Static task
static1
Behavioral task
behavioral1
Sample
be418808acdc6f6c73ef647d12d26bd635919117c7d2405afe09b911ad7586e1.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
be418808acdc6f6c73ef647d12d26bd635919117c7d2405afe09b911ad7586e1.exe
Resource
win10v2004-20220812-en
General
-
Target
be418808acdc6f6c73ef647d12d26bd635919117c7d2405afe09b911ad7586e1
-
Size
37KB
-
MD5
143e17f8d1761ce97fd1c09c928d3a80
-
SHA1
81eb12261e2553f5e056fd15d96304565f9c6af3
-
SHA256
be418808acdc6f6c73ef647d12d26bd635919117c7d2405afe09b911ad7586e1
-
SHA512
150c5775fd79bd3a11d1f440f159b894c15b52c0258d8eaf841bbcf3a6bc722e3d6bb788454b1e4977a0cf44c3f6e207b82debee17bab19b68943999c4eba48c
-
SSDEEP
768:EuQqD17oXYMb/3GMe005klN2r+ZgMAyBzTZcW8Y:EuQqDXMe005oNd+Y
Malware Config
Signatures
Files
-
be418808acdc6f6c73ef647d12d26bd635919117c7d2405afe09b911ad7586e1.exe windows x86
4038e6e5429d28e0a22c6be10faa82e3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
IsDebuggerPresent
HeapDestroy
GetExpandedNameA
FormatMessageA
WriteConsoleA
GetCurrentThread
FlushFileBuffers
GetTimeFormatA
InterlockedExchange
GetACP
GetStdHandle
VirtualProtect
GetModuleHandleA
GetCurrentProcessId
OpenSemaphoreA
LoadLibraryA
GetThreadPriority
DeleteAtom
HeapCreate
GetCurrentProcess
GetEnvironmentStringsA
user32
ValidateRgn
GetParent
SetActiveWindow
DrawTextA
BeginPaint
SetForegroundWindow
ShowWindow
FillRect
GetWindow
wsprintfA
EndPaint
GetDlgItem
ReleaseDC
IsIconic
GetWindowTextLengthA
GetCursorPos
GetFocus
GetClassNameA
FrameRect
advapi32
RegCreateKeyA
RegEnumKeyA
RegFlushKey
RegCloseKey
RegQueryInfoKeyA
uxtheme
GetThemeSysFont
Sections
.text Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1024B - Virtual size: 708KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ