Static task
static1
Behavioral task
behavioral1
Sample
c5b2da93bf6bbda2806dc5d0679c65acac81d175be9ba48cc8836ce96afa1bb9.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
c5b2da93bf6bbda2806dc5d0679c65acac81d175be9ba48cc8836ce96afa1bb9.exe
Resource
win10v2004-20220901-en
General
-
Target
c5b2da93bf6bbda2806dc5d0679c65acac81d175be9ba48cc8836ce96afa1bb9
-
Size
1.2MB
-
MD5
0e861e4862d0ec6093e23ebbb63966f0
-
SHA1
e9482dbcf01480c0817a966b1f5644b6895de48d
-
SHA256
c5b2da93bf6bbda2806dc5d0679c65acac81d175be9ba48cc8836ce96afa1bb9
-
SHA512
29f9752c8eb5f16151336e842bb98eafcfc130ffc3cadb5fc1ad7277d7dd81fa820fbf8f7ba07794f04dc9f5db7a6f49a947cc784f63d00da2594cd8792b0a72
-
SSDEEP
24576:y950rlH+cNBFrwChhs/FPSML1tyJOMVIoPaGT:050rlH1HGPTL1tyJO+aU
Malware Config
Signatures
Files
-
c5b2da93bf6bbda2806dc5d0679c65acac81d175be9ba48cc8836ce96afa1bb9.exe windows x86
c7e32103ceba65528c8a40329363f630
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
version
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
bmaframe
CreateBMAFramework
CreateXmlConfigParse
kernel32
GetCommandLineW
SetHandleCount
GetStdHandle
GetStartupInfoA
GetEnvironmentVariableA
GetVersionExA
GetEnvironmentStrings
GetCommandLineA
VirtualFree
VirtualAlloc
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
IsBadCodePtr
HeapDestroy
HeapCreate
FreeEnvironmentStringsA
CompareStringA
CompareStringW
SetEnvironmentVariableW
GetDriveTypeA
GetACP
GetOEMCP
SetEnvironmentVariableA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetStringTypeA
HeapReAlloc
GlobalReAlloc
UnhandledExceptionFilter
HeapSize
SetStdHandle
TerminateProcess
GetFileType
GetLocalTime
RaiseException
HeapAlloc
GetSystemTime
GetTimeZoneInformation
ExitProcess
HeapFree
RtlUnwind
GetStartupInfoW
SetErrorMode
GetCurrentDirectoryW
FindResourceExW
GetProcessVersion
SystemTimeToFileTime
LocalFileTimeToFileTime
TlsSetValue
TlsGetValue
LocalReAlloc
GetStringTypeW
TlsFree
LeaveCriticalSection
Sleep
MultiByteToWideChar
SetEvent
CreateThread
WaitForSingleObject
DeleteCriticalSection
InitializeCriticalSection
GetPrivateProfileSectionW
FindFirstFileW
FindClose
GetFileAttributesW
SetFileAttributesW
WritePrivateProfileStringW
GetPrivateProfileStringW
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
DeleteFileW
RemoveDirectoryW
GetTickCount
GetTempPathW
CreateDirectoryW
GetLastError
WriteFile
GetFileSize
ReadFile
CreateFileW
CloseHandle
lstrlenW
lstrcmpiW
FindResourceW
LoadResource
LockResource
GetCPInfo
lstrlenA
GetVersion
GetVersionExW
GetModuleFileNameW
GetPrivateProfileIntW
GlobalHandle
TlsAlloc
LocalAlloc
GlobalFlags
GetDiskFreeSpaceW
SizeofResource
GetProfileStringA
GlobalAddAtomA
FindResourceA
GlobalGetAtomNameW
lstrcmpW
SetFileTime
GetTempFileNameW
GetCurrentThread
GlobalAlloc
lstrcmpiA
GetThreadLocale
GetShortPathNameW
GetVolumeInformationW
GetStringTypeExW
GetFullPathNameW
SetEndOfFile
LoadLibraryW
MoveFileW
FlushFileBuffers
UnlockFile
LockFile
DuplicateHandle
SetFilePointer
GetCurrentProcess
lstrcmpA
SetLastError
MulDiv
FormatMessageW
FileTimeToLocalFileTime
FileTimeToSystemTime
LoadLibraryA
LocalFree
GetModuleHandleA
GlobalAddAtomW
FreeLibrary
GetCurrentThreadId
GetModuleHandleW
GlobalFindAtomW
GlobalDeleteAtom
GlobalUnlock
GetProcAddress
GlobalLock
lstrcpyW
GlobalFree
lstrcpynW
IsBadWritePtr
lstrcatW
IsBadReadPtr
GetModuleFileNameA
CreateEventW
GetFileTime
FindNextFileW
EnterCriticalSection
user32
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
LoadCursorW
LoadMenuW
TranslateAcceleratorW
LoadAcceleratorsW
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
MapDialogRect
GetAsyncKeyState
LoadStringW
CharUpperW
SetRectEmpty
ValidateRect
GetCursorPos
EndPaint
BeginPaint
GetWindowDC
DestroyMenu
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
SendDlgItemMessageA
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
CharNextW
GetDCEx
MessageBoxW
IsChild
WinHelpW
GetClassInfoW
RegisterClassW
GetMenu
TrackPopupMenu
GetWindowTextLengthW
GetWindowTextW
GetDlgCtrlID
CreateWindowExW
SetWindowsHookExW
CallNextHookEx
SetPropW
UnhookWindowsHookEx
GetPropW
CallWindowProcW
DefWindowProcW
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SetWindowLongW
SetWindowPos
RegisterWindowMessageW
IntersectRect
IsIconic
GetWindowPlacement
EndDialog
SetParent
IsWindow
CreateDialogIndirectParamW
DestroyWindow
GetDlgItem
IsWindowEnabled
DrawIcon
LoadIconW
PtInRect
GetMessagePos
ScreenToClient
KillTimer
GetCapture
ReleaseCapture
MapWindowPoints
SetTimer
SetCapture
DrawFrameControl
GetWindow
GetClassNameW
IsRectEmpty
GetMessageW
PostThreadMessageW
PeekMessageW
SetMenu
GetKeyState
LockWindowUpdate
CopyAcceleratorTableW
GetNextDlgGroupItem
RegisterClipboardFormatW
GetTopWindow
SetActiveWindow
MessageBeep
TranslateMessage
DispatchMessageW
GetFocus
GetCaretPos
keybd_event
wsprintfW
UpdateWindow
LoadImageW
GetClientRect
FrameRect
InflateRect
OffsetRect
DrawFocusRect
GetWindowRect
PostMessageW
ClientToScreen
WindowFromPoint
GetActiveWindow
SetCursor
GetParent
GetNextDlgTabItem
IsMenu
GetWindowLongW
GetSubMenu
GrayStringW
DrawTextW
TabbedTextOutW
DeleteMenu
LoadBitmapW
GetSysColorBrush
GetMenuStringW
GetMenuItemID
GetMenuState
ModifyMenuW
GetMenuItemCount
InsertMenuW
GetSystemMetrics
GetDesktopWindow
GetDC
ReleaseDC
DestroyIcon
SystemParametersInfoW
GetSysColor
CopyRect
FillRect
SetRect
EnableWindow
InvalidateRect
SendMessageW
RemovePropW
SendDlgItemMessageW
DefWindowProcA
UnregisterClassW
GetWindowTextLengthA
HideCaret
ShowCaret
ExcludeUpdateRgn
GetWindowTextA
DrawTextA
GetClassInfoA
DefDlgProcA
GetPropA
CharNextA
CallWindowProcA
RemovePropA
SetWindowsHookExA
GetWindowLongA
SendMessageA
IsWindowUnicode
GetClassNameA
SetWindowLongA
SetPropA
gdi32
CreatePen
CreateCompatibleBitmap
SetMapMode
GetTextExtentPoint32W
OffsetViewportOrgEx
CreateDIBitmap
SetViewportOrgEx
ScaleViewportExtEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
IntersectClipRect
SelectClipRgn
MoveToEx
LineTo
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
GetMapMode
SetRectRgn
DPtoLP
StretchDIBits
CombineRgn
EnumFontFamiliesExW
GetTextColor
GetCharWidthW
LPtoDP
GetBkColor
GetTextExtentPointA
BitBlt
RestoreDC
CreateRectRgnIndirect
GetClipBox
CreateFontW
GetTextMetricsW
CreateBitmap
SetBkColor
SetBkMode
CreateFontIndirectW
GetStockObject
SetTextColor
Rectangle
Escape
TextOutW
PatBlt
ExtTextOutW
PtVisible
GetObjectW
RectVisible
CreateDIBSection
DeleteObject
DeleteDC
SelectObject
SaveDC
CreateCompatibleDC
ExtTextOutA
GetDeviceCaps
CreateSolidBrush
comdlg32
GetFileTitleW
GetSaveFileNameW
GetOpenFileNameW
winspool.drv
OpenPrinterW
DocumentPropertiesW
ClosePrinter
advapi32
RegQueryValueW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegCreateKeyExW
RegCreateKeyW
RegEnumValueW
RegOpenKeyW
RegEnumKeyW
GetFileSecurityW
RegSetValueW
RegSetValueExW
RegDeleteValueW
SetFileSecurityW
shell32
ExtractIconW
DragQueryFileW
SHGetFileInfoW
DragFinish
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetMalloc
ShellExecuteExW
comctl32
ImageList_AddMasked
ImageList_Draw
ImageList_GetIconSize
_TrackMouseEvent
ImageList_DrawEx
ImageList_BeginDrag
ImageList_DragMove
ImageList_EndDrag
ImageList_DragLeave
ImageList_DragShowNolock
ImageList_DragEnter
ord17
ImageList_Destroy
ImageList_Create
ImageList_LoadImageW
PropertySheetW
DestroyPropertySheetPage
CreatePropertySheetPageW
oledlg
OleUIBusyW
ole32
CLSIDFromString
CoUninitialize
CoInitialize
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
StgOpenStorageOnILockBytes
CoGetClassObject
CoTaskMemAlloc
CoFreeUnusedLibraries
CLSIDFromProgID
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
OleInitialize
OleUninitialize
CoCreateInstance
OleRun
olepro32
ord253
oleaut32
SysStringLen
GetErrorInfo
VariantTimeToSystemTime
SysAllocStringLen
VariantCopy
VariantChangeType
SysFreeString
SysAllocString
VariantInit
VariantClear
Sections
.text Size: 388KB - Virtual size: 385KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 204KB - Virtual size: 201KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 32KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 580KB - Virtual size: 579KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ