Static task
static1
Behavioral task
behavioral1
Sample
b8a0d71277d72d7e2f7106bfbb3521a249b4bfb6a93f77121fb9304d8d3a0c64.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
b8a0d71277d72d7e2f7106bfbb3521a249b4bfb6a93f77121fb9304d8d3a0c64.exe
Resource
win10v2004-20220812-en
General
-
Target
b8a0d71277d72d7e2f7106bfbb3521a249b4bfb6a93f77121fb9304d8d3a0c64
-
Size
407KB
-
MD5
a03c4c20aec412579b09bfb649430c90
-
SHA1
7a58a1f0b117c2ba171a14af2475f02ccd5f6c65
-
SHA256
b8a0d71277d72d7e2f7106bfbb3521a249b4bfb6a93f77121fb9304d8d3a0c64
-
SHA512
a4287404c5fab3f1ffaac4c84f4a7ec34c36888b088b5c57d3e5d3d3483303d4bee1fc674888300c25d9c83e798e9f69f5d99f15a4dde1e361eeaa8377db612c
-
SSDEEP
6144:v8dGQxGOENlsV+WSRtTMh3LN0sC2alTjCO+9kjJJJjHfWvAliFJmh:GxesV4to1N0s8k9UL1fWjCh
Malware Config
Signatures
Files
-
b8a0d71277d72d7e2f7106bfbb3521a249b4bfb6a93f77121fb9304d8d3a0c64.exe windows x86
319a5b0a2c5b90d39a5995a9efcea88b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
CreateEventA
HeapFree
GetModuleHandleA
VirtualProtectEx
GetFileAttributesW
GetCurrentThread
GetPrivateProfileSectionA
GetVersionExA
RemoveDirectoryW
GetPrivateProfileIntA
CreateDirectoryW
GlobalLock
CloseHandle
SetLastError
GetCurrentProcess
FindClose
GetStringTypeA
GetFileAttributesW
LocalFlags
SetCommBreak
DeviceIoControl
user32
IsZoomed
LoadCursorA
PeekMessageW
IsWindow
GetWindowLongW
SetCursorPos
DefDlgProcW
DispatchMessageA
GetWindowTextW
PostMessageW
IsDialogMessageA
wsprintfW
SetFocus
msorcl32
SQLConnect
SQLDisconnect
SQLError
SQLCancel
ntshrui
IsPathSharedA
Sections
.text Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 512B - Virtual size: 247KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 400KB - Virtual size: 640KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.import Size: 512B - Virtual size: 384B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ