Static task
static1
Behavioral task
behavioral1
Sample
2b39778a896b8d543cc58823b4f36ad468c960d18c827359c8c5eeb0c12a0f1f.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
2b39778a896b8d543cc58823b4f36ad468c960d18c827359c8c5eeb0c12a0f1f.exe
Resource
win10v2004-20221111-en
General
-
Target
2b39778a896b8d543cc58823b4f36ad468c960d18c827359c8c5eeb0c12a0f1f
-
Size
309KB
-
MD5
2443ad8fa66cae2fbde0d394ce1fb8d6
-
SHA1
e1adeaa2a0fdba99fcf63218bbcb4fc5f5502d28
-
SHA256
2b39778a896b8d543cc58823b4f36ad468c960d18c827359c8c5eeb0c12a0f1f
-
SHA512
be09591c7792d4ba7634a124aa41ba8d0e3a09ed73f2b9b9c0e263adc013b43979f2d6dae94c636b4dc21a4b1eb1c0ebbe1cfea530eb9a3ac8adefd71c41907d
-
SSDEEP
6144:o4PhJSr6FNm9ZqM9vtmbJq8RVqIje1TBPqNJcwvlr:BJkr6/mvz4bY0VPE+
Malware Config
Signatures
Files
-
2b39778a896b8d543cc58823b4f36ad468c960d18c827359c8c5eeb0c12a0f1f.exe windows x86
2576bc247fa169e40c69c0dbc3916801
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
wininet
IsUrlCacheEntryExpiredA
SetUrlCacheEntryGroupW
InternetGoOnlineA
InternetSetDialState
InternetShowSecurityInfoByURLW
comctl32
InitCommonControlsEx
user32
GetKeyNameTextA
DdeAccessData
CharUpperA
VkKeyScanA
SetWindowRgn
AttachThreadInput
GetKeyboardType
CopyRect
RegisterDeviceNotificationW
RegisterClassA
UnhookWindowsHookEx
SwitchToThisWindow
ModifyMenuA
SendMessageW
CreateDialogParamW
GetMonitorInfoA
SetClipboardData
DragDetect
EnumDisplayMonitors
RegisterClassExA
SendInput
SetWindowsHookExW
GetKBCodePage
DefMDIChildProcA
GetDC
SendNotifyMessageA
GetInputDesktop
comdlg32
GetFileTitleA
kernel32
LCMapStringA
AddAtomW
EnterCriticalSection
GetSystemInfo
GetTickCount
GetModuleHandleA
GetOEMCP
WideCharToMultiByte
SetHandleCount
OpenMutexA
FreeEnvironmentStringsA
HeapReAlloc
QueryPerformanceCounter
HeapSize
RtlUnwind
GetProcAddress
InterlockedExchange
ReadFile
GetProfileIntA
VirtualQuery
IsBadWritePtr
LeaveCriticalSection
VirtualFree
GetTimeFormatA
FlushFileBuffers
GetSystemTimeAsFileTime
GetEnvironmentStringsW
ExitProcess
MultiByteToWideChar
HeapCreate
GetCommandLineA
IsValidLocale
GetEnvironmentStrings
GetVersionExA
GetCurrentThreadId
CreateMutexA
TlsFree
CompareStringW
SetStdHandle
ReadConsoleOutputAttribute
TlsGetValue
GetCurrentThread
GetLastError
CloseHandle
GetMailslotInfo
VirtualProtect
SetEnvironmentVariableA
GetStringTypeW
GetStringTypeA
GetUserDefaultLCID
SetLastError
CompareStringA
GetLocaleInfoW
FreeEnvironmentStringsW
UnhandledExceptionFilter
GetModuleFileNameA
HeapDestroy
TlsSetValue
LCMapStringW
GetStartupInfoA
DebugBreak
LocalUnlock
GetLocaleInfoA
IsValidCodePage
EnumSystemLocalesA
DeleteCriticalSection
GetCurrentProcess
GetDateFormatA
GetCPInfo
TerminateProcess
GetPrivateProfileSectionW
HeapAlloc
VirtualAlloc
GetStdHandle
SetConsoleCursorPosition
GetTimeZoneInformation
TlsAlloc
GetACP
GetStringTypeExW
LoadLibraryA
SetFilePointer
GetFileType
GetCurrentProcessId
HeapFree
GetEnvironmentVariableA
InitializeCriticalSection
LoadResource
WriteFile
Sections
.text Size: 176KB - Virtual size: 175KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 30KB - Virtual size: 61KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 88KB - Virtual size: 88KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 14KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ