Static task
static1
Behavioral task
behavioral1
Sample
dfb8c7940ba57196499a3205034bedf2621d47fb52a947f92e31c6437217dd68.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
dfb8c7940ba57196499a3205034bedf2621d47fb52a947f92e31c6437217dd68.exe
Resource
win10v2004-20220812-en
General
-
Target
dfb8c7940ba57196499a3205034bedf2621d47fb52a947f92e31c6437217dd68
-
Size
529KB
-
MD5
8aad3220ed6e08a114af190194f30a35
-
SHA1
3a525dfdab429feedd6d40489a2db3410d733496
-
SHA256
dfb8c7940ba57196499a3205034bedf2621d47fb52a947f92e31c6437217dd68
-
SHA512
67360c1fbb7da4ad9b89f7b5a7e4d8a207da5993e9a7f60c1edc134b013405bf122aa0177a9b3e4441b91efdf022386af18eda219bc823eb419bfd84e79b6f23
-
SSDEEP
12288:ke3wDHZ0L3PvK/ft1flloatD3gXhRcI3LIh5wUn/MRlmZ7EQxMKCuov+Qq1tfIwf:SjuTCZlJgXgIbItFEqjov+XbA1laz
Malware Config
Signatures
Files
-
dfb8c7940ba57196499a3205034bedf2621d47fb52a947f92e31c6437217dd68.exe windows x86
31f8440cf66d4d07a157b0755fd611e0
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
InitCommonControlsEx
kernel32
CreateDirectoryA
CompareStringW
GetCommandLineW
InitializeCriticalSectionAndSpinCount
TlsGetValue
GetSystemTimeAsFileTime
WriteConsoleA
ReadFile
HeapSize
InterlockedIncrement
WriteProfileSectionW
Sleep
FlushFileBuffers
GetLastError
LeaveCriticalSection
GetConsoleMode
GetDateFormatA
GetStringTypeA
FreeLibrary
CompareStringA
EnumCalendarInfoExW
TlsAlloc
GetModuleHandleW
CreateNamedPipeA
GetLocaleInfoA
DeleteCriticalSection
IsDebuggerPresent
GetTimeZoneInformation
GetTimeFormatA
GetUserDefaultLCID
RtlUnwind
VirtualAlloc
GetFileType
SetEnvironmentVariableA
UnhandledExceptionFilter
GetACP
TlsSetValue
GetModuleFileNameW
SetThreadAffinityMask
LCMapStringW
SetHandleCount
GetProcAddress
GetEnvironmentStringsW
GetConsoleOutputCP
InterlockedDecrement
EnumResourceTypesA
GetCommandLineA
GetStringTypeW
TlsFree
GetOEMCP
IsValidCodePage
CreateFileA
SetLastError
HeapDestroy
HeapCreate
SetConsoleCtrlHandler
LCMapStringA
GetCurrentProcess
GetCurrentProcessId
CreateMutexA
GetStdHandle
HeapReAlloc
FreeEnvironmentStringsW
TerminateProcess
WriteConsoleW
GetLocaleInfoW
GetModuleHandleA
GetCurrentThread
SetUnhandledExceptionFilter
MultiByteToWideChar
WideCharToMultiByte
GetCPInfo
GetModuleFileNameA
CloseHandle
GetStartupInfoW
IsValidLocale
InterlockedExchange
WriteFile
SetStdHandle
EnterCriticalSection
VirtualFree
ExitProcess
OpenMutexA
QueryPerformanceCounter
HeapAlloc
GetStartupInfoA
GetCurrentThreadId
EnumSystemLocalesA
GetTickCount
SetFilePointer
GetConsoleCP
VirtualQuery
LoadLibraryA
HeapFree
user32
CharToOemBuffW
RegisterClassA
RegisterClassExA
GetWindowInfo
Sections
.text Size: 335KB - Virtual size: 334KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 9KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 181KB - Virtual size: 181KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ