Static task
static1
Behavioral task
behavioral1
Sample
d188e03aa65e367f3082643bed1c10e7b5f73789bc7390b728b19c6a1be7fc05.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d188e03aa65e367f3082643bed1c10e7b5f73789bc7390b728b19c6a1be7fc05.exe
Resource
win10v2004-20220812-en
General
-
Target
d188e03aa65e367f3082643bed1c10e7b5f73789bc7390b728b19c6a1be7fc05
-
Size
46KB
-
MD5
25a16ca2a1f9e4ace3224e73cfca4323
-
SHA1
40f66ad73edd6e8e462dc4b92789c706ebd17e69
-
SHA256
d188e03aa65e367f3082643bed1c10e7b5f73789bc7390b728b19c6a1be7fc05
-
SHA512
d74eb914521c6418c0f4bf3d518acc9590bcb8ad295d22e7664e1e4a2b297ec65f6c3d1c98d8d1753c746eda5a2e015e5f8ecbdca275f5bb2ffe9b8927fdc8c2
-
SSDEEP
768:xDrbfKS76mWgyHwROghsgK4HMxjbTsIItJRi1C/7hucvQZGnScMl6OMgXhWyLsAP:xr6oyHGphsWspbBItWCzgd6QhWCf
Malware Config
Signatures
Files
-
d188e03aa65e367f3082643bed1c10e7b5f73789bc7390b728b19c6a1be7fc05.exe windows x86
2b0c84959597300b22e05c95226cf1de
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
msdart
?_TryWriteLock2@CReaderWriterLock3@@AAE_NXZ
?_DeleteIf@CLKRLinearHashTable@@AAEKP6G?AW4LK_PREDICATE@@PBXPAX@Z1AAW42@@Z
?IsUnlocked@CLockedSingleList@@QBE_NXZ
?ConvertExclusiveToShared@CFakeLock@@QAEXXZ
?ConvertExclusiveToShared@CCritSec@@QAEXXZ
?IsReadUnlocked@CFakeLock@@QBE_NXZ
?_CmpExch@CReaderWriterLock@@AAE_NJJ@Z
?SetTableLockSpinCount@CLKRHashTable@@QAEXG@Z
?IsWriteUnlocked@CSmallSpinLock@@QBE_NXZ
?IsWriteUnlocked@CLKRHashTable@@QBE_NXZ
??4CLKRHashTableStats@@QAEAAV0@ABV0@@Z
?Clear@CLKRHashTable@@QAEXXZ
?sm_dblDfltSpinAdjFctr@CFakeLock@@1NA
?ReadOrWriteLock@CFakeLock@@QAE_NXZ
?SetBucketLockSpinCount@CLKRLinearHashTable@@QAEXG@Z
?First@CDoubleList@@QBEQAVCListEntry@@XZ
?SetDefaultSpinCount@CSmallSpinLock@@SGXG@Z
?MaxSize@CLKRLinearHashTable@@QBEKXZ
?_CalcKeyHash@CLKRLinearHashTable@@ABEKK@Z
?_DeleteRecord@CLKRLinearHashTable@@AAE?AW4LK_RETCODE@@PBXK@Z
kernel32
VirtualAlloc
CancelWaitableTimer
GetConsoleAliasExesLengthA
SetComputerNameExW
IsValidLocale
AreFileApisANSI
LoadLibraryA
lstrcpyA
SetConsoleHardwareState
ExitProcess
InterlockedPopEntrySList
GetSystemTimeAsFileTime
AddConsoleAliasA
FindNextFileW
OpenWaitableTimerA
GetEnvironmentStringsW
GetModuleHandleExW
OutputDebugStringA
FileTimeToLocalFileTime
EnumResourceTypesA
IsDebuggerPresent
lstrcpy
CreateFileMappingW
FoldStringA
InitializeCriticalSection
CancelIo
SetHandleInformation
QueryPerformanceCounter
SetLastError
dhcpsapi
DhcpRpcFreeMemory
DhcpDeleteServer
DhcpEnumMScopeElements
DhcpServerSetConfig
DhcpEnumClasses
DhcpDsInit
DhcpGetVersion
DhcpEnumMScopes
DhcpEnumOptionsV5
DhcpRemoveMScopeElement
DhcpGetOptionInfoV5
DhcpServerQueryAttributes
DhcpServerBackupDatabase
DhcpAddSubnetElement
DhcpGetClientInfoV4
opengl32
glNewList
glColorMask
glReadPixels
glVertex4s
glMap2f
glRotated
glTexCoord3i
glPushClientAttrib
glTexImage1D
glVertex2d
glMaterialiv
GlmfBeginGlsBlock
wglDescribePixelFormat
glAlphaFunc
glPopClientAttrib
wglSwapBuffers
glEvalMesh1
glColor4b
glEdgeFlag
glGenTextures
wglUseFontBitmapsW
glColor3ub
glColor4d
advapi32
StartServiceW
SystemFunction018
SetFileSecurityA
CredGetTargetInfoW
CommandLineFromMsiDescriptor
SystemFunction017
ObjectOpenAuditAlarmA
RegDeleteKeyA
ReportEventW
ChangeServiceConfig2A
IsValidAcl
BuildTrusteeWithNameW
LsaQuerySecret
ProcessIdleTasks
I_ScSetServiceBitsA
RegSaveKeyExW
WmiQueryGuidInformation
ObjectDeleteAuditAlarmA
LsaOpenPolicy
LogonUserW
ElfRegisterEventSourceA
InitiateSystemShutdownExW
SystemFunction031
LookupPrivilegeNameW
Sections
.text Size: 37KB - Virtual size: 37KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ