Static task
static1
Behavioral task
behavioral1
Sample
f416b246f1fe8149fc518e28be5a46ae9288fd4c5cb5116b56165fc9fa7186d5.exe
Resource
win7-20220901-en
General
-
Target
f416b246f1fe8149fc518e28be5a46ae9288fd4c5cb5116b56165fc9fa7186d5
-
Size
79KB
-
MD5
0811bf7c4c169d231db0fda176c65ae0
-
SHA1
d800a5f37008ae563357a8b4ee8fd150534986f4
-
SHA256
f416b246f1fe8149fc518e28be5a46ae9288fd4c5cb5116b56165fc9fa7186d5
-
SHA512
eefdd7c4cfacc5c38c6514d924974111d08cfd4f709efe6399ac00d663f52d31801ecbb9ee11b0b0079e52338fc5f2629288b86ed8e4ff10f899dfeefca71e39
-
SSDEEP
1536:FsmKX61eItQJJ8Dkk6gU0VQ4o7eNybBGHEu75sdUwEeQgR/DMjvQ:FsmzAIHFjS4o7eybBWH+y2QmLM
Malware Config
Signatures
Files
-
f416b246f1fe8149fc518e28be5a46ae9288fd4c5cb5116b56165fc9fa7186d5.exe windows x86
0d9ec08327e50ae9ad237eaa519f5574
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCPInfo
HeapAlloc
VirtualAlloc
HeapReAlloc
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
RtlUnwind
GetLocaleInfoA
VirtualProtect
GetSystemInfo
VirtualQuery
GetOEMCP
GetACP
LoadLibraryA
HeapFree
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
GetLastError
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetModuleFileNameA
GetStdHandle
WriteFile
GetProcAddress
ExitProcess
GetVersionExA
CloseHandle
CreateMutexA
GetFileAttributesA
SetLastError
SetFileAttributesA
DeleteFileA
GetCurrentProcess
FindClose
FindNextFileA
FindFirstFileA
GetWindowsDirectoryA
WritePrivateProfileStringA
GetShortPathNameA
CreateFileA
MoveFileExA
SetFilePointer
SetStdHandle
FlushFileBuffers
ReadFile
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
advapi32
OpenProcessToken
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegGetKeySecurity
GetLengthSid
InitializeAcl
AddAccessAllowedAce
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
RegQueryValueExA
RegEnumValueA
RegEnumKeyExA
RegOpenKeyExA
AllocateAndInitializeSid
RegCloseKey
GetTokenInformation
EqualSid
FreeSid
user32
EndDialog
ShowWindow
MessageBoxA
DialogBoxParamA
SetDlgItemTextA
GetDlgItem
SetWindowTextA
setupapi
SetupOpenInfFileA
SetupDiEnumDeviceInterfaces
SetupDiSetClassInstallParamsA
SetupPromptReboot
SetupDiEnumDeviceInfo
SetupFindNextLine
SetupFindFirstLineA
SetupGetStringFieldA
SetupCloseInfFile
SetupDiGetDeviceInterfaceDetailA
SetupDiGetDeviceRegistryPropertyA
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiOpenClassRegKeyExA
SetupDiGetDeviceInstallParamsA
SetupDiCallClassInstaller
Sections
.text Size: 48KB - Virtual size: 47KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 2KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE