Static task
static1
Behavioral task
behavioral1
Sample
db2b7420b56e66ca2dd4f2cddd371cd95f776d2849da0a4308f5b77575b0e239.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
db2b7420b56e66ca2dd4f2cddd371cd95f776d2849da0a4308f5b77575b0e239.exe
Resource
win10v2004-20220812-en
General
-
Target
db2b7420b56e66ca2dd4f2cddd371cd95f776d2849da0a4308f5b77575b0e239
-
Size
408KB
-
MD5
7c7cc4f11697091cc80c26f91c16e590
-
SHA1
5219b2497614042b18f2ef13c350cc2f277d99fb
-
SHA256
db2b7420b56e66ca2dd4f2cddd371cd95f776d2849da0a4308f5b77575b0e239
-
SHA512
14665a14b8522ac9ef282361db8a9104b35a2b158aa37b0e6cf75362d413cbbcc07899a3453fe321e30e8e40f2e6c123568a6d11afcd03dd82de381cae95b8ac
-
SSDEEP
12288:PNiFcPgXDc/mpeeuLeZBnGkKZJm/0bX2/bJg:4VjQVUl4l2/bu
Malware Config
Signatures
Files
-
db2b7420b56e66ca2dd4f2cddd371cd95f776d2849da0a4308f5b77575b0e239.exe windows x86
b621530099d013d7c4469cb2f3b4c22c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetStdHandle
GetPrivateProfileSectionA
LocalLock
DeleteFileA
DeviceIoControl
HeapFree
GetCurrentProcess
DeviceIoControl
LoadLibraryA
lstrlenA
VirtualProtectEx
HeapDestroy
GetStringTypeA
FindVolumeClose
CreateEventW
GetDriveTypeA
GetCurrentThread
GetPrivateProfileIntW
CloseHandle
OpenMutexA
GetFileAttributesA
uxtheme
GetThemeColor
CloseThemeData
SetWindowTheme
GetThemeBool
DrawThemeBackground
GetThemeTextMetrics
CloseThemeData
GetThemeSysSize
IsThemeActive
GetThemeTextExtent
OpenThemeData
GetWindowTheme
DrawThemeEdge
odbccp32
SQLConfigDataSource
SQLGetAvailableDrivers
SQLInstallDriver
SQLInstallODBC
msasn1
ASN1BERDecBool
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 5KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 508B
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 398KB - Virtual size: 864KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.orpc Size: 512B - Virtual size: 348B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ