Static task
static1
Behavioral task
behavioral1
Sample
0f8a225d45dc2dccd1f68f11166ea280.exe
Resource
win7-20230220-en
General
-
Target
0f8a225d45dc2dccd1f68f11166ea280.exe
-
Size
195KB
-
MD5
0f8a225d45dc2dccd1f68f11166ea280
-
SHA1
0370cd3c83b49f233cb831b1fc17df749949b8cc
-
SHA256
fb7ce83b1f46d3348eddbe69216889b1547fa349b7ad0973fec5a5156b137d95
-
SHA512
ab337008c32feaa3011257a4ada72cb1056fe23cc0f314cde46d79bcf42225c39731f9c20c9c193f82888ed5f5e2dae3ba2c88dc09e2dee3c64899609fd23571
-
SSDEEP
3072:t6DqRv6nPcL8N/1mPQfHUy84zklGrmWHoA7jatZvXq8xXwG9Ar:R96nPcLamntGTKWIA7+ZvaRM
Malware Config
Signatures
Files
-
0f8a225d45dc2dccd1f68f11166ea280.exe.exe windows x86
1dc9c32af2b0d0927717a78648d34c5a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
MoveFileExA
GetCPInfo
GetConsoleAliasExesLengthA
DeleteVolumeMountPointA
OpenJobObjectA
GetModuleHandleExW
InterlockedCompareExchange
WriteConsoleInputA
GetConsoleAliasesA
GetUserDefaultLangID
CreateActCtxW
SetFileShortNameW
_hread
GetVersionExW
LeaveCriticalSection
GetFileAttributesA
WriteConsoleW
GetBinaryTypeA
SetThreadPriority
InterlockedExchange
GetLastError
BackupRead
GetProcAddress
VirtualAlloc
RemoveDirectoryA
GetDiskFreeSpaceW
OpenWaitableTimerA
LoadLibraryA
UnhandledExceptionFilter
LocalAlloc
SetProcessWorkingSetSize
FindAtomA
Module32FirstW
GetModuleHandleA
GetStringTypeW
GetConsoleTitleW
LocalSize
GetCurrentProcessId
GetFileInformationByHandle
GetLocaleInfoA
GetStringTypeA
LCMapStringW
WideCharToMultiByte
LCMapStringA
MultiByteToWideChar
GetStartupInfoW
HeapAlloc
HeapFree
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
Sleep
HeapSize
ExitProcess
GetACP
GetOEMCP
IsValidCodePage
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
EnterCriticalSection
HeapReAlloc
RaiseException
InitializeCriticalSectionAndSpinCount
RtlUnwind
user32
SetCaretPos
CharUpperW
CopyAcceleratorTableW
RealGetWindowClassW
CharUpperBuffW
GetKeyNameTextA
LoadMenuA
LoadIconA
CharLowerBuffW
GetCursorInfo
ole32
OleQueryLinkFromData
CoGetPSClsid
Sections
.text Size: 67KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 91KB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 27KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ