Static task
static1
Behavioral task
behavioral1
Sample
0bd0e29bfda8222db5ab7b35ef9d850cfaaf37161c88e6ce3c51d93ba492bf6a.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
0bd0e29bfda8222db5ab7b35ef9d850cfaaf37161c88e6ce3c51d93ba492bf6a.exe
Resource
win10v2004-20220812-en
General
-
Target
0bd0e29bfda8222db5ab7b35ef9d850cfaaf37161c88e6ce3c51d93ba492bf6a
-
Size
130KB
-
MD5
e0b861e1539325a2e6bbdf359227a068
-
SHA1
73c8430706ce0445d4a5824e6e0f3c291696df14
-
SHA256
0bd0e29bfda8222db5ab7b35ef9d850cfaaf37161c88e6ce3c51d93ba492bf6a
-
SHA512
7b842429824997e0789696c5e3efda5eb727a3fa97d59980638cb0e5d346f2b9573c5eb58126c0df7d28b87650086f31df3c6fe34da4822ffdd717f033801620
-
SSDEEP
3072:v6bpGXjwr6Aibvmr1gKWBwFltkRyj0qRtpoeXADLtHeUZ:v6b23Ax74Kr9obb
Malware Config
Signatures
Files
-
0bd0e29bfda8222db5ab7b35ef9d850cfaaf37161c88e6ce3c51d93ba492bf6a.exe windows x86
c338c337fae028034bb5647da55b5384
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
ScrollConsoleScreenBufferA
LocalFree
LocalFileTimeToFileTime
GetStringTypeW
MultiByteToWideChar
LCMapStringW
HeapSize
RtlUnwind
GetConsoleCursorInfo
IsValidCodePage
GetOEMCP
LockResource
LoadLibraryA
GetLocalTime
PrepareTape
VerLanguageNameA
GetProcAddress
FlushFileBuffers
ReadConsoleOutputA
HeapFree
LoadResource
FreeResource
FindResourceA
HeapReAlloc
GetACP
GetCPInfo
LoadLibraryW
EnterCriticalSection
GetComputerNameA
Sleep
DebugActiveProcess
LeaveCriticalSection
HeapAlloc
GetLastError
GetSystemTimeAsFileTime
GetCommandLineA
HeapSetInformation
GetStartupInfoW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetModuleHandleW
ExitProcess
DecodePointer
WriteFile
GetStdHandle
GetModuleFileNameW
HeapCreate
EncodePointer
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetModuleFileNameA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStringsW
SetHandleCount
InitializeCriticalSectionAndSpinCount
GetFileType
DeleteCriticalSection
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
IsProcessorFeaturePresent
user32
GetFocus
mouse_event
GetScrollPos
SendMessageTimeoutA
SetSysColors
GetCapture
SetFocus
gdi32
EqualRgn
GetROP2
CopyMetaFileA
MaskBlt
StrokeAndFillPath
CreateBitmap
CheckColorsInGamut
FillRgn
PolyBezierTo
GetTextCharset
advapi32
OpenSCManagerA
shell32
DuplicateIcon
DragAcceptFiles
winmm
mixerGetNumDevs
joyGetThreshold
midiStreamPause
mmioFlush
imm32
ImmSetCompositionFontA
ImmSetCompositionStringA
version
GetFileVersionInfoSizeA
Sections
.text Size: 30KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 10KB - Virtual size: 10KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 216KB - Virtual size: 215KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ