Static task
static1
Behavioral task
behavioral1
Sample
b1890a2a92e8357a0d1282f5e90ebea75a8f2df4d0f918d24611cafa173f4f76.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
b1890a2a92e8357a0d1282f5e90ebea75a8f2df4d0f918d24611cafa173f4f76.exe
Resource
win10v2004-20220812-en
General
-
Target
b1890a2a92e8357a0d1282f5e90ebea75a8f2df4d0f918d24611cafa173f4f76
-
Size
338KB
-
MD5
94a5ee594883ce532b54ae61b131f688
-
SHA1
0a12350accddf38d041a1610eacf838722b361e5
-
SHA256
b1890a2a92e8357a0d1282f5e90ebea75a8f2df4d0f918d24611cafa173f4f76
-
SHA512
2577537a57dba10bca20c76fc8c1084c880db7c55c1122d9cbe2543f450ce660fd4f47e490c4aaf1d5206356cfac25290dd4df9e6e8cf2e7021293f58c2b3f8e
-
SSDEEP
6144:cJnc64DCtD752cycYt4Tl9HSw4T2xmEKhDYfJE9kfIy4jNYoZooqwNgk:cJcdK75tHYt4rj4TCxDfIyUjodk
Malware Config
Signatures
Files
-
b1890a2a92e8357a0d1282f5e90ebea75a8f2df4d0f918d24611cafa173f4f76.exe windows x86
5770010de45e0bf90ec7e0becf9a4c9a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
HeapDestroy
GetCommandLineA
GetCurrentThread
VirtualProtect
GetOEMCP
FindClose
WaitForSingleObject
CreateIoCompletionPort
GetProcessHeap
HeapCreate
GetTapeStatus
GetACP
GlobalMemoryStatus
IsDebuggerPresent
GetStdHandle
GetModuleHandleA
GetTimeFormatA
InterlockedExchange
HeapQueryInformation
GetCurrentProcessId
LoadLibraryExA
user32
FillRect
DrawTextA
SetActiveWindow
GetDlgItem
ShowWindow
GetFocus
GetCursorPos
GetWindowTextLengthA
GetWindow
EndPaint
GetClassNameA
ReleaseDC
SetForegroundWindow
DragDetect
FrameRect
wsprintfA
GetParent
GetTitleBarInfo
BeginPaint
gdi32
GetLayout
CreatePalette
CreateBitmap
GetClipBox
CloseFigure
userenv
DeleteProfileA
Sections
.text Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 1024B - Virtual size: 780KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ