Static task
static1
Behavioral task
behavioral1
Sample
17e6fb91d1945ac145f80986af882df01d90cf44d7dcf669c741124ac1bbc909.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
17e6fb91d1945ac145f80986af882df01d90cf44d7dcf669c741124ac1bbc909.exe
Resource
win10v2004-20220812-en
General
-
Target
17e6fb91d1945ac145f80986af882df01d90cf44d7dcf669c741124ac1bbc909
-
Size
84KB
-
MD5
4cef702ed0fe49890e3c6fafa2147570
-
SHA1
20ce10a3e63fba36ec692c47983ef4673ce04f2a
-
SHA256
17e6fb91d1945ac145f80986af882df01d90cf44d7dcf669c741124ac1bbc909
-
SHA512
7d5bd1069131637295e9cf24f80e8b24d56cb6f2d9978947383e6b5d1b8795dafd7057e07728da565a58cdd64a9d9f34e2af4ffdd3611a144c9b7bb8636da3be
-
SSDEEP
1536:dlOWTQ97yB7oYWSY+A37feaCMJDmYsLIb4PvYqHB/AdG1:f8YB7oYWSDADeak7dJHB/AdG1
Malware Config
Signatures
Files
-
17e6fb91d1945ac145f80986af882df01d90cf44d7dcf669c741124ac1bbc909.exe windows x86
1e9d8833475f8f435772117b2c145e30
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ddraw
DirectDrawCreate
kernel32
OutputDebugStringA
GetProcAddress
FreeLibrary
GetModuleHandleA
LoadLibraryA
GetModuleFileNameA
GetCommandLineA
GetStartupInfoA
UnhandledExceptionFilter
GetFileType
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LCMapStringW
LCMapStringA
SetEndOfFile
RtlUnwind
FreeEnvironmentStringsA
GetVersion
ExitProcess
HeapFree
GetLastError
CloseHandle
TerminateProcess
GetCurrentProcess
SetFilePointer
WriteFile
SetHandleCount
GetStdHandle
HeapCreate
VirtualFree
CreateFileA
FlushFileBuffers
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
HeapDestroy
ReadFile
HeapAlloc
VirtualAlloc
HeapReAlloc
IsBadWritePtr
SetStdHandle
user32
MessageBoxA
GetActiveWindow
ole32
CoInitialize
CoCreateInstance
CoUninitialize
Sections
.text Size: 32KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 44KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE