Static task
static1
Behavioral task
behavioral1
Sample
b8c9067bea7b8de6dc426d4cc25d16a793dbcc5554bef91a61e893b2120e8c54.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
b8c9067bea7b8de6dc426d4cc25d16a793dbcc5554bef91a61e893b2120e8c54.exe
Resource
win10v2004-20220812-en
General
-
Target
b8c9067bea7b8de6dc426d4cc25d16a793dbcc5554bef91a61e893b2120e8c54
-
Size
186KB
-
MD5
04dc8a012fb0c18633c88830853768e0
-
SHA1
46bb21324366408ec25376c3b5184c3e90151c98
-
SHA256
b8c9067bea7b8de6dc426d4cc25d16a793dbcc5554bef91a61e893b2120e8c54
-
SHA512
1b412042d1707ec84ffa2513ddbfae26f651a8479cb3aa9f2a55dfc066f3763e6d165b2c09d1bef95418017749b9973d61c851277bb5b518508ad8ad8b65c6a1
-
SSDEEP
3072:o+lA4v/+bAiVSuoOcd/FlqKNXQ6vLYA60U++PzSHhqF3xJM5uVHqNcAhO4BVEY6n:UO+bZV6hFJNXQ6DYARU+ox25uRwcp4be
Malware Config
Signatures
Files
-
b8c9067bea7b8de6dc426d4cc25d16a793dbcc5554bef91a61e893b2120e8c54.exe windows x86
86868c84774481cadaeb3f32630cf084
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
InterlockedIncrement
InitializeCriticalSection
QueryPerformanceCounter
GlobalMemoryStatus
GetSystemInfo
IsBadReadPtr
GetFileAttributesW
GlobalUnlock
MulDiv
GlobalFree
lstrlenW
GetPrivateProfileStringW
LoadLibraryW
DeleteCriticalSection
CreateSemaphoreW
GetStartupInfoA
HeapFree
GetLastError
lstrcpynW
lstrcpyW
GlobalLock
GetQueuedCompletionStatus
GetProfileIntA
GlobalAlloc
lstrcmpiW
SetEvent
WaitForSingleObject
GetCurrentThread
HeapAlloc
GetEnvironmentStringsA
GetProcessHeap
CreateFileW
GetFullPathNameW
lstrlenA
GetVersionExW
CloseHandle
GetACP
CreateThread
CreateEventW
GetDiskFreeSpaceW
GetSystemTimeAsFileTime
IsBadWritePtr
IsBadCodePtr
GetModuleFileNameA
DeleteFileW
GetTickCount
GetProcAddress
MultiByteToWideChar
GetFileSize
lstrcpyA
EnterCriticalSection
CreateIoCompletionPort
GetThreadPriority
PostQueuedCompletionStatus
SetFilePointer
lstrcmpW
InterlockedExchange
WriteFile
InterlockedDecrement
ReadFile
GetSystemDefaultLangID
GlobalHandle
WideCharToMultiByte
WaitForMultipleObjects
LeaveCriticalSection
GetCurrentProcessId
SetThreadPriority
ResetEvent
SetEndOfFile
ReleaseSemaphore
GetCurrentProcess
VirtualFree
FreeLibrary
SetUnhandledExceptionFilter
user32
ClientToScreen
DestroyWindow
wsprintfW
TranslateMessage
CheckRadioButton
IsRectEmpty
GetWindowLongW
SetWindowLongW
SendMessageW
CheckDlgButton
GetDlgItem
ReleaseDC
EnableWindow
IsWindow
MoveWindow
DispatchMessageW
GetDC
ShowWindow
SetDlgItemInt
GetClientRect
GetDlgItemInt
LoadCursorW
GetAsyncKeyState
InvalidateRect
IsWindowVisible
GetDesktopWindow
GetWindowRect
SetCursor
DefWindowProcW
CreateDialogParamW
LoadStringW
SetDlgItemTextW
PeekMessageW
msvfw32
ICOpen
ICSendMessage
ICDecompress
ICGetInfo
ICClose
ICLocate
ICCompress
ole32
CoFreeUnusedLibraries
CoTaskMemFree
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoUninitialize
CoInitialize
winmm
waveInGetDevCapsW
waveInClose
CloseDriver
waveInStart
waveInReset
mixerGetID
mixerSetControlDetails
waveInAddBuffer
waveInUnprepareHeader
waveInOpen
mixerGetControlDetailsW
SendDriverMessage
mixerClose
mixerGetLineControlsW
mixerOpen
waveInPrepareHeader
waveInStop
mixerGetLineInfoW
OpenDriver
advapi32
RegSetValueW
RegQueryValueExW
RegEnumKeyW
RegCloseKey
RegOpenKeyW
RegEnumKeyExW
RegCreateKeyW
RegDeleteKeyW
RegSetValueExW
RegOpenKeyExW
gdi32
GetObjectW
GetStockObject
PatBlt
GetPaletteEntries
GetTextExtentPoint32W
SelectObject
version
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
Sections
.text Size: 158KB - Virtual size: 158KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 24KB - Virtual size: 24KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 644B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ