Static task
static1
Behavioral task
behavioral1
Sample
683878aceb76f06987f2ef80ba7f6ebd4dfe9fdc53b151c4c0f7d97d0af72924.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
683878aceb76f06987f2ef80ba7f6ebd4dfe9fdc53b151c4c0f7d97d0af72924.exe
Resource
win10v2004-20220812-en
General
-
Target
683878aceb76f06987f2ef80ba7f6ebd4dfe9fdc53b151c4c0f7d97d0af72924
-
Size
743KB
-
MD5
deee50043202753b82cad51bb7588076
-
SHA1
f17939f9aedcadadf870b60ffe537fbb12e3dc9e
-
SHA256
683878aceb76f06987f2ef80ba7f6ebd4dfe9fdc53b151c4c0f7d97d0af72924
-
SHA512
c0994f5d7f3d6d61f26c7f7101d16ada490bc0e9b832495839f644f3f211db4fcf6d685c4dd52b65cd09f85c89a78c9c8de72f63a36de5b8b5b458caa35a7a33
-
SSDEEP
12288:ICMaZ3Y8XiQFtgBOZm3XuXNDOXKs2+Y9Jf9ywTmEVXCa6Jl6AzqNE+wNE:zM3IjFtgomH0kH2+Y9V0ObCa63VONE+w
Malware Config
Signatures
Files
-
683878aceb76f06987f2ef80ba7f6ebd4dfe9fdc53b151c4c0f7d97d0af72924.exe windows x86
9bebb704e57035cb3de7e79b35570285
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetUnhandledExceptionFilter
GetUserDefaultUILanguage
EnumDateFormatsA
VerifyVersionInfoW
EnumLanguageGroupLocalesW
GetProcessPriorityBoost
OpenWaitableTimerW
ReplaceFileA
PeekNamedPipe
GetSystemDefaultUILanguage
GetProcessVersion
GlobalAddAtomA
SetEnvironmentVariableW
_hwrite
EndUpdateResourceW
SetThreadPriority
GetProfileStringA
GetLocaleInfoW
SetEvent
SetFileAttributesW
GlobalFindAtomA
GetStringTypeW
GetModuleHandleA
lstrcmpiA
CreateTimerQueue
ExitProcess
GetCPInfo
GetPrivateProfileStringA
FindResourceExA
MultiByteToWideChar
SetErrorMode
CallNamedPipeA
GetWindowsDirectoryW
UnmapViewOfFile
GetPrivateProfileSectionNamesA
GetEnvironmentVariableA
GetCalendarInfoA
HeapAlloc
FreeEnvironmentStringsW
SetThreadPriorityBoost
ContinueDebugEvent
GetPriorityClass
OpenFile
InitAtomTable
lstrlenA
GetExitCodeThread
UpdateResourceA
user32
GetMessageExtraInfo
GetKeyNameTextA
LookupIconIdFromDirectoryEx
DrawTextW
SetWinEventHook
GetUserObjectSecurity
UnionRect
LoadKeyboardLayoutW
TranslateAcceleratorW
GetSysColorBrush
SendMessageTimeoutW
OpenWindowStationW
SwapMouseButton
CallMsgFilterA
OemToCharBuffA
DdeUnaccessData
CheckMenuRadioItem
GetClientRect
IsCharLowerA
EnumDesktopsW
GetMenuItemCount
SetUserObjectSecurity
ActivateKeyboardLayout
GetPriorityClipboardFormat
CopyAcceleratorTableW
DeleteMenu
InsertMenuW
CopyAcceleratorTableA
GetAltTabInfoW
CreateCursor
TileChildWindows
GetUserObjectInformationW
SendNotifyMessageW
DdeDisconnectList
RemoveMenu
DdeImpersonateClient
GetCaretBlinkTime
DdeInitializeA
SetMenuItemBitmaps
AppendMenuW
GetInputState
GetKeyboardType
TrackPopupMenu
GetShellWindow
GetWindowRgn
DdeQueryStringW
SetMenuItemInfoA
LockWindowUpdate
OpenInputDesktop
SetRect
DrawFocusRect
SetThreadDesktop
RegisterShellHookWindow
ShowCaret
GetDoubleClickTime
FindWindowExW
MapWindowPoints
GetWindowTextA
GetCursorInfo
GetWindowModuleFileNameA
ToAscii
DrawFrame
DrawTextExW
PostQuitMessage
MenuItemFromPoint
WINNLSEnableIME
GetWindowTextLengthA
shell32
SHFileOperationW
SHEmptyRecycleBinA
SHLoadInProc
SHExtractIconsW
SHGetSpecialFolderLocation
DragQueryFileA
SHGetPathFromIDListW
RealShellExecuteA
Sections
.text Size: 276KB - Virtual size: 276KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 240KB - Virtual size: 768KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.arch Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
.rsrc Size: 211KB - Virtual size: 210KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.xdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 2KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ