Static task
static1
Behavioral task
behavioral1
Sample
7484a532eb78a47d684f4381a4a4c0b1.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
7484a532eb78a47d684f4381a4a4c0b1.exe
Resource
win10v2004-20231215-en
General
-
Target
7484a532eb78a47d684f4381a4a4c0b1
-
Size
99KB
-
MD5
7484a532eb78a47d684f4381a4a4c0b1
-
SHA1
8204ec9230519d3cb5962e3aad2fac895bdbce71
-
SHA256
c6ffde95cfcb0694afc384c87ee50208f52e1fdc5fd369b6b87e22ab46c1466a
-
SHA512
83bdd4c07dc122cd977393e9ca9bc267c909431f44cb990746676c735eaecddbf63f25a0cc7c194ad27e07b5330702876bbe5808e61b7701e58444b3c63983bb
-
SSDEEP
1536:rJ90BQtzSVyAfiUFmr+m8GdFIdH2qocKRVzcMXDl+Fi6Gah1qHeeGQ:jUQ0Vnmr6GLIV2rcKfcexJ6GiZev
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 7484a532eb78a47d684f4381a4a4c0b1
Files
-
7484a532eb78a47d684f4381a4a4c0b1.exe windows:4 windows x86 arch:x86
727edf2654e993095902fea0269657c6
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvcrt
sin
malloc
memmove
strcmp
kernel32
LoadLibraryExA
VirtualAllocEx
GetCurrentProcess
GetACP
GetModuleHandleA
ExitProcess
ExitThread
gdi32
CreateCompatibleBitmap
version
GetFileVersionInfoA
GetFileVersionInfoSizeA
comdlg32
GetOpenFileNameA
advapi32
RegOpenKeyA
RegCreateKeyExA
RegDeleteValueA
user32
EndPaint
IsMenu
SetTimer
DrawIcon
CreateMenu
EqualRect
BeginDeferWindowPos
CharToOemA
DispatchMessageW
GetSysColor
GetSysColorBrush
FillRect
EnumThreadWindows
DeferWindowPos
RegisterClassA
SetWindowLongA
GetMenuItemCount
GetClipboardData
SetWindowPos
GetFocus
EnableScrollBar
DrawEdge
TrackPopupMenu
CharLowerBuffA
CharNextA
GetParent
GetDlgItem
DrawIconEx
GetScrollPos
ClientToScreen
GetScrollRange
GetWindowTextA
GetActiveWindow
GetDCEx
CheckMenuItem
EndDeferWindowPos
SetWindowTextA
ShowScrollBar
IsWindowEnabled
GetClientRect
DefWindowProcA
DrawTextA
BeginPaint
GetKeyNameTextA
GetWindow
EnableWindow
EnumChildWindows
IsChild
DispatchMessageA
GetMenu
GetMenuItemInfoA
shell32
SHGetFolderPathA
SHGetDesktopFolder
SHGetDiskFreeSpaceA
SHGetSpecialFolderLocation
comctl32
ImageList_Draw
ImageList_Add
ImageList_Read
ImageList_Write
ImageList_GetBkColor
ImageList_Remove
ImageList_DrawEx
ImageList_Create
ImageList_Destroy
Sections
.text Size: 49KB - Virtual size: 48KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.tls Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.init Size: 45KB - Virtual size: 45KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
INIT Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ