Static task
static1
Behavioral task
behavioral1
Sample
e1508f81cd86d370819d60e3ff15706130ad7502269e929742bede0901ab90e3.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
e1508f81cd86d370819d60e3ff15706130ad7502269e929742bede0901ab90e3.exe
Resource
win10v2004-20220901-en
General
-
Target
e1508f81cd86d370819d60e3ff15706130ad7502269e929742bede0901ab90e3
-
Size
160KB
-
MD5
0f13265d5ae564ef738d263da3db78e0
-
SHA1
d57ea272e69bcd7f33d4136c21bfd8c0aacf1349
-
SHA256
e1508f81cd86d370819d60e3ff15706130ad7502269e929742bede0901ab90e3
-
SHA512
f5504ece191273d5d37934a1f738d863cbcbc5ca0e4d77b803649d4b535fafc52508d6ef22cab2ff5084dcc4481472c1357d1530f1d32e6a1d862980a2a7bf80
-
SSDEEP
3072:aWTQFZy9qomLiSoCRm2XOm2YF/LP+Xm5ew:Y89Ooo/FjX
Malware Config
Signatures
Files
-
e1508f81cd86d370819d60e3ff15706130ad7502269e929742bede0901ab90e3.exe windows x86
3149d4b81a28cf5a11b9b45df0c773fc
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CompareStringW
LeaveCriticalSection
WriteFile
ExitProcess
GetVersionExW
CloseHandle
WideCharToMultiByte
GetOEMCP
LCMapStringW
HeapReAlloc
SetFilePointer
DeleteCriticalSection
GetStdHandle
GetACP
GetModuleFileNameW
CreateThread
GetModuleFileNameA
CreateEventW
GetTickCount
GetVersionExA
CreateFileA
FreeLibraryAndExitThread
lstrlenW
GetStartupInfoW
VirtualAlloc
GetModuleHandleW
GetCurrentProcessId
QueryPerformanceCounter
GetCurrentThread
InterlockedIncrement
CompareFileTime
GetStartupInfoA
GetModuleHandleA
GetCurrentProcess
GetCurrentThreadId
InterlockedDecrement
CompareStringA
GetTimeZoneInformation
IsValidCodePage
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetDateFormatA
GetTimeFormatA
GetStringTypeW
GetStringTypeA
LCMapStringA
GetLocaleInfoW
GetLocaleInfoA
MultiByteToWideChar
GetCommandLineA
HeapFree
HeapAlloc
GetProcessHeap
GetProcAddress
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
SetLastError
HeapDestroy
HeapCreate
VirtualFree
GetSystemTimeAsFileTime
FatalAppExitA
EnterCriticalSection
TerminateProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
SetConsoleCtrlHandler
FreeLibrary
InterlockedExchange
LoadLibraryA
InitializeCriticalSection
GetCPInfo
Sleep
RtlUnwind
HeapSize
SetEnvironmentVariableA
user32
GetSystemMetrics
gdi32
SetPixel
SetBrushOrgEx
SetTextAlign
RealizePalette
DPtoLP
CreateDCA
SelectPalette
Ellipse
Polyline
CreateFontW
CreateBrushIndirect
GetTextExtentPointA
MoveToEx
SetPixelV
GetDCOrgEx
GetWindowOrgEx
CreateRectRgnIndirect
ExtEscape
SaveDC
GetDeviceCaps
ExtSelectClipRgn
ExtTextOutW
CreateBitmap
GetPaletteEntries
CreatePalette
SetMapMode
CreatePen
RestoreDC
CreatePenIndirect
UnrealizeObject
CreateDIBitmap
ExtCreatePen
DeleteDC
CreateSolidBrush
GetDIBColorTable
GetViewportExtEx
ScaleWindowExtEx
EndDoc
GetMapMode
SetViewportExtEx
GetStockObject
GetPixel
GetTextExtentPoint32W
RectVisible
GetBitmapBits
ExtTextOutA
SetBkMode
Rectangle
CreateHalftonePalette
GetTextMetricsA
SelectObject
BitBlt
DeleteObject
SetDIBColorTable
ole32
StgCreateDocfileOnILockBytes
CreateBindCtx
CLSIDFromProgID
CLSIDFromString
OleRun
OleInitialize
CoQueryProxyBlanket
CoTaskMemFree
msi
ord46
shell32
SHGetIconOverlayIndexA
Sections
.text Size: 84KB - Virtual size: 82KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 16KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 40KB - Virtual size: 90KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ