Static task
static1
Behavioral task
behavioral1
Sample
7e2d8d14023090c303f37a747b59b59fab50978e10b9bc28202f8bc040fe94ff.exe
Resource
win7-20221111-en
General
-
Target
7e2d8d14023090c303f37a747b59b59fab50978e10b9bc28202f8bc040fe94ff
-
Size
102KB
-
MD5
a0d224646520f10748dfb04b681f7508
-
SHA1
209ba2f431d15ac3762624f724b4f7f3d1e9eda1
-
SHA256
7e2d8d14023090c303f37a747b59b59fab50978e10b9bc28202f8bc040fe94ff
-
SHA512
8d46605fc931cb694701553bfd8480c5fae86977e53473da1e56740e7f42977eaa0f77299d6c848d8c6eb8f54ab0562366b25fc4d84c02f583fe9e69e919462c
-
SSDEEP
3072:GTsyDkI/SAyDFVxvdDbPyxnBlCzDEjMlbiIheZu:7yD5vo0nnCeM9
Malware Config
Signatures
Files
-
7e2d8d14023090c303f37a747b59b59fab50978e10b9bc28202f8bc040fe94ff.exe windows x86
af1bbda25a57a8ef0d719c2a9757a666
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetUnhandledExceptionFilter
InitializeCriticalSection
InterlockedIncrement
GetStartupInfoA
GlobalHandle
GetModuleFileNameA
GetFileSize
GlobalLock
GetSystemInfo
HeapFree
CreateSemaphoreW
GetCurrentThread
QueryPerformanceCounter
GlobalMemoryStatus
GetProcAddress
CreateThread
CreateFileW
GetProfileIntA
GlobalAlloc
PostQueuedCompletionStatus
HeapAlloc
lstrlenW
GetLastError
InterlockedDecrement
GetFullPathNameW
EnterCriticalSection
MultiByteToWideChar
lstrcpyA
GetQueuedCompletionStatus
WriteFile
lstrcpynW
GlobalUnlock
InterlockedExchange
VirtualFree
CloseHandle
GetTickCount
SetEvent
IsBadWritePtr
SetLastError
GetPrivateProfileStringW
MulDiv
GetFileAttributesW
GetDiskFreeSpaceW
LeaveCriticalSection
ReadFile
GetCurrentProcessId
ResetEvent
CreateEventW
GetVersionExW
WaitForMultipleObjects
SetThreadPriority
LoadLibraryW
IsBadCodePtr
GetACP
SetFilePointer
WideCharToMultiByte
FreeLibrary
SetEndOfFile
GlobalFree
IsBadReadPtr
lstrcmpW
GetSystemTimeAsFileTime
DeleteCriticalSection
CreateIoCompletionPort
lstrcmpiW
GetCurrentProcess
lstrcpyW
WaitForSingleObject
DeleteFileW
ReleaseSemaphore
lstrlenA
GetThreadPriority
GetProcessHeap
msvfw32
ICClose
ICSendMessage
ICCompress
ICOpen
ICGetInfo
ICDecompress
ICLocate
ole32
CoTaskMemFree
CoInitialize
CoTaskMemAlloc
CoCreateInstance
CoUninitialize
CoFreeUnusedLibraries
StringFromGUID2
user32
SetWindowLongW
CheckDlgButton
DefWindowProcW
SetCursor
ReleaseDC
ClientToScreen
SetDlgItemInt
GetDC
IsWindowVisible
CheckRadioButton
DestroyWindow
GetWindowRect
wsprintfW
GetWindowLongW
TranslateMessage
LoadStringW
GetDlgItem
IsWindow
CreateDialogParamW
PeekMessageW
GetClientRect
SendMessageW
LoadCursorW
ShowWindow
InvalidateRect
DispatchMessageW
EnableWindow
SetDlgItemTextW
GetAsyncKeyState
GetDlgItemInt
GetDesktopWindow
MoveWindow
IsRectEmpty
advapi32
RegDeleteKeyW
RegCloseKey
RegSetValueW
RegSetValueExW
RegOpenKeyW
RegOpenKeyExW
RegCreateKeyW
RegEnumKeyExW
RegEnumKeyW
RegQueryValueExW
gdi32
PatBlt
GetTextExtentPoint32W
GetStockObject
GetPaletteEntries
GetObjectW
SelectObject
version
GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW
winmm
waveInAddBuffer
waveInReset
waveInPrepareHeader
mixerGetID
waveInClose
waveInStart
mixerOpen
waveInUnprepareHeader
mixerSetControlDetails
mixerGetControlDetailsW
waveInGetDevCapsW
mixerGetLineControlsW
CloseDriver
waveInOpen
mixerClose
waveInStop
mixerGetLineInfoW
SendDriverMessage
OpenDriver
Sections
.text Size: 52KB - Virtual size: 51KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 20KB - Virtual size: 109KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ