13f53360c8ab5b26462e4ce0ad90146f9635a21d2f2bc4e322f057e.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
71a7ef2aa13f53360c8ab5b26462e4ce0ad90146f9635a21d2f2bc4e322f057e.exe
Resource
win10v2004-20220901-en
General
-
Target
71a7ef2aa13f53360c8ab5b26462e4ce0ad90146f9635a21d2f2bc4e322f057e
-
Size
138KB
-
MD5
3d6fee739d09a228a66de9b8372f4540
-
SHA1
1a9151ef760567eba72b5b5f698c54b17f63399e
-
SHA256
71a7ef2aa13f53360c8ab5b26462e4ce0ad90146f9635a21d2f2bc4e322f057e
-
SHA512
b553d94a4aba369f9d90d7085436154f39227d4a3c58ceb480f48c4ce4dc9dd9d76a5b02aa471fe8cc1d08d5397640210a7597cd9bd88e2f26fca29ddfb1cfa0
-
SSDEEP
3072:uZ9xwVYQm7N/kzdP58Ysvbhl65Eg4kbKKuH:q9LYdPjszb6Lbr0
Malware Config
Signatures
Files
-
71a7ef2aa13f53360c8ab5b26462e4ce0ad90146f9635a21d2f2bc4e322f057e.exe windows x86
c00b7ae04a97e8101de1d9cb92b0b04d
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
bdlogicutils
?BDLogicUtilsLibrary_Init@BDLogicUtils@@YAHXZ
?BDLogicUtilsLibrary_Unit@BDLogicUtils@@YAHXZ
?GetBDMReportMgr@BDLogicUtils@@YAPAVIBDMReportMgr@1@XZ
?GetBDCrashCatcher@BDLogicUtils@@YAPAVIBDCrashCatcher@1@XZ
kernel32
LoadLibraryW
GetProcAddress
GetModuleFileNameW
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoW
InterlockedCompareExchange
Sleep
InterlockedExchange
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
user32
wsprintfW
msvcp80
?rfind@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBEI_WI@Z
??0?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@PB_W@Z
??4?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV01@ABV01@@Z
?assign@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAEAAV12@PB_W@Z
??$?H_WU?$char_traits@_W@std@@V?$allocator@_W@1@@std@@YA?AV?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@0@ABV10@PB_W@Z
??1?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QAE@XZ
?npos@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@2IB
?substr@?$basic_string@_WU?$char_traits@_W@std@@V?$allocator@_W@2@@std@@QBE?AV12@II@Z
msvcr80
_initterm_e
_configthreadlocale
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
_encode_pointer
__set_app_type
_crt_debugger_hook
_initterm
_unlock
__dllonexit
_lock
_onexit
_decode_pointer
_except_handler4_common
_invoke_watson
_controlfp_s
_wcmdln
exit
_exit
_cexit
__wgetmainargs
_amsg_exit
??2@YAPAXI@Z
??_V@YAXPAX@Z
??3@YAXPAX@Z
?terminate@@YAXXZ
_wcsicmp
__CxxFrameHandler3
_XcptFilter
memset
version
GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW
Sections
.text Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 4KB - Virtual size: 924B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 112KB - Virtual size: 112KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE