Static task
static1
Behavioral task
behavioral1
Sample
e38b318624b275b12f951bdbfa6ad7088e757e2dfabc410a110930af456ea0da.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
e38b318624b275b12f951bdbfa6ad7088e757e2dfabc410a110930af456ea0da.exe
Resource
win10v2004-20220812-en
General
-
Target
e38b318624b275b12f951bdbfa6ad7088e757e2dfabc410a110930af456ea0da
-
Size
116KB
-
MD5
61eaad0cdeca6d84bd9031b14e3f6517
-
SHA1
ae02be87362f34943793f481f93a29011b9ac0ce
-
SHA256
e38b318624b275b12f951bdbfa6ad7088e757e2dfabc410a110930af456ea0da
-
SHA512
ae55fc6994cc3663f1ebd690cfbc477827a07f1ffcfe4da0093edbb81c31a753bc3d0ce53b9addef5f1d59bfbb867f8cd25904c7d8596823593bb911e64883ed
-
SSDEEP
3072:+85bwfI6P4FNujUPeHBcnbTNey/FTvS2jbxWGq:+8ufIfNiUHMypvSbGq
Malware Config
Signatures
Files
-
e38b318624b275b12f951bdbfa6ad7088e757e2dfabc410a110930af456ea0da.exe windows x86
7e58a4ebee4370e7ecf2e19a568a185c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CompareFileTime
lstrlenA
GetVersionExW
WaitForMultipleObjects
WaitForSingleObject
SetEvent
GetCurrentThreadId
FreeLibrary
LoadLibraryW
Sleep
GetCommandLineW
GetVersionExA
HeapReAlloc
RtlUnwind
ExitThread
TlsSetValue
TlsGetValue
GetLastError
CreateThread
InterlockedDecrement
GetProcAddress
GetModuleHandleA
GetCurrentThread
VirtualAllocEx
GetStartupInfoA
CreateFileA
user32
GetKeyState
DestroyWindow
MessageBoxA
wsprintfA
LoadStringA
SetDlgItemTextW
ShowWindow
CheckDlgButton
SetWindowTextW
ReleaseDC
GetDC
SetDlgItemInt
GetDlgItemInt
GetDlgItemTextW
CheckRadioButton
LoadIconW
SetForegroundWindow
KillTimer
SetTimer
SetFocus
CallNextHookEx
IsWindowEnabled
AdjustWindowRectEx
GetWindowRect
CreateDialogParamW
GetClientRect
UpdateWindow
PostQuitMessage
UnhookWindowsHookEx
SetWindowsHookExW
DispatchMessageW
TranslateMessage
IsDialogMessageW
PeekMessageW
MsgWaitForMultipleObjects
GetDesktopWindow
LoadStringW
MessageBoxW
GetDlgItem
SendMessageW
EnableWindow
GetWindowLongW
DialogBoxParamW
SetWindowPos
PostMessageW
EndDialog
GetFocus
wsprintfW
LoadIconA
LoadCursorA
GetSysColor
LoadCursorW
gdi32
GetTextExtentPointW
GetStockObject
msvcrt
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__p__fmode
_acmdln
exit
_cexit
__set_app_type
_except_handler3
_controlfp
__getmainargs
_XcptFilter
_exit
_c_exit
atoi
wcschr
wcsrchr
_vsnwprintf
free
malloc
wcslen
sprintf
__initenv
_write
perror
_errno
system
gmtime
advapi32
RegCloseKey
RegSetValueExW
RegCreateKeyExW
RegEnumValueW
RegQueryInfoKeyW
RegOpenKeyExW
RegQueryValueExW
RegEnumKeyW
RegEnumKeyExW
RegDeleteKeyW
RegFlushKey
RegDeleteValueW
RegNotifyChangeKeyValue
comctl32
ImageList_ReplaceIcon
ImageList_Create
ImageList_Destroy
Sections
.text Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data2 Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 80KB - Virtual size: 80KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ