Static task
static1
Behavioral task
behavioral1
Sample
0dcab4135083b9d8a51355d70759c56f13b0b81a461df5a41bfc20c0fb9d3116.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
0dcab4135083b9d8a51355d70759c56f13b0b81a461df5a41bfc20c0fb9d3116.exe
Resource
win10v2004-20220812-en
General
-
Target
0dcab4135083b9d8a51355d70759c56f13b0b81a461df5a41bfc20c0fb9d3116
-
Size
257KB
-
MD5
5d9aba879b9adc6c1159457e44d64834
-
SHA1
867c2a2bae97c69d1079af7c46820ff366e138c8
-
SHA256
0dcab4135083b9d8a51355d70759c56f13b0b81a461df5a41bfc20c0fb9d3116
-
SHA512
978b1bffb0c5d44bdb1201fa32506eee52b6cdc1c40f0bb9fc18b073c6fd145bd447030f20ca714244566c301adb6c2d82b16ed871b2a8b671ee356cb8d6589a
-
SSDEEP
6144:4xMe040nl/Op9/Af2z2mMpprpFkGf7+geg2WF:xe0BnkpWfJXN28
Malware Config
Signatures
Files
-
0dcab4135083b9d8a51355d70759c56f13b0b81a461df5a41bfc20c0fb9d3116.exe windows x86
d48616e59109003bda66d5f870570d69
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
shell32
SHFileOperationA
SHGetDiskFreeSpaceA
SHGetFolderPathA
version
VerQueryValueA
GetFileVersionInfoSizeA
VerInstallFileA
msvcrt
memcpy
pow
strcmp
log
ceil
abs
wcsncmp
memmove
memcmp
clock
exit
wcstol
cos
kernel32
GetModuleHandleA
GlobalDeleteAtom
GetProcAddress
FindClose
GetVersionExA
ExitProcess
VirtualAllocEx
SetThreadLocale
GetThreadLocale
GetLocalTime
GetFileType
ReadFile
HeapFree
GetLastError
GetCPInfo
lstrlenA
LoadLibraryExA
GetACP
GetCurrentProcess
WideCharToMultiByte
LoadLibraryA
GetEnvironmentStrings
lstrcatA
GlobalFindAtomA
user32
IsChild
GetMenuItemInfoA
GetKeyState
CheckMenuItem
EqualRect
GetFocus
DrawIcon
SetWindowLongA
EnableScrollBar
GetClassInfoA
GetMenu
GetSysColor
DispatchMessageA
FrameRect
EnableMenuItem
GetLastActivePopup
DrawEdge
GetScrollRange
DrawTextA
DefMDIChildProcA
TrackPopupMenu
GetMenuState
BeginPaint
SystemParametersInfoA
DefFrameProcA
DrawIconEx
GetScrollInfo
EnumChildWindows
CallNextHookEx
CreateWindowExA
GetIconInfo
EndPaint
GetCapture
GetClipboardData
IsWindowEnabled
GetMenuItemCount
GetDC
CreatePopupMenu
CreateMenu
GetPropA
CallWindowProcA
GetDCEx
GetClientRect
DeferWindowPos
GetDesktopWindow
IsDialogMessageA
GetMenuItemID
GetKeyNameTextA
GetMessagePos
EnumWindows
GetSubMenu
IsWindowVisible
ShowWindow
GetClassLongA
DefWindowProcA
CharToOemA
SetWindowPos
CharNextA
DispatchMessageW
ClientToScreen
SetTimer
IsMenu
CharLowerA
RegisterClassA
GetDlgItem
GetForegroundWindow
GetScrollPos
EnumThreadWindows
DrawMenuBar
GetParent
GetCursorPos
FillRect
GetCursor
GetActiveWindow
GetWindow
GetMenuStringA
MessageBoxA
GetWindowTextA
BeginDeferWindowPos
DrawFrameControl
FindWindowA
EnableWindow
ShowScrollBar
HideCaret
EndDeferWindowPos
GetSysColorBrush
CharLowerBuffA
CreateIcon
SetWindowTextA
SetCursor
advapi32
GetUserNameA
RegQueryInfoKeyA
RegCreateKeyExA
shlwapi
SHDeleteValueA
SHEnumValueA
PathIsContentTypeA
SHStrDupA
oleaut32
VariantCopyInd
comctl32
ImageList_Read
ImageList_Remove
ImageList_Destroy
ImageList_Draw
ImageList_Write
ImageList_GetBkColor
ImageList_DrawEx
Sections
CODE Size: 43KB - Virtual size: 42KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
BSS Size: 212KB - Virtual size: 212KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 1024B - Virtual size: 703B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE