Static task
static1
Behavioral task
behavioral1
Sample
b17897e43d9131bf6aaf370ed0870c003035c913ac6fef29fc7e0293d78a1c53.exe
Resource
win7-20220812-en
General
-
Target
b17897e43d9131bf6aaf370ed0870c003035c913ac6fef29fc7e0293d78a1c53
-
Size
102KB
-
MD5
0c0a641c55c0f6571ebf8a6d93cc9907
-
SHA1
7355c3dfc1f3dd7eaceeed77c7c48020787dbc55
-
SHA256
b17897e43d9131bf6aaf370ed0870c003035c913ac6fef29fc7e0293d78a1c53
-
SHA512
5d73fc00ed356701242e215d1970f78bf4d722bed0302ee2c9f4c2c4a7bd49570becbc3d5c0f8350872e51fc1d0f488f58901e0d35802d61b19158807711cd3f
-
SSDEEP
1536:i7d7oGGNxKbnPxzQzMleaQDAYIv8JTI1SNXVXYnLRNyu0H33:MoWxUYlegn8lrXYnLR8
Malware Config
Signatures
Files
-
b17897e43d9131bf6aaf370ed0870c003035c913ac6fef29fc7e0293d78a1c53.exe windows x86
db3466e21afabe3372a54f5ea78b21a4
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
advapi32
RegSetValueExW
RegCreateKeyExW
RegCloseKey
RegDeleteValueW
RegEnumKeyExW
RegQueryValueExW
RegDeleteKeyW
RegOpenKeyExW
msvcrt
__dllonexit
wcsstr
_initterm
_wcsicmp
free
wcscpy
_wcsupr
memmove
wcstoul
??1type_info@@UAE@XZ
_except_handler3
wcslen
??3@YAXPAX@Z
wcschr
mbstowcs
??2@YAPAXI@Z
wcscmp
?terminate@@YAXXZ
wcsrchr
_onexit
wcscat
__RTDynamicCast
malloc
vswprintf
_adjust_fdiv
kernel32
GetCPInfo
LocalFree
GlobalFree
lstrcpyW
GetSystemTimeAsFileTime
GetTickCount
GlobalUnlock
GetDateFormatW
OutputDebugStringW
GetLastError
GlobalAlloc
lstrcmpiW
GetStartupInfoA
FileTimeToLocalFileTime
InterlockedIncrement
LocalReAlloc
GetComputerNameW
GlobalLock
GetModuleHandleA
QueryPerformanceCounter
InitializeCriticalSection
DeleteCriticalSection
GetProcAddress
GetEnvironmentStringsW
CloseHandle
WideCharToMultiByte
GetCurrentProcess
InterlockedDecrement
LoadLibraryW
IsBadReadPtr
FormatMessageW
GetModuleFileNameW
OutputDebugStringA
GetSystemDefaultLangID
SetLastError
RemoveDirectoryA
FileTimeToSystemTime
SetUnhandledExceptionFilter
CreateFileW
lstrlenW
GetSystemWindowsDirectoryW
comctl32
PropertySheetW
CreatePropertySheetPageW
certcli
CACertTypeGetSecurity
CAFreeCertTypeProperty
CACloseCA
CAGetCertTypeExtensions
CARemoveCACertificateType
CASetCertTypeProperty
CACreateCertType
CAFindCertTypeByName
CAEnumCertTypesForCA
CAUpdateCA
CAGetCertTypeKeySpec
CASetCertTypeExtension
CAEnumCertTypes
CAEnumNextCertType
CASetCertTypeKeySpec
CAAddCACertificateType
CACertTypeSetSecurity
CAFreeCertTypeExtensions
CAFindByName
CAUpdateCertType
CAGetCertTypeFlags
CACloseCertType
CAGetCertTypeProperty
CAGetCertTypePropertyEx
CAGetCAProperty
CAFreeCAProperty
CASetCertTypeFlags
user32
ReleaseDC
wsprintfW
InsertMenuItemW
LoadStringW
GetParent
GetDlgItemTextA
EnableWindow
GetDlgItem
LoadBitmapW
SetWindowTextW
WinHelpW
EndDialog
SendMessageW
SetFocus
SendDlgItemMessageW
SetWindowLongW
LoadImageW
SetCursor
RegisterClipboardFormatW
PostMessageW
GetWindowLongW
LoadCursorW
MessageBoxW
SystemParametersInfoW
LoadIconW
GetDC
SetDlgItemTextW
DialogBoxParamW
Sections
.text Size: 47KB - Virtual size: 47KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 102KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 23KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ