Static task
static1
Behavioral task
behavioral1
Sample
155dc34b3dd943d77caa54d1a00c55cb7e58da86dad851183829517628bed867.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
155dc34b3dd943d77caa54d1a00c55cb7e58da86dad851183829517628bed867.exe
Resource
win10v2004-20220901-en
General
-
Target
155dc34b3dd943d77caa54d1a00c55cb7e58da86dad851183829517628bed867
-
Size
354KB
-
MD5
55b7e6990cb24971b047df07e894cece
-
SHA1
a4c9485135dc55eeeafc0046a040f08e744faa49
-
SHA256
155dc34b3dd943d77caa54d1a00c55cb7e58da86dad851183829517628bed867
-
SHA512
811c951a6087542ad50a8dd8afb346f464ff5a6b131acb92fe1a29dc03a779609704b994181823777d3eddddda2359ed74f93ab0211d3ab3a6d6da4d31d5fe5d
-
SSDEEP
6144:PaU6SDTU0rfYPqYh8APGnRyV0N/RlP0bNSvuGgN9d:Pe0rwPqG8AeRyV0bQNSw
Malware Config
Signatures
Files
-
155dc34b3dd943d77caa54d1a00c55cb7e58da86dad851183829517628bed867.exe windows x86
90cafb871661c6023603c021cc741aa5
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
InitializeCriticalSectionAndSpinCount
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
HeapSize
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
SetFilePointer
ReadFile
FlushFileBuffers
GetConsoleMode
GetConsoleCP
WriteFile
GetFileType
GetStdHandle
SetHandleCount
HeapReAlloc
VirtualAlloc
VirtualFree
WriteConsoleA
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetModuleHandleW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
LCMapStringW
GetConsoleOutputCP
WriteConsoleW
SetStdHandle
GetLocaleInfoW
GetConsoleTitleA
GetCurrentProcessId
GetTickCount
SetConsoleTitleA
Sleep
GetProcAddress
GetConsoleWindow
GetLocalTime
GetTimeZoneInformation
TzSpecificLocalTimeToSystemTime
HeapAlloc
SystemTimeToFileTime
CompareFileTime
FormatMessageA
LocalFree
MultiByteToWideChar
LCMapStringA
WideCharToMultiByte
CloseHandle
WTSGetActiveConsoleSessionId
SetEvent
LoadLibraryA
CreateFileA
DeviceIoControl
GetLastError
ExitProcess
GetStartupInfoA
GetCommandLineA
RtlUnwind
HeapFree
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
InterlockedDecrement
InterlockedIncrement
GetModuleHandleA
HeapCreate
user32
MoveWindow
TranslateMessage
TranslateMDISysAccel
AdjustWindowRectEx
GetWindowLongA
GetWindowRect
GetUpdateRect
GetDlgItem
TranslateAcceleratorA
PeekMessageA
DialogBoxParamA
PostMessageA
DefWindowProcA
PostQuitMessage
WaitMessage
SendMessageA
SetClassLongA
LoadStringW
CreatePopupMenu
AppendMenuW
GetMessagePos
SetForegroundWindow
TrackPopupMenuEx
DestroyMenu
GetIconInfo
GetMenuCheckMarkDimensions
GetSysColor
GetDC
GetClientRect
wsprintfA
FindWindowA
SetWindowPos
ReleaseDC
MessageBeep
GetMenu
CreateMenu
SetMenu
SetCapture
InvalidateRect
BeginPaint
EndPaint
SetWindowLongA
CreateWindowExA
DefDlgProcA
DrawTextA
ShowWindow
UpdateWindow
EndDialog
MessageBoxA
KillTimer
SetTimer
EnableMenuItem
CheckMenuItem
gdi32
GetEnhMetaFileHeader
GetObjectA
CreateDIBSection
CreateCompatibleDC
BitBlt
DeleteDC
SetTextColor
GetPixel
GetStockObject
CreateSolidBrush
CreatePen
Rectangle
SelectObject
GetStretchBltMode
SetStretchBltMode
StretchBlt
DeleteObject
GetGlyphOutlineA
GetGraphicsMode
GetGlyphIndicesA
GetFontUnicodeRanges
GetEnhMetaFilePaletteEntries
winspool.drv
ConnectToPrinterDlg
advapi32
RegQueryValueExA
RegCloseKey
LogonUserA
ImpersonateLoggedOnUser
DuplicateTokenEx
RegOpenKeyExA
RegEnumKeyExA
SetServiceStatus
shell32
SHGetFolderPathW
SHGetFolderPathA
ole32
CoCreateInstance
CoCreateGuid
StringFromGUID2
CoInitialize
oleaut32
VariantClear
VariantInit
ws2_32
ntohs
inet_ntoa
psapi
EnumPageFilesA
winmm
mciSendStringA
iphlpapi
GetTcpTable
opengl32
glEndList
uxtheme
HitTestThemeBackground
IsThemeBackgroundPartiallyTransparent
tapi32
lineAddToConference
wlanapi
WlanEnumInterfaces
WlanOpenHandle
Sections
.text Size: 127KB - Virtual size: 127KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 36KB - Virtual size: 35KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 7KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 173KB - Virtual size: 173KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ