Static task
static1
Behavioral task
behavioral1
Sample
22a2d13350a9d82e796f02fe0a246856dff2be2db7efc45e287e859994e8ea8e.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
22a2d13350a9d82e796f02fe0a246856dff2be2db7efc45e287e859994e8ea8e.exe
Resource
win10v2004-20220901-en
General
-
Target
22a2d13350a9d82e796f02fe0a246856dff2be2db7efc45e287e859994e8ea8e
-
Size
6.1MB
-
MD5
44a40a4fd6dda79c234f33c7c4c58288
-
SHA1
030594226da93f6d517237629e57bb520e2b3a6d
-
SHA256
22a2d13350a9d82e796f02fe0a246856dff2be2db7efc45e287e859994e8ea8e
-
SHA512
68e9eb91157bebf969856e5bf8cb2467f40fe2d3a9a19c1079e69ae708d7ab631619f5fc4a8276aaa2c3da41d21a9c0f47da00917fa065c8aa046faf52944585
-
SSDEEP
98304:yzu6hgD7Ck5ay5jviOqd39Qoqv5RItL0XDOj77oUB1XLH+g06K6NCB1JY4aFT:bp5d5f0NQoqg5gDOj77/B1aZbS6rY
Malware Config
Signatures
Files
-
22a2d13350a9d82e796f02fe0a246856dff2be2db7efc45e287e859994e8ea8e.exe windows x86
595c44d696d0c03708ae17d386dbd7d8
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
LoadLibraryA
CreateMutexA
CloseHandle
GetLastError
DuplicateHandle
CreateFileA
GetTickCount
GetProcAddress
InterlockedCompareExchange
HeapFree
SystemTimeToFileTime
SetLastError
GetModuleHandleA
GetVersionExA
GetModuleHandleExW
Sleep
HeapReAlloc
VirtualProtect
HeapAlloc
GetCurrentProcess
DeleteCriticalSection
GetProcessHeap
GetLocalTime
LocalFileTimeToFileTime
VirtualFree
ExitProcess
VirtualAlloc
FlushFileBuffers
WriteConsoleW
SetStdHandle
SetFilePointerEx
GetConsoleMode
GetConsoleCP
LCMapStringW
LoadLibraryW
OutputDebugStringW
LoadLibraryExW
LeaveCriticalSection
EnterCriticalSection
GetModuleHandleW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
CreateFileW
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
IsProcessorFeaturePresent
RtlUnwind
GetCommandLineA
InterlockedDecrement
MultiByteToWideChar
GetStdHandle
WriteFile
GetModuleFileNameW
HeapSize
RaiseException
IsDebuggerPresent
InterlockedIncrement
IsValidCodePage
GetACP
GetOEMCP
GetCPInfo
GetStringTypeW
GetCurrentThreadId
WideCharToMultiByte
GetFileType
InitializeCriticalSectionAndSpinCount
GetStartupInfoW
GetModuleFileNameA
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
advapi32
RegCreateKeyA
RegCloseKey
RegQueryValueExA
RegEnumKeyExW
RegEnumValueW
RegOpenKeyExA
RegCreateKeyW
user32
RedrawWindow
GetWindowTextW
EnumWindows
MsgWaitForMultipleObjects
GetDesktopWindow
GetClientRect
CreateWindowExW
DefWindowProcW
SendMessageW
GetWindowTextA
PostQuitMessage
LoadIconW
PostMessageA
RegisterClassExW
GetLastInputInfo
RegisterWindowMessageW
GetWindowRect
SetWindowPos
TrackPopupMenu
RegisterWindowMessageA
PostMessageW
PeekMessageW
CheckMenuItem
SendMessageA
CreateWindowExA
RegisterClassExA
UpdateWindow
GetParent
GetDlgItem
CreatePopupMenu
BringWindowToTop
DestroyWindow
GetMessageA
Sections
.text Size: 469KB - Virtual size: 468KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 450KB - Virtual size: 450KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 5.2MB - Virtual size: 5.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 30KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ