Static task
static1
Behavioral task
behavioral1
Sample
15de3fc903d7dad15dc4e52fbf3096c306d507f61388072ed286cacdae1adfe7.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
15de3fc903d7dad15dc4e52fbf3096c306d507f61388072ed286cacdae1adfe7.exe
Resource
win10v2004-20220901-en
General
-
Target
15de3fc903d7dad15dc4e52fbf3096c306d507f61388072ed286cacdae1adfe7
-
Size
632KB
-
MD5
071b93c333150dd4ca3c0b157ab40f21
-
SHA1
0181f37a3064e717e71e82ad8d858905be5a40ca
-
SHA256
15de3fc903d7dad15dc4e52fbf3096c306d507f61388072ed286cacdae1adfe7
-
SHA512
9bf1d4214e1cf9ff9782675edfa6b12cc30f3b91ae38a808c76f4340cf2f8631aef55a1b89d6eef60ed141b035bb0f223357ea2525c1853281a976e05514153b
-
SSDEEP
12288:3FCNyr3SyPGyEKKSk+2SmeDuUle19C2EB0NxDIBuOFe7/uT:D2zZ+25PfC2DtIoOFdT
Malware Config
Signatures
Files
-
15de3fc903d7dad15dc4e52fbf3096c306d507f61388072ed286cacdae1adfe7.exe windows x86
015c0d38806b072ae6f3b9dbc77b696f
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
version
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
kernel32
GlobalFlags
GetModuleFileNameW
InterlockedDecrement
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
InterlockedIncrement
ReadFile
SetFilePointer
SetEndOfFile
GetThreadLocale
lstrcmpW
GlobalFindAtomA
GlobalGetAtomNameA
SetErrorMode
GetCPInfo
GetOEMCP
RtlUnwind
UnhandledExceptionFilter
GlobalUnlock
IsDebuggerPresent
RaiseException
ExitProcess
HeapReAlloc
VirtualAlloc
GetTimeFormatA
GetDateFormatA
GetSystemTimeAsFileTime
HeapSize
SetStdHandle
GetFileType
GetACP
LCMapStringA
LCMapStringW
GetStdHandle
VirtualFree
HeapDestroy
HeapCreate
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetCurrentProcessId
LocalAlloc
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
FindResourceA
SizeofResource
GlobalLock
OpenMutexA
FindResourceExA
LoadResource
LockResource
GetUserDefaultLangID
LocalFree
GetStartupInfoA
CreateProcessA
GetExitCodeProcess
WaitForSingleObject
TerminateProcess
FlushFileBuffers
GlobalAlloc
GlobalFree
HeapFree
GetProcessHeap
HeapAlloc
GetPrivateProfileStringA
GetFileTime
CompareFileTime
WritePrivateProfileStringA
lstrcmpA
GetDriveTypeA
GetSystemDefaultLangID
GetVersionExA
GetSystemDirectoryA
GetShortPathNameA
GetLocaleInfoA
InitializeCriticalSection
GetFileSize
GetCommandLineA
DeleteCriticalSection
QueryPerformanceCounter
QueryPerformanceFrequency
WriteFile
OutputDebugStringA
CreateFileA
GetEnvironmentVariableA
lstrlenA
CompareStringW
CompareStringA
GetVersion
WideCharToMultiByte
MultiByteToWideChar
InterlockedExchange
SetLastError
CreateDirectoryA
SetEnvironmentVariableA
FormatMessageA
Sleep
GetTempPathA
CreateMutexA
CloseHandle
GetWindowsDirectoryA
FindFirstFileA
FindNextFileA
FindClose
GlobalAddAtomA
GlobalDeleteAtom
GetProcAddress
GetCurrentProcess
FreeLibrary
LoadLibraryA
GetCurrentThreadId
GetTickCount
GetCurrentDirectoryA
SetCurrentDirectoryA
GetLastError
EnterCriticalSection
LeaveCriticalSection
GetModuleHandleA
GetModuleFileNameA
GetFullPathNameA
GetFileAttributesA
SetUnhandledExceptionFilter
user32
UnregisterClassA
DestroyMenu
LoadCursorA
GetSysColorBrush
LoadIconA
WinHelpA
GetCapture
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetForegroundWindow
GetClientRect
GetMenu
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
CopyRect
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
IsIconic
GetWindowPlacement
SetWindowPos
ShowWindow
SetWindowLongA
GetDlgItem
AdjustWindowRectEx
GetSysColor
GetDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
UnhookWindowsHookEx
ClientToScreen
GetWindow
GetDlgCtrlID
GetWindowRect
GetClassNameA
PtInRect
GetWindowTextA
GetMenuItemID
GetMenuItemCount
GetSubMenu
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
EnableWindow
SetCursor
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetFocus
GetParent
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
IsWindow
MessageBoxA
WaitForInputIdle
MsgWaitForMultipleObjects
PostQuitMessage
GetWindowThreadProcessId
SetWindowTextA
GetSystemMetrics
PeekMessageA
TranslateMessage
DispatchMessageA
PostMessageA
SendMessageA
RegisterWindowMessageA
ReleaseDC
gdi32
DeleteDC
GetStockObject
GetClipBox
SetMapMode
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetDeviceCaps
CreateBitmap
SetTextColor
SetBkColor
RestoreDC
SaveDC
DeleteObject
winspool.drv
DeletePortA
DocumentPropertiesA
ClosePrinter
OpenPrinterA
advapi32
RegQueryValueA
RegEnumKeyA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyA
RegSetValueExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
shlwapi
PathFindFileNameA
PathFindExtensionA
oleaut32
VariantChangeType
VariantClear
VariantInit
ws2_32
WSAStartup
gethostbyname
inet_ntoa
gethostbyaddr
WSACleanup
WSAGetLastError
Sections
.text Size: 240KB - Virtual size: 237KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 60KB - Virtual size: 59KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 12KB - Virtual size: 98KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 72KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.tc Size: 244KB - Virtual size: 244KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE