Static task
static1
Behavioral task
behavioral1
Sample
32510148db3e25a6c19f546b1dc914714faa9bba78cf7e1a3d7f89ed49faa0f4.exe
Resource
win7-20220901-en
General
-
Target
32510148db3e25a6c19f546b1dc914714faa9bba78cf7e1a3d7f89ed49faa0f4
-
Size
200KB
-
MD5
90bdc2d64cf92b0e1126237aa3b7ffde
-
SHA1
c7ad82254c67d1d5052975e72f5cc3d58774932a
-
SHA256
32510148db3e25a6c19f546b1dc914714faa9bba78cf7e1a3d7f89ed49faa0f4
-
SHA512
db629117dd830a0c6caf497c98fbb1c01ee6aedf2142154e4b69fc5e8726ea1aa73bd0c52e8a5d0de3bee2dde1cd9ac2ab7b70b16d332c786cdc3ceb8b52fd64
-
SSDEEP
3072:y2ov2IgBFq258bwwpStpDyAy06moLOEXnVU0UhgfrhUsjESbWr:dR58EwpdTFULKUskr
Malware Config
Signatures
Files
-
32510148db3e25a6c19f546b1dc914714faa9bba78cf7e1a3d7f89ed49faa0f4.exe windows x86
877a7e7cf17dad869bd7f60558582ce8
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetShortPathNameA
MultiByteToWideChar
lstrlenW
InterlockedIncrement
CreateProcessA
LoadLibraryA
lstrcatA
lstrcpyA
GetCommandLineA
GetProcAddress
HeapDestroy
CreateThread
Sleep
CreateEventA
WaitForSingleObject
WideCharToMultiByte
GetLastError
FormatMessageA
LocalFree
InitializeCriticalSection
CloseHandle
InterlockedDecrement
SetEvent
IsDBCSLeadByte
lstrcpynA
lstrcmpiA
LoadLibraryExA
FindResourceA
LoadResource
SizeofResource
FreeLibrary
GetModuleFileNameA
GetModuleHandleA
lstrlenA
GetLocalTime
DeleteCriticalSection
GetCurrentProcess
FlushInstructionCache
GetCurrentThreadId
EnterCriticalSection
WriteFile
IsBadReadPtr
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
SetStdHandle
IsBadCodePtr
SetFilePointer
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetLastError
GlobalUnlock
GlobalLock
lstrcmpA
GlobalFree
GlobalFlags
LocalAlloc
TlsAlloc
GlobalHandle
GlobalReAlloc
GlobalAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GetVersion
GetProcessVersion
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCPInfo
GetOEMCP
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
FlushFileBuffers
LeaveCriticalSection
HeapSize
RtlUnwind
HeapFree
HeapAlloc
HeapReAlloc
GetStartupInfoA
ExitProcess
RaiseException
TerminateProcess
GetACP
GetEnvironmentVariableA
GetVersionExA
HeapCreate
VirtualFree
user32
GetMenuItemID
GetMenuItemCount
IsIconic
IsWindowVisible
SendMessageA
ModifyMenuA
GetMenuState
GetNextDlgTabItem
DefWindowProcA
TabbedTextOutA
GrayStringA
GetClassNameA
PtInRect
GetDlgCtrlID
GetWindow
SetWindowTextA
GetWindowTextA
GetParent
GetFocus
UnhookWindowsHookEx
GetDlgItem
SetWindowPos
IsWindowEnabled
EnableWindow
GetLastActivePopup
SetWindowsHookExA
PeekMessageA
CallNextHookEx
GetKeyState
GetSystemMetrics
GetSysColorBrush
GetWindowPlacement
RegisterWindowMessageA
GetForegroundWindow
GetMessagePos
GetMessageTime
RemovePropA
GetPropA
SetPropA
GetClassLongA
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
AdjustWindowRectEx
CallWindowProcA
CheckMenuItem
SetMenuItemBitmaps
SetWindowLongA
GetWindowLongA
LoadBitmapA
GetMenuCheckMarkDimensions
CheckMenuRadioItem
CreatePopupMenu
RemoveMenu
EnableMenuItem
InsertMenuA
DestroyIcon
SetForegroundWindow
SetMenuDefaultItem
TrackPopupMenu
PostQuitMessage
LoadMenuA
GetSubMenu
LoadIconA
LoadStringA
ClientToScreen
DestroyMenu
MessageBoxA
UpdateWindow
GetMessageA
DispatchMessageA
PostThreadMessageA
CharNextA
FindWindowA
PostMessageA
CreateWindowExA
BeginPaint
ReleaseDC
OffsetRect
MoveWindow
SetWindowRgn
RedrawWindow
GetDC
DrawTextA
InflateRect
EqualRect
SetRectEmpty
GetWindowDC
GetWindowRect
GetDesktopWindow
MapWindowPoints
GetClientRect
KillTimer
LoadCursorA
DestroyWindow
EndPaint
SetFocus
GetCursorPos
GetClassInfoExA
wsprintfA
RegisterClassExA
ShowWindow
SetTimer
GetSysColor
SystemParametersInfoA
gdi32
CreateRectRgn
EqualRgn
CombineRgn
SelectObject
SetBkMode
SetTextColor
ExcludeClipRect
CreateSolidBrush
FrameRgn
CreateFontIndirectA
DeleteObject
DeleteDC
SaveDC
RestoreDC
GetStockObject
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
CreateBitmap
GetObjectA
Escape
TextOutA
RectVisible
PtVisible
GetDeviceCaps
SetViewportOrgEx
SetBkColor
ExtTextOutA
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
advapi32
RegCloseKey
RegDeleteKeyA
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueExA
RegQueryInfoKeyA
RegEnumValueA
RegEnumKeyExA
shell32
Shell_NotifyIconA
ole32
CLSIDFromString
CoCreateInstance
CoRevokeClassObject
CoRegisterClassObject
CoInitialize
CoUninitialize
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
oleaut32
VariantClear
SysStringByteLen
SysStringLen
LoadRegTypeLi
RegisterTypeLi
LoadTypeLi
SysAllocString
VarUI4FromStr
SysAllocStringLen
SysFreeString
comctl32
ord17
winspool.drv
OpenPrinterA
ClosePrinter
DocumentPropertiesA
Sections
.text Size: 88KB - Virtual size: 87KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 20KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 16KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rrdata Size: 68KB - Virtual size: 68KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE