Static task
static1
Behavioral task
behavioral1
Sample
81a4243cb40620a9fd7bd1178cb496ac58393c8f87f6b0da122185b2bd0c6f61.exe
Resource
win7-20221111-en
General
-
Target
81a4243cb40620a9fd7bd1178cb496ac58393c8f87f6b0da122185b2bd0c6f61
-
Size
99KB
-
MD5
c04ce7c42d0dcafa42c421daa8c640a8
-
SHA1
49ecaf3b15a8ca63d0080a1f4f6863eb8d6dc58f
-
SHA256
81a4243cb40620a9fd7bd1178cb496ac58393c8f87f6b0da122185b2bd0c6f61
-
SHA512
f8822374b09c332ba238081878bc92bca1173e5632b4c07fe98dc6c383625ac17a9e1583aec45be0acba9ffdf22ec035c8200d241b8dc748a8110ab1bd4b70c1
-
SSDEEP
3072:WX5e2BTJLMM6rOCV7QOVwKMyrE+VD9c6L:WE23MMSYuo+DR
Malware Config
Signatures
Files
-
81a4243cb40620a9fd7bd1178cb496ac58393c8f87f6b0da122185b2bd0c6f61.exe windows x86
61ac58596910af204606c5e36977c11e
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
WideCharToMultiByte
GetPrivateProfileStringW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
IsBadCodePtr
GetCurrentProcessId
SetFilePointer
SetThreadPriority
IsBadReadPtr
lstrcpyW
LeaveCriticalSection
CreateEventW
lstrlenW
GlobalAlloc
GetCurrentProcess
DeleteCriticalSection
GlobalFree
GetSystemDefaultLangID
lstrcpyA
EnterCriticalSection
IsBadHugeReadPtr
WaitForSingleObject
GetThreadPriority
GetLastError
InitializeCriticalSection
DeleteFileW
GetVersionExW
MultiByteToWideChar
PostQueuedCompletionStatus
QueryPerformanceCounter
GetSystemInfo
HeapAlloc
InterlockedDecrement
GetDiskFreeSpaceW
CreateFileW
CreateThread
SetUnhandledExceptionFilter
MulDiv
FreeLibrary
GlobalMemoryStatus
ReadFile
IsBadWritePtr
CloseHandle
WriteFile
GetProcessHeap
GetModuleFileNameA
lstrcmpiW
InterlockedExchange
GetFileAttributesW
GlobalLock
GetFullPathNameW
lstrlenA
HeapFree
SetEvent
InterlockedIncrement
GlobalHandle
lstrcmpW
GetStartupInfoA
GetFileSize
lstrcpynW
ReleaseSemaphore
GetTickCount
GetQueuedCompletionStatus
GetCurrentThread
VirtualFree
GlobalUnlock
SetEndOfFile
CreateIoCompletionPort
LoadLibraryW
WaitForMultipleObjects
GetProfileIntA
ResetEvent
CreateSemaphoreW
advapi32
RegEnumKeyExW
RegCloseKey
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegDeleteKeyW
RegEnumKeyW
RegOpenKeyW
RegQueryValueExW
RegOpenKeyExW
user32
InvalidateRect
GetDlgItem
ReleaseDC
DefWindowProcW
EnableWindow
wsprintfW
SendMessageW
SetDlgItemTextW
SetWindowLongW
LoadStringW
MoveWindow
IsWindowVisible
CheckRadioButton
DispatchMessageW
TranslateMessage
IsRectEmpty
DestroyWindow
CreateDialogParamW
GetDlgItemInt
GetDC
CheckDlgButton
PeekMessageW
SetDlgItemInt
ShowWindow
GetWindowRect
GetDesktopWindow
GetWindowLongW
IsWindow
GetAsyncKeyState
LoadCursorW
ClientToScreen
SetCursor
GetClientRect
winmm
mixerOpen
mixerGetID
waveInOpen
waveInReset
mixerGetControlDetailsW
waveInAddBuffer
CloseDriver
waveInStop
waveInGetDevCapsW
mixerClose
mixerSetControlDetails
waveInUnprepareHeader
SendDriverMessage
mixerGetLineInfoW
mixerGetLineControlsW
waveInStart
waveInPrepareHeader
OpenDriver
waveInClose
ole32
CoFreeUnusedLibraries
StringFromGUID2
CoInitialize
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CoUninitialize
version
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
msvcrt
_purecall
??2@YAPAXI@Z
??3@YAXPAX@Z
_ftol
_except_handler3
wcslen
gdi32
PatBlt
GetTextExtentPoint32W
SelectObject
GetObjectW
GetStockObject
GetPaletteEntries
msvfw32
ICOpen
ICLocate
ICGetInfo
ICCompress
ICDecompress
ICSendMessage
ICClose
Sections
.text Size: 44KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 17KB - Virtual size: 69KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ