Static task
static1
Behavioral task
behavioral1
Sample
8860db71072da938c5aa9e7b531954dfda0f1109ed1cae20fc66f898245ebb33.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
8860db71072da938c5aa9e7b531954dfda0f1109ed1cae20fc66f898245ebb33.exe
Resource
win10v2004-20220812-en
General
-
Target
8860db71072da938c5aa9e7b531954dfda0f1109ed1cae20fc66f898245ebb33
-
Size
311KB
-
MD5
6c672084955f24cf4da98ee87fbaf4e0
-
SHA1
6f98e2da33965a1d74fe3edc61c4c437446c6631
-
SHA256
8860db71072da938c5aa9e7b531954dfda0f1109ed1cae20fc66f898245ebb33
-
SHA512
9beb32754d8839432cec8434a71ce22a68eb2207ea99bf2e4f02002713e0cc9a9bf980f29fb6190d9d8d783de110336ef7b52178822a15b0c4448e3b32447d5a
-
SSDEEP
6144:dYMRrzg2ZY/YQru1sjCdKxnQgPrUNBZxk+22q59NtWs:dZFoNrMIFjUNb2+2hDN
Malware Config
Signatures
Files
-
8860db71072da938c5aa9e7b531954dfda0f1109ed1cae20fc66f898245ebb33.exe windows x86
d39c9b0ff9e37bf42f8ce2a8187aacf5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetCurrentProcess
GetCurrentThread
GlobalLock
RemoveDirectoryW
FindClose
CreateEventA
GetFileAttributesW
VirtualProtectEx
GetPrivateProfileIntA
GetStdHandle
HeapFree
CloseHandle
GetModuleHandleA
GetPrivateProfileSectionA
LocalFlags
GetStringTypeA
CreateDirectoryW
SetLastError
DeviceIoControl
GetFileAttributesW
GetVersionExA
user32
PostMessageW
IsDialogMessageA
PeekMessageW
DispatchMessageA
IsWindow
GetWindowTextW
SetCursorPos
SetFocus
IsCharLowerA
GetWindowLongW
LoadCursorW
IsZoomed
wsprintfW
ntmarta
AccGetExplicitEntries
AccFreeIndexArray
AccConvertAclToAccess
AccConvertSDToAccess
uxtheme
CloseThemeData
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 12KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 512B - Virtual size: 512B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 302KB - Virtual size: 301KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.import Size: 512B - Virtual size: 372B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ