Static task
static1
Behavioral task
behavioral1
Sample
5098acaed9ee6c3a87da46799262ef27f2749370c033d3d01f591ae76fbcfc2e.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
5098acaed9ee6c3a87da46799262ef27f2749370c033d3d01f591ae76fbcfc2e.exe
Resource
win10v2004-20220812-en
General
-
Target
5098acaed9ee6c3a87da46799262ef27f2749370c033d3d01f591ae76fbcfc2e
-
Size
240KB
-
MD5
2b22ba887c7522f5ba68a5d794a4b250
-
SHA1
76a530d818048e55597479fa6fb7b70604eabeef
-
SHA256
5098acaed9ee6c3a87da46799262ef27f2749370c033d3d01f591ae76fbcfc2e
-
SHA512
b9e54d3e558ff972f25e1ed94dc5f9c0fb9ca65f4722f11b47a1d944fa8b8788711c80f0893f6d0d9e9482a1b14c25ba45923175374e225aa16418a33caa2f3d
-
SSDEEP
6144:kSkvzuuQkMOFmB0QbRhSDROzGQEmHVlyC:t+z4OFmB0Z0SXC
Malware Config
Signatures
Files
-
5098acaed9ee6c3a87da46799262ef27f2749370c033d3d01f591ae76fbcfc2e.exe windows x86
eb48be0d56d0c24e5096e3cb3303c10f
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
belioc
MacClose
MacFindFirstMatchEx
MacIoctl
MacOpen
MacGetNamesEx
MacFreeNames
shell32
Shell_NotifyIconA
advapi32
RegCreateKeyExA
RegDeleteKeyA
RegEnumKeyExA
RegOpenKeyExA
OpenSCManagerA
OpenServiceA
QueryServiceStatus
RegCloseKey
RegQueryValueExA
RegEnumValueA
RegDeleteValueA
RegSetValueExA
kernel32
RtlUnwind
HeapFree
HeapReAlloc
HeapAlloc
GetStartupInfoA
LocalUnlock
ExitProcess
RaiseException
LocalFree
TerminateProcess
HeapSize
GlobalFlags
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CloseHandle
FreeLibrary
FlushFileBuffers
ReadFile
SetFilePointer
WriteFile
GetCurrentProcess
WritePrivateProfileStringA
SetErrorMode
GetOEMCP
TlsGetValue
GetCPInfo
GetProcessVersion
EnterCriticalSection
LocalReAlloc
TlsSetValue
TlsFree
GlobalReAlloc
LeaveCriticalSection
TlsAlloc
GlobalHandle
DeleteCriticalSection
SetLastError
InitializeCriticalSection
GetProcAddress
lstrcpynA
MulDiv
GetVersion
Sleep
CreateMutexA
LoadLibraryA
GlobalAlloc
lstrcmpA
GetCurrentThread
GetModuleFileNameA
lstrlenA
InterlockedDecrement
InterlockedIncrement
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
lstrcpyA
WideCharToMultiByte
LocalAlloc
LocalLock
MultiByteToWideChar
HeapDestroy
HeapCreate
GetLastError
ReleaseMutex
GetEnvironmentVariableA
GetVersionExA
GetCommandLineA
GetACP
user32
GetClientRect
AdjustWindowRectEx
SetFocus
GetFocus
DispatchMessageA
PeekMessageA
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
IsDialogMessageA
SetWindowTextA
ShowWindow
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
DestroyMenu
LoadStringA
PostQuitMessage
SetCursor
ValidateRect
TranslateMessage
GetMessageA
GetClassNameA
PtInRect
ClientToScreen
ReleaseDC
GetDC
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
GetSysColorBrush
IsWindowVisible
CopyRect
GetTopWindow
MessageBoxA
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
SystemParametersInfoA
IsIconic
GetWindowPlacement
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetMenuItemCount
DeleteMenu
InsertMenuA
CheckMenuItem
PostMessageA
SetForegroundWindow
KillTimer
GetAsyncKeyState
GetCursorPos
GetSubMenu
LoadIconA
LoadMenuA
EnableMenuItem
CheckMenuRadioItem
LoadImageA
GetSystemMetrics
SetTimer
RegisterWindowMessageA
wsprintfA
GetParent
SendMessageA
MessageBeep
IsCharAlphaNumericA
IsCharAlphaA
GetSystemMenu
AppendMenuA
EnableWindow
GetNextDlgTabItem
GetWindowRect
UnregisterClassA
ctl3d32
ord3
ord22
ord24
ord13
ord12
ord6
ord21
ord25
ord16
gdi32
GetClipBox
SetTextColor
SetBkColor
GetObjectA
CreateBitmap
DeleteObject
SelectObject
GetDeviceCaps
GetStockObject
DeleteDC
SaveDC
RestoreDC
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
comctl32
ord17
winspool.drv
OpenPrinterA
DocumentPropertiesA
ClosePrinter
Sections
.text Size: 112KB - Virtual size: 108KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 16KB - Virtual size: 28KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 12KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.ardata Size: 72KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE