Static task
static1
Behavioral task
behavioral1
Sample
ce29cd7718d8119eec80d4d22968daded04bb67420972d7e848cb7133ed9b7d6.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ce29cd7718d8119eec80d4d22968daded04bb67420972d7e848cb7133ed9b7d6.exe
Resource
win10v2004-20220901-en
General
-
Target
ce29cd7718d8119eec80d4d22968daded04bb67420972d7e848cb7133ed9b7d6
-
Size
313KB
-
MD5
29593b4749a1ed043cc330bd02f3bc07
-
SHA1
eee1fec3d13a6f9338b1f6b2c21785c72db07252
-
SHA256
ce29cd7718d8119eec80d4d22968daded04bb67420972d7e848cb7133ed9b7d6
-
SHA512
f5376f8beedb2e228a3ed04dd372257e2576134bf8db3f2ee13be0c0ee5f98e659024cb43ab7773a4491fa4ddc89f42c3b10926baaa7d19e454fbae51eb46263
-
SSDEEP
6144:mCUYVZ1ktxr13KG8uyfHej7pbWcqkEfsgRsRXmYHjQd+MJkBDUHYDMb:dzepUfHej7FW9xs7jQ7mY4U
Malware Config
Signatures
Files
-
ce29cd7718d8119eec80d4d22968daded04bb67420972d7e848cb7133ed9b7d6.exe windows x86
21b220fa09b89e85d3d710fae6beb6ff
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
rpcrt4
RpcStringFreeA
UuidToStringA
UuidCreate
ole32
CoCreateInstance
CoInitializeEx
CoUninitialize
shell32
SHGetFolderPathA
user32
MessageBoxA
GetSystemMetrics
advapi32
RegOpenKeyExA
SetSecurityDescriptorDacl
RegCloseKey
RegSetValueExA
ImpersonateSelf
RevertToSelf
RegQueryValueExA
InitializeSecurityDescriptor
oleaut32
SysAllocStringByteLen
SysFreeString
kernel32
IsBadCodePtr
TlsSetValue
lstrcmpiA
SetEndOfFile
FreeLibrary
SetUnhandledExceptionFilter
TryEnterCriticalSection
DeleteCriticalSection
WriteFile
VirtualQuery
HeapSize
SetHandleCount
FormatMessageA
SetStdHandle
CreateDirectoryA
OutputDebugStringA
HeapDestroy
GetCommandLineA
LeaveCriticalSection
RtlUnwind
VirtualAlloc
FreeEnvironmentStringsA
HeapAlloc
GetCurrentDirectoryA
LocalFree
GetUserDefaultLCID
ReadFile
IsValidLocale
TlsAlloc
GetLocalTime
GetOEMCP
WideCharToMultiByte
VirtualProtect
CloseHandle
FreeEnvironmentStringsW
SetFilePointer
LoadLibraryExA
TlsGetValue
WaitForSingleObject
GetCurrentThreadId
HeapFree
CreateMutexA
SetLastError
TlsFree
EnterCriticalSection
GetSystemInfo
HeapReAlloc
GetSystemTimeAsFileTime
DeleteFileA
ReleaseMutex
IsValidCodePage
GetFileType
UnhandledExceptionFilter
RaiseException
CreateFileA
GetStdHandle
TerminateThread
LCMapStringA
GetModuleHandleA
GetACP
FlushFileBuffers
VirtualFree
LCMapStringW
EnumSystemLocalesA
VirtualAllocEx
comctl32
ImageList_LoadImageW
ImageList_SetBkColor
FlatSB_EnableScrollBar
FlatSB_GetScrollPos
ImageList_ReplaceIcon
CreateStatusWindowW
ImageList_Remove
ImageList_Write
FlatSB_GetScrollInfo
ImageList_Destroy
FlatSB_SetScrollRange
tsbyuv
DriverProc
Sections
.text Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 282KB - Virtual size: 993KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 6KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ