Static task
static1
Behavioral task
behavioral1
Sample
new.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
new.exe
Resource
win10v2004-20220812-en
General
-
Target
new.exe
-
Size
2.3MB
-
MD5
574e031a4747d5e6315b894f983d3001
-
SHA1
30222efc71057a20e085b757c7eadb75ee50b155
-
SHA256
842fc15b363a849a21ce37a22bd237371576a0a92adc3718adce933dfbb16f83
-
SHA512
7a204e8f508e5e0d0f798f996d53e301d8bc330b86f26dab55ed22495c4ed09c0bc149c2e7857cc1fa68f0e118092b8c9f1ab8d321540c8277fcfd52b76226a1
-
SSDEEP
12288:2YSJAsjzCjawSIIgH8n7XAW76XcpjvV653IDqYheWiYWZaQKjYD:6JAsjvI
Malware Config
Signatures
Files
-
new.exe.exe windows x86
4fe55bca389b30352569c218f0225a87
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
ord17
kernel32
LoadResource
GetProcAddress
GlobalLock
VirtualAllocEx
GetModuleHandleW
FreeLibrary
WideCharToMultiByte
GetConsoleWindow
lstrcmpiA
InterlockedIncrement
GlobalUnlock
MulDiv
SetFilePointerEx
GetTimeZoneInformation
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetStringTypeW
SetEnvironmentVariableA
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
GetCommandLineA
GetCPInfo
GetOEMCP
IsValidCodePage
FindNextFileA
IsDBCSLeadByte
FindFirstFileExA
FindClose
SetStdHandle
GetFullPathNameW
GetCurrentDirectoryW
HeapReAlloc
HeapSize
LCMapStringW
CompareStringW
GetACP
WriteFile
GetStdHandle
GetModuleHandleExW
ExitProcess
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
PeekNamedPipe
CloseHandle
GetFileType
GetDriveTypeW
CreateFileW
VirtualQuery
GetSystemInfo
GlobalAlloc
LoadLibraryA
GetSystemDirectoryA
DisableThreadLibraryCalls
Sleep
MultiByteToWideChar
GetModuleHandleA
GetCurrentThreadId
FindResourceA
LeaveCriticalSection
EncodePointer
LoadLibraryExA
InterlockedDecrement
GetCurrentProcess
SetLastError
VirtualProtect
SizeofResource
GetModuleFileNameA
DeleteCriticalSection
DecodePointer
RaiseException
GetLastError
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
LoadLibraryExW
TlsFree
WriteConsoleW
TlsSetValue
TlsGetValue
TlsAlloc
RtlUnwind
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetStartupInfoW
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
VirtualFree
VirtualAlloc
IsProcessorFeaturePresent
FlushInstructionCache
InterlockedPushEntrySList
InterlockedPopEntrySList
InitializeSListHead
GetProcessHeap
HeapFree
HeapAlloc
OutputDebugStringW
IsDebuggerPresent
user32
BeginPaint
ReleaseDC
InvalidateRect
RegisterClassExA
PtInRect
GetParent
CreateMenu
GetMenuStringA
SetRect
GetClientRect
RemoveMenu
EndPaint
UnregisterClassA
SetRectEmpty
CharNextA
GetMenuState
LoadMenuA
GetWindowRect
GetMenuItemID
GetFocus
LoadCursorA
DestroyWindow
GetDC
SetWindowPos
EqualRect
InsertMenuA
GetMenuItemCount
LoadStringA
SetWindowRgn
UnionRect
EndDialog
DialogBoxParamA
GetSubMenu
GetActiveWindow
ShowWindow
IsWindow
GetClassInfoExA
OffsetRect
SetWindowLongA
CallWindowProcA
IsChild
GetWindowLongA
MessageBoxA
MoveWindow
DefWindowProcA
DestroyMenu
CreateWindowExA
IntersectRect
SetFocus
SendMessageA
SetParent
gdi32
SaveDC
CloseMetaFile
SetWindowOrgEx
CreateRectRgnIndirect
SetWindowExtEx
GetDeviceCaps
DeleteDC
CreateMetaFileA
SetViewportOrgEx
RestoreDC
LPtoDP
CreateDCA
SetMapMode
DeleteMetaFile
advapi32
RegQueryInfoKeyW
RegDeleteValueA
RegCloseKey
RegOpenKeyExA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegEnumKeyExA
shell32
SHGetFolderPathA
ole32
CoTaskMemAlloc
CoCreateInstance
CreateOleAdviseHolder
CoTaskMemFree
CreateDataAdviseHolder
OleRegGetMiscStatus
OleRegEnumVerbs
StgOpenStorage
OleTranslateAccelerator
OleCreateMenuDescriptor
CoTaskMemRealloc
OleRegGetUserType
OleDestroyMenuDescriptor
oleaut32
LoadRegTypeLi
SysFreeString
LoadTypeLi
SysStringByteLen
OleCreatePropertyFrame
SysStringLen
VariantChangeType
VariantClear
VarUI4FromStr
VariantInit
Sections
.text Size: 164KB - Virtual size: 164KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 46KB - Virtual size: 45KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2.0MB - Virtual size: 2.0MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ