Static task
static1
Behavioral task
behavioral1
Sample
3156f9261533299c039dc2af8cdc392671b215ab80b4447bb47f3227e1d44389.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
3156f9261533299c039dc2af8cdc392671b215ab80b4447bb47f3227e1d44389.exe
Resource
win10v2004-20220901-en
General
-
Target
3156f9261533299c039dc2af8cdc392671b215ab80b4447bb47f3227e1d44389
-
Size
148KB
-
MD5
3e55446457e3c404e486d67a2c218670
-
SHA1
6a60f8e9a59cdbc1f6d19ff059e16b8b581edde5
-
SHA256
3156f9261533299c039dc2af8cdc392671b215ab80b4447bb47f3227e1d44389
-
SHA512
2a9b8d1209a10e77643175322a2e8d668f5c58a69e2bbc44b6080cafd59ca80956f7adda7cd9573a013ac8a78741e13f1d5aefb93a1b3ce6ff5fdcf3514e396c
-
SSDEEP
3072:iJd2bn0Rw7FNGLixt3beIvfcyU5WJIqF:c2b0cHjPvLWqF
Malware Config
Signatures
Files
-
3156f9261533299c039dc2af8cdc392671b215ab80b4447bb47f3227e1d44389.exe windows x86
074428f6332775eb793071c21e71b606
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
GetStartupInfoA
QueryPerformanceCounter
GetStartupInfoW
CompareFileTime
GetCurrentThread
GetCurrentProcess
InterlockedIncrement
InterlockedDecrement
GetCurrentProcessId
GetCurrentThreadId
VirtualAlloc
GetStringTypeW
FreeLibrary
FindClose
ReadFile
FreeEnvironmentStringsW
lstrlenA
HeapAlloc
FormatMessageW
LoadLibraryW
GetFileAttributesW
GetModuleFileNameA
SetEndOfFile
MultiByteToWideChar
GetEnvironmentStringsW
InterlockedCompareExchange
TlsFree
EnterCriticalSection
SetErrorMode
HeapSize
lstrlenW
GetCommandLineW
GetModuleHandleW
HeapFree
WriteFile
SetFilePointer
LoadResource
CreateEventW
GlobalAlloc
GetOEMCP
GetVersionExW
SetHandleCount
DeleteCriticalSection
LCMapStringW
LoadLibraryExW
SetLastError
ExitProcess
GetSystemInfo
HeapDestroy
InterlockedExchange
LoadLibraryA
FindFirstFileW
CreateFileA
LocalAlloc
LeaveCriticalSection
InitializeCriticalSection
HeapCreate
LocalFree
CompareStringW
CompareStringA
GetTimeZoneInformation
LCMapStringA
GetStringTypeA
IsValidCodePage
GetVersionExA
GetProcessHeap
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetProcAddress
GetStdHandle
GetModuleFileNameW
FreeEnvironmentStringsA
GetEnvironmentStrings
GetLastError
GetCommandLineA
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
VirtualFree
GetTickCount
GetSystemTimeAsFileTime
FatalAppExitA
SetConsoleCtrlHandler
Sleep
GetCPInfo
GetACP
HeapReAlloc
RtlUnwind
GetLocaleInfoA
GetLocaleInfoW
WideCharToMultiByte
GetTimeFormatA
GetDateFormatA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
SetEnvironmentVariableA
user32
GetSystemMetrics
msi
ord50
shell32
SHFileOperationW
Sections
.text Size: 92KB - Virtual size: 90KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 48KB - Virtual size: 91KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ