Static task
static1
Behavioral task
behavioral1
Sample
82cdee8adc08cb54ee364a7ef3fbf4b7.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
82cdee8adc08cb54ee364a7ef3fbf4b7.exe
Resource
win10v2004-20231215-en
General
-
Target
82cdee8adc08cb54ee364a7ef3fbf4b7
-
Size
1.8MB
-
MD5
82cdee8adc08cb54ee364a7ef3fbf4b7
-
SHA1
50c84d695872ee545bfca1ec5c1b5838d3401535
-
SHA256
1a741acb29477ec6051232baa5806b779486071c5b9725e527f0f45851886367
-
SHA512
279f266b31fd0e9e81a8be7ef5ba990a07cdd89d98eba13c134eec1bd987f3940e030f119e78fbe70fa8720afbe74a9a17ebe2932046320236997bf8ce224f4e
-
SSDEEP
24576:Hpk27rzE2Vdp8iEqoRDjlzecHP6O5n/9h4xHUqyOVbO8ner3ONRbdTKY7FonbWG9:JgiEqofze+l+zLxO8YejX7FCbWfc
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 82cdee8adc08cb54ee364a7ef3fbf4b7
Files
-
82cdee8adc08cb54ee364a7ef3fbf4b7.exe windows:4 windows x86 arch:x86
46bc87280c7b9c9d80282c51c53791dc
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
comctl32
InitCommonControlsEx
shell32
SHGetPathFromIDListW
SHGetFileInfoW
CommandLineToArgvW
ShellExecuteW
ShellExecuteExW
SHGetMalloc
SHBrowseForFolderW
SHGetSpecialFolderLocation
kernel32
CreateFileA
FreeLibrary
GetProcessHeap
HeapAlloc
GetLastError
GetProcAddress
HeapFree
LoadLibraryW
GetModuleFileNameW
GetCurrentDirectoryW
CloseHandle
LocalFree
WaitForSingleObject
CreateProcessW
SetCurrentDirectoryW
SetFileApisToOEM
GetCurrentThread
SetThreadPriority
SetPriorityClass
GetEnvironmentVariableW
GetCurrentProcess
GetModuleHandleW
GetVersionExW
CreateFileW
ExpandEnvironmentStringsW
GetCommandLineW
DeleteFileW
GetFileAttributesW
RemoveDirectoryW
CreateDirectoryW
FindNextFileW
FindFirstFileW
FindClose
FormatMessageW
InterlockedExchangeAdd
SetFileTime
WriteFile
SetEndOfFile
GetFileSize
ReadFile
SetFilePointer
WideCharToMultiByte
GetACP
MultiByteToWideChar
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
MoveFileW
lstrlenW
GetTempPathW
GetFullPathNameW
GetWindowsDirectoryW
GetTempFileNameW
SetFileAttributesW
GetLongPathNameW
ResetEvent
CreateEventW
SetEvent
FindResourceW
FileTimeToSystemTime
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
LoadLibraryA
HeapReAlloc
VirtualAlloc
FlushFileBuffers
GetConsoleMode
GetConsoleCP
LCMapStringW
LCMapStringA
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
WaitForMultipleObjects
ResumeThread
GetStartupInfoA
GetFileType
SetHandleCount
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetSystemTimeAsFileTime
GetVersionExA
GetStartupInfoW
ExitThread
GetCurrentThreadId
CreateThread
RaiseException
RtlUnwind
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
InterlockedDecrement
Sleep
HeapSize
ExitProcess
GetStdHandle
GetModuleFileNameA
GetCPInfo
GetOEMCP
IsValidCodePage
user32
IsDialogMessageW
PostQuitMessage
CreateDialogParamW
EnableWindow
IsWindowVisible
LoadIconW
TranslateMessage
GetMessageW
DestroyIcon
IsWindow
MessageBoxW
ShowWindow
DialogBoxParamW
SetWindowPos
GetWindowRect
GetSystemMetrics
PostMessageW
GetDlgItem
SendMessageW
EndDialog
SetFocus
GetWindowTextW
SetWindowTextW
KillTimer
ScreenToClient
GetActiveWindow
GetDesktopWindow
LoadStringW
SetTimer
DispatchMessageW
gdi32
CreateSolidBrush
DeleteObject
ole32
CoUninitialize
CoTaskMemFree
CoInitializeEx
CoCreateInstance
CoInitialize
Sections
.text Size: 255KB - Virtual size: 255KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 51KB - Virtual size: 50KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 16KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 78KB - Virtual size: 78KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ