Static task
static1
Behavioral task
behavioral1
Sample
81c006fe097c8166a092e7bb2ccf944e1f38862b54761f78e8fa5177bc7940a1.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
81c006fe097c8166a092e7bb2ccf944e1f38862b54761f78e8fa5177bc7940a1.exe
Resource
win10v2004-20221111-en
General
-
Target
81c006fe097c8166a092e7bb2ccf944e1f38862b54761f78e8fa5177bc7940a1
-
Size
47KB
-
MD5
71a28adbafe82dbea6b8a442970ce45a
-
SHA1
2136b50d7c8f29ba44c73ef346f0f5ba370103ec
-
SHA256
81c006fe097c8166a092e7bb2ccf944e1f38862b54761f78e8fa5177bc7940a1
-
SHA512
8d38afb104acf8cc9d57cd89d0649825294d686029ef5c02251fb38d1af0cef8e5845b0477e609f024b8dc5b06977a884af669bcd6365f3b352eb46440183728
-
SSDEEP
768:vHVZDrnHNuMLj9kv8OJjJ1ict8WDpyvNC7ngDXTFN5pKOOS2Qn04L:9ttfSv3jZt8W142M5pKOOS2Q04L
Malware Config
Signatures
Files
-
81c006fe097c8166a092e7bb2ccf944e1f38862b54761f78e8fa5177bc7940a1.exe windows x86
54778d9deca43430f1a773887c2a4061
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
rasman
RasCompressionSetInfo
RasmanUninitialize
RasSetCachedCredentials
RasGetProtocolInfo
RasProtocolEnum
RasPortEnumProtocols
RasDeviceConnect
RasRpcRemoteGetSystemDirectory
RasGetHportFromConnection
mpr
WNetGetUniversalNameW
WNetUseConnectionA
WNetPropertyDialogA
WNetGetUniversalNameA
WNetAddConnection2W
WNetSetLastErrorW
WNetGetConnection3W
WNetClearConnections
WNetAddConnection3A
WNetOpenEnumW
WNetGetNetworkInformationW
WNetCancelConnection2W
WNetGetConnection2A
WNetGetConnection3A
WNetAddConnection2A
WNetUseConnectionW
WNetGetProviderNameA
WNetSetConnectionA
WNetGetConnection2W
WNetLogonNotify
WNetFormatNetworkNameW
shlwapi
SHDeleteEmptyKeyA
UrlCombineW
StrChrW
StrIsIntlEqualA
DllGetVersion
SHRegEnumUSKeyA
PathFindExtensionA
StrCmpNA
AssocQueryKeyW
PathFindExtensionW
PathIsPrefixW
PathRemoveBlanksA
PathRelativePathToW
UrlCombineA
StrRStrIW
PathIsURLW
GetMenuPosFromID
kernel32
LoadLibraryW
QueryActCtxW
SetCommTimeouts
GetAtomNameW
GetCurrentThread
SetSystemTime
SetDefaultCommConfigA
SetConsoleCursorMode
GetLocaleInfoW
QueryPerformanceCounter
GetModuleHandleW
MapUserPhysicalPagesScatter
opengl32
glTexCoord3sv
glColor4dv
glClear
glColor4i
GlmfInitPlayback
glIsList
glIndexfv
wglCreateLayerContext
glSelectBuffer
glPointSize
glColorMask
glRasterPos3sv
glFogiv
glTexCoord3iv
glMap1f
glNormal3s
glIndexdv
glVertex4i
glReadPixels
glRects
glColor3dv
glTexCoord4i
glColor3s
glTexCoord4s
wglGetProcAddress
glVertexPointer
GlmfCloseMetaFile
glIndexMask
glColor4f
glDeleteLists
glIndexubv
glColor3us
glVertex3s
glTexParameteri
glMaterialf
glIndexs
glGetLightiv
glEnableClientState
samlib
SamGetMembersInAlias
SamLookupDomainInSamServer
SamSetInformationGroup
SamShutdownSamServer
SamGetGroupsForUser
SamRemoveMemberFromForeignDomain
SamiLmChangePasswordUser
SamDeleteUser
SamSetMemberAttributesOfGroup
Sections
.text Size: 30KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ