Static task
static1
Behavioral task
behavioral1
Sample
6d63be6a38abecf0ba3aa7d63d560e19173d0b75339d5b6e6161095d76551ec0.exe
Resource
win7-20220812-en
General
-
Target
6d63be6a38abecf0ba3aa7d63d560e19173d0b75339d5b6e6161095d76551ec0
-
Size
267KB
-
MD5
099d3e1c8e153545bca1dee9799f605c
-
SHA1
8ab7103020dd543860cb3ab44cd7a0265d6a99d8
-
SHA256
6d63be6a38abecf0ba3aa7d63d560e19173d0b75339d5b6e6161095d76551ec0
-
SHA512
b061367a5d626009a1d14e4df202e906ff80d5f3e38eea8c392888887cd101c6c22a5621933489edb1bdf96e80233931bb5421363b7ddf23552e88d1a1463ff6
-
SSDEEP
6144:grOEksOCvZdbNrEPDjH/1GyjG1nkdR7YDxk3i2k/Fdn:grU2HNrEPfNGkikdexky2k/Hn
Malware Config
Signatures
Files
-
6d63be6a38abecf0ba3aa7d63d560e19173d0b75339d5b6e6161095d76551ec0.exe windows x86
6c0eb49f04a5f4c05b7682400f575dd7
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
setupapi
CM_Get_Global_State
CMP_WaitNoPendingInstallEvents
SetupDiGetDeviceRegistryPropertyW
CM_Get_DevNode_Status
kernel32
WideCharToMultiByte
lstrcpyA
AddAtomA
GetDiskFreeSpaceA
lstrcmpA
CloseHandle
FlushFileBuffers
CreateFileA
InitializeCriticalSection
lstrcatA
GetFullPathNameA
LoadLibraryA
FreeEnvironmentStringsA
LCMapStringW
GetEnvironmentStringsW
GetTickCount
lstrcmpiA
ReadFile
WriteFile
GetStartupInfoA
FreeLibrary
LeaveCriticalSection
lstrlenA
SetStdHandle
lstrcpynA
SetUnhandledExceptionFilter
MultiByteToWideChar
FreeEnvironmentStringsW
GetStringTypeW
GetProcAddress
DeleteCriticalSection
EnumResourceNamesW
GetCurrentThreadId
GetOEMCP
IsBadCodePtr
SetFilePointer
Sleep
GetFileAttributesA
GetEnvironmentStrings
EnterCriticalSection
lstrlenA
VirtualProtect
GetCPInfo
FindFirstFileA
LCMapStringA
IsBadReadPtr
GetModuleHandleA
UnhandledExceptionFilter
MulDiv
GetLastError
GetThreadLocale
GetStringTypeA
RaiseException
Sections
.text Size: 126KB - Virtual size: 274KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 137KB - Virtual size: 137KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ