Static task
static1
Behavioral task
behavioral1
Sample
8d5f50b2c13ba50a140a443f72adfe39ac6466a1fe3d77eab0decfd3d79196cb.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
8d5f50b2c13ba50a140a443f72adfe39ac6466a1fe3d77eab0decfd3d79196cb.exe
Resource
win10v2004-20220812-en
General
-
Target
8d5f50b2c13ba50a140a443f72adfe39ac6466a1fe3d77eab0decfd3d79196cb
-
Size
320KB
-
MD5
06c979c1e005d7d89508382811749330
-
SHA1
9b7e0124387692819ebce4a5540659a536baab42
-
SHA256
8d5f50b2c13ba50a140a443f72adfe39ac6466a1fe3d77eab0decfd3d79196cb
-
SHA512
40a1f9cbdf423a46dd5494e61bb47587b1f1d059afff212d7aa4931c721214401bd4b17e898a9cab1cf57d4ddda2ca1bc7b0a8f6e2b48bd2078f15b17085ef67
-
SSDEEP
6144:XP2ulBCB22YJunj+YzXqpP/whNAIcPQQtVc+HdPhYZKQTNPa:fplBCB/pj+YzapP/wnAIcPQQtVzHdIPa
Malware Config
Signatures
Files
-
8d5f50b2c13ba50a140a443f72adfe39ac6466a1fe3d77eab0decfd3d79196cb.exe windows x86
7cb9d8aab12fb90d05a1487e98ff03e3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comdlg32
GetSaveFileNameA
ChooseFontA
FindTextA
GetFileTitleA
user32
SetDeskWallpaper
DrawCaption
GetKeyboardLayoutNameW
SetRect
GetComboBoxInfo
ScrollDC
CopyIcon
GetUserObjectInformationW
GetWindowThreadProcessId
TrackPopupMenu
GetClipboardData
CreateMDIWindowW
RegisterClipboardFormatA
GetClassNameA
GetMessageExtraInfo
SetPropA
GetCapture
DdeQueryStringA
CharToOemW
MsgWaitForMultipleObjectsEx
OemToCharBuffA
SetProcessDefaultLayout
SetScrollRange
DdeDisconnectList
MapDialogRect
SwitchDesktop
TrackPopupMenuEx
GetTabbedTextExtentA
GetInputState
SetParent
ShowScrollBar
RegisterClassExA
SetClipboardData
RegisterClassA
CharUpperA
EnableScrollBar
WaitForInputIdle
GetClassInfoW
GetClassWord
DefWindowProcW
RealGetWindowClass
EnumDesktopsA
comctl32
DrawInsert
ImageList_Add
ImageList_GetFlags
ImageList_Copy
ImageList_Replace
ImageList_AddMasked
DrawStatusText
ImageList_Destroy
ImageList_Merge
ImageList_Draw
ImageList_DrawEx
ImageList_SetFilter
InitCommonControlsEx
ImageList_BeginDrag
InitMUILanguage
ImageList_ReplaceIcon
kernel32
OpenEventW
GetACP
QueryPerformanceCounter
ReadFile
GetProcAddress
GetCurrentProcessId
VirtualFree
RtlUnwind
GetCPInfo
GetStartupInfoA
SetEnvironmentVariableA
GetLocaleInfoW
GetLocaleInfoA
EnterCriticalSection
MapViewOfFileEx
HeapDestroy
IsBadWritePtr
GetSystemInfo
EnumResourceLanguagesW
LCMapStringA
HeapSize
ExitProcess
GetFileType
LoadLibraryA
FlushFileBuffers
GetTimeZoneInformation
SetUnhandledExceptionFilter
GetModuleHandleA
CompareStringA
TlsSetValue
GetDriveTypeW
IsValidCodePage
TlsGetValue
GetStringTypeW
GetLastError
GetCurrentThread
WideCharToMultiByte
FreeEnvironmentStringsA
HeapFree
CloseHandle
LeaveCriticalSection
UnhandledExceptionFilter
HeapAlloc
SetHandleCount
CompareStringW
TerminateProcess
TlsFree
SetFilePointer
WriteFile
VirtualQuery
GetCommandLineA
InterlockedExchange
InitializeCriticalSection
OpenMutexA
HeapCreate
GetOEMCP
MultiByteToWideChar
GetDateFormatA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetUserDefaultLCID
GetTickCount
LCMapStringW
GetCurrentProcess
IsValidLocale
GetCurrentThreadId
SetStdHandle
GetVersionExA
HeapReAlloc
SetLastError
GetEnvironmentStringsW
GetTimeFormatA
DeleteCriticalSection
VirtualProtect
EnumSystemLocalesA
TlsAlloc
GetModuleFileNameA
VirtualAlloc
GetStdHandle
GlobalAddAtomW
CreateMutexA
GetSystemTimeAsFileTime
GetStringTypeA
Sections
.text Size: 136KB - Virtual size: 133KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 72KB - Virtual size: 71KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 92KB - Virtual size: 101KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ