Static task
static1
Behavioral task
behavioral1
Sample
dbc37048cb1aae5faedff7e86e1ea903d7bd8278b242c383c62b840537f1647c.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
dbc37048cb1aae5faedff7e86e1ea903d7bd8278b242c383c62b840537f1647c.exe
Resource
win10v2004-20220812-en
General
-
Target
dbc37048cb1aae5faedff7e86e1ea903d7bd8278b242c383c62b840537f1647c
-
Size
51KB
-
MD5
d107b3f92783ebad296529a2aed9b84a
-
SHA1
d57e67c1529127bb9409b3d7d56a920199bfaa15
-
SHA256
dbc37048cb1aae5faedff7e86e1ea903d7bd8278b242c383c62b840537f1647c
-
SHA512
eb8b6049ad9756189ad7ce82a601e7c543c98d300c71aeeea4ad17db49de528790aef7064a8b2d12f2b8f5485d00c2700914292e411e3c54c2afe572e876d781
-
SSDEEP
1536:8v/JD2nMllaqF3vfsFdgUKkm5CuhdFrqvOvo1pB:IZ2nAljHgdgRIuhdqOvo1p
Malware Config
Signatures
Files
-
dbc37048cb1aae5faedff7e86e1ea903d7bd8278b242c383c62b840537f1647c.exe windows x86
d7a7f9fb7dc18e78b9d8c66eada4e8d6
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetFileSize
GetModuleFileNameA
GetModuleHandleA
GetPrivateProfileIntA
GetPrivateProfileStringA
GetProcAddress
GetTickCount
GetVersionExA
HeapSize
InterlockedIncrement
IsDebuggerPresent
LoadResource
LocalFree
MulDiv
GetDriveTypeA
RtlFillMemory
RtlMoveMemory
RtlUnwind
SetEvent
SetLastError
SetWaitableTimer
Sleep
TlsGetValue
TlsSetValue
VirtualAlloc
VirtualFree
VirtualProtect
WaitForSingleObject
WriteFile
GetCurrentDirectoryA
GetACP
ExitProcess
DeviceIoControl
CreateThread
CreateFileA
CopyFileA
ReadFile
CloseHandle
wsock32
WSAStartup
WSACleanup
gethostbyname
user32
GetDC
InsertMenuA
IsCharAlphaNumericW
IsChild
MessageBoxA
SetMenuItemInfoW
SetWindowsHookW
UnhookWindowsHook
ChildWindowFromPointEx
ChildWindowFromPoint
AppendMenuW
CreateDesktopW
gdi32
CreateRectRgn
DeleteDC
GdiFlush
GetClipBox
GetClipRgn
GetLayout
SelectClipRgn
BitBlt
Sections
.text Size: 47KB - Virtual size: 46KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 1024B - Virtual size: 16KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE