Static task
static1
Behavioral task
behavioral1
Sample
f723f64be9b261022dfcd141f0acc8a9168f3241537fd07ae72b9acda7fb1bae.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
f723f64be9b261022dfcd141f0acc8a9168f3241537fd07ae72b9acda7fb1bae.exe
Resource
win10v2004-20221111-en
General
-
Target
f723f64be9b261022dfcd141f0acc8a9168f3241537fd07ae72b9acda7fb1bae
-
Size
137KB
-
MD5
fdaeb64a0f7c2287cd7058473d2878aa
-
SHA1
ca648437b9884ee430394c15a155ae803461ece1
-
SHA256
f723f64be9b261022dfcd141f0acc8a9168f3241537fd07ae72b9acda7fb1bae
-
SHA512
332ab425053947d8fd14b1b4f6ad9b64c44ad4237aad001967e94007d138a835a1a942507174a5628129642ed3e30e3c97f80eb9b1b741291cc4ed14bb5c02bd
-
SSDEEP
3072:B+y0rGFX2otWaIlRlMcDlhMoEE4zKzrfAyyt1figWlPF:4GF7Wnl//vMRjzeQqgWlt
Malware Config
Signatures
Files
-
f723f64be9b261022dfcd141f0acc8a9168f3241537fd07ae72b9acda7fb1bae.exe windows x86
5ef3a08a716660ded1e774348444931c
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FlushFileBuffers
CreateFileW
SetStdHandle
HeapFree
HeapQueryInformation
HeapSize
HeapReAlloc
CloseHandle
HeapCreate
MultiByteToWideChar
GetConsoleMode
GetConsoleCP
SetFilePointer
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleFileNameA
GetSystemTimeAsFileTime
LCMapStringW
GlobalFree
GetCurrentProcessId
GetTickCount
GetSystemDefaultLCID
WriteFile
GetCurrentProcess
HeapAlloc
RtlUnwind
CreateFileA
QueryPerformanceCounter
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
DecodePointer
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
EncodePointer
GetModuleFileNameW
GetProcAddress
GetModuleHandleW
ExitProcess
GetCommandLineA
HeapSetInformation
GetStartupInfoW
RaiseException
IsProcessorFeaturePresent
GetACP
GetOEMCP
GetCPInfo
IsValidCodePage
TlsAlloc
TlsGetValue
TlsSetValue
GetCurrentThreadId
TlsFree
SetLastError
GetLastError
GetStringTypeW
InitializeCriticalSectionAndSpinCount
HeapValidate
IsBadReadPtr
GetStdHandle
OutputDebugStringA
WriteConsoleW
GetFileType
OutputDebugStringW
LoadLibraryW
user32
RegisterClassA
GetScrollPos
DialogBoxParamA
DestroyWindow
GetMessageA
SetCapture
IsZoomed
LoadMenuA
GetClientRect
SendMessageA
IsDialogMessageA
TranslateMessage
GetMenu
LoadAcceleratorsA
GetMenuItemCount
DispatchMessageA
CloseWindow
EnableWindow
FindWindowA
gdi32
SetBkMode
winspool.drv
ClosePrinter
comdlg32
PrintDlgA
ws2_32
gethostname
Sections
.text Size: 96KB - Virtual size: 96KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 32KB - Virtual size: 31KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 432KB - Virtual size: 440KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 10KB - Virtual size: 9KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ