Static task
static1
Behavioral task
behavioral1
Sample
a4e4173b4a2ecb834194e79b0e4d00892c13d5ce6af487d63134ce0b085ae1cf.exe
Resource
win7-20221111-en
General
-
Target
a4e4173b4a2ecb834194e79b0e4d00892c13d5ce6af487d63134ce0b085ae1cf
-
Size
100KB
-
MD5
6cfb3c40e53888dfc76fe90994059c19
-
SHA1
238be716d79e7214800e2cfbd118c4332a87acf4
-
SHA256
a4e4173b4a2ecb834194e79b0e4d00892c13d5ce6af487d63134ce0b085ae1cf
-
SHA512
b96dcbc336f0e67f9b544075420d2bbba6f1de15c90eee99838cf0e8f387aa24d3454f9f495a392aa8caa6fe70bb9cfccc571f9d0e64c46c90b65cbdbee875b2
-
SSDEEP
1536:2iWPz/YJEDDQq72qe0WHNtZGLo+zDmtTW5iSGrX1llCtNrTQiRnn:2JPDyMDV72HlCzDp21l0tNfFRnn
Malware Config
Signatures
Files
-
a4e4173b4a2ecb834194e79b0e4d00892c13d5ce6af487d63134ce0b085ae1cf.exe windows x86
548da6c98b3e1bb75b00d4a9f232e0aa
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
??2@YAPAXI@Z
wcsrchr
_onexit
memmove
wcsstr
_initterm
_wcsupr
wcschr
_adjust_fdiv
__dllonexit
free
malloc
mbstowcs
wcscpy
_wcsicmp
__RTDynamicCast
wcstoul
wcscat
vswprintf
?terminate@@YAXXZ
wcscmp
??3@YAXPAX@Z
wcslen
_except_handler3
??1type_info@@UAE@XZ
advapi32
RegCreateKeyExW
RegSetValueExW
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegCloseKey
RegDeleteValueW
RegEnumKeyExW
certcli
CAEnumCertTypes
CAFreeCertTypeProperty
CAFindByName
CAGetCertTypeExtensions
CAUpdateCertType
CASetCertTypeKeySpec
CAGetCertTypeFlags
CAUpdateCA
CACloseCertType
CARemoveCACertificateType
CAFreeCAProperty
CAFreeCertTypeExtensions
CAFindCertTypeByName
CAAddCACertificateType
CACloseCA
CAGetCertTypePropertyEx
CAEnumNextCertType
CASetCertTypeExtension
CASetCertTypeProperty
CACertTypeGetSecurity
CAEnumCertTypesForCA
CASetCertTypeFlags
CACreateCertType
CACertTypeSetSecurity
CAGetCAProperty
CAGetCertTypeKeySpec
CAGetCertTypeProperty
kernel32
GetSystemDefaultLangID
WideCharToMultiByte
GetTickCount
QueryPerformanceCounter
GlobalLock
GetSystemTimeAsFileTime
IsBadReadPtr
SetLastError
GetModuleFileNameW
GetDateFormatW
GetLastError
lstrcmpiW
OutputDebugStringA
InitializeCriticalSection
FormatMessageW
lstrlenW
InterlockedIncrement
LocalReAlloc
GetSystemWindowsDirectoryW
GetEnvironmentStringsW
GlobalUnlock
DeleteCriticalSection
FileTimeToSystemTime
GetProcAddress
GetModuleHandleA
GetCPInfo
GetCurrentProcess
GetStartupInfoA
GlobalAlloc
GlobalFree
lstrcpyW
InterlockedDecrement
CreateFileW
FileTimeToLocalFileTime
SetUnhandledExceptionFilter
OutputDebugStringW
LocalFree
RemoveDirectoryA
GetComputerNameW
CloseHandle
LoadLibraryW
comctl32
PropertySheetW
CreatePropertySheetPageW
user32
LoadCursorW
GetDC
InsertMenuItemW
LoadIconW
SetWindowLongW
LoadBitmapW
GetDlgItemTextA
SetFocus
PostMessageW
WinHelpW
DialogBoxParamW
LoadStringW
SetDlgItemTextW
LoadImageW
wsprintfW
SendDlgItemMessageW
SetWindowTextW
EnableWindow
GetWindowLongW
SetCursor
MessageBoxW
GetDlgItem
RegisterClipboardFormatW
SystemParametersInfoW
ReleaseDC
EndDialog
SendMessageW
GetParent
Sections
.text Size: 46KB - Virtual size: 45KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 119KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 23KB - Virtual size: 22KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ