Static task
static1
Behavioral task
behavioral1
Sample
db888f32145f6737f69f6cd9c95d8321941f5f6c6a825ea02a1af0e5ed973dd7.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
db888f32145f6737f69f6cd9c95d8321941f5f6c6a825ea02a1af0e5ed973dd7.exe
Resource
win10v2004-20220901-en
General
-
Target
db888f32145f6737f69f6cd9c95d8321941f5f6c6a825ea02a1af0e5ed973dd7
-
Size
36KB
-
MD5
ead1456bdd5cc8ec4e2889c023227148
-
SHA1
e4abe2dff1ed6ca80c1b9f07e74ec14ddf2115d5
-
SHA256
db888f32145f6737f69f6cd9c95d8321941f5f6c6a825ea02a1af0e5ed973dd7
-
SHA512
dcbe72333696d546ec0da40d888a293ca6c877bf286d1c780dc9cd2d01dbf14d6e1ddf087c524c86616d6020b9ac4e65a0a2efa00ea8cff6384e6ab2be20749a
-
SSDEEP
384:M6PJp0odp4VsF2gpuT54asDke3OkzNBI74xdzvd8E4YEYiNWSX2W+:M6Rp0OG2ggpg4hOSiqdzl8EzG
Malware Config
Signatures
Files
-
db888f32145f6737f69f6cd9c95d8321941f5f6c6a825ea02a1af0e5ed973dd7.exe windows x86
eb688a49d1deb85b4914e6efa38e6873
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetMessageA
KillTimer
SetForegroundWindow
GetCursorPos
TrackPopupMenu
SetTimer
GetDoubleClickTime
SetMenuItemInfoA
LoadStringA
DestroyMenu
CreatePopupMenu
GetWindow
IsDlgButtonChecked
wsprintfA
AppendMenuA
GetMenuItemInfoA
PostMessageA
SetMenuDefaultItem
CheckMenuRadioItem
PostQuitMessage
ShowWindow
WinHelpA
DestroyWindow
FindWindowA
LoadCursorA
RegisterClassA
RegisterWindowMessageA
CheckDlgButton
GetDlgItem
LoadImageA
DestroyIcon
DefWindowProcA
IsDialogMessageA
CreateDialogParamA
DispatchMessageA
TranslateMessage
SendMessageA
kernel32
lstrcpyA
GlobalHandle
GetProcAddress
DeviceIoControl
lstrcatA
LocalAlloc
GlobalAlloc
GlobalLock
lstrcmpA
GlobalUnlock
GlobalFree
OpenFile
WinExec
CreateFileA
GetStartupInfoA
lstrcmpiA
LoadLibraryA
FreeLibrary
lstrlenA
FormatMessageA
lstrcpynA
LocalFree
CloseHandle
GetCommandLineA
ExitProcess
GetModuleHandleA
shell32
Shell_NotifyIconA
ShellExecuteA
advapi32
RegOpenKeyExA
RegCloseKey
RegDeleteValueA
RegOpenKeyA
RegQueryValueExA
RegSetValueExA
RegCreateKeyA
winmm
mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
mixerGetDevCapsA
mixerGetNumDevs
waveOutGetNumDevs
waveOutGetDevCapsA
waveOutMessage
mixerGetID
mixerClose
mixerOpen
mixerMessage
batmeter
CreateBatMeter
BatMeterCapabilities
UpdateBatMeter
BatMeterDeviceChanged
powrprof
WriteGlobalPwrPolicy
ReadGlobalPwrPolicy
EnumPwrSchemes
GetActivePwrScheme
SetActivePwrScheme
Sections
.text Size: 12KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 524B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ