Static task
static1
Behavioral task
behavioral1
Sample
2e16db2356a1eceedd9cc7a5a60725d19a6e860da2ae1c4921fc38dfbe79347e.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
2e16db2356a1eceedd9cc7a5a60725d19a6e860da2ae1c4921fc38dfbe79347e.exe
Resource
win10v2004-20220812-en
General
-
Target
2e16db2356a1eceedd9cc7a5a60725d19a6e860da2ae1c4921fc38dfbe79347e
-
Size
41KB
-
MD5
6756602c5b20bc72b6bd3f5b739168d0
-
SHA1
3152db00257ea8563d542c0a3be36bb23e57c8cc
-
SHA256
2e16db2356a1eceedd9cc7a5a60725d19a6e860da2ae1c4921fc38dfbe79347e
-
SHA512
fd1caca1d0a2812b7103c0b6b6b067f422d5a8864c20ddd4f892e9901351585d19fb821b2e9fbac9080bede9c5bab164c6855544e9fda109c18c3acc147d5d5f
-
SSDEEP
768:+4bahcsaOx7kR0HW6eqvsNwhK+E6Yb2oD7tedlApAKeLLcuTJGAZUDIWFdzRPqPF:+IS9xdHW6ANwMRCbTZ3JGsmpdtPqoO
Malware Config
Signatures
Files
-
2e16db2356a1eceedd9cc7a5a60725d19a6e860da2ae1c4921fc38dfbe79347e.exe windows x86
d35b602ad9773f213d124008b63cfbc4
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ReadConsoleA
GetWindowsDirectoryA
DeleteFileA
GetSystemWindowsDirectoryA
lstrlen
GlobalGetAtomNameA
GetExitCodeProcess
GetBinaryTypeA
VirtualUnlock
GetExitCodeThread
VirtualFreeEx
GetConsoleWindow
GetTempPathA
Module32Next
GetConsoleCP
GetLogicalDrives
TermsrvAppInstallMode
GetVolumePathNameA
GetSystemDirectoryA
FindResourceExW
GetDiskFreeSpaceExA
SetHandleInformation
DeleteTimerQueue
GlobalLock
SetVolumeMountPointA
GetProcessId
GetProcessHeaps
ReadConsoleOutputCharacterA
GetSystemDefaultLCID
GetDllDirectoryA
GetConsoleTitleA
SetProcessWorkingSetSize
OpenMutexA
WriteConsoleOutputAttribute
WriteConsoleOutputA
LZInit
FindNextFileA
GetConsoleTitleA
GetCommState
ReadConsoleOutputCharacterA
MoveFileExA
GetEnvironmentVariableA
GetUserDefaultLCID
RegisterWaitForInputIdle
GetPriorityClass
FindResourceA
Process32First
MulDiv
Sleep
GetProfileIntA
SetConsoleIcon
GetCommModemStatus
GetPrivateProfileIntA
GetConsoleMode
GetSystemDefaultUILanguage
TerminateThread
GetCommTimeouts
CreateSemaphoreA
GetComputerNameA
GetLongPathNameA
GetVersion
SetConsoleKeyShortcuts
GetConsoleCharType
SetConsoleNumberOfCommandsA
ReleaseMutex
GetModuleHandleA
DebugBreak
SetFilePointerEx
GetProcessIoCounters
WriteConsoleOutputCharacterA
GetModuleFileNameA
WriteProcessMemory
VirtualAllocEx
SetProcessPriorityBoost
SetConsoleCursor
SetFileAttributesA
FatalExit
EnumSystemLocalesA
HeapUnlock
SetInformationJobObject
DeleteTimerQueueTimer
GlobalGetAtomNameA
SetConsoleCursorPosition
UnregisterConsoleIME
SetCommMask
GetStringTypeExA
EnumSystemGeoID
GetCompressedFileSizeA
SetPriorityClass
GlobalFree
GetStdHandle
CreateWaitableTimerA
GetFileType
GlobalAlloc
Module32First
SetFilePointer
SetVolumeLabelA
VirtualQueryEx
GetFileAttributesExA
GetCommState
OutputDebugStringA
UnlockFile
WriteConsoleInputA
GetFileSizeEx
WritePrivateProfileSectionA
GetModuleFileNameA
GetConsoleAliasesA
tapi32
lineReleaseUserUserInfo
d3d8
ValidatePixelShader
ValidateVertexShader
Sections
.data Size: 19KB - Virtual size: 19KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 313KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.idata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 948B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ