Static task
static1
Behavioral task
behavioral1
Sample
b81655ea9af8e4bb764729a3ba829e0616ed7c35b635be37d23ef05ae554ed51.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
b81655ea9af8e4bb764729a3ba829e0616ed7c35b635be37d23ef05ae554ed51.exe
Resource
win10v2004-20220901-en
General
-
Target
b81655ea9af8e4bb764729a3ba829e0616ed7c35b635be37d23ef05ae554ed51
-
Size
172KB
-
MD5
28f7f2bc90dc745d0513ed262d35fbfb
-
SHA1
a468eb5df62bac640850770c6c904a017d86d73f
-
SHA256
b81655ea9af8e4bb764729a3ba829e0616ed7c35b635be37d23ef05ae554ed51
-
SHA512
791b2e52a01a1cbfa77e3537b3ff2405d165b74522bb6675cb18442ed1848cfd384996a61431536480a2da26e9f6bad7dedcd5953089da944f54d1ee17569b56
-
SSDEEP
3072:wb/AhChWboSLXPlpCJLgRY1HGE/RLGK8y/h7YbN30YLWZ1+lxQH:u/DkboSzlpugRY1FJz8ylYR/6ulw
Malware Config
Signatures
Files
-
b81655ea9af8e4bb764729a3ba829e0616ed7c35b635be37d23ef05ae554ed51.exe windows x86
bccb5384b261b0493732ba0b5655b629
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
setupapi
CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status
kernel32
GetModuleFileNameA
GetStdHandle
GetVersionExA
AddAtomW
GetCurrentProcess
GetCommandLineA
TlsFree
RaiseException
GetTickCount
QueryPerformanceCounter
TlsGetValue
GetProcessHeap
TlsAlloc
GetVersion
GetModuleHandleW
GetDiskFreeSpaceA
GetStartupInfoA
GetCurrentProcessId
GetFileType
SetHandleCount
TlsSetValue
EnumResourceNamesA
GetSystemTimeAsFileTime
OutputDebugStringW
TerminateProcess
HeapFree
DeviceIoControl
HeapAlloc
SetLastError
SetUnhandledExceptionFilter
GetCurrentThread
GetLocalTime
CloseHandle
GlobalMemoryStatus
GetComputerNameA
RtlUnwind
InterlockedExchange
msvcrt
__p__fmode
_initterm
_acmdln
?terminate@@YAXXZ
__getmainargs
_amsg_exit
_cexit
_XcptFilter
_ismbblead
memset
_vsnwprintf
_vsnprintf
__set_app_type
__setusermatherr
__p__commode
_exit
exit
_controlfp
Sections
.text Size: 94KB - Virtual size: 93KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 74KB - Virtual size: 74KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1024B - Virtual size: 128KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ