Static task
static1
Behavioral task
behavioral1
Sample
a9b4d47a964612d850d173cdf4e665feeaefb9ff560dec24c10dd91c2994d2e2.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
a9b4d47a964612d850d173cdf4e665feeaefb9ff560dec24c10dd91c2994d2e2.exe
Resource
win10v2004-20220812-en
General
-
Target
a9b4d47a964612d850d173cdf4e665feeaefb9ff560dec24c10dd91c2994d2e2
-
Size
188KB
-
MD5
b0ccd3970ab38d82d949339f00169956
-
SHA1
b7bd3a0f73453557d121e561e1e7d5c5657bb0f5
-
SHA256
a9b4d47a964612d850d173cdf4e665feeaefb9ff560dec24c10dd91c2994d2e2
-
SHA512
e4ba0974dc8232755457ef24e8cf78e3321e2547230644cce5090e295ba6f38b5aad6b0e85c9adf431795380a840bf8303db9aeb87fba61a9e740cd5a2557217
-
SSDEEP
3072:QvoSGyh+gMvkAH5BXG3qCGX7HoJRCOTTP613EnvTOrdO4H8OabMtkUFo/7BEwKYQ:QvNpM8G5A3zYIJ0Oq1AvT72F6UeBjKB
Malware Config
Signatures
Files
-
a9b4d47a964612d850d173cdf4e665feeaefb9ff560dec24c10dd91c2994d2e2.exe windows x86
d63de741d1c2c9e9b946dfcd52a47a01
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
CreateDialogParamA
SetWindowTextA
FindWindowExA
SetWindowPlacement
MapDialogRect
ShowOwnedPopups
ShowWindowAsync
SendDlgItemMessageA
GetNextDlgGroupItem
DispatchMessageA
LoadIconA
CreateWindowExA
GetWindowTextA
ole32
CoGetStandardMarshal
CoGetCurrentProcess
CoRevokeClassObject
CoTaskMemAlloc
CoRegisterSurrogate
OleDoAutoConvert
IIDFromString
OleGetIconOfClass
CoTreatAsClass
CoLockObjectExternal
CoTaskMemFree
CoSuspendClassObjects
OleIsCurrentClipboard
OleSave
CreateStreamOnHGlobal
DoDragDrop
OleDraw
gdi32
GdiSetBatchLimit
GdiGetBatchLimit
DescribePixelFormat
AbortDoc
CreateCompatibleDC
GetBkColor
AddFontResourceW
CreateFontW
Escape
GetBkMode
GdiComment
EndPage
CloseEnhMetaFile
GdiFlush
CopyEnhMetaFileW
kernel32
CreateSemaphoreA
OpenMutexA
GetStartupInfoA
FoldStringA
LCMapStringA
GetDateFormatA
LocalLock
GetNumberFormatA
GetCurrencyFormatA
HeapCompact
GetStringTypeA
VirtualQuery
HeapReAlloc
GetModuleHandleA
GetProcAddress
CopyFileA
VirtualAllocEx
GlobalLock
LocalSize
activeds
ord9
msvcrt
freopen
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
fseek
fputc
_flushall
fprintf
fputs
fopen
_fsopen
free
ftell
fscanf
fread
fsetpos
Sections
.text Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 90KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.yykv Size: 178KB - Virtual size: 177KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1024B - Virtual size: 648B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ