Static task
static1
Behavioral task
behavioral1
Sample
488ad222748915a2857a05379f030b70.exe
Resource
win7-20230220-en
General
-
Target
488ad222748915a2857a05379f030b70.exe
-
Size
196KB
-
MD5
488ad222748915a2857a05379f030b70
-
SHA1
fabbcc3515d4aaadb8745fab3c13e53b5ae69352
-
SHA256
5feea9ccd5bf2362bf653699dd3f1e3ceeb8c8695fa4c7f8ea3ed4a1f8e5fcc5
-
SHA512
a751e2b16b830c66285d47e02651e3c2341ab40c2cca8bb00b55f991855a0d7f3b217bd4fc22179ab73c52ed11339be1228c2bbe77db0511a4c80f5548a694c0
-
SSDEEP
3072:oR07BRc+llL5eN/0IPQfHUCPesnod6tBpYkRmaDSd1cb7qtoKQyGTZc9Ak:n7c+llLvInQoYtLzmaVXqtowGU
Malware Config
Signatures
Files
-
488ad222748915a2857a05379f030b70.exe.exe windows x86
1dc9c32af2b0d0927717a78648d34c5a
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
MoveFileExA
GetCPInfo
GetConsoleAliasExesLengthA
DeleteVolumeMountPointA
OpenJobObjectA
GetModuleHandleExW
InterlockedCompareExchange
WriteConsoleInputA
GetConsoleAliasesA
GetUserDefaultLangID
CreateActCtxW
SetFileShortNameW
_hread
GetVersionExW
LeaveCriticalSection
GetFileAttributesA
WriteConsoleW
GetBinaryTypeA
SetThreadPriority
InterlockedExchange
GetLastError
BackupRead
GetProcAddress
VirtualAlloc
RemoveDirectoryA
GetDiskFreeSpaceW
OpenWaitableTimerA
LoadLibraryA
UnhandledExceptionFilter
LocalAlloc
SetProcessWorkingSetSize
FindAtomA
Module32FirstW
GetModuleHandleA
GetStringTypeW
GetConsoleTitleW
LocalSize
GetCurrentProcessId
GetFileInformationByHandle
GetLocaleInfoA
GetStringTypeA
LCMapStringW
WideCharToMultiByte
LCMapStringA
MultiByteToWideChar
GetStartupInfoW
HeapAlloc
HeapFree
GetModuleHandleW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
Sleep
HeapSize
ExitProcess
GetACP
GetOEMCP
IsValidCodePage
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
IsDebuggerPresent
WriteFile
GetStdHandle
GetModuleFileNameA
GetModuleFileNameW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
DeleteCriticalSection
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
EnterCriticalSection
HeapReAlloc
RaiseException
InitializeCriticalSectionAndSpinCount
RtlUnwind
user32
SetCaretPos
CharUpperW
CopyAcceleratorTableW
RealGetWindowClassW
CharUpperBuffW
GetKeyNameTextA
LoadMenuA
LoadIconA
CharLowerBuffW
GetCursorInfo
ole32
OleQueryLinkFromData
CoGetPSClsid
Sections
.text Size: 67KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 92KB - Virtual size: 1.3MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 27KB - Virtual size: 26KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ