Static task
static1
Behavioral task
behavioral1
Sample
322a548717e79b6d9b1f2660129d130efeed8c7b2182ef6b85b2c6cbada54588.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
322a548717e79b6d9b1f2660129d130efeed8c7b2182ef6b85b2c6cbada54588.exe
Resource
win10v2004-20220812-en
General
-
Target
322a548717e79b6d9b1f2660129d130efeed8c7b2182ef6b85b2c6cbada54588
-
Size
78KB
-
MD5
008fe3dd0eab2d6ed7b83daec076bb53
-
SHA1
abe0c81911db08414409f3316b0f8823135ac231
-
SHA256
322a548717e79b6d9b1f2660129d130efeed8c7b2182ef6b85b2c6cbada54588
-
SHA512
636883371beb355ed10575a0e52723da15f4128712d7682987fef0ee7f519c37fc78b499eb915d3e8a5de2f471db67572a94f8e8959c9378bbebd12441e392c8
-
SSDEEP
1536:Cc+gyOmbKRX5/0TP2iqTb2g6sZvmOlkS14Zb5q9FBeZrsBFTTNXKnoDj:V+lLmD/0LvqTd6sEO3Utwkr8tTFKoDj
Malware Config
Signatures
Files
-
322a548717e79b6d9b1f2660129d130efeed8c7b2182ef6b85b2c6cbada54588.exe windows x86
96307bdd2d3e4630ef401cc4180ae3cb
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetFileTime
GetFileAttributesW
GetProcAddress
SetFileAttributesW
GetSystemDirectoryW
GetProcessHeap
GetModuleHandleW
VirtualProtect
GetCommandLineW
FormatMessageA
VirtualFree
lstrlenA
GetLocalTime
SetFilePointer
GetSystemDirectoryA
WaitForMultipleObjects
WriteConsoleA
VirtualProtectEx
GetModuleHandleA
GetShortPathNameA
FreeEnvironmentStringsW
LCMapStringA
msvcrt
__setusermatherr
strrchr
fprintf
_stricmp
__p___initenv
_exit
_iob
_controlfp
fopen
signal
_XcptFilter
calloc
__set_app_type
getenv
_errno
_adjust_fdiv
__getmainargs
__p__fmode
_except_handler3
_setmode
free
__p__commode
_initterm
atoi
fwrite
strlen
advapi32
LookupPrivilegeValueW
RegFlushKey
RegDeleteValueW
CheckTokenMembership
SetSecurityDescriptorGroup
CryptDestroyHash
RegOpenKeyExW
InitializeAcl
AdjustTokenPrivileges
CopySid
GetSecurityDescriptorDacl
RegDeleteKeyA
RegEnumKeyW
RegCloseKey
RevertToSelf
RegQueryInfoKeyW
IsValidSid
CryptHashData
RegSetValueExW
AllocateAndInitializeSid
user32
wsprintfA
CharNextA
GetCursorPos
IsWindow
TranslateMessage
GetSysColorBrush
SetClipboardData
TrackPopupMenu
GetMessagePos
PostQuitMessage
gdi32
StrokePath
EndDoc
CreateFontW
GetEnhMetaFileDescriptionA
DeleteDC
SetMapperFlags
CreateEllipticRgn
Pie
GetOutlineTextMetricsA
PlayMetaFile
LPtoDP
ole32
CoSetProxyBlanket
CoCreateGuid
CoInitializeEx
OleGetClipboard
CreateBindCtx
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
ReleaseStgMedium
OleFlushClipboard
CoInitialize
CoGetClassObject
StringFromIID
comctl32
ImageList_Add
ImageList_EndDrag
InitializeFlatSB
ImageList_Remove
ImageList_GetBkColor
CreatePropertySheetPageA
PropertySheetW
CreateToolbarEx
ImageList_SetBkColor
Sections
.text Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 63KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ