Static task
static1
Behavioral task
behavioral1
Sample
2647b77988735db4c0fb7e913d4ed8646e57653cdfedb8e1eead426ea6d8fe60.exe
Resource
win7-20230621-en
Behavioral task
behavioral2
Sample
2647b77988735db4c0fb7e913d4ed8646e57653cdfedb8e1eead426ea6d8fe60.exe
Resource
win10v2004-20230621-en
General
-
Target
2647b77988735db4c0fb7e913d4ed8646e57653cdfedb8e1eead426ea6d8fe60
-
Size
96KB
-
MD5
00a9005f4d595c0783a4f5f0bf21d969
-
SHA1
174d367deba2bc3f1c4cfed5ce4554fa8bf581dc
-
SHA256
2647b77988735db4c0fb7e913d4ed8646e57653cdfedb8e1eead426ea6d8fe60
-
SHA512
de3568990de0c94d70484e2cf0ad015ec6efb2c5126fc4c620463bf1617470f4e20d3054db21b7fa0db9c81f50796a69efd63bfe513418b81ff6d04681175c8e
-
SSDEEP
1536:rw3lqpjxoSAYIbQUlgQwxk0K0/noRoo27:rG2jrIkUltwZ3oRoo27
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 2647b77988735db4c0fb7e913d4ed8646e57653cdfedb8e1eead426ea6d8fe60
Files
-
2647b77988735db4c0fb7e913d4ed8646e57653cdfedb8e1eead426ea6d8fe60.exe windows x86
da5ba2d1f448460f819655f0180f730b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
DeleteFileA
FindFirstFileA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetVersionExA
GetCurrentProcess
GetModuleHandleA
LocalFree
FormatMessageA
FindNextFileA
CreateThread
LocalAlloc
lstrlenA
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
FlushFileBuffers
FindClose
GetSystemTime
GetModuleFileNameA
GetSystemDirectoryA
SetFileAttributesA
CopyFileA
CreateProcessA
WaitForSingleObject
CloseHandle
LoadLibraryA
GetProcAddress
FreeLibrary
GetLastError
lstrcmpiA
Sleep
SetStdHandle
HeapReAlloc
VirtualAlloc
GetOEMCP
GetACP
GetCPInfo
HeapAlloc
SetFilePointer
MoveFileA
GetCommandLineA
GetVersion
ExitProcess
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
HeapFree
RtlUnwind
WriteFile
GetStringTypeW
user32
SetWindowTextA
PostMessageA
FindWindowA
MessageBoxA
advapi32
RegCreateKeyExA
RegQueryValueExA
RegQueryInfoKeyA
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegCloseKey
CreateServiceA
ChangeServiceConfig2A
OpenSCManagerA
CloseServiceHandle
setupapi
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
shlwapi
StrStrIA
Sections
.text Size: 24KB - Virtual size: 23KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 12KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 912B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ