Static task
static1
Behavioral task
behavioral1
Sample
be11b693c09b062e10b4c54670490b703006499f07566d24a1e63d79369a1213.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
be11b693c09b062e10b4c54670490b703006499f07566d24a1e63d79369a1213.exe
Resource
win10v2004-20220812-en
General
-
Target
be11b693c09b062e10b4c54670490b703006499f07566d24a1e63d79369a1213
-
Size
261KB
-
MD5
e412f31041ae1bd04cb0cf07913e7a93
-
SHA1
21df3859ea15637b7b903bd0309977bf8c124367
-
SHA256
be11b693c09b062e10b4c54670490b703006499f07566d24a1e63d79369a1213
-
SHA512
d2ac90634f742d323927a96f234f9c5e66e467fdf5165386d13407d33f20e27a13a8270648cc2e5ae47929aa52b87b17866a8969d226646c3b84a7230ff66441
-
SSDEEP
6144:N5/wHw3/BCKphyF/T55/tEddgvvoUvQsEKulE:TwuZD4b55K7gvvr4sE7lE
Malware Config
Signatures
Files
-
be11b693c09b062e10b4c54670490b703006499f07566d24a1e63d79369a1213.exe windows x86
759404c0ef7e08212e7269beb2686963
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GlobalLock
EnterCriticalSection
HeapFree
GetDriveTypeA
SetLastError
MapViewOfFile
GetFileTime
GetModuleHandleA
SetFileAttributesW
SetLastError
CloseHandle
GetCommandLineA
GetCommandLineW
GetFileAttributesA
WaitForSingleObject
Sleep
HeapCreate
GetCurrentDirectoryW
ReadFile
IsBadReadPtr
GetFileType
ExitProcess
SuspendThread
LocalSize
GetEnvironmentVariableW
uxtheme
SetWindowTheme
CloseThemeData
GetThemeTextExtent
GetThemeBool
GetThemeColor
CloseThemeData
DrawThemeBackground
IsThemeActive
GetThemeEnumValue
DrawThemeEdge
GetWindowTheme
GetThemeTextMetrics
OpenThemeData
deskmon
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
DllCanUnloadNow
Sections
.text Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 512B - Virtual size: 604KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 445KB - Virtual size: 445KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE