Static task
static1
Behavioral task
behavioral1
Sample
8541aa3308d13485e05e1cf3e107c53a3d6688053960db61e2cde6c1c8e14b14.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
8541aa3308d13485e05e1cf3e107c53a3d6688053960db61e2cde6c1c8e14b14.exe
Resource
win10v2004-20221111-en
General
-
Target
8541aa3308d13485e05e1cf3e107c53a3d6688053960db61e2cde6c1c8e14b14
-
Size
137KB
-
MD5
3634850f4a0042a1746c5f5766a6d770
-
SHA1
ed10948770ccef4d54ac417d089eb66829b4d9b3
-
SHA256
8541aa3308d13485e05e1cf3e107c53a3d6688053960db61e2cde6c1c8e14b14
-
SHA512
ba4940dbc580431c099a8c567987bb658a77e1c43ccb013df5ff1e39080bedae4535a7edd233fbeb38f119277dc08a3d25f1332dce2f97e595c3a847ab38f4e2
-
SSDEEP
3072:91Jh2TyD7gFC7EmJn4y2CvqhXrN+8WvxT9ExKfmhAponQ7Gi7WL3e:PvENcxq82nQNKS
Malware Config
Signatures
Files
-
8541aa3308d13485e05e1cf3e107c53a3d6688053960db61e2cde6c1c8e14b14.exe windows x86
72bf06077151f83555c37b33172e62d3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
GetFileAttributesA
GetTickCount
FindClose
FindResourceW
SetLastError
VirtualProtect
GetDriveTypeW
LocalLock
GetLocaleInfoW
GetFileAttributesA
TlsGetValue
IsBadWritePtr
CreateDirectoryW
IsValidCodePage
HeapFree
GetStringTypeA
GetExitCodeThread
RemoveDirectoryW
GetCurrentProcess
MapViewOfFile
user32
PostMessageW
IsWindow
LoadCursorA
SetCursor
LoadStringA
GetWindowLongW
wsprintfW
LoadImageW
GetWindowTextW
SetFocus
DispatchMessageA
IsDialogMessageA
PeekMessageW
msctf
DllUnregisterServer
TF_InitSystem
DllUnregisterServer
DllCanUnloadNow
rasapi32
DwRasUninitialize
Sections
.text Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 127KB - Virtual size: 126KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.import Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE