Static task
static1
Behavioral task
behavioral1
Sample
c3fc120a072b6e1876ac9ebd21e17f43755cc9194f928225a0fd89681b2c516c.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
c3fc120a072b6e1876ac9ebd21e17f43755cc9194f928225a0fd89681b2c516c.exe
Resource
win10v2004-20220901-en
General
-
Target
c3fc120a072b6e1876ac9ebd21e17f43755cc9194f928225a0fd89681b2c516c
-
Size
2.9MB
-
MD5
fb1303c99ffceccb6882b3744098c165
-
SHA1
65b3326f845dc5f49caf20ba8a6033fd6fdeaf40
-
SHA256
c3fc120a072b6e1876ac9ebd21e17f43755cc9194f928225a0fd89681b2c516c
-
SHA512
3d7828aa06890ecd6abfa526748f267e8ba6422cb3c12e294894c3424154a38185fa90ee67339a461df24bf8e558e9f66dc5e00ad092f2235682573213b8b12b
-
SSDEEP
24576:U2PYQrHbLgWe0USal8H8WctrC0QCj9rSnA31lldodsoRKFUa3Z7kNjYjhttrmgRx:Nd1cWQqGrsAlRF53mNjYj/tK/0
Malware Config
Signatures
Files
-
c3fc120a072b6e1876ac9ebd21e17f43755cc9194f928225a0fd89681b2c516c.exe windows x86
e373f93d94c2de51854bc4d720ca887b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ws2_32
htons
connect
WSAStartup
socket
gethostbyname
closesocket
send
recv
kernel32
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetTickCount
GetFileAttributesA
GetFileTime
RtlUnwind
TerminateProcess
HeapFree
HeapAlloc
HeapReAlloc
GetStartupInfoA
GetCommandLineA
RaiseException
GetTimeZoneInformation
HeapSize
GetACP
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
SetEndOfFile
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
Sleep
ExitProcess
WinExec
WriteFile
CloseHandle
ReadFile
GetFileSize
CreateFileA
GetTempPathA
GetModuleFileNameA
GetLastError
CreateMutexA
OpenProcess
GetCurrentProcess
GetProcAddress
GetModuleHandleA
VirtualFreeEx
ReadProcessMemory
VirtualAllocEx
lstrcpynA
FreeLibrary
LoadLibraryA
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
DuplicateHandle
SetErrorMode
WritePrivateProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
LoadResource
FindResourceA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
GetProfileStringA
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GlobalFlags
FormatMessageA
LocalFree
FileTimeToLocalFileTime
FileTimeToSystemTime
MulDiv
SetLastError
GetThreadLocale
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
lstrcpyA
InterlockedDecrement
InterlockedIncrement
GlobalAlloc
lstrcmpA
GetCurrentThread
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
LCMapStringA
user32
LoadCursorA
GetSysColorBrush
CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
MessageBeep
InvalidateRect
CharUpperA
InflateRect
RegisterClipboardFormatA
PostThreadMessageA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
CharNextA
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
SetCursor
PostQuitMessage
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
IsWindowUnicode
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
PtInRect
GetClassNameA
DestroyMenu
LoadStringA
GrayStringA
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetDlgItem
IsWindowEnabled
GetWindowLongA
SetWindowLongA
wsprintfA
GetWindowTextA
FindWindowA
FindWindowExA
GetWindowThreadProcessId
PostMessageA
GetClientRect
IsIconic
GetSystemMetrics
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
LoadBitmapA
GetDesktopWindow
LoadIconA
EnableWindow
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
gdi32
SaveDC
RestoreDC
SelectObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteDC
DeleteObject
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
DPtoLP
LPtoDP
GetMapMode
PatBlt
GetStockObject
GetDeviceCaps
GetBkColor
GetTextColor
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
GetObjectA
GetTextExtentPointA
BitBlt
CreateDIBitmap
StretchBlt
comdlg32
GetFileTitleA
winspool.drv
DocumentPropertiesA
ClosePrinter
OpenPrinterA
advapi32
RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
comctl32
ord17
oledlg
ord8
ole32
CoTaskMemFree
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
CoRevokeClassObject
OleFlushClipboard
CoTaskMemAlloc
OleIsCurrentClipboard
olepro32
ord253
oleaut32
SysStringLen
VariantTimeToSystemTime
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString
VariantClear
Sections
.text Size: 152KB - Virtual size: 148KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 40KB - Virtual size: 37KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 20KB - Virtual size: 33KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 2.7MB - Virtual size: 2.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ