Static task
static1
Behavioral task
behavioral1
Sample
10c08a7e1cd4f6561f3996b871831d21c7c4671c9dc42176c8f560e8c515f8d2.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
10c08a7e1cd4f6561f3996b871831d21c7c4671c9dc42176c8f560e8c515f8d2.exe
Resource
win10v2004-20220812-en
General
-
Target
10c08a7e1cd4f6561f3996b871831d21c7c4671c9dc42176c8f560e8c515f8d2
-
Size
101KB
-
MD5
938c7d4f427acd69dd6abec4bec057f0
-
SHA1
3485e7af280bd22a722da73d23c44f8a2bc93650
-
SHA256
10c08a7e1cd4f6561f3996b871831d21c7c4671c9dc42176c8f560e8c515f8d2
-
SHA512
6d7d8ceeb4756663102672128727bb634ce085b9a1b2933f4b9539f863c9d79b747af22a9be22b18a409f40719239e232cfaf078b8325f5e5ee0d3e42880ff67
-
SSDEEP
1536:psVf7OROPcnwjtqTtoQdS76vRA5Kkr4mmGtbOMWX4Q8Ry96:2VT8OPcwOVZ2rOGthG4rR6
Malware Config
Signatures
Files
-
10c08a7e1cd4f6561f3996b871831d21c7c4671c9dc42176c8f560e8c515f8d2.exe windows x86
f41c9056647c54df44c371c2c8652016
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
msi
ord124
user32
SetActiveWindow
kernel32
FormatMessageW
HeapReAlloc
RtlUnwind
Sleep
GetCommandLineA
GetVersionExA
GetModuleHandleW
lstrcmpA
VirtualAlloc
GetCurrentThread
GetEnvironmentStringsW
HeapDestroy
SizeofResource
GetFileAttributesW
GetModuleHandleA
LocalAlloc
WriteFile
LoadResource
TlsFree
HeapSize
GetOEMCP
LeaveCriticalSection
GetModuleFileNameA
ExitProcess
GetStringTypeW
InterlockedExchange
LoadLibraryA
GetSystemInfo
ReadFile
FreeLibrary
MultiByteToWideChar
lstrlenA
GetVersionExW
LCMapStringW
WaitForSingleObject
InterlockedCompareExchange
EnterCriticalSection
WaitForSingleObjectEx
LoadLibraryW
SetEndOfFile
FindClose
LocalFree
SetHandleCount
FreeEnvironmentStringsW
CreateFileA
lstrlenW
HeapCreate
IsProcessorFeaturePresent
HeapAlloc
HeapFree
FindFirstFileW
InitializeCriticalSection
WideCharToMultiByte
DeleteCriticalSection
GetCommandLineW
IsDebuggerPresent
GetCurrentProcessId
GetEnvironmentStrings
GetTickCount
GetPriorityClass
GetProcessVersion
HeapSetInformation
GetStartupInfoW
SetUnhandledExceptionFilter
GetProcAddress
DecodePointer
GetStdHandle
GetModuleFileNameW
InitializeCriticalSectionAndSpinCount
GetFileType
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
QueryPerformanceCounter
GetSystemTimeAsFileTime
FatalAppExitA
SetConsoleCtrlHandler
GetLocaleInfoW
UnhandledExceptionFilter
TerminateProcess
GetCurrentProcess
GetCPInfo
GetACP
IsValidCodePage
Sections
.text Size: 83KB - Virtual size: 82KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ