Static task
static1
Behavioral task
behavioral1
Sample
38d40fba92faaba623e949488265ef392af62da49b7f83251e439006f9394cc8.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
38d40fba92faaba623e949488265ef392af62da49b7f83251e439006f9394cc8.exe
Resource
win10v2004-20220901-en
General
-
Target
38d40fba92faaba623e949488265ef392af62da49b7f83251e439006f9394cc8
-
Size
99KB
-
MD5
136772b628bd07b964c9fe064c6401a8
-
SHA1
7efff12de49a4ee0338da290768e242552c31967
-
SHA256
38d40fba92faaba623e949488265ef392af62da49b7f83251e439006f9394cc8
-
SHA512
9af9832331172f0592eab657fc3e009a89b77ca5d878b7b5ca4c4c1aa5237d33160359fc7ae1c75a1dfce5d5e9dc1eb7db152973b314b0b808630ea739f97b46
-
SSDEEP
1536:23Kvxgh31BJ7m+kLVgragkA4Czatlqa3sApwW3dyq0BiAPUXKQ/vyebBs3a2mjg9:2aJAvaq4CsQlB9Ma4njg9
Malware Config
Signatures
Files
-
38d40fba92faaba623e949488265ef392af62da49b7f83251e439006f9394cc8.exe windows x86
2cf43f87f1afdc222696d65602d55ebd
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
free
_acmdln
strncpy
memset
_adjust_fdiv
_errno
abort
memmove
__set_app_type
__getmainargs
fwrite
__p__fmode
__p__commode
__setusermatherr
sqrt
_exit
fputc
_except_handler3
_onexit
strrchr
calloc
_snprintf
_initterm
_cexit
comdlg32
GetOpenFileNameA
kernel32
GetDateFormatA
GetCPInfo
LCMapStringW
DeviceIoControl
GetStartupInfoW
CompareFileTime
GlobalLock
GetStartupInfoA
GetNumberFormatA
VirtualAlloc
user32
SetPropA
SetDlgItemTextA
OpenClipboard
GetSysColor
CharNextA
GetMenuStringA
SetActiveWindow
IsChild
KillTimer
InvalidateRect
GetTopWindow
GetFocus
EndPaint
DestroyWindow
SetWindowPos
RemoveMenu
DrawFrameControl
comctl32
ImageList_SetImageCount
DestroyPropertySheetPage
ImageList_DragShowNolock
ImageList_GetIcon
ImageList_DrawEx
ImageList_ReplaceIcon
PropertySheetW
InitializeFlatSB
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_EndDrag
ImageList_Remove
PropertySheetA
ImageList_Create
advapi32
RegEnumValueW
GetTokenInformation
CryptReleaseContext
RegOpenKeyW
RegCreateKeyExW
RegCloseKey
CryptGenRandom
RegOpenKeyExA
OpenSCManagerW
RegQueryValueExA
OpenServiceW
AllocateAndInitializeSid
RegDeleteKeyW
GetSecurityDescriptorDacl
ole32
OleGetClipboard
ReleaseStgMedium
CoRevokeClassObject
CreateILockBytesOnHGlobal
OleDraw
GetRunningObjectTable
CoRegisterClassObject
CoReleaseMarshalData
OleInitialize
gdi32
GetCurrentPositionEx
GetCurrentObject
CreateDCW
ExtFloodFill
RestoreDC
GetTextExtentPointW
CreateDCA
DPtoLP
SaveDC
ExtTextOutW
MaskBlt
PolyDraw
Sections
.text Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 9KB - Virtual size: 48KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 19KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ