Static task
static1
Behavioral task
behavioral1
Sample
e0e6611b54e17f6b2183d9a1c6b86848828075a16543ebaceb544d1f3da347ba.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
e0e6611b54e17f6b2183d9a1c6b86848828075a16543ebaceb544d1f3da347ba.exe
Resource
win10v2004-20220901-en
General
-
Target
e0e6611b54e17f6b2183d9a1c6b86848828075a16543ebaceb544d1f3da347ba
-
Size
17KB
-
MD5
add0816528e55825bdbf12345bb972d4
-
SHA1
628abe49de8dcdcfd0c66ee5058686a6799eab21
-
SHA256
e0e6611b54e17f6b2183d9a1c6b86848828075a16543ebaceb544d1f3da347ba
-
SHA512
d2123664b3b1aac161c918f103efd62c750b2b19169eb89831337da1a28b3e575065f17c7eeb666a914b93d4d3420d4442d1c2eeacef3f055c3e7490bde525cb
-
SSDEEP
384:RO12Zxx3zlFqEEcUnaF9d+hp3Ds9RL4O93FqIQ6a9rbBTenO:RbZxx3P1xUnaF6Bs9RL4SgIs5bp/
Malware Config
Signatures
Files
-
e0e6611b54e17f6b2183d9a1c6b86848828075a16543ebaceb544d1f3da347ba.exe windows x86
cd8737ab18474184c8c3005cd2c3c855
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
shlwapi
StrToIntA
kernel32
DeleteFileA
CreateEventA
lstrcmpA
ResetEvent
lstrcmpW
WaitForMultipleObjects
lstrcatA
lstrlenA
InterlockedCompareExchange
GetLastError
SetEvent
LocalFree
FormatMessageA
ReadFile
CreateFileA
VirtualAlloc
GetModuleHandleA
IsDebuggerPresent
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetDriveTypeA
CompareStringA
CreateMutexA
lstrcpynA
SetUnhandledExceptionFilter
ExitProcess
user32
MessageBoxA
ReleaseDC
GetWindowRect
GetDC
wsprintfA
FillRect
ScreenToClient
GetClientRect
GetSysColor
GetWindow
gdi32
SelectObject
SetBkColor
DeleteDC
SetTextColor
DeleteObject
GetDeviceCaps
Sections
.text Size: 13KB - Virtual size: 12KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ