Static task
static1
Behavioral task
behavioral1
Sample
c4ee19933b625cfdb7f62b79da7359bc8c8aa6d81f45a3c8059febebacf8ba7d.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
c4ee19933b625cfdb7f62b79da7359bc8c8aa6d81f45a3c8059febebacf8ba7d.exe
Resource
win10v2004-20220812-en
General
-
Target
c4ee19933b625cfdb7f62b79da7359bc8c8aa6d81f45a3c8059febebacf8ba7d
-
Size
130KB
-
MD5
145dc4207048527be3879692e1d4b7ac
-
SHA1
48d27b66be3938fe0c1364f7d3bbb6043a6007e2
-
SHA256
c4ee19933b625cfdb7f62b79da7359bc8c8aa6d81f45a3c8059febebacf8ba7d
-
SHA512
1334719fc4865351aa450babd1ed1fe3876c55a6cf131d53d83bc97d682f60201042a2fdf81f4cc404f2a748514c0fea10ee5c1f93246b7a401a6f518a0290cb
-
SSDEEP
3072:Qgw4GfO3g8h6aGqVlfbGlbljuUdjALzXj0ZXK:QgAfO3gHvqjK3ujLf
Malware Config
Signatures
Files
-
c4ee19933b625cfdb7f62b79da7359bc8c8aa6d81f45a3c8059febebacf8ba7d.exe windows x86
4dd630e71e2be095d146a535c9a8f955
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
CreateDirectoryW
GetCurrentProcess
VirtualProtectEx
GetFileAttributesW
LocalFlags
CreateEventA
GetPrivateProfileIntA
DeviceIoControl
HeapFree
SetCommBreak
GetVersionExA
GetStringTypeA
GetCurrentThread
SetLastError
CloseHandle
FindClose
GetModuleHandleA
RemoveDirectoryW
GetFileAttributesW
GetPrivateProfileSectionA
GlobalLock
user32
InsertMenuA
IsZoomed
wsprintfW
LoadCursorW
IsDialogMessageA
PeekMessageW
SetFocus
DispatchMessageA
PostMessageW
SetCursorPos
GetWindowLongW
IsWindow
GetWindowTextW
netshell
DllGetClassObject
HrCreateDesktopIcon
DllRegisterServer
DllCanUnloadNow
uxtheme
CloseThemeData
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 11KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 512B - Virtual size: 10B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 121KB - Virtual size: 121KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.import Size: 512B - Virtual size: 396B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ