Static task
static1
Behavioral task
behavioral1
Sample
e7f951001a32b309738c6eb352ca383b63cb75cd37745a55566277e1a8c87573.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
e7f951001a32b309738c6eb352ca383b63cb75cd37745a55566277e1a8c87573.exe
Resource
win10v2004-20221111-en
General
-
Target
e7f951001a32b309738c6eb352ca383b63cb75cd37745a55566277e1a8c87573
-
Size
308KB
-
MD5
a786fd31ff5ec7b905896b410884dbb8
-
SHA1
8f47ebc375c48a45f9d841617ae5f5a42ecb283b
-
SHA256
e7f951001a32b309738c6eb352ca383b63cb75cd37745a55566277e1a8c87573
-
SHA512
68dc12fa5669c271bad195b38b769b7eea22bc3b618392c53aa083d34fd5998e2b752f4535405956130ac5ede19bccff3e7b34caeeaa69e5ce8be0e75b45675b
-
SSDEEP
6144:LcFLB4RPVugOkXWRUmq0LnMAGsEgpFh9Laf9a6:LcFLBiPVZMRUm1G6Fh9LafN
Malware Config
Signatures
Files
-
e7f951001a32b309738c6eb352ca383b63cb75cd37745a55566277e1a8c87573.exe windows x86
9f1135848b3c4d31a68aef77f1a9c3ab
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetErrorMode
FileTimeToSystemTime
FileTimeToLocalFileTime
RtlUnwind
GetACP
HeapFree
GetStartupInfoA
GetCommandLineA
ExitProcess
RaiseException
HeapAlloc
TerminateProcess
HeapSize
HeapReAlloc
GetTimeZoneInformation
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
CompareStringA
CompareStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetLocaleInfoW
SetStdHandle
SetEnvironmentVariableA
GetFileTime
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
ReadFile
GetCurrentProcess
DuplicateHandle
lstrcpynA
lstrcmpA
GetCurrentThread
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedIncrement
InterlockedDecrement
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GetDriveTypeA
MulDiv
EnterCriticalSection
SetFilePointer
WriteFile
SetLastError
LeaveCriticalSection
lstrcpyA
DeleteCriticalSection
InitializeCriticalSection
WritePrivateProfileStringA
GetPrivateProfileStringA
CreateThread
SetThreadPriority
WaitForSingleObject
Sleep
DeleteFileA
GetTempPathA
GetFileAttributesA
CreateMutexA
CreateFileA
GetFileSize
GetLastError
CloseHandle
GetVersionExA
GetProcAddress
GetCurrentDirectoryA
SetCurrentDirectoryA
GetDiskFreeSpaceA
FindFirstFileA
FindClose
GetModuleFileNameA
FormatMessageA
LocalFree
SizeofResource
FindResourceA
LoadResource
LockResource
LoadLibraryA
FreeLibrary
GlobalLock
GlobalUnlock
GlobalFree
GetLocaleInfoA
GlobalAlloc
user32
SetWindowTextA
MoveWindow
ShowWindow
IsWindowEnabled
GetNextDlgTabItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
ClientToScreen
BeginPaint
EndPaint
TabbedTextOutA
GrayStringA
CreateDialogIndirectParamA
GetActiveWindow
EndDialog
LoadStringA
GetCursorPos
ValidateRect
GetMessageA
SetCursor
DestroyMenu
CharUpperA
GetClassNameA
LoadCursorA
GetSysColorBrush
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetActiveWindow
SetFocus
AdjustWindowRectEx
IsWindowVisible
GetTopWindow
MessageBoxA
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowLongA
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
SetWindowRgn
GetCapture
SetCapture
GetWindowRgn
ReleaseCapture
DrawTextA
RedrawWindow
GetDC
ReleaseDC
EqualRect
SetRectEmpty
IsWindow
GetFocus
GetParent
InflateRect
PeekMessageA
IsDialogMessageA
TranslateMessage
DispatchMessageA
InvalidateRect
UpdateWindow
PostQuitMessage
ScreenToClient
PtInRect
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
EnableMenuItem
DeleteMenu
CopyRect
PostMessageA
LoadIconA
OffsetRect
IsRectEmpty
SetRect
SendMessageA
EnableWindow
LoadBitmapA
SetTimer
KillTimer
CallWindowProcA
UnregisterClassA
gdi32
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
SaveDC
RestoreDC
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
SelectObject
GetDeviceCaps
CreateRectRgn
PtVisible
TextOutA
ExtTextOutA
Escape
CreateRoundRectRgn
SelectPalette
GetStretchBltMode
SetStretchBltMode
StretchDIBits
PtInRegion
CreateSolidBrush
GetTextExtentPoint32A
GetTextCharset
CreateFontIndirectA
CreatePalette
RectVisible
BitBlt
DeleteDC
DeleteObject
GetObjectA
CreateCompatibleDC
CreateCompatibleBitmap
comdlg32
GetFileTitleA
winspool.drv
DocumentPropertiesA
ClosePrinter
OpenPrinterA
advapi32
RegCloseKey
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
shell32
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
ShellExecuteA
comctl32
ord17
Sections
.text Size: 144KB - Virtual size: 143KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 32KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 84KB - Virtual size: 94KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 44KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ