Static task
static1
Behavioral task
behavioral1
Sample
b3167b1cd8b3ad4d6876edbd94f4b42d839150610352787976a581d93f399bc0.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
b3167b1cd8b3ad4d6876edbd94f4b42d839150610352787976a581d93f399bc0.exe
Resource
win10v2004-20220812-en
General
-
Target
b3167b1cd8b3ad4d6876edbd94f4b42d839150610352787976a581d93f399bc0
-
Size
221KB
-
MD5
0b1e961fd30dadb3a8efb3347b3a009d
-
SHA1
9e7166eebd9d1241d58e4eef276f33b5db47468e
-
SHA256
b3167b1cd8b3ad4d6876edbd94f4b42d839150610352787976a581d93f399bc0
-
SHA512
b91a370aadcb820b81e6a1c09d09fd6cb6eeb2bcc024700f98055ffd5af4fae73d3987eb6390fdfb82743bb625cbd45bbf8c2fe6d3b10cc40a982bef99e08a35
-
SSDEEP
6144:sOfykIWg/I+Omd6n1ENGQNGmt7pAlHuMg:sG9xtOkkN
Malware Config
Signatures
Files
-
b3167b1cd8b3ad4d6876edbd94f4b42d839150610352787976a581d93f399bc0.exe windows x86
5e97d37dddf4ead2e8a3b9d78a38895b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetClassLongW
MapDialogRect
FindWindowW
CreateDialogParamW
SetTimer
SetWindowLongW
GetActiveWindow
InflateRect
ReleaseDC
LoadStringW
TrackPopupMenuEx
IsClipboardFormatAvailable
GetListBoxInfo
GetInputState
GetTopWindow
IsCharUpperW
GetPriorityClipboardFormat
MonitorFromWindow
RegisterRawInputDevices
IsMenu
GetLayeredWindowAttributes
WaitForInputIdle
EnableScrollBar
GetKBCodePage
GetScrollPos
GetOpenClipboardWindow
RedrawWindow
CloseWindow
GetSystemMetrics
IsCharLowerA
DrawFocusRect
GetAsyncKeyState
GetUserObjectInformationA
comdlg32
GetOpenFileNameA
shell32
SHBrowseForFolderA
CommandLineToArgvW
ole32
GetRunningObjectTable
advapi32
RegEnumKeyA
CryptAcquireContextA
gdi32
SetBkColor
CreateRectRgnIndirect
SetTextColor
CreateFontIndirectW
DeleteMetaFile
comctl32
ord17
kernel32
GetLocaleInfoA
RtlUnwind
HeapReAlloc
VirtualAlloc
InitializeCriticalSectionAndSpinCount
LoadLibraryA
UnhandledExceptionFilter
TerminateProcess
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
EnterCriticalSection
GetStringTypeA
MultiByteToWideChar
LeaveCriticalSection
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
GetStringTypeW
LCMapStringA
LCMapStringW
HeapSize
GetCurrentProcess
IsDebuggerPresent
SetPriorityClass
TransmitCommChar
DisableThreadLibraryCalls
SetHandleCount
LocalCompact
MapUserPhysicalPages
CreateFileMappingW
IsProcessInJob
GlobalUnfix
DecodeSystemPointer
UnlockFileEx
GetFileTime
CancelWaitableTimer
GetNamedPipeHandleStateA
ResetWriteWatch
GetCommandLineA
GetCommModemStatus
DisconnectNamedPipe
SetProcessShutdownParameters
DeactivateActCtx
HeapAlloc
CreateTapePartition
TlsGetValue
GetNamedPipeInfo
GetProcessHeap
WTSGetActiveConsoleSessionId
RemoveDirectoryA
SetDllDirectoryA
GetTimeFormatA
GetExitCodeThread
WinExec
DebugActiveProcessStop
SetEvent
IsDBCSLeadByte
GlobalLock
LocalUnlock
lstrcmpiA
HeapFree
FreeEnvironmentStringsW
SetEnvironmentVariableW
IsProcessorFeaturePresent
ReleaseMutex
GetFileSize
GetTempFileNameW
GetStartupInfoA
GetModuleHandleW
GetProcAddress
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
GetLastError
InterlockedDecrement
SetUnhandledExceptionFilter
Sleep
ExitProcess
WriteFile
GetStdHandle
GetModuleFileNameA
FreeEnvironmentStringsA
GetEnvironmentStrings
WideCharToMultiByte
GetEnvironmentStringsW
GetFileType
DeleteCriticalSection
HeapCreate
VirtualFree
QueryPerformanceCounter
Sections
.text Size: 158KB - Virtual size: 158KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 24KB - Virtual size: 42KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ