Static task
static1
Behavioral task
behavioral1
Sample
6984d09d9256ff1f3ebe5d986948da48b96b46c15f4e59e1d805ede17e49c3e2.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
6984d09d9256ff1f3ebe5d986948da48b96b46c15f4e59e1d805ede17e49c3e2.exe
Resource
win10v2004-20220812-en
General
-
Target
6984d09d9256ff1f3ebe5d986948da48b96b46c15f4e59e1d805ede17e49c3e2
-
Size
860KB
-
MD5
8159924ab3ab88b93263efe3bc7ed270
-
SHA1
ac96f22f5b5f5c04a8424444d4f5dfc4e8cc1e42
-
SHA256
6984d09d9256ff1f3ebe5d986948da48b96b46c15f4e59e1d805ede17e49c3e2
-
SHA512
f39c91236aca3db0588c2d5ec5f6aeb8479dbf1b0010af541a82389f5d0f143f572125e737f0bd94249fdfd11b403100b9f915d8dba7be0d338d40d62e139889
-
SSDEEP
12288:Xf4SfwTabTyvSCCCsqq8LsDABOz9J+ScRJSOzay5uulT8LekOZ8QHSwem0:DuRnsbz9oPRJDWnsTIek2Jyjm0
Malware Config
Signatures
Files
-
6984d09d9256ff1f3ebe5d986948da48b96b46c15f4e59e1d805ede17e49c3e2.exe windows x86
abaa699de9cc188ff7fee885a9ed2f4a
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCurrentThreadId
GetCalendarInfoW
GlobalAddAtomA
SleepEx
GetDefaultCommConfigW
WriteFileGather
HeapAlloc
SetLocalTime
_lwrite
SetDefaultCommConfigA
DeleteTimerQueueEx
GetVolumeInformationA
SetFilePointer
WriteProfileSectionA
WritePrivateProfileStructW
ProcessIdToSessionId
FindAtomW
SetVolumeLabelA
GetShortPathNameA
DosDateTimeToFileTime
GetCommandLineA
OpenEventW
EnumResourceLanguagesW
FatalExit
GetPrivateProfileStructA
GetVolumeInformationW
GetOEMCP
GlobalMemoryStatusEx
GetFileInformationByHandle
GetNamedPipeHandleStateW
CreateDirectoryExA
CreateMutexA
GetStartupInfoW
TlsSetValue
OpenSemaphoreW
GetTempPathA
SetTapePosition
UpdateResourceA
IsBadCodePtr
WaitForSingleObject
FreeUserPhysicalPages
CancelIo
IsBadHugeWritePtr
GetThreadContext
user32
TranslateAcceleratorA
CreateIcon
SetKeyboardState
GetCapture
DestroyMenu
GetMenuItemID
EmptyClipboard
GetSystemMenu
SetSystemCursor
PtInRect
MessageBoxExW
GetSysColorBrush
DdeGetLastError
DdeUnaccessData
DeregisterShellHookWindow
DrawFrame
LoadCursorA
SetDoubleClickTime
GetClassNameA
RegisterDeviceNotificationW
GetProcessDefaultLayout
SetWindowsHookExA
GetListBoxInfo
SetCaretPos
DestroyCursor
HideCaret
IMPQueryIMEW
IsWindow
RedrawWindow
GetActiveWindow
ValidateRect
GetKeyboardState
DestroyIcon
RemovePropA
DefWindowProcW
IsWindowEnabled
DdeAddData
IMPGetIMEA
CallWindowProcA
CharToOemW
CloseDesktop
ModifyMenuA
CharLowerBuffW
EnumDesktopsW
CharPrevExA
SubtractRect
RegisterShellHookWindow
DestroyAcceleratorTable
DdeFreeDataHandle
SetWindowContextHelpId
TranslateAcceleratorW
MonitorFromWindow
ReleaseCapture
GetWindowTextA
DdeConnect
GetScrollPos
OemToCharBuffA
GetWindowInfo
LockWorkStation
GetMenuItemCount
DrawFrameControl
SetSysColors
IsClipboardFormatAvailable
GetWindowLongA
SwitchToThisWindow
GetDesktopWindow
SetDebugErrorLevel
DrawTextW
GetKeyboardLayoutNameA
TrackPopupMenuEx
PostMessageA
GetClassLongA
GetClassInfoW
UnregisterHotKey
VkKeyScanExW
CascadeWindows
InsertMenuA
EnableMenuItem
Sections
.text Size: 271KB - Virtual size: 271KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 296KB - Virtual size: 612KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 276KB - Virtual size: 276KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ