Static task
static1
Behavioral task
behavioral1
Sample
cf97016bcc819aac69d80d073b80e0908feb79be53c54b558d28dddf92e25d93.exe
Resource
win7-20220812-en
General
-
Target
cf97016bcc819aac69d80d073b80e0908feb79be53c54b558d28dddf92e25d93
-
Size
101KB
-
MD5
9bea972d0cf086bc455027e61972eaab
-
SHA1
92ac50c9422fc990337460de8e807ece4fe576c1
-
SHA256
cf97016bcc819aac69d80d073b80e0908feb79be53c54b558d28dddf92e25d93
-
SHA512
ce0f66c88a8473e95b0122dd36014b7284beef08fcd67628ed3a05da719689302f28247ac9ab16cc48befb4b56bad92d3ee82d038916a1f6400cea42112d5e12
-
SSDEEP
1536:daFVvVKx24wFParu05xrV7J3zUZn6/xL9VUY3NnAW:daFZ0LwFPAu05TOZn6/XVUY3B
Malware Config
Signatures
Files
-
cf97016bcc819aac69d80d073b80e0908feb79be53c54b558d28dddf92e25d93.exe windows x86
af447ee956f064dd94d2f9a5f3e53978
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
certcli
CAGetCertTypeProperty
CAFreeCertTypeProperty
CAGetCAProperty
CASetCertTypeFlags
CAFreeCertTypeExtensions
CASetCertTypeExtension
CAGetCertTypeKeySpec
CARemoveCACertificateType
CAGetCertTypePropertyEx
CASetCertTypeKeySpec
CAEnumNextCertType
CAEnumCertTypesForCA
CAFindCertTypeByName
CACloseCertType
CAGetCertTypeExtensions
CAAddCACertificateType
CAFreeCAProperty
CACertTypeSetSecurity
CASetCertTypeProperty
CAEnumCertTypes
CAGetCertTypeFlags
CACreateCertType
CACloseCA
CAUpdateCA
CACertTypeGetSecurity
CAFindByName
CAUpdateCertType
user32
GetParent
LoadBitmapW
WinHelpW
LoadStringW
GetWindowLongW
EndDialog
SetDlgItemTextW
wsprintfW
PostMessageW
SetFocus
SetCursor
LoadIconW
ReleaseDC
InsertMenuItemW
LoadImageW
GetDC
LoadCursorW
GetDlgItem
RegisterClipboardFormatW
SetWindowLongW
SetWindowTextW
SendMessageW
DialogBoxParamW
SendDlgItemMessageW
GetDlgItemTextA
SystemParametersInfoW
MessageBoxW
EnableWindow
kernel32
RemoveDirectoryA
GetComputerNameW
CloseHandle
GetEnvironmentStringsW
GetACP
lstrcmpiW
IsBadReadPtr
CreateFileW
GlobalUnlock
LocalFree
FileTimeToSystemTime
GlobalFree
GetSystemWindowsDirectoryW
lstrcpyW
OutputDebugStringA
InitializeCriticalSection
GetSystemDefaultLangID
DeleteCriticalSection
InterlockedIncrement
GetModuleHandleA
InterlockedDecrement
FileTimeToLocalFileTime
SetLastError
GetStartupInfoA
GetTickCount
GetModuleFileNameW
GlobalLock
LocalReAlloc
GlobalAlloc
lstrlenW
FormatMessageW
LoadLibraryW
GetLastError
QueryPerformanceCounter
OutputDebugStringW
GetSystemTimeAsFileTime
GetDateFormatW
SetUnhandledExceptionFilter
GetCurrentProcess
WideCharToMultiByte
msvcrt
__RTDynamicCast
memmove
?terminate@@YAXXZ
wcscmp
_onexit
wcsstr
wcscpy
wcsrchr
??2@YAPAXI@Z
_wcsicmp
__dllonexit
malloc
_adjust_fdiv
wcstoul
??3@YAXPAX@Z
_except_handler3
vswprintf
wcslen
wcschr
_initterm
free
wcscat
_wcsupr
_purecall
??1type_info@@UAE@XZ
mbstowcs
advapi32
RegDeleteKeyW
RegQueryValueExW
RegCreateKeyExW
RegDeleteValueW
RegEnumKeyExW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
gdi32
DeleteObject
GetDeviceCaps
CreateFontIndirectW
comctl32
PropertySheetW
CreatePropertySheetPageW
Sections
.text Size: 47KB - Virtual size: 46KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 65KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ