Static task
static1
Behavioral task
behavioral1
Sample
d2a218b7a751a1945bd3e14021863f29da598be671d35260ccf70d6baf738164.dll
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
d2a218b7a751a1945bd3e14021863f29da598be671d35260ccf70d6baf738164.dll
Resource
win10v2004-20220812-en
General
-
Target
d2a218b7a751a1945bd3e14021863f29da598be671d35260ccf70d6baf738164
-
Size
214KB
-
MD5
43d2b26610ffb73cf5b035d787f5a492
-
SHA1
a9cb95dbdf33d314c5349b06bfaed2f19930ba5f
-
SHA256
d2a218b7a751a1945bd3e14021863f29da598be671d35260ccf70d6baf738164
-
SHA512
0a00d261146a95e9063ccf390abd5165650b8dc80486165e5c7aca6a3d5dcb7f73b43efe49fcbb3c27323f570c37c4f275741d714dfbbffbaec91241d9a69ed0
-
SSDEEP
3072:w0aKEulYPvBIstebJ8FS88gR+sM+tyHYYdDebvGbPWGmHstx:fEgYRoe8g0sMGy4YJcGTWGmMtx
Malware Config
Signatures
Files
-
d2a218b7a751a1945bd3e14021863f29da598be671d35260ccf70d6baf738164.dll windows x86
98f5effcb0890e7fd1bb42fb8420bc0f
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
RegOpenKeyExA
RegCreateKeyA
RegEnumKeyW
RegCreateKeyW
RegOpenKeyW
RegLoadKeyA
RegGetKeySecurity
RegOpenKeyExW
RegQueryInfoKeyA
RegEnumValueW
RegQueryInfoKeyW
RegOpenKeyA
RegCreateKeyExW
RegFlushKey
RegReplaceKeyW
RegLoadKeyW
RegEnumKeyA
RegDeleteKeyW
RegLoadKeyA
RegOpenKeyW
RegQueryInfoKeyA
RegCreateKeyA
RegFlushKey
RegEnumKeyW
RegLoadKeyW
RegDeleteValueW
RegEnumKeyExA
RegOpenKeyExA
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegFlushKey
RegQueryValueExW
RegQueryValueExA
RegCreateKeyExA
RegDeleteKeyA
RegGetKeySecurity
RegOpenKeyExA
RegReplaceKeyA
RegReplaceKeyW
RegDeleteValueA
RegCreateKeyA
RegEnumValueW
RegQueryInfoKeyW
RegEnumKeyExW
RegLoadKeyA
RegQueryInfoKeyA
RegOpenKeyA
RegDeleteKeyW
RegQueryValueW
kernel32
GetLastError
ExitProcess
AddAtomW
WriteFile
FindAtomW
GetLocalTime
FatalExit
GetPriorityClass
ExitThread
CopyFileExW
GetCommandLineA
FindClose
ReadFile
GlobalFree
GetCPInfo
ExitProcess
CopyFileExA
ExitThread
FindClose
GetCommandLineA
CopyFileA
GetStdHandle
OpenFile
FindAtomW
FlushFileBuffers
ReadFile
FreeResource
CreateDirectoryA
WriteFile
CreateDirectoryA
GetLastError
CopyFileExW
OpenFileMappingA
CopyFileExA
FreeResource
GetCPInfo
AddAtomA
ReadFile
FindClose
FindAtomA
AddAtomW
FindAtomW
GlobalFree
GetLocalTime
GetFileType
ExitThread
FlushFileBuffers
FatalExit
GetPriorityClass
GetLastError
CopyFileExA
FindClose
FreeResource
AddAtomA
GetCPInfo
CopyFileA
FindAtomW
DeleteFileA
FatalExit
CopyFileExW
FatalExit
GlobalFree
AddAtomW
GetLocalTime
ExitProcess
FlushFileBuffers
GetFileType
AddAtomA
DeleteFileA
ExitThread
GetLastError
GetPriorityClass
FindAtomW
FreeResource
GetCommandLineA
FindClose
FindAtomA
CopyFileExA
Sections
.text Size: 29KB - Virtual size: 29KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.bss Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.itext Size: 173KB - Virtual size: 441KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ