?ForwardControlItem@@YGK_KK:O
Static task
static1
Behavioral task
behavioral1
Sample
e7382daab8082c17782a1f0a8cf5b9e7d1aa7146b2e5a6695c90a176f2563787.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
e7382daab8082c17782a1f0a8cf5b9e7d1aa7146b2e5a6695c90a176f2563787.exe
Resource
win10v2004-20220812-en
General
-
Target
e7382daab8082c17782a1f0a8cf5b9e7d1aa7146b2e5a6695c90a176f2563787
-
Size
185KB
-
MD5
846ff0d77d8365e3d896050a27c044d0
-
SHA1
75734d1ca60c7aa5f6dee6339441434ebcb40b54
-
SHA256
e7382daab8082c17782a1f0a8cf5b9e7d1aa7146b2e5a6695c90a176f2563787
-
SHA512
08a5c551e92153697387a266ef754a2d41247d1cd7fee5d49c8a683082cbc24718060bfad5c4bb2ebf9781ec807de3c9f742023de9d9299232ecaa16118d6f00
-
SSDEEP
3072:yuimowmwznbyWgtRB/S9O1rV/nVWqegr5yeW4SmKjmGYdPBS:yZmorwzmlykMq5Tz4m/PBS
Malware Config
Signatures
Files
-
e7382daab8082c17782a1f0a8cf5b9e7d1aa7146b2e5a6695c90a176f2563787.exe windows x86
f19523f512333622296bb4c45204fb3d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32
ShowWindow
IsCharLowerA
CheckDlgButton
LoadImageW
GetKeyboardType
LoadStringW
GetWindowPlacement
LoadMenuW
GetClientRect
SetWindowRgn
RegisterClassW
TranslateAcceleratorW
SetForegroundWindow
CharToOemA
SetLastErrorEx
DestroyCursor
DestroyIcon
LoadStringA
GetWindowRect
GetDCEx
GetMenuItemCount
TileWindows
ChildWindowFromPointEx
IsDlgButtonChecked
GetParent
ShowOwnedPopups
CreateAcceleratorTableW
DefDlgProcA
TrackPopupMenu
GetPropW
GetScrollRange
WaitMessage
GetUpdateRect
DestroyAcceleratorTable
LoadAcceleratorsW
DispatchMessageW
LockWindowUpdate
FrameRect
CreateWindowExW
GetWindowDC
CharNextA
SetDlgItemTextA
GetClassInfoW
ReleaseDC
FindWindowExW
BeginPaint
GetMenuItemID
IsDialogMessageW
IsChild
GetMenu
OemToCharA
GetMenuStringW
WindowFromPoint
EnumThreadWindows
SetPropW
TranslateAcceleratorA
FillRect
InSendMessageEx
InsertMenuW
SetWindowTextA
GetClassNameW
UnloadKeyboardLayout
LoadMenuA
GetMessagePos
LoadBitmapW
EnableMenuItem
MapVirtualKeyW
SendDlgItemMessageA
CharNextW
DrawFocusRect
GetUserObjectInformationA
BringWindowToTop
CreateIconFromResource
GetFocus
GetDialogBaseUnits
CharUpperBuffW
GetClipCursor
DrawFrameControl
GetMessageTime
SetScrollInfo
SwitchToThisWindow
SetMenu
DestroyWindow
GetForegroundWindow
AppendMenuW
SetDlgItemInt
MapVirtualKeyA
ArrangeIconicWindows
MessageBoxExA
WaitForInputIdle
CharLowerA
GetShellWindow
GetUpdateRgn
LoadAcceleratorsA
GetMonitorInfoW
OpenDesktopW
GetTopWindow
GetIconInfo
RegisterWindowMessageW
CreateDialogParamW
TabbedTextOutW
ToUnicodeEx
GetSubMenu
InsertMenuItemW
ScrollWindowEx
DefWindowProcW
CheckRadioButton
DrawTextExW
CharLowerBuffW
SetActiveWindow
ChangeMenuW
GetWindowLongW
SetScrollPos
SystemParametersInfoA
GetScrollInfo
MessageBoxA
CallWindowProcW
MonitorFromPoint
RegisterHotKey
DeleteMenu
kernel32
GetComputerNameExW
lstrlenW
GetTimeFormatA
GetDateFormatW
ResumeThread
GetDateFormatA
FindResourceW
HeapWalk
lstrcatA
FindNextChangeNotification
CreateEventW
CreateDirectoryW
GetVersion
SetCommBreak
LeaveCriticalSection
CreateMailslotW
GetOEMCP
FoldStringW
CreateFileMappingA
GetShortPathNameA
LockFile
GetCommandLineW
lstrcpyA
GetThreadTimes
SetFileApisToOEM
GetStringTypeExW
WaitCommEvent
GetComputerNameW
GlobalAddAtomA
LocalAlloc
GetModuleHandleW
GetExitCodeThread
VerifyVersionInfoW
GetUserDefaultUILanguage
FlushViewOfFile
SetThreadLocale
IsBadWritePtr
GetStdHandle
CancelIo
SizeofResource
GetVersionExA
SetCommState
lstrlenA
GlobalMemoryStatusEx
GetFullPathNameA
GetWindowsDirectoryW
GetModuleHandleA
DuplicateHandle
WaitForMultipleObjectsEx
GetCurrentThreadId
CreateRemoteThread
CreateFileA
GetACP
LocalSize
DeleteFileA
shlwapi
PathIsUNCA
msvcrt
wcstok
system
isxdigit
getenv
isalnum
wcsncmp
strspn
sprintf
_controlfp
wcsncpy
puts
__set_app_type
wcstod
gets
realloc
free
__p__fmode
__p__commode
clearerr
strpbrk
_amsg_exit
wcsrchr
wcscspn
memset
fclose
wcscpy
_initterm
malloc
_ismbblead
isprint
_XcptFilter
setlocale
time
ungetc
localtime
strstr
bsearch
_exit
vswprintf
remove
tolower
iswctype
strchr
isspace
ftell
towlower
_cexit
mbtowc
__setusermatherr
__getmainargs
Exports
Exports
Sections
.text Size: 21KB - Virtual size: 21KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.ips1 Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ips2 Size: 512B - Virtual size: 88B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.read Size: 512B - Virtual size: 184KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.ips3 Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ips4 Size: 41KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 107KB - Virtual size: 107KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ