Static task
static1
Behavioral task
behavioral1
Sample
8383cd7ff050d29baf6f29a9c069315043ad6e08aaadaf6f3a2586a9ff7f6145.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
8383cd7ff050d29baf6f29a9c069315043ad6e08aaadaf6f3a2586a9ff7f6145.exe
Resource
win10v2004-20220812-en
General
-
Target
8383cd7ff050d29baf6f29a9c069315043ad6e08aaadaf6f3a2586a9ff7f6145
-
Size
204KB
-
MD5
81c600df5ec9c88b7bd413c18a6cd390
-
SHA1
c2c2ffe12d751c1a8fbbbaae9de2b2354db45411
-
SHA256
8383cd7ff050d29baf6f29a9c069315043ad6e08aaadaf6f3a2586a9ff7f6145
-
SHA512
6e2150e3ddd40589fa5425deccc9e75b26151b44dfb0214385ff5d1bd64215134d9074dc8f979a0170aa914cfe05b6d37125b5d837900eea0559868ddb5c5fd8
-
SSDEEP
6144:wAkI90+PMwVejsFJBSlYBdEpTF7ED9KqtRm:wA5c9jsHBSGBGpTFgD9KqTm
Malware Config
Signatures
Files
-
8383cd7ff050d29baf6f29a9c069315043ad6e08aaadaf6f3a2586a9ff7f6145.exe windows x86
5ad46c6ab57de626a3a5639a8d00d115
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32
CheckDlgButton
DestroyWindow
TranslateMessage
GetDlgItemInt
GetWindowLongW
SetCursor
DefWindowProcW
GetDesktopWindow
ShowWindow
SetDlgItemInt
GetAsyncKeyState
LoadCursorW
IsWindowVisible
IsRectEmpty
DispatchMessageW
ClientToScreen
SetDlgItemTextW
SendMessageW
PeekMessageW
ReleaseDC
GetDlgItem
EnableWindow
GetDC
CheckRadioButton
GetClientRect
InvalidateRect
CreateDialogParamW
IsWindow
MoveWindow
LoadStringW
SetWindowLongW
GetWindowRect
kernel32
GlobalUnlock
GetModuleHandleA
lstrcpyA
EnterCriticalSection
GetSystemTimeAsFileTime
GetFileSize
SetUnhandledExceptionFilter
GetEnvironmentStringsW
GetVersionExW
CreateEventW
GetTimeZoneInformation
CloseHandle
lstrcpyW
GetFileAttributesW
IsBadCodePtr
LeaveCriticalSection
GetDiskFreeSpaceW
GetPrivateProfileStringW
MultiByteToWideChar
ReleaseSemaphore
GetProfileIntA
VirtualFree
GlobalMemoryStatus
WideCharToMultiByte
GetCurrentThread
GlobalAlloc
GetCurrentProcessId
IsBadReadPtr
GlobalFree
GetFullPathNameW
GetQueuedCompletionStatus
lstrlenW
ReadFile
InterlockedExchange
CreateSemaphoreW
HeapFree
SetEvent
SetThreadPriority
GetThreadPriority
InitializeCriticalSection
SetFilePointer
WaitForSingleObject
InterlockedDecrement
CreateThread
GetTickCount
lstrcmpiW
ResetEvent
lstrcmpW
lstrlenA
GetSystemInfo
MulDiv
DeleteCriticalSection
InterlockedIncrement
DeleteFileW
WriteFile
LoadLibraryW
WaitForMultipleObjects
GetProcessHeap
QueryPerformanceCounter
SetEndOfFile
FreeLibrary
GlobalLock
HeapAlloc
GlobalHandle
GetCurrentProcess
GetModuleFileNameA
CreateFileW
lstrcpynW
GetLastError
IsBadWritePtr
nddeapi
NDdeGetShareSecurityW
NDdeGetShareSecurityA
NDdeIsValidAppTopicListW
NDdeIsValidAppTopicListA
NDdeGetTrustedShareA
NDdeGetTrustedShareW
NDdeGetErrorStringA
cewmdm
DllRegisterServer
DllUnregisterServer
DllGetClassObject
DllCanUnloadNow
Sections
.text Size: 92KB - Virtual size: 92KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 58KB - Virtual size: 57KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 48KB - Virtual size: 2.1MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ