Static task
static1
Behavioral task
behavioral1
Sample
2f2290d29bb28d7b9c5e805ca9bf108efccd9b3544f406d245fb41308c5424c5.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
2f2290d29bb28d7b9c5e805ca9bf108efccd9b3544f406d245fb41308c5424c5.exe
Resource
win10v2004-20220901-en
General
-
Target
2f2290d29bb28d7b9c5e805ca9bf108efccd9b3544f406d245fb41308c5424c5
-
Size
124KB
-
MD5
b8ce8a1b06f74e33e701188d97dca295
-
SHA1
be90a5e90d973a315e6d45116ee8b5dab7d0b99d
-
SHA256
2f2290d29bb28d7b9c5e805ca9bf108efccd9b3544f406d245fb41308c5424c5
-
SHA512
d8c8f27683d3bd50101d580eb8c992873b234e47e3f1b4013e2010c7e19b9fc03de1d95b1d91b9f8ecc5bd396695fedff087ba4604e0caeedaa165d5f2142f3a
-
SSDEEP
3072:tcLlOTFIwb1+bOkW3Z0oAV4T2xCKqJ3HLsQq6950HvcdavjloE:AfbOh3Z1ACKxiHLP
Malware Config
Signatures
Files
-
2f2290d29bb28d7b9c5e805ca9bf108efccd9b3544f406d245fb41308c5424c5.exe windows x86
5525c3553a3df0aae7ba5453074354da
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetPrivateProfileStringA
lstrcpynA
GetPrivateProfileIntA
WritePrivateProfileStringA
lstrcatA
WritePrivateProfileSectionA
GetSystemInfo
GetShortPathNameA
GetFileAttributesA
WriteFile
DeleteFileA
ReadFile
FormatMessageA
GetLastError
GetExitCodeProcess
CreateProcessA
SetFileAttributesA
CopyFileA
GetFullPathNameA
GetPrivateProfileSectionA
GetVersionExA
GetModuleFileNameA
CreateDirectoryA
FreeLibrary
EnumResourceTypesA
LoadLibraryExA
GlobalFree
GlobalUnlock
GlobalLock
GlobalAlloc
SetLastError
MoveFileA
GetTempPathA
GetTempFileNameA
EnumResourceNamesA
EnumResourceLanguagesA
FreeResource
LockResource
LoadResource
SizeofResource
FindResourceExA
_llseek
_lwrite
_lread
GetTickCount
_lclose
GetCurrentDirectoryA
GetSystemTime
MultiByteToWideChar
WideCharToMultiByte
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
FindClose
FindFirstFileA
HeapAlloc
InterlockedDecrement
InterlockedIncrement
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetCPInfo
GetACP
GetOEMCP
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
GetCurrentThreadId
TlsSetValue
lstrlenA
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
RtlUnwind
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
VirtualAlloc
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetProcAddress
LoadLibraryA
GetLocaleInfoA
FlushFileBuffers
GetLocaleInfoW
SetStdHandle
SetFilePointer
lstrcmpA
lstrcmpiA
CreateFileA
CloseHandle
LocalAlloc
lstrcpyA
LocalFree
HeapFree
ExitProcess
TlsAlloc
IsDBCSLeadByte
gdi32
GetStockObject
GetDeviceCaps
GetObjectA
CreateFontIndirectA
DeleteObject
user32
EnableWindow
GetDlgItem
DispatchMessageA
MsgWaitForMultipleObjects
PeekMessageA
MessageBoxA
MessageBeep
wsprintfA
SendDlgItemMessageA
SetFocus
LoadStringA
SendMessageA
ReleaseDC
GetDC
CharNextA
GetSystemMetrics
SetDlgItemTextA
CallWindowProcA
GetDlgItemTextA
IsDlgButtonChecked
GetWindowRect
CheckRadioButton
ShowWindow
GetWindowLongA
SetWindowLongA
GetParent
PostMessageA
CheckDlgButton
CharPrevA
comctl32
DestroyPropertySheetPage
PropertySheetA
CreatePropertySheetPageA
comdlg32
GetOpenFileNameA
GetSaveFileNameA
version
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
Sections
.text Size: 67KB - Virtual size: 67KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 16KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 39KB - Virtual size: 58KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE