Static task
static1
Behavioral task
behavioral1
Sample
c3272b4ed8a927bcbf277bf1138c3ac7f67ba4b9ea6ebad0aa063cb820899a14.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
c3272b4ed8a927bcbf277bf1138c3ac7f67ba4b9ea6ebad0aa063cb820899a14.exe
Resource
win10v2004-20221111-en
General
-
Target
c3272b4ed8a927bcbf277bf1138c3ac7f67ba4b9ea6ebad0aa063cb820899a14
-
Size
886KB
-
MD5
a2edc070d6f1227710dae4f0fbe41ef0
-
SHA1
94e36d05d9298a37aed7caea673139652d6ced09
-
SHA256
c3272b4ed8a927bcbf277bf1138c3ac7f67ba4b9ea6ebad0aa063cb820899a14
-
SHA512
9042285adffd6b01704f1e063a0e02e6334f9c97c6633385c8a88f1e2d2522fd900be9812c716327f5bdc6a67aebcf5734473e89d8c023aaf93e82d0f6ede24d
-
SSDEEP
24576:Akcd16jIa3lexJiGsnIyxQmf+aYgtgm3+2RigbTmleuS:AkZka1exyIkLmaJM2RigbTXuS
Malware Config
Signatures
Files
-
c3272b4ed8a927bcbf277bf1138c3ac7f67ba4b9ea6ebad0aa063cb820899a14.exe windows x86
114a456924729ba896c301886b65bd53
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FileTimeToSystemTime
CloseHandle
InterlockedDecrement
GetModuleHandleA
GlobalUnlock
lstrlenW
GetLastError
FormatMessageW
GetTickCount
FileTimeToLocalFileTime
GetDateFormatW
OutputDebugStringA
lstrcpyW
GetACP
GetModuleFileNameW
GetEnvironmentStringsA
GetCurrentProcess
InitializeCriticalSection
LocalFree
InterlockedIncrement
LoadLibraryW
GetStartupInfoA
GlobalAlloc
GlobalFree
DeleteCriticalSection
LocalReAlloc
IsValidCodePage
GetComputerNameW
QueryPerformanceCounter
CreateFileW
lstrcmpiW
GetSystemWindowsDirectoryW
SetUnhandledExceptionFilter
GetProcAddress
WideCharToMultiByte
SetLastError
GetSystemTimeAsFileTime
OutputDebugStringW
IsBadReadPtr
GlobalLock
RemoveDirectoryA
msvcrt
??3@YAXPAX@Z
wcschr
wcsrchr
wcscat
vswprintf
__RTDynamicCast
?terminate@@YAXXZ
_onexit
??2@YAPAXI@Z
_wcsupr
wcslen
memmove
wcsstr
wcscmp
malloc
??1type_info@@UAE@XZ
_purecall
free
wcscpy
_wcsicmp
_except_handler3
mbstowcs
_initterm
wcstoul
_adjust_fdiv
__dllonexit
certcli
CAFreeCAProperty
CAAddCACertificateType
CACertTypeSetSecurity
CARemoveCACertificateType
CACloseCA
CAGetCertTypeFlags
CACertTypeGetSecurity
CAGetCertTypeKeySpec
CAEnumCertTypes
CASetCertTypeFlags
CACloseCertType
CAGetCertTypeProperty
CAEnumCertTypesForCA
CAEnumNextCertType
CAFreeCertTypeExtensions
CASetCertTypeKeySpec
CAGetCAProperty
CAFindByName
CAFreeCertTypeProperty
CAUpdateCertType
CAGetCertTypeExtensions
CASetCertTypeExtension
CAUpdateCA
CAGetCertTypePropertyEx
CACreateCertType
CAFindCertTypeByName
CASetCertTypeProperty
user32
EndDialog
SendMessageW
SetCursor
GetDlgItem
InsertMenuItemW
ReleaseDC
SetWindowTextW
SetFocus
SystemParametersInfoW
LoadBitmapW
MessageBoxW
wsprintfW
GetWindowLongW
LoadImageW
EnableWindow
SendDlgItemMessageW
LoadStringW
SetDlgItemTextW
GetDlgItemTextA
LoadIconW
SetWindowLongW
RegisterClipboardFormatW
GetParent
WinHelpW
PostMessageW
DialogBoxParamW
GetDC
LoadCursorW
advapi32
RegOpenKeyExW
RegQueryValueExW
RegDeleteValueW
RegSetValueExW
RegEnumKeyExW
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
comctl32
PropertySheetW
CreatePropertySheetPageW
gdi32
GetDeviceCaps
CreateFontIndirectW
DeleteObject
Sections
.text Size: 411KB - Virtual size: 411KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 141KB - Virtual size: 140KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 188KB - Virtual size: 1.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 143KB - Virtual size: 142KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 768B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ