Static task
static1
Behavioral task
behavioral1
Sample
e06fb4a1c41e6dcdaf379eeba077c8405a6579a107485b7e14a076415a50fe1d.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
e06fb4a1c41e6dcdaf379eeba077c8405a6579a107485b7e14a076415a50fe1d.exe
Resource
win10v2004-20220901-en
General
-
Target
e06fb4a1c41e6dcdaf379eeba077c8405a6579a107485b7e14a076415a50fe1d
-
Size
244KB
-
MD5
5f4ea37011cd1fa4fe305d491aa0df4c
-
SHA1
1b11c59b9ca0bd91b33fee48ec6c5b5c75769713
-
SHA256
e06fb4a1c41e6dcdaf379eeba077c8405a6579a107485b7e14a076415a50fe1d
-
SHA512
608f7d648e725a3f3a912271d9645bcdbce4c95e6ebc9ad3d0322ebc20659ea0d9a776c932feac3d62ecf66d476a32a1b7427c366052cdc6582309e5bcb1bc03
-
SSDEEP
6144:5bBtGGoR+e6zZw0GXpRr5L2FpuDgU+Ry08mugq:j6TKZwppB5QpfB8mZq
Malware Config
Signatures
Files
-
e06fb4a1c41e6dcdaf379eeba077c8405a6579a107485b7e14a076415a50fe1d.exe windows x86
e32979c1e4f3ae2b470e01e2b0790674
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
ddraw
DirectDrawCreateEx
kernel32
GetLongPathNameA
GetExitCodeThread
LeaveCriticalSection
FindFirstChangeNotificationA
EnterCriticalSection
ResumeThread
GetCurrentThreadId
GetSystemTimeAsFileTime
GetTickCount
SetThreadPriority
CreateFileW
GetPrivateProfileStringW
GetFileAttributesW
GetModuleFileNameW
SuspendThread
WaitForMultipleObjects
CreateEventW
FindNextFileW
OutputDebugStringW
DeleteFileW
CreateDirectoryW
TerminateProcess
MultiByteToWideChar
FileTimeToSystemTime
FreeLibrary
GetProcAddress
LoadLibraryA
WideCharToMultiByte
DeleteFileA
oleaut32
CreateErrorInfo
GetRecordInfoFromTypeInfo
VarI2FromDec
VariantInit
SysFreeString
Sections
.text Size: 120KB - Virtual size: 200KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 121KB - Virtual size: 120KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 512B - Virtual size: 284B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ