Static task
static1
Behavioral task
behavioral1
Sample
60eff676401bd6d2a61ffa6ea12f11aeaa3b94c19819a0d5cd781f413370895c.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
60eff676401bd6d2a61ffa6ea12f11aeaa3b94c19819a0d5cd781f413370895c.exe
Resource
win10v2004-20220812-en
General
-
Target
60eff676401bd6d2a61ffa6ea12f11aeaa3b94c19819a0d5cd781f413370895c
-
Size
373KB
-
MD5
f911eeb12e6048b35d5a47adce8426fc
-
SHA1
391660aa0b545e0ca9a244e2ef9a87a0a3e3007f
-
SHA256
60eff676401bd6d2a61ffa6ea12f11aeaa3b94c19819a0d5cd781f413370895c
-
SHA512
bbaea3de68e3a2de992fd70dea46618f3b2be63494c45b5ef8ac88f39a1e8ddf6b29552e5761cd455956ce5db08c2961bcc6b4f29a8667cb422ea5472ba5f75f
-
SSDEEP
6144:dppX7RGMcYoqitPtLETXB7R4uMmZOZaqj/zFDHNOrZqn+JU63zOSEAsXJ3lxnTUY:dP9HyR1YTXB7R+taG/5bNWZE+Jv3SSY9
Malware Config
Signatures
Files
-
60eff676401bd6d2a61ffa6ea12f11aeaa3b94c19819a0d5cd781f413370895c.exe windows x86
c9b4cff203da1fffd04b2ece95b04447
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
ShowWindow
IsWindowUnicode
CloseWindow
SetWindowPlacement
SetParent
SendDlgItemMessageA
GetDlgItem
EndDeferWindowPos
IsWindowVisible
IsIconic
SetDlgItemInt
LoadCursorA
gdi32
Arc
CopyMetaFileW
EnumObjects
CreateEllipticRgn
ExtEscape
GetBkMode
AngleArc
BitBlt
ExcludeClipRect
CopyMetaFileA
GetBrushOrgEx
advapi32
RegQueryMultipleValuesA
RegUnLoadKeyA
ClearEventLogW
RegOpenKeyExA
RegSaveKeyA
RegisterEventSourceA
ReportEventA
PrivilegeCheck
RegCreateKeyA
SetTokenInformation
kernel32
SetLastError
TlsGetValue
GetLastError
HeapDestroy
HeapCreate
RtlUnwind
WriteFile
InitializeCriticalSection
EnterCriticalSection
GetStringTypeA
LeaveCriticalSection
LCMapStringA
VirtualFreeEx
VirtualProtect
LocalFlags
VirtualFree
GetLocaleInfoA
IsBadStringPtrA
ReleaseSemaphore
GetDateFormatA
IsBadWritePtr
GetStringTypeW
GetCPInfoExA
HeapFree
GetPrivateProfileStringA
WritePrivateProfileStringA
GetProcAddress
SetHandleInformation
VirtualAllocEx
LCMapStringW
MultiByteToWideChar
LoadLibraryA
TlsAlloc
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetACP
TlsSetValue
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
GetCPInfo
winspool.drv
AddPrintProcessorA
AddPrinterDriverExA
DeletePrinterConnectionA
ConfigurePortA
SetPrinterW
EnumPrintProcessorsA
DeletePrinterDriverExA
DeletePrinterConnectionW
netapi32
NetUseDel
NetLocalGroupDelMembers
NetConfigGet
Netbios
NetGetJoinInformation
NetConnectionEnum
NetGroupAdd
NetErrorLogRead
NetGetDCName
Sections
.text Size: 29KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 79KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.wai Size: 333KB - Virtual size: 332KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ