Static task
static1
Behavioral task
behavioral1
Sample
b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4.exe
Resource
win10v2004-20220812-en
General
-
Target
b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4
-
Size
640KB
-
MD5
52a2e81452102340bc35a3405d113608
-
SHA1
c72dedbb2ec6e6928038042990bdf00dcbd3cb5f
-
SHA256
b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4
-
SHA512
571c9dcdda8be5f550f9122458aafad314b6ee49029ad18f7a8d453408f7a96f1319fe07f39bd593642c9342d0a9717d45d1a21d702fe43f3d9faf6215c3d77d
-
SSDEEP
12288:SAycN/eQNeK+SOdoQL/NSUcKk/YJ5MZA5ohNu1TB+TnsNP:Sip/BORZcKGq5Yzuin
Malware Config
Signatures
Files
-
b13fd0f5afddda7db404313f52dd0f74bbd28101184d6da1303faf459ba7a7c4.exe windows x86
7f30038f9463db53885cbad5c9c6dac5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
CreatePropertySheetPage
ImageList_Duplicate
ImageList_DragMove
InitMUILanguage
ImageList_LoadImageA
InitCommonControlsEx
wininet
InternetConnectA
FtpGetFileEx
FtpRemoveDirectoryW
InternetDial
FtpCommandA
FtpRenameFileA
UnlockUrlCacheEntryFileA
kernel32
FreeEnvironmentStringsA
RemoveDirectoryA
IsBadWritePtr
FindResourceExA
ReadFile
GetEnvironmentStringsW
FlushFileBuffers
CreateThread
GetFileAttributesExW
FreeEnvironmentStringsW
GlobalFindAtomA
EnterCriticalSection
LockFile
HeapCreate
InterlockedExchange
GetCurrentDirectoryW
LoadModule
GetCurrentProcess
SetStdHandle
RtlUnwind
HeapDestroy
OpenMutexA
GetSystemTimeAsFileTime
GetCommandLineW
VirtualProtect
lstrcmp
CompareStringW
EnumDateFormatsW
TlsFree
SetVolumeLabelW
GetSystemInfo
TlsAlloc
QueryPerformanceCounter
ReadConsoleOutputAttribute
GetCurrentThread
InterlockedDecrement
IsValidCodePage
EnumCalendarInfoExA
GlobalSize
UnlockFile
GetOEMCP
WideCharToMultiByte
LocalAlloc
CreateEventA
GetDateFormatA
PulseEvent
ExpandEnvironmentStringsA
VirtualQuery
IsValidLocale
RtlMoveMemory
GetTempPathA
lstrcpy
GetModuleFileNameA
CloseHandle
SetFilePointer
GetTickCount
WriteFileEx
TlsGetValue
LeaveCriticalSection
GetVersionExA
WriteFile
GetCurrentProcessId
FreeResource
LocalFlags
WritePrivateProfileStructA
FindFirstFileExA
GetVersion
TerminateProcess
SetHandleCount
InitializeCriticalSection
GetCPInfo
CreateMutexA
lstrcpynA
FlushViewOfFile
GetUserDefaultLCID
LocalUnlock
lstrcatA
GetLocaleInfoA
LCMapStringA
HeapAlloc
GetEnvironmentStrings
VirtualAlloc
SetLastError
CreateProcessW
EnumSystemLocalesA
MultiByteToWideChar
OpenFileMappingW
GetFileType
DeleteAtom
VirtualFree
GetStringTypeW
GlobalLock
GetLocalTime
GetStringTypeA
SetConsoleTitleA
HeapFree
CompareStringA
WaitForSingleObject
GetProcAddress
GetCommandLineA
GetTimeFormatA
GetStartupInfoW
SetConsoleWindowInfo
GetLastError
HeapReAlloc
CommConfigDialogA
GetStartupInfoA
GetCurrentThreadId
GetConsoleCP
GetThreadTimes
DeleteCriticalSection
FindAtomW
ReadConsoleA
GetProcAddress
GetACP
UnhandledExceptionFilter
GetStdHandle
SetEnvironmentVariableA
GetLocaleInfoW
CreateFileMappingA
CreateRemoteThread
GetNamedPipeInfo
LCMapStringW
RemoveDirectoryW
GetModuleFileNameW
GetModuleHandleA
WaitCommEvent
ExitProcess
GetTimeFormatW
LoadLibraryA
HeapSize
GetProfileSectionW
WaitForMultipleObjectsEx
FindClose
TlsSetValue
GetTimeZoneInformation
GetCalendarInfoW
GetCompressedFileSizeW
EnumResourceNamesW
GlobalFindAtomW
SetFileAttributesW
GetSystemTime
FindFirstFileExW
user32
CharUpperW
DefWindowProcW
RegisterClassExA
ShowWindow
CharToOemBuffA
CallMsgFilterA
SetActiveWindow
GetQueueStatus
InSendMessage
CascadeWindows
CreateWindowExA
GetClassLongW
SwitchDesktop
KillTimer
LoadImageW
SetScrollRange
GetMonitorInfoW
MessageBoxW
AnyPopup
SetCaretBlinkTime
DdeFreeStringHandle
RegisterClassA
DestroyWindow
DrawEdge
GetClassInfoW
comdlg32
GetOpenFileNameW
PrintDlgW
shell32
ExtractIconExW
gdi32
ColorCorrectPalette
GetLogColorSpaceW
GetCurrentObject
RectVisible
CheckColorsInGamut
GetWinMetaFileBits
IntersectClipRect
CreateHalftonePalette
CreateMetaFileA
GetFontData
GetObjectA
GetTextExtentPointA
GetPixel
CreateFontW
PtVisible
GetBitmapDimensionEx
GetCharacterPlacementA
CreateDCA
GetCharWidth32A
RemoveFontResourceA
Escape
GetTextExtentPoint32W
GetDeviceCaps
DeleteDC
Polygon
SetEnhMetaFileBits
StretchBlt
Sections
.text Size: 176KB - Virtual size: 173KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 308KB - Virtual size: 307KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 124KB - Virtual size: 144KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 25KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ