Static task
static1
Behavioral task
behavioral1
Sample
3806622847acb1f2d6f3540f0cae844de9a6344b32565cfb2300ff9dc7ec10ec.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
3806622847acb1f2d6f3540f0cae844de9a6344b32565cfb2300ff9dc7ec10ec.exe
Resource
win10v2004-20220812-en
General
-
Target
3806622847acb1f2d6f3540f0cae844de9a6344b32565cfb2300ff9dc7ec10ec
-
Size
40KB
-
MD5
629fe5a06fe7747749ca4b3068d4fef3
-
SHA1
f23cae2007a93f063fd35edef367fd481984bbcb
-
SHA256
3806622847acb1f2d6f3540f0cae844de9a6344b32565cfb2300ff9dc7ec10ec
-
SHA512
7b44164833e6cc884a2c6e1ac2f316ce81119e3b0af414a2e3b7e2c84da544b43cfa8a247f3b9e9b195c424617e7b0c028b8a0b808a1048723f4627ddcc2852a
-
SSDEEP
384:u+UoXF1DNmPntDtnmtTfaSiiVl+mljAUSYtwuBUPtQy0ao6TLIoQbJognIFbR:upolQNyfaSVzZNtwuG+rsItbJoDxR
Malware Config
Signatures
Files
-
3806622847acb1f2d6f3540f0cae844de9a6344b32565cfb2300ff9dc7ec10ec.exe windows x86
24e1313ad1b5318c80f556301cf395a4
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
SetEntriesInAclA
GetUserNameA
GetSecurityInfo
SetSecurityInfo
kernel32
CloseHandle
HeapFree
ReadFile
HeapAlloc
GetProcessHeap
GetFileInformationByHandle
CreateFileA
GetSystemDirectoryA
GetProcAddress
GetModuleHandleA
LocalFree
IsBadReadPtr
GetVersionExA
GetCommandLineA
GetVersion
ExitProcess
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
TerminateProcess
GetCurrentProcess
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
RtlUnwind
WriteFile
MultiByteToWideChar
GetStringTypeA
GetStringTypeW
GetLastError
FlushFileBuffers
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
SetFilePointer
SetStdHandle
LCMapStringA
LCMapStringW
ReadConsoleInputA
SetConsoleMode
GetConsoleMode
Sections
.text Size: 24KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE