Static task
static1
Behavioral task
behavioral1
Sample
ad42813d380b10547f4138c626b6c69ae6594db2bf31711154685ececc493a3d.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
ad42813d380b10547f4138c626b6c69ae6594db2bf31711154685ececc493a3d.exe
Resource
win10v2004-20220901-en
General
-
Target
ad42813d380b10547f4138c626b6c69ae6594db2bf31711154685ececc493a3d
-
Size
195KB
-
MD5
155b744bf6369e91a733d139d0751714
-
SHA1
6be5a1326605132f75d5ac1c0580fffe2b4ad501
-
SHA256
ad42813d380b10547f4138c626b6c69ae6594db2bf31711154685ececc493a3d
-
SHA512
887ef60407f18e92cf50b93433d7365e3d11e52901a516658f629843f2c97eb47acd6e4d4864bc8bce3b195a5ec8a38c771600eceb5397e1bd9b8d331be6e8f9
-
SSDEEP
3072:XKeyB3LDxzqprQ/dP/YjiL1twhnfWJ9tbWKmLSisIOh+Ev34r4lfFwY9ye:XkBbKedojZ+BTmMIOwUwYB
Malware Config
Signatures
Files
-
ad42813d380b10547f4138c626b6c69ae6594db2bf31711154685ececc493a3d.exe windows x86
74f0e415bb38947e4214fcc620d01fe1
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCPInfoExA
GetLastError
GetEnvironmentStringsW
lstrlenW
GetLocaleInfoA
GetACP
SetHandleCount
InitializeCriticalSection
LeaveCriticalSection
GetTickCount
HeapSize
UnhandledExceptionFilter
DeleteCriticalSection
GetCPInfo
GetStartupInfoA
GetThreadLocale
GetEnvironmentStrings
MultiByteToWideChar
EnumResourceTypesA
QueryPerformanceCounter
EnterCriticalSection
TlsGetValue
RaiseException
GetVersionExA
TlsSetValue
WriteFile
GetFileType
LoadLibraryW
FreeEnvironmentStringsW
GetStdHandle
InterlockedIncrement
WideCharToMultiByte
GetOEMCP
FreeEnvironmentStringsA
InterlockedExchange
GetCurrentProcessId
msimg32
AlphaBlend
TransparentBlt
gdi32
GetDeviceCaps
SelectObject
GetTextMetricsA
GetTextExtentPointA
DeleteObject
CreateFontIndirectA
ole32
CoGetMalloc
CoCreateInstance
StringFromGUID2
CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
Sections
.text Size: 112KB - Virtual size: 111KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.tls Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 80KB - Virtual size: 79KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1024B - Virtual size: 232KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ