Static task
static1
Behavioral task
behavioral1
Sample
77a797887db76bf06e348b023f2be618ea6a79e33b602d9c509eae138b923e7b.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
77a797887db76bf06e348b023f2be618ea6a79e33b602d9c509eae138b923e7b.exe
Resource
win10v2004-20220812-en
General
-
Target
77a797887db76bf06e348b023f2be618ea6a79e33b602d9c509eae138b923e7b
-
Size
162KB
-
MD5
848ba34060780162ceeab79b55c6599b
-
SHA1
28abc7670ce9b587c0ea90c65d0725c2d2bf5d15
-
SHA256
77a797887db76bf06e348b023f2be618ea6a79e33b602d9c509eae138b923e7b
-
SHA512
10870ed0d2de039c97799bd3e13698ebc131b80cab262ad2d63ab96de93e7d03f258209ce66986479f323df60ced3c81877a1663be64c7bb79473b884bdf788e
-
SSDEEP
3072:9Q+1KSLDTrk5V0XdqCHhDcmsXnyusq0InJGbbAKolmnGIXZOYle3VO:9ISfSV6qeKibq0N0Kolmuc0A
Malware Config
Signatures
Files
-
77a797887db76bf06e348b023f2be618ea6a79e33b602d9c509eae138b923e7b.exe windows x86
b472d46cd7d548da81dbbfb80ca729a2
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
FindClose
GetLastError
FillConsoleOutputCharacterA
LockResource
GlobalAlloc
GetCPInfo
GetProcessWorkingSetSize
lstrcpyW
GetACP
lstrcmpiW
InitializeCriticalSection
GlobalFree
EnumResourceNamesA
lstrcpyA
GetTickCount
FreeEnvironmentStringsW
OutputDebugStringW
WideCharToMultiByte
CreateFileMappingW
lstrlenW
MultiByteToWideChar
GetModuleHandleW
oleacc
LresultFromObject
CreateStdAccessibleObject
advapi32
RegDeleteValueW
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegCloseKey
RegQueryInfoKeyW
RegSetValueExW
ole32
CoRegisterClassObject
CoUninitialize
CoTaskMemFree
CoInitialize
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoRevokeClassObject
CoTaskMemRealloc
StringFromCLSID
psapi
GetProcessMemoryInfo
shell32
SHGetFileInfoW
gdi32
GetOutlineTextMetricsW
GetTextMetricsW
DeleteObject
SelectObject
CreateFontIndirectW
AddFontResourceExW
user32
GetWindowLongA
KillTimer
DispatchMessageW
wsprintfW
CharUpperW
SetTimer
GetMessageW
GetDC
CharNextW
PostThreadMessageW
TranslateMessage
UnregisterClassA
Sections
.text Size: 97KB - Virtual size: 96KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 61KB - Virtual size: 61KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.isete Size: 1024B - Virtual size: 244KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ