Static task
static1
Behavioral task
behavioral1
Sample
c77abffd8a43c76cd6edf12c7ba6273762db2b7f20e7939e4ced8bd7a6d6ca08.exe
Resource
win7-20220812-en
General
-
Target
c77abffd8a43c76cd6edf12c7ba6273762db2b7f20e7939e4ced8bd7a6d6ca08
-
Size
403KB
-
MD5
8494f97d447c1008d3a9bc5739fe9166
-
SHA1
d0af0cc31df396f0f99fcab703121cd86364a4c2
-
SHA256
c77abffd8a43c76cd6edf12c7ba6273762db2b7f20e7939e4ced8bd7a6d6ca08
-
SHA512
e6ac2a4862153893c34185878da010b981743c4d75ce4f28d694b19d8f838b44b5446f300678d647992a94ea0ab2f6ed34d7a4a8281e8b5e1a08e8fc010ac21d
-
SSDEEP
12288:vLFvPVmXPJ+h1/bYRNsKbVbG6nZhocqHDz26WaxI6/owebp4LmXCmYr0UCKlHGx:vLFVfe1C94Uxl4
Malware Config
Signatures
Files
-
c77abffd8a43c76cd6edf12c7ba6273762db2b7f20e7939e4ced8bd7a6d6ca08.exe windows x86
de075cff4bffbff4ef21e9fab4d2490d
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FindNextChangeNotification
GetProcessWorkingSetSize
GetCurrentThreadId
ReplaceFileW
IsBadStringPtrA
CreateEventA
FatalAppExitA
InitAtomTable
CreateNamedPipeW
GetFileAttributesW
EscapeCommFunction
GlobalFlags
GlobalLock
DeleteVolumeMountPointW
_lclose
SetEvent
GlobalMemoryStatus
WaitNamedPipeW
GetCurrencyFormatA
GlobalHandle
GetDiskFreeSpaceA
CreatePipe
SetFileAttributesA
EnumDateFormatsW
GlobalAddAtomW
LeaveCriticalSection
SetVolumeMountPointA
_lwrite
CreateDirectoryW
ExitProcess
GetFileTime
SetLocaleInfoA
GetLogicalDriveStringsA
lstrcpynW
GetNumberFormatA
user32
GetMessageA
DefDlgProcW
CallWindowProcW
GetPriorityClipboardFormat
IsDialogMessageW
GetWindowTextW
UnpackDDElParam
DdeCreateDataHandle
InvalidateRgn
SetWindowLongW
DdeEnableCallback
CharNextExA
DestroyIcon
MapDialogRect
RemovePropA
GetMenuItemCount
DrawEdge
SetCapture
UnregisterHotKey
DeleteMenu
GetClientRect
ToUnicodeEx
CharPrevExA
SetUserObjectSecurity
InflateRect
IsDlgButtonChecked
CloseClipboard
EnumPropsExW
DdeCreateStringHandleA
wvsprintfA
GetCaretBlinkTime
CallNextHookEx
ImpersonateDdeClientWindow
GetClassInfoExW
DdePostAdvise
LoadBitmapA
wvsprintfW
GetLastInputInfo
DdeConnectList
EnumPropsA
TranslateAcceleratorW
BringWindowToTop
SetKeyboardState
GetPropA
CheckMenuRadioItem
SendMessageCallbackW
DeferWindowPos
AppendMenuA
GetUserObjectInformationW
LockWorkStation
TrackPopupMenuEx
GetMessageW
VkKeyScanExA
DdeAccessData
RedrawWindow
IsCharAlphaW
DdeInitializeW
DlgDirListComboBoxA
DlgDirListW
UpdateWindow
TileChildWindows
VkKeyScanW
SetScrollInfo
SendIMEMessageExW
OpenInputDesktop
PostMessageW
DragObject
GetWindowTextLengthA
SetMessageQueue
GetKeyState
FindWindowW
LoadAcceleratorsW
LoadMenuA
IsCharAlphaNumericW
DialogBoxIndirectParamW
CharUpperW
ArrangeIconicWindows
DdeUnaccessData
GetIconInfo
MonitorFromWindow
SetCaretBlinkTime
EnableWindow
InvertRect
ShowCaret
SetClipboardViewer
EnumDesktopWindows
EnumPropsExA
ShowWindowAsync
CheckMenuItem
OpenClipboard
GetComboBoxInfo
RegisterClipboardFormatA
SwapMouseButton
DrawTextA
CharLowerBuffW
MessageBeep
GetSysColor
GetKeyboardState
AdjustWindowRect
CreateCaret
GetMonitorInfoW
SetWindowsHookExA
BroadcastSystemMessageA
TabbedTextOutA
LoadCursorA
DestroyWindow
GetDesktopWindow
shell32
SHGetFileInfoW
Sections
.text Size: 81KB - Virtual size: 81KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 40KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 73KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 202KB - Virtual size: 204KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE