Static task
static1
Behavioral task
behavioral1
Sample
156639ff04aca62f7199814e82295fc79e89e7d0bb4713db205b7c45bc039fff.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
156639ff04aca62f7199814e82295fc79e89e7d0bb4713db205b7c45bc039fff.exe
Resource
win10v2004-20220901-en
General
-
Target
156639ff04aca62f7199814e82295fc79e89e7d0bb4713db205b7c45bc039fff
-
Size
55KB
-
MD5
82408a3014fa6afb1739538d4db71d51
-
SHA1
031f2ce6cb4b2e98bf3a2d90a02928cdc52dab88
-
SHA256
156639ff04aca62f7199814e82295fc79e89e7d0bb4713db205b7c45bc039fff
-
SHA512
a743f640c7e27768b7286ddc5b23dcafc97b183b4fea165e48bf30d951d6f14cb2cb7f16a21573c1050a36066e15a86a6e80a84bbe31171fed23b1edc47bef06
-
SSDEEP
768:ew+l4RZV8ABVfYGAYzjndWv3ip5v8f5+I3P45gaPezcbXtH7c:f8ABVAGPzt7EfYApoXtY
Malware Config
Signatures
Files
-
156639ff04aca62f7199814e82295fc79e89e7d0bb4713db205b7c45bc039fff.exe windows x86
e93576d1439cbac0c9e70c3b57421cad
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetProcAddress
LoadLibraryA
GetModuleHandleA
WaitForSingleObject
ExitThread
TerminateThread
SignalObjectAndWait
CloseHandle
Sleep
CreateThread
CreateEventA
GetLastError
GetTempPathA
GetModuleFileNameA
GetSystemDirectoryA
ExitProcess
CreateMutexA
GetTickCount
CreateFileA
TerminateProcess
WaitForMultipleObjects
ResumeThread
SetThreadContext
WriteProcessMemory
GetThreadContext
CreateProcessA
GetCommandLineA
HeapFree
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetCPInfo
GetACP
GetOEMCP
LCMapStringA
WideCharToMultiByte
MultiByteToWideChar
LCMapStringW
EnterCriticalSection
LeaveCriticalSection
WriteFile
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetFilePointer
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
RtlUnwind
InitializeCriticalSection
VirtualAlloc
HeapReAlloc
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
FlushFileBuffers
HeapSize
Sections
.text Size: 39KB - Virtual size: 38KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 6KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 176B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ