Static task
static1
Behavioral task
behavioral1
Sample
7800a7bb37945b6f92b3b274e1963ceac1af88e417c30e221239ec3b37b60878.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
7800a7bb37945b6f92b3b274e1963ceac1af88e417c30e221239ec3b37b60878.exe
Resource
win10v2004-20221111-en
General
-
Target
7800a7bb37945b6f92b3b274e1963ceac1af88e417c30e221239ec3b37b60878
-
Size
136KB
-
MD5
4f5ec75b0a2ec6303446ce6c4fe0a5ae
-
SHA1
ed50fdd1ae1db0571e05bc4f8c8a5c313473952f
-
SHA256
7800a7bb37945b6f92b3b274e1963ceac1af88e417c30e221239ec3b37b60878
-
SHA512
947deb06c2ba3bcc5d005da508be47b84fe29da0c21f19d69f889d51d8b28c24ca5359b012ea6baee14ea3a99bdb4c75f2d7ea985aee72d362856599545311f5
-
SSDEEP
3072:3I2N0zXVS5bIKghNKDkc6OBYiK9I1SUuw645Hz3qY286hn6+rlsFHJJqjDW7Tpss:3VODeoNKDkc6OBYiK9I1SUuw645Hz3q4
Malware Config
Signatures
Files
-
7800a7bb37945b6f92b3b274e1963ceac1af88e417c30e221239ec3b37b60878.exe windows x86
d44618972877e82314a2464bda6d4c2d
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
FreeLibrary
GetProcAddress
LoadLibraryA
CreateFileA
WaitForSingleObject
GetLastError
CreateMutexA
CloseHandle
OpenMutexA
DeviceIoControl
DefineDosDeviceA
Sleep
ResetEvent
CreateEventA
UnmapViewOfFile
MapViewOfFile
OpenFileMappingA
CreateThread
SetEvent
ExitThread
GetACP
GetStringTypeW
GetVersion
GetCommandLineA
LCMapStringW
LCMapStringA
MultiByteToWideChar
IsBadWritePtr
HeapReAlloc
VirtualAlloc
HeapAlloc
GetOEMCP
GetCPInfo
WriteFile
RtlUnwind
HeapFree
VirtualFree
HeapCreate
GetStringTypeA
ReleaseMutex
ExitProcess
HeapDestroy
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
GetModuleHandleA
GetStartupInfoA
GetFileType
GetModuleFileNameA
FreeEnvironmentStringsA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
user32
MessageBoxA
IsDialogMessageA
DispatchMessageA
DefWindowProcA
GetCursorPos
PtInRect
PostQuitMessage
GetDlgItem
LoadImageA
GetWindowRect
ScreenToClient
MoveWindow
SendMessageA
LoadStringA
LoadIconA
LoadCursorA
RegisterClassA
CreateDialogParamA
ShowWindow
UpdateWindow
PostMessageA
GetMessageA
TranslateMessage
mouse_event
SetCursorPos
advapi32
RegCloseKey
RegOpenKeyExA
Sections
.text Size: 24KB - Virtual size: 22KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 40KB - Virtual size: 36KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.drdata Size: 60KB - Virtual size: 60KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE