Static task
static1
Behavioral task
behavioral1
Sample
406381f4c390c583bfa42b58f05f081442349401ae86a6ac713e2025033483dc.exe
Resource
win7-20220812-en
General
-
Target
406381f4c390c583bfa42b58f05f081442349401ae86a6ac713e2025033483dc
-
Size
102KB
-
MD5
9cce9ecc9db8f8f78c28db456374e752
-
SHA1
e3b9ab8421551e9551c89f66f7ba04494bd9b6aa
-
SHA256
406381f4c390c583bfa42b58f05f081442349401ae86a6ac713e2025033483dc
-
SHA512
c58a1d60580ded7dd3489fb381addf0d54b06be8fe67411701bd13ebbcda982b3e439480610c69381d4405a8abd2a456675d91e553dcd000432d4c5ccb6000a4
-
SSDEEP
3072:VcuwiG1dOnxnnGkUhQJDQ2t2ZtsBK6GhfPC:uuQwn0hQJDQ2MZtsBKh
Malware Config
Signatures
Files
-
406381f4c390c583bfa42b58f05f081442349401ae86a6ac713e2025033483dc.exe windows x86
befa387f79c89c9ff39bf846042a24bc
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
RegEnumKeyExW
RegQueryValueExW
RegOpenKeyExW
RegOpenKeyW
RegCloseKey
RegCreateKeyW
RegSetValueExW
RegEnumKeyW
RegSetValueW
RegDeleteKeyW
kernel32
GlobalMemoryStatus
IsBadHugeReadPtr
HeapFree
GetPrivateProfileStringW
GlobalFree
GetSystemTimeAsFileTime
lstrcmpW
GetSystemDefaultLangID
GetVersionExW
CloseHandle
GetSystemInfo
CreateSemaphoreW
QueryPerformanceCounter
GetProfileIntA
WriteFile
lstrcpyA
InterlockedExchange
ReadFile
GlobalUnlock
GetFullPathNameW
SetEndOfFile
GetThreadPriority
IsBadWritePtr
DeleteFileW
lstrcmpiW
SetEvent
lstrlenA
GetCurrentThread
lstrcpyW
lstrlenW
GetProcessHeap
WaitForSingleObject
EnterCriticalSection
GetLastError
GlobalLock
ResetEvent
GetFileSize
InitializeCriticalSection
InterlockedDecrement
WaitForMultipleObjects
MulDiv
IsBadCodePtr
HeapAlloc
GetModuleFileNameA
FreeLibrary
LeaveCriticalSection
CreateFileW
CreateIoCompletionPort
PostQueuedCompletionStatus
GetCurrentProcess
GetEnvironmentStringsW
InterlockedIncrement
SetThreadPriority
LoadLibraryW
ReleaseSemaphore
WideCharToMultiByte
DeleteCriticalSection
SetUnhandledExceptionFilter
GlobalAlloc
SetFilePointer
GetTickCount
GetQueuedCompletionStatus
MultiByteToWideChar
CreateThread
lstrcpynW
GetStartupInfoA
IsBadReadPtr
GetDiskFreeSpaceW
GlobalHandle
VirtualFree
CreateEventW
GetCurrentProcessId
GetFileAttributesW
user32
SetCursor
GetDlgItemInt
DestroyWindow
wsprintfW
IsWindowVisible
CreateDialogParamW
ClientToScreen
TranslateMessage
GetDesktopWindow
GetDC
ShowWindow
SetWindowLongW
CheckRadioButton
ReleaseDC
CheckDlgButton
InvalidateRect
LoadStringW
GetWindowLongW
IsRectEmpty
EnableWindow
SendMessageW
DispatchMessageW
DefWindowProcW
SetDlgItemInt
GetWindowRect
IsWindow
GetAsyncKeyState
GetClientRect
LoadCursorW
MoveWindow
PeekMessageW
SetDlgItemTextW
GetDlgItem
winmm
waveInOpen
waveInReset
mixerGetControlDetailsW
OpenDriver
mixerGetLineControlsW
CloseDriver
waveInPrepareHeader
waveInUnprepareHeader
mixerGetLineInfoW
mixerGetID
mixerSetControlDetails
waveInStop
waveInGetDevCapsW
mixerOpen
mixerClose
SendDriverMessage
waveInClose
waveInAddBuffer
waveInStart
gdi32
GetStockObject
GetTextExtentPoint32W
PatBlt
GetPaletteEntries
SelectObject
GetObjectW
msvfw32
ICGetInfo
ICSendMessage
ICClose
ICCompress
ICOpen
ICLocate
ICDecompress
msvcrt
_purecall
??3@YAXPAX@Z
_ftol
_except_handler3
wcslen
??2@YAPAXI@Z
version
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
ole32
CoInitialize
CoUninitialize
CoFreeUnusedLibraries
StringFromGUID2
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
Sections
.text Size: 47KB - Virtual size: 46KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 17KB - Virtual size: 86KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ