Static task
static1
Behavioral task
behavioral1
Sample
9bf6fd6305823fdc46f440947c453c9b25fc5a558552d49f210136c3d39a0c64.exe
Resource
win7-20221111-en
General
-
Target
9bf6fd6305823fdc46f440947c453c9b25fc5a558552d49f210136c3d39a0c64
-
Size
94KB
-
MD5
13eb3016cfc7c0d19262104ff4d76b9f
-
SHA1
a51fc76b9cc91c5a64d9e01607ccc55a3f70b77e
-
SHA256
9bf6fd6305823fdc46f440947c453c9b25fc5a558552d49f210136c3d39a0c64
-
SHA512
7bc8a0627ca3f723d36bd033a5691b951bf9422754c96bbb4579a985e0a5f8444212508c4fef3b1bee912b47a650339340fc12730af67ea1058116478c478750
-
SSDEEP
1536:c2iAx9tTrvqoCSrZOEUoEUd1nIC1hvYE/QVn2RCvsniyXlpAlo1eh+cy:cGvF1nIIYT2IKDm1hvy
Malware Config
Signatures
Files
-
9bf6fd6305823fdc46f440947c453c9b25fc5a558552d49f210136c3d39a0c64.exe windows x86
e3046f405a5240ce94c63170f709cbe1
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetDriveTypeW
EnumSystemLocalesA
GetCurrentDirectoryW
LeaveCriticalSection
SetFilePointer
FileTimeToLocalFileTime
OpenEventW
SetEndOfFile
SetEnvironmentVariableA
GetVersionExA
GetExitCodeProcess
GetDateFormatA
InterlockedExchange
GetConsoleOutputCP
HeapFree
DeleteCriticalSection
DeleteFileW
FindFirstFileW
GlobalLock
GetStartupInfoA
GetLocaleInfoA
GetStringTypeA
ReadFile
GetModuleFileNameW
GetCommandLineA
SetLastError
GetACP
GetSystemTimeAsFileTime
CompareStringW
InterlockedDecrement
GetTempPathW
IsValidCodePage
MulDiv
LocalFree
GetCPInfo
GlobalSize
FindClose
lstrcpynW
VirtualAllocEx
GetProcAddress
LoadLibraryA
LCMapStringW
LCMapStringA
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
HeapSize
VirtualQuery
RtlUnwind
IsBadWritePtr
VirtualAlloc
HeapAlloc
FlushFileBuffers
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
WideCharToMultiByte
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
WriteFile
GetCurrentProcess
TerminateProcess
ExitProcess
GetLastError
GetModuleHandleA
lstrlenW
WaitForSingleObject
GetDriveTypeA
GetSystemInfo
CloseHandle
QueryPerformanceCounter
CreateFileW
GetStdHandle
WriteConsoleW
VirtualProtect
lstrcmpiW
GetProcessHeap
GetDateFormatW
GetCurrentDirectoryA
HeapReAlloc
GetOEMCP
SetStdHandle
FindResourceW
MultiByteToWideChar
GetStringTypeW
GetVersionExW
FileTimeToSystemTime
lstrcmpW
GlobalUnlock
FormatMessageW
CreateMutexW
VirtualFree
GlobalFree
GetModuleFileNameA
GetTimeZoneInformation
CreateEventW
UnhandledExceptionFilter
TlsFree
CreateFileA
SetUnhandledExceptionFilter
lstrcatW
user32
GetMenuItemCount
CallWindowProcA
GetMenuItemID
PtInRect
OpenClipboard
DrawEdge
CreateDialogIndirectParamW
SetForegroundWindow
CreateCursor
GetMenuStringW
GetWindowRect
IsChild
CreateCaret
GetSystemMetrics
GetMenuState
FrameRect
DialogBoxParamW
DrawMenuBar
DestroyCaret
MapWindowPoints
IsIconic
FillRect
ToAscii
UpdateWindow
SetParent
TrackPopupMenu
EnableMenuItem
GetDC
SetScrollPos
GetMonitorInfoW
wsprintfW
AppendMenuW
DispatchMessageW
RealChildWindowFromPoint
GetSubMenu
ModifyMenuW
ReleaseCapture
DestroyWindow
RedrawWindow
GetKeyState
GetKeyboardState
LoadImageW
BeginDeferWindowPos
InsertMenuW
LoadBitmapW
CheckMenuItem
DrawFrameControl
SetFocus
ShowCaret
TranslateMessage
WindowFromPoint
GetFocus
SendDlgItemMessageW
GetClassNameW
CreateMenu
EndDeferWindowPos
LoadMenuW
GetActiveWindow
GetSysColor
SetCursor
ShowScrollBar
SetDlgItemTextW
RegisterClassExW
DrawTextExW
InflateRect
DestroyIcon
gdi32
DPtoLP
Rectangle
SetTextColor
SetBrushOrgEx
SetROP2
CreatePatternBrush
GetDeviceCaps
SetBkColor
CreatePen
CreateSolidBrush
CreateFontW
GetROP2
EndDoc
CreateCompatibleDC
SelectObject
CreateBitmap
GetPixel
ExtTextOutW
SaveDC
MoveToEx
GetTextMetricsW
DeleteObject
SetTextAlign
CreateHatchBrush
StartPage
GetObjectW
DeleteDC
GetStockObject
GetTextExtentPoint32W
SetBkMode
SetWindowOrgEx
BitBlt
CreateFontIndirectW
RemoveFontResourceW
comdlg32
ChooseFontA
GetSaveFileNameA
ChooseColorW
GetFileTitleW
GetFileTitleA
PageSetupDlgW
GetSaveFileNameW
ChooseFontW
PrintDlgA
GetOpenFileNameW
FindTextW
PrintDlgW
ChooseColorA
PageSetupDlgA
ReplaceTextA
ReplaceTextW
FindTextA
GetOpenFileNameA
Sections
.text Size: 29KB - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 51KB - Virtual size: 111KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 32KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
zoitxld Size: - Virtual size: 80KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE