Static task
static1
Behavioral task
behavioral1
Sample
59dad65905c8ba3962694b72e025ee30517c55d0f5da928855ee835f28299591.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
59dad65905c8ba3962694b72e025ee30517c55d0f5da928855ee835f28299591.exe
Resource
win10v2004-20220812-en
General
-
Target
59dad65905c8ba3962694b72e025ee30517c55d0f5da928855ee835f28299591
-
Size
176KB
-
MD5
0e516d41535d67e4c28e38a254450980
-
SHA1
4005dbf74da694282dd02b711379149fc69b5de7
-
SHA256
59dad65905c8ba3962694b72e025ee30517c55d0f5da928855ee835f28299591
-
SHA512
c109a0f78b01e8d25f736a2bda482c06acc056bf37d02777ebdcb283f2de6ac3e688246af9facb9c8afceabbe96484f9511a2a5fad6842a6d0758c242c74d0a9
-
SSDEEP
3072:1zcASSNzGzipaurbmh/maw4OVXyf5ZW+msow/Z/0Xo81Swe7C:5ZcYar054OVCxZ/jdaXo8Awe
Malware Config
Signatures
Files
-
59dad65905c8ba3962694b72e025ee30517c55d0f5da928855ee835f28299591.exe windows x86
b18ee60d391a2c912219f0b2d9985bc8
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
RtlFillMemory
SetDefaultCommConfigW
GetExitCodeThread
CreateJobObjectW
GetCommModemStatus
OutputDebugStringW
GlobalFix
GetCommTimeouts
CompareFileTime
WaitNamedPipeW
WaitCommEvent
WritePrivateProfileStringW
SetProcessWorkingSetSize
FindFirstVolumeW
GetTempPathW
FindResourceExW
ReleaseSemaphore
CreateEventW
lstrcmpiA
GetFileType
GlobalGetAtomNameA
GetVersionExA
GetVersion
WriteFileGather
CancelWaitableTimer
EnumResourceNamesA
EnumResourceLanguagesA
DisconnectNamedPipe
GetPrivateProfileStringA
GetSystemWindowsDirectoryA
SetEndOfFile
OpenWaitableTimerW
SetVolumeMountPointA
GetComputerNameW
GetFileAttributesExA
SetCalendarInfoA
GetVolumeNameForVolumeMountPointA
IsBadStringPtrW
GetProcessShutdownParameters
user32
GetFocus
ReleaseDC
UnregisterDeviceNotification
CharNextW
SystemParametersInfoW
ClientToScreen
GetWindow
DestroyWindow
GetSysColor
wsprintfW
GetPropW
UpdateWindow
SendDlgItemMessageW
CharUpperW
SetScrollInfo
DefWindowProcW
IsCharAlphaNumericW
PostMessageW
GetSysColorBrush
GetWindowTextLengthW
GetWindowRect
IsWindow
EndPaint
GetWindowLongW
GetDesktopWindow
FillRect
SetDlgItemTextW
GetDC
GetDlgItem
GetNextDlgTabItem
EndDialog
GetActiveWindow
InvalidateRect
GetScrollInfo
DdeConnectList
EnableWindow
SetWindowPos
MoveWindow
GetWindowTextW
SetCursor
GetPropA
ShowWindow
advapi32
RegCreateKeyExW
RegUnLoadKeyW
LookupPrivilegeValueW
RegSaveKeyW
RegEnumKeyW
RegLoadKeyW
LookupAccountNameW
RegSetValueW
RegSetValueExA
RegDeleteKeyW
RegOpenKeyExA
RegRestoreKeyW
RegFlushKey
RegConnectRegistryW
AdjustTokenPrivileges
RegCloseKey
RegSetValueExW
RegCreateKeyW
RegEnumValueW
RegDeleteValueW
Sections
.text Size: 67KB - Virtual size: 67KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 64KB - Virtual size: 88KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 422B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 39KB - Virtual size: 41KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE