Static task
static1
Behavioral task
behavioral1
Sample
5b27ea73547e50b3a03b01198f1aeb9db77a6304d1ebd88a0d36401af968fdcb.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
5b27ea73547e50b3a03b01198f1aeb9db77a6304d1ebd88a0d36401af968fdcb.exe
Resource
win10v2004-20220812-en
General
-
Target
5b27ea73547e50b3a03b01198f1aeb9db77a6304d1ebd88a0d36401af968fdcb
-
Size
256KB
-
MD5
6d488651256deadfc50d0a22b7c6ee7d
-
SHA1
3ed3b9bc6d979370c0f6e78ec94aeebc170f23b2
-
SHA256
5b27ea73547e50b3a03b01198f1aeb9db77a6304d1ebd88a0d36401af968fdcb
-
SHA512
46c2e02a5335249c1212776879c74c41162944a235365fe080fc13c8d83121edb34e182efe1b2ee29aa50db814829696fc0cc590f7ab5ea6772ecff9c419b620
-
SSDEEP
6144:c+lWYyDnxPQ2lBzQ4P+bQCQZw3ITRi6+hj6Ka:llWhjx42fIQCQC3I9or
Malware Config
Signatures
Files
-
5b27ea73547e50b3a03b01198f1aeb9db77a6304d1ebd88a0d36401af968fdcb.exe windows x86
78de289c3f0a768332de22e1fff373d3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
ImageList_DragMove
ImageList_Destroy
InitCommonControlsEx
PropertySheetA
ImageList_Draw
ImageList_GetImageCount
ImageList_ReplaceIcon
ImageList_AddMasked
ImageList_EndDrag
_TrackMouseEvent
kernel32
MultiByteToWideChar
GetStringTypeA
HeapCreate
GetLastError
TerminateProcess
GetSystemTimeAsFileTime
GetProcAddress
SetUnhandledExceptionFilter
InterlockedExchange
TlsSetValue
FlushFileBuffers
ExitProcess
LCMapStringA
TlsFree
GetModuleFileNameA
TlsAlloc
VirtualAlloc
VirtualFree
SetEnvironmentVariableA
GetCurrentProcessId
SetHandleCount
CompareStringA
LCMapStringW
RaiseException
WriteFile
QueryPerformanceCounter
SetStdHandle
GetVersionExA
HeapAlloc
FreeEnvironmentStringsW
LeaveCriticalSection
GetFileType
RtlUnwind
CompareStringW
CloseHandle
HeapReAlloc
HeapFree
GetDateFormatA
GetSystemInfo
DeleteCriticalSection
GetOEMCP
HeapSize
InitializeCriticalSection
TlsGetValue
GetStdHandle
GetCommandLineA
GetStartupInfoA
GetCurrentProcess
GetACP
GetModuleHandleA
WideCharToMultiByte
GetTimeFormatA
GetEnvironmentStringsW
VirtualQuery
GetEnvironmentStrings
VirtualProtect
LoadLibraryA
GetCPInfo
ReadFile
IsBadCodePtr
GetTimeZoneInformation
SetFilePointer
HeapDestroy
UnhandledExceptionFilter
GetStringTypeW
SetLastError
CreateMutexA
EnterCriticalSection
GetLocaleInfoA
FreeEnvironmentStringsA
GetTickCount
GetCurrentThreadId
advapi32
InitializeSecurityDescriptor
GetTokenInformation
DeleteService
RegEnumKeyExA
RegSetValueExW
RegCloseKey
gdi32
SetBkMode
CreateDIBitmap
DeleteDC
GetObjectA
CreatePatternBrush
DeleteObject
EndPage
CreateFontIndirectA
FillPath
CreateHalftonePalette
CreatePen
PolyBezier
SelectObject
GetWindowExtEx
CreatePalette
RectInRegion
ExtSelectClipRgn
ExtCreateRegion
OffsetWindowOrgEx
ExtCreatePen
EndDoc
CreateDCA
RoundRect
AbortDoc
StretchBlt
BitBlt
CreateRoundRectRgn
GetTextAlign
GetDeviceCaps
GetClipBox
CreateBitmap
CreateRectRgnIndirect
MoveToEx
SetBrushOrgEx
StartPage
shell32
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
ExtractIconExA
user32
ShowWindow
MoveWindow
DefWindowProcA
HideCaret
ClientToScreen
DestroyWindow
LoadBitmapA
SetWindowRgn
AdjustWindowRectEx
PeekMessageA
CheckMenuItem
SetCapture
GetNextDlgTabItem
TrackPopupMenu
ReleaseDC
CreateDialogIndirectParamA
RegisterClassA
InflateRect
GetParent
GetMenuStringA
EnableMenuItem
GetFocus
IsDialogMessageA
KillTimer
GetClientRect
IsChild
CallWindowProcA
GetWindowLongA
DrawIconEx
UpdateWindow
GetDC
DestroyIcon
CreateMenu
FindWindowA
LoadStringA
GetActiveWindow
IsRectEmpty
GetSystemMetrics
CreateIconIndirect
SetWindowTextA
GetCapture
ScreenToClient
EnumChildWindows
GetWindowThreadProcessId
CreateWindowExA
MessageBoxA
WindowFromPoint
LoadCursorA
SetWindowPos
RegisterClassExA
SetTimer
SetForegroundWindow
TranslateMessage
SendMessageA
CopyIcon
LoadIconA
oleaut32
LoadTypeLi
shlwapi
PathRemoveFileSpecA
PathStripToRootA
PathSkipRootA
PathFileExistsA
PathAddBackslashA
PathFindExtensionA
PathAppendA
SHDeleteKeyA
PathIsUNCA
PathRemoveExtensionA
PathFindFileNameA
Sections
.text Size: 80KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 96KB - Virtual size: 95KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 52KB - Virtual size: 70KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ