Static task
static1
Behavioral task
behavioral1
Sample
4baa6d365b30b0026e3471580905b2e417eabecd0970b09a7994ae53a838d13f.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
4baa6d365b30b0026e3471580905b2e417eabecd0970b09a7994ae53a838d13f.exe
Resource
win10v2004-20221111-en
General
-
Target
4baa6d365b30b0026e3471580905b2e417eabecd0970b09a7994ae53a838d13f
-
Size
21KB
-
MD5
45ea5e6ea8d5caf3975ab9b0d935d628
-
SHA1
7ea36bb324b2eebe9bebad4ad16665d25dd51d3a
-
SHA256
4baa6d365b30b0026e3471580905b2e417eabecd0970b09a7994ae53a838d13f
-
SHA512
528251c20d413aeabb92631fb5ee7658b69972269439711bd9b87d774d8ea0ed5d30b31fffe22c6e21a550012c0379847024a766473260b08dfe5c60e89de64d
-
SSDEEP
384:vrVaAhmoKnwWLcBZcIqt0JBwmgwOsC31vRlUt5GRA7K7s1qnW5Y4R5vSYT:zVaAhmokBwbClvRlc5GRqUs1X5dR5vSm
Malware Config
Signatures
Files
-
4baa6d365b30b0026e3471580905b2e417eabecd0970b09a7994ae53a838d13f.exe windows x86
111b76933dcb8b032171d79a0e2ac581
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateProcessA
SetThreadPriority
GetCurrentThread
SetPriorityClass
GetCurrentProcess
GetEnvironmentVariableA
GetShortPathNameA
GetModuleFileNameA
ResumeThread
GetLastError
CreateMutexA
lstrlenA
CopyFileA
GlobalMemoryStatusEx
GetSystemInfo
GetModuleHandleA
GetStartupInfoA
WaitForSingleObject
CloseHandle
GetTempPathA
LoadLibraryA
GetProcAddress
WinExec
CreateThread
Sleep
ExitThread
GetSystemDirectoryA
lstrcatA
lstrcpyA
ExitProcess
GetTickCount
user32
wsprintfA
advapi32
OpenSCManagerA
CreateServiceA
OpenServiceA
StartServiceA
RegOpenKeyA
RegSetValueExA
CloseServiceHandle
RegCloseKey
RegOpenKeyExA
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
SetServiceStatus
RegQueryValueExA
ws2_32
select
__WSAFDIsSet
WSAIoctl
recv
WSASocketA
WSAStartup
send
htonl
sendto
inet_addr
gethostbyname
socket
htons
connect
closesocket
setsockopt
msvcrt
time
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_XcptFilter
_exit
??1type_info@@UAE@XZ
malloc
rand
strlen
memset
memcpy
__CxxFrameHandler
_CxxThrowException
strcpy
strstr
atoi
strncpy
strcspn
sprintf
localtime
free
exit
strcat
strncmp
_except_handler3
??3@YAXPAX@Z
??2@YAPAXI@Z
strcmp
iphlpapi
GetIfTable
GetAdaptersInfo
Sections
.text Size: 14KB - Virtual size: 14KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE