Static task
static1
Behavioral task
behavioral1
Sample
ada145c86c0c6913dc35f5f69ae12571408f19a41e3258c9589090c4bb5ce965.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ada145c86c0c6913dc35f5f69ae12571408f19a41e3258c9589090c4bb5ce965.exe
Resource
win10v2004-20220812-en
General
-
Target
ada145c86c0c6913dc35f5f69ae12571408f19a41e3258c9589090c4bb5ce965
-
Size
528KB
-
MD5
96ae6fef354073212da00a342b97e6c1
-
SHA1
cafa711fcd89aa225cba1255f5a84c56c8be19b3
-
SHA256
ada145c86c0c6913dc35f5f69ae12571408f19a41e3258c9589090c4bb5ce965
-
SHA512
46179c1b94c4ebc06853409a4874e9e11be49813b772cb8353294ad1eb28ae66c85b8db28707958546f6fa7a10096a632d4fd78ad82f1ee953c704de21bb95fe
-
SSDEEP
12288:pn1md6dyJjjr8anrjLINaIscA8urX57ZMg1BUrwon1Ac:hUMdujjTrjjz5rXTMgQrfn1Ac
Malware Config
Signatures
Files
-
ada145c86c0c6913dc35f5f69ae12571408f19a41e3258c9589090c4bb5ce965.exe windows x86
50ed714104ae11cb22fefa577cecdf58
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comdlg32
GetFileTitleW
GetSaveFileNameA
user32
BeginPaint
GetCursor
IsCharAlphaNumericW
GetSubMenu
MapVirtualKeyW
GetClipboardOwner
GetUserObjectInformationA
DdeGetData
DdeNameService
CharToOemW
PostMessageA
MapWindowPoints
ClipCursor
DdeUnaccessData
SetWindowLongA
InternalGetWindowText
ShowWindow
PostQuitMessage
kernel32
GetOEMCP
SetHandleCount
SetCurrentDirectoryA
GetTickCount
HeapFree
TlsGetValue
GetProcAddress
IsBadReadPtr
GetLastError
VirtualProtect
GetCPInfo
GetModuleFileNameW
VirtualAlloc
GetEnvironmentStrings
GetCurrentThreadId
HeapDestroy
GetSystemTimeAsFileTime
InterlockedIncrement
GetStartupInfoA
GetFileType
InterlockedExchange
GetModuleHandleA
HeapValidate
WriteProfileStringW
TlsAlloc
GetTimeFormatA
HeapAlloc
GetCurrentThread
GetStartupInfoW
SetStdHandle
GetCurrentProcessId
GetCurrentProcess
GetStringTypeA
LoadLibraryA
ExitProcess
IsBadWritePtr
OutputDebugStringA
TlsSetValue
GetLocaleInfoW
GlobalFix
VirtualQuery
LCMapStringA
RtlZeroMemory
FreeEnvironmentStringsA
TlsFree
LeaveCriticalSection
GetCommandLineW
FreeEnvironmentStringsW
GetVersionExA
MultiByteToWideChar
CloseHandle
SetEnvironmentVariableA
GetModuleFileNameA
UnhandledExceptionFilter
EnumSystemLocalesA
VirtualFree
CompareStringW
GetStdHandle
SetConsoleCtrlHandler
SetLastError
DeleteCriticalSection
GetDateFormatA
HeapReAlloc
CompareStringA
DebugBreak
QueryPerformanceCounter
lstrlenA
LCMapStringW
GetEnvironmentStringsW
EnterCriticalSection
GetCommandLineA
GetACP
IsValidCodePage
GetLocaleInfoA
FlushFileBuffers
GetUserDefaultLCID
GetComputerNameA
IsValidLocale
GetProcAddress
GetSystemInfo
WritePrivateProfileSectionA
HeapCreate
RtlUnwind
TerminateProcess
WideCharToMultiByte
InterlockedDecrement
WriteFile
InitializeCriticalSection
SetFilePointer
GetTimeZoneInformation
GetStringTypeW
CopyFileExA
gdi32
SetICMProfileW
SetViewportOrgEx
GetObjectType
GetTextFaceW
GetTextExtentExPointW
StartDocW
FillPath
GetOutlineTextMetricsA
SetColorSpace
Rectangle
AddFontResourceA
GetObjectA
EndPage
RemoveFontResourceW
GetClipRgn
CreateRoundRectRgn
Sections
.text Size: 179KB - Virtual size: 178KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 11KB - Virtual size: 42KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 328KB - Virtual size: 327KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ