TPCjwSWxAciAO
Static task
static1
Behavioral task
behavioral1
Sample
94f51c618a093e7eb3ceafe95eeb04a685ae71ddbc962914725292fc6d8e4d34.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
94f51c618a093e7eb3ceafe95eeb04a685ae71ddbc962914725292fc6d8e4d34.exe
Resource
win10v2004-20220812-en
General
-
Target
94f51c618a093e7eb3ceafe95eeb04a685ae71ddbc962914725292fc6d8e4d34
-
Size
150KB
-
MD5
f81d2be521c9fbbe781df231dd532097
-
SHA1
cff34a57f3235b659a62927e3849c54f8d20c226
-
SHA256
94f51c618a093e7eb3ceafe95eeb04a685ae71ddbc962914725292fc6d8e4d34
-
SHA512
fc9d98d11351ca42276fb54b16d04ab493dd3e051bbe92704be07b79bf03b25d5ef20adec57dad8d22ab679c0452e5c10d52e3fc6970ff42578136fcd2fd33b5
-
SSDEEP
3072:4MrjjLTW2u+tD35ND803b2Hqq7W239jQNHox2MA04oP+EaS3qhdMX:4WjjLPtDpWC2Uyvx2MgomViK
Malware Config
Signatures
Files
-
94f51c618a093e7eb3ceafe95eeb04a685ae71ddbc962914725292fc6d8e4d34.exe windows x86
4d2250cca5ec43c7cee96bcd7a8d04b4
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
time
memcpy
tolower
calloc
wcstol
clock
sprintf
memset
exit
atol
sqrt
_acmdln
memmove
user32
IsWindowUnicode
SetForegroundWindow
ReleaseDC
SetScrollRange
CharUpperA
SetCursor
IsZoomed
TranslateMDISysAccel
OpenIcon
LoadIconA
GetKeyboardState
CreateMenu
GetClassNameA
GetDlgItem
LoadKeyboardLayoutA
ReleaseCapture
GetLastActivePopup
PeekMessageA
IsCharUpperA
GetKeyboardLayoutList
GetDC
IsMenu
SetWindowsHookExA
DrawFrameControl
UpdateWindow
IsChild
OffsetRect
DrawMenuBar
EnableScrollBar
DrawTextA
GetWindowTextA
EqualRect
GetKeyState
IsRectEmpty
DestroyMenu
MapWindowPoints
GetWindowTextLengthA
ActivateKeyboardLayout
GetSysColorBrush
GetForegroundWindow
IsWindowVisible
GetClipboardData
SetWindowTextA
GetWindowPlacement
ChildWindowFromPoint
UnregisterClassA
SetWindowLongW
GetWindowRect
SetPropA
GetCursorPos
GetMenu
AdjustWindowRectEx
GetKeyboardType
ScreenToClient
IsDlgButtonChecked
CharNextA
GetDesktopWindow
SystemParametersInfoA
GetClientRect
SetWindowPlacement
SetParent
GetKeyboardLayout
OemToCharA
kernel32
LoadResource
VirtualAlloc
GetProcAddress
GetStringTypeA
GetACP
GetModuleHandleA
CreateEventA
GetCurrentProcess
GetProcessHeap
lstrcmpA
LoadLibraryA
lstrcpynA
DeleteCriticalSection
GetStdHandle
GlobalAlloc
ExitProcess
VirtualAllocEx
lstrcatA
CreateFileA
ReadFile
GetOEMCP
DeleteFileA
lstrcpyA
WaitForSingleObject
RaiseException
advapi32
RegOpenKeyA
RegQueryValueA
RegDeleteValueA
Exports
Exports
Sections
.text Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 11KB - Virtual size: 91KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 100KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.badata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 8KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ