Static task
static1
Behavioral task
behavioral1
Sample
a417499d4fef2561a8fe083bdf108ab46f40ba27ba0482f872479561a6d1ec7b.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
a417499d4fef2561a8fe083bdf108ab46f40ba27ba0482f872479561a6d1ec7b.exe
Resource
win10v2004-20220901-en
General
-
Target
a417499d4fef2561a8fe083bdf108ab46f40ba27ba0482f872479561a6d1ec7b
-
Size
249KB
-
MD5
136b180d281f37ada4e0551a8fe575f3
-
SHA1
3843c26e8efc39198273dd42063b3f832e4fcdd4
-
SHA256
a417499d4fef2561a8fe083bdf108ab46f40ba27ba0482f872479561a6d1ec7b
-
SHA512
11428d933a249d379e96f179a82bc177d1fe07c948f9094c68b2394a0a1c4c527da05bced4d97cd57a7eb4965c8e6db14110b3a511030aa9385fac79ce66d8df
-
SSDEEP
6144:7PnkMwb+DWF3ayNbxB+m3dsYfNdPhTr4E6A3cK:TkMwb+DWYsq54d5TXPcK
Malware Config
Signatures
Files
-
a417499d4fef2561a8fe083bdf108ab46f40ba27ba0482f872479561a6d1ec7b.exe windows x86
aae25621ff5404665064754134d62b3a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCurrentProcess
lstrcpynA
lstrlenA
GetLastError
GetFullPathNameA
GetFileAttributesA
lstrcpynW
lstrlenW
GetFileAttributesW
FreeLibrary
MultiByteToWideChar
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
Sleep
LocalFree
GetTickCount
GetModuleFileNameW
GetVersionExW
LocalAlloc
LoadLibraryW
CreateMutexA
GetProcAddress
LoadLibraryA
user32
EnableWindow
SetForegroundWindow
SendMessageW
LoadCursorA
InvalidateRgn
OffsetRect
RegisterWindowMessageA
GetSysColorBrush
DestroyCursor
keybd_event
LoadMenuW
GetClassInfoW
CreateDialogParamW
CopyIcon
MessageBoxIndirectW
MonitorFromPoint
DestroyIcon
SetFocus
ShowCursor
GetMenu
RemoveMenu
GetClassInfoExA
WinHelpW
TrackPopupMenu
GetWindowRgn
LoadMenuA
CreateDesktopW
SetActiveWindow
IsIconic
GetMenuStringA
InvalidateRect
EndDialog
InsertMenuItemW
RegisterClassW
CreateMenu
CreatePopupMenu
InsertMenuItemA
GetMenuItemCount
GetSysColor
wsprintfW
InsertMenuA
CharUpperA
GetScrollPos
DestroyMenu
WaitMessage
GetCaretPos
LoadBitmapW
GetKeyboardType
EmptyClipboard
FindWindowW
advapi32
RegCreateKeyExW
RegEnumKeyW
RegSetValueExW
RegCloseKey
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegDeleteKeyA
shell32
SHGetDesktopFolder
samlib
SamCloseHandle
SamFreeMemory
gdi32
ExtCreateRegion
CreateFontIndirectExW
CreatePen
CreateFontW
GetTextExtentPointA
SetEnhMetaFileBits
CreateFontA
CreateRoundRectRgn
CreateSolidBrush
Sections
.text Size: 11KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.al Size: 98KB - Virtual size: 176KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.XIErNg Size: 1KB - Virtual size: 397KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.Lx Size: 4KB - Virtual size: 382KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 5KB - Virtual size: 58KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.L Size: 116KB - Virtual size: 134KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.KOZgK Size: 512B - Virtual size: 183KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ