Static task
static1
Behavioral task
behavioral1
Sample
b1a8e0bb65d403eed3aa6dfc9f7f945a22fc4e69c6e82a185abf835ad6d86027.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
b1a8e0bb65d403eed3aa6dfc9f7f945a22fc4e69c6e82a185abf835ad6d86027.exe
Resource
win10v2004-20220812-en
General
-
Target
b1a8e0bb65d403eed3aa6dfc9f7f945a22fc4e69c6e82a185abf835ad6d86027
-
Size
752KB
-
MD5
556877c010ff65de6f441867b2242e23
-
SHA1
68e083f40616feb9acf3b9e798081586ee6fbe54
-
SHA256
b1a8e0bb65d403eed3aa6dfc9f7f945a22fc4e69c6e82a185abf835ad6d86027
-
SHA512
33d45d7208aae058af9351e9fe620b88422384b86e9a907cacfaccb1da44227e7d6566c3e6d23f693e5e6d0c59f238b5408b7a5eae3bb14c6582cdd4ef2dd593
-
SSDEEP
12288:sHqobopZ2m3DzlaW2W5snzjhdYcXQjsFNOls8hj9L:sHqRpZ2mTzljzwzLYcQRlsEp
Malware Config
Signatures
Files
-
b1a8e0bb65d403eed3aa6dfc9f7f945a22fc4e69c6e82a185abf835ad6d86027.exe windows x86
26cf047cc3e0f0fbabdb02645d2b59aa
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
version
GetFileVersionInfoW
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW
comctl32
CreateToolbarEx
ImageList_Draw
ord6
ImageList_AddMasked
ImageList_Destroy
CreatePropertySheetPageA
CreatePropertySheetPageW
ImageList_Create
DestroyPropertySheetPage
kernel32
GetProcAddress
LoadLibraryA
LCMapStringA
LCMapStringW
CreateEventA
GetOEMCP
GetVersion
VirtualAlloc
GetStartupInfoA
GetModuleHandleA
DeleteCriticalSection
FormatMessageA
CreateThread
InterlockedExchange
GetThreadTimes
FindResourceExW
InterlockedDecrement
GetCurrentDirectoryA
GetShortPathNameW
InterlockedCompareExchange
GetCPInfo
CreateMutexW
GetShortPathNameA
GetTimeFormatA
ExitThread
GetTempPathW
FreeLibrary
GetSystemTime
GetTempPathA
GetFileType
CloseHandle
GetTickCount
HeapCreate
FindResourceW
ExitProcess
InitializeCriticalSection
FileTimeToLocalFileTime
GetSystemInfo
GetThreadLocale
GetModuleHandleW
GlobalUnlock
GetConsoleCP
GetVersionExA
IsBadReadPtr
HeapReAlloc
GlobalReAlloc
GetACP
GlobalFree
HeapFree
GetStdHandle
GetModuleFileNameW
CopyFileW
HeapDestroy
CompareStringA
InterlockedIncrement
GetCurrentThread
GetLocalTime
GlobalHandle
ExpandEnvironmentStringsA
CreateProcessA
CopyFileA
CreateDirectoryA
GetStartupInfoW
HeapSize
GetCurrentDirectoryW
FindResourceA
GetStringTypeA
GetStringTypeW
GetFileTime
CreateFileMappingA
GetVersionExW
CreateFileMappingW
GetTempFileNameW
CompareStringW
GetTempFileNameA
GetFileSize
CreateProcessW
CreateFileA
GetCurrentThreadId
GetLocaleInfoW
CreateEventW
GlobalLock
GetProcessHeap
GetModuleFileNameA
HeapAlloc
GetLastError
GetLocaleInfoA
GetConsoleMode
CreateDirectoryW
EnumSystemLocalesA
GetCurrentProcessId
CreateMutexA
CreateFileW
GlobalAlloc
GetSystemTimeAsFileTime
GetCommandLineA
VirtualFree
IsBadWritePtr
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
RtlUnwind
WriteFile
MultiByteToWideChar
Sections
.text Size: 108KB - Virtual size: 104KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 632KB - Virtual size: 629KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE