Static task
static1
Behavioral task
behavioral1
Sample
f77cb2739a21ad0f1c240a04f928a5d5340125f1145837d9acba1c9c1f1467a1.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
f77cb2739a21ad0f1c240a04f928a5d5340125f1145837d9acba1c9c1f1467a1.exe
Resource
win10v2004-20221111-en
General
-
Target
f77cb2739a21ad0f1c240a04f928a5d5340125f1145837d9acba1c9c1f1467a1
-
Size
268KB
-
MD5
236904495cb4197057e46f3e488d316e
-
SHA1
9abecfe986cbfd6b037aeda578ead599da346d27
-
SHA256
f77cb2739a21ad0f1c240a04f928a5d5340125f1145837d9acba1c9c1f1467a1
-
SHA512
ca1773678eb9a149cacf488251bcae56c83fcba5eaceb8306d2e5887e18785602fc6cad224e03f1afd17d690075c8a6ba1dd0e24250de22b2293eb67a26089a9
-
SSDEEP
6144:FAbHAfP0Y/sG6h5QqqJh/QSrAsMoi3hQ4NmuvN+oioZe:FAsfMSsG6DQh+KpMoi3SDoioZe
Malware Config
Signatures
Files
-
f77cb2739a21ad0f1c240a04f928a5d5340125f1145837d9acba1c9c1f1467a1.exe windows x86
933b3cf6bbd3ac44a955072309f5ae3b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
user32
MoveWindow
DefWindowProcW
MonitorFromPoint
GetSysColor
GetThreadDesktop
CallNextHookEx
OpenInputDesktop
ReleaseDC
DrawIconEx
CharNextW
OpenDesktopW
WindowFromPoint
GetSystemMetrics
DispatchMessageW
SendInput
UpdateLayeredWindow
GetDC
GetPropW
IsWindow
SetWindowsHookExW
GetMessageW
IntersectRect
EnumDisplaySettingsW
PostMessageW
RegisterWindowMessageW
LoadStringW
gdi32
SelectObject
CreateCompatibleBitmap
CreateCompatibleDC
CreateSolidBrush
GetDeviceCaps
msvcrt
_ftol
fclose
?terminate@@YAXXZ
__wgetmainargs
_cexit
exit
wcslen
malloc
??2@YAPAXI@Z
_controlfp
??1type_info@@UAE@XZ
__set_app_type
free
swscanf
_CxxThrowException
_XcptFilter
_onexit
_beginthreadex
__setusermatherr
_initterm
kernel32
CreateFileW
GetStdHandle
GetCurrentProcess
VirtualFree
GetProcAddress
CreateFileMappingW
WaitForMultipleObjectsEx
CloseHandle
VirtualAlloc
GetCurrentThreadId
GetTickCount
DuplicateHandle
SetPriorityClass
SetProcessShutdownParameters
SetThreadPriority
GetCurrentThread
CloseHandle
lstrcpyW
EnterCriticalSection
QueueUserAPC
lstrlenW
SetProcessShutdownParameters
ReleaseMutex
HeapAlloc
GetTickCount
atl
ord45
ord32
ord43
setupapi
SetupDiEnumDeviceInfo
SetupDiGetClassDevsExW
SetupDiGetDeviceInterfaceDetailW
ole32
CoInitializeSecurity
CoTaskMemAlloc
CoInitializeEx
CoUninitialize
hid
HidP_GetCaps
HidP_GetUsages
HidD_GetPreparsedData
HidD_GetProductString
advapi32
SetSecurityDescriptorGroup
GetTokenInformation
RegCreateKeyExW
CopySid
GetLengthSid
InitializeSecurityDescriptor
RegOpenKeyExA
Sections
.text Size: 220KB - Virtual size: 220KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 30KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 16KB - Virtual size: 532KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ