Static task
static1
Behavioral task
behavioral1
Sample
c9390aeb5d65679d126efa497d7662a33023e8bb68fe49fe2748243dce553e03.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
c9390aeb5d65679d126efa497d7662a33023e8bb68fe49fe2748243dce553e03.exe
Resource
win10v2004-20220812-en
General
-
Target
c9390aeb5d65679d126efa497d7662a33023e8bb68fe49fe2748243dce553e03
-
Size
198KB
-
MD5
061b312bde27a787f9eb78c005746e80
-
SHA1
8466e99d9b64c654c6ae853803b5254e0efdf8bb
-
SHA256
c9390aeb5d65679d126efa497d7662a33023e8bb68fe49fe2748243dce553e03
-
SHA512
b37633b445940e5e81e168bb96114a4e4a3272dc722dd9ebae98347a8b79d79692df3182615bd4657b9ba126f3821f4b05a73b81d87402c2531d8c4ceff24f39
-
SSDEEP
3072:KO0CBDjeh5lvkgvrKjxSEdAXwn6641cXdbITMJyR76h95MscrldZLIzxkA5rkmbW:2+uRkMo6XwEcX9ITLH5DcH1xpxV
Malware Config
Signatures
Files
-
c9390aeb5d65679d126efa497d7662a33023e8bb68fe49fe2748243dce553e03.exe windows x86
b650d219ea962e51e67223ead1b7fa75
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateThread
ExitProcess
ExitThread
FindFirstFileA
GetACP
GetCommandLineA
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetModuleHandleA
GetStartupInfoA
GetStringTypeW
GetSystemTimeAsFileTime
GetTickCount
GlobalUnlock
InterlockedIncrement
IsBadReadPtr
IsBadStringPtrA
LoadLibraryA
QueryPerformanceCounter
SetErrorMode
SetUnhandledExceptionFilter
VirtualAlloc
VirtualProtect
msvcrt
strstr
strncmp
atoi
strcmp
fwrite
wcschr
user32
ModifyMenuA
GetWindowTextA
DrawIconEx
DrawTextA
comctl32
GetEffectiveClientRect
InitCommonControls
ShowHideMenuCtl
CreateToolbarEx
Sections
.text Size: 94KB - Virtual size: 96KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 56KB - Virtual size: 56KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 29KB - Virtual size: 76KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 17KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ