Static task
static1
Behavioral task
behavioral1
Sample
0fdd7023882eca9c9b398da525ddc4cddcb5228cc99c7ae5d07b4364ed7a5610.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
0fdd7023882eca9c9b398da525ddc4cddcb5228cc99c7ae5d07b4364ed7a5610.exe
Resource
win10v2004-20220901-en
General
-
Target
0fdd7023882eca9c9b398da525ddc4cddcb5228cc99c7ae5d07b4364ed7a5610
-
Size
88KB
-
MD5
80e3198cafa66cf90b9813617bd705c9
-
SHA1
696c440d9cd1244007ad9aeda4d0cda773aec878
-
SHA256
0fdd7023882eca9c9b398da525ddc4cddcb5228cc99c7ae5d07b4364ed7a5610
-
SHA512
3d33dac3a3b0a84c0b465ab8288abc458b8f2fb481c6c6472d0767b223952c31fb94b48af17f43adad73de910167eab949f0bdb5b3dbe1a679c23e1a0cb30edc
-
SSDEEP
1536:ns/iweiR1rR7G6MaDw8PTfTXpc9dRLHEKBXyOfs7Ktc3H:nmPeiR1rR7U88YyE48
Malware Config
Signatures
Files
-
0fdd7023882eca9c9b398da525ddc4cddcb5228cc99c7ae5d07b4364ed7a5610.exe windows x86
d0ce5a5eb0d53b004a8095eea81227af
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetUserDefaultLCID
OutputDebugStringA
GetVersionExW
GetSystemDefaultLCID
LeaveCriticalSection
FormatMessageA
GetComputerNameA
GetCurrentThread
MultiByteToWideChar
HeapReAlloc
HeapFree
HeapAlloc
EnterCriticalSection
HeapCompact
GetModuleHandleW
HeapDestroy
DeleteCriticalSection
HeapCreate
InitializeCriticalSection
WideCharToMultiByte
GetCommandLineW
GetCommandLineA
GetComputerNameW
GetModuleFileNameA
FormatMessageW
GetLastError
GetCurrentProcess
CloseHandle
GetModuleFileNameW
msvcrt
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
__p___initenv
exit
_exit
_XcptFilter
memcmp
_CxxThrowException
_onexit
memcpy
wcscmp
_vsnwprintf
_ltow
iswspace
??1type_info@@UAE@XZ
wcsncmp
_wcsnicmp
strlen
strcpy
wcsncpy
_wcsicmp
__dllonexit
_purecall
wcslen
strcmp
__CxxFrameHandler
printf
ole32
CoCreateInstance
OleInitialize
OleUninitialize
oleaut32
SysFreeString
VariantClear
SetErrorInfo
GetErrorInfo
sqlresld
SQLUILoadResourceDLL
SQLUIUnloadResourceDLL
user32
LoadStringW
LoadStringA
advapi32
GetUserNameA
OpenThreadToken
LookupAccountSidW
GetTokenInformation
OpenProcessToken
GetUserNameW
Sections
.text Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 332B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 52KB - Virtual size: 52KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE