Behavioral task
behavioral1
Sample
4204cc08265199def9a90a8401139adf.dll
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
4204cc08265199def9a90a8401139adf.dll
Resource
win10v2004-20231215-en
General
-
Target
4204cc08265199def9a90a8401139adf.exe
-
Size
316KB
-
MD5
4204cc08265199def9a90a8401139adf
-
SHA1
ba1a47f6131106145030c09620388d4f9e188de8
-
SHA256
e7a8396f875706bb367572480a2fe01be5a70163659fa9478e72779d553bae99
-
SHA512
4f354b4b021ba9ea364b61c55df59bfdef4bdf7e1072b29572478eab3f7ad0fc3ab6d24f4ea498da2fe6db9d362ce3632057a328caba66eded55f828d0297dcc
-
SSDEEP
6144:VO7Ec2ccPvATdPsM2JSzwMxZS6VWxtoloBj5rbx:Q7vLGoZPs6NxZnVJ6Bj5rbx
Malware Config
Signatures
Files
-
4204cc08265199def9a90a8401139adf.exe.dll windows:4 windows x86 arch:x86
419cf95868539e3acdd2910179a276c9
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL
Imports
kernel32
VirtualAlloc
LoadLibraryA
GetProcAddress
GetModuleHandleA
user32
VkKeyScanW
CharNextW
IsCharUpperA
GetAsyncKeyState
IsGUIThread
GetFocus
GetKBCodePage
GetDoubleClickTime
CharLowerA
GetActiveWindow
IsWindow
GetWindowContextHelpId
GetProcessWindowStation
IsClipboardFormatAvailable
GetOpenClipboardWindow
GetListBoxInfo
GetParent
ReleaseCapture
GetClipboardViewer
CloseDesktop
EndMenu
CharUpperA
GetQueueStatus
DrawMenuBar
GetThreadDesktop
DestroyMenu
OpenIcon
GetMessagePos
IsCharAlphaW
GetDlgCtrlID
IsWindowVisible
CreateMenu
DestroyIcon
WindowFromDC
IsCharAlphaNumericW
GetWindowTextLengthA
IsCharAlphaNumericA
CloseWindow
OemKeyScan
GetCapture
GetKeyboardLayout
CharUpperW
CountClipboardFormats
IsMenu
IsCharLowerA
GetKeyboardType
GetMenuCheckMarkDimensions
IsCharAlphaA
DestroyCursor
GetDC
CloseClipboard
GetForegroundWindow
LoadCursorFromFileW
CharLowerW
IsCharUpperW
GetMenuContextHelpId
GetCaretBlinkTime
GetInputState
CharNextA
GetMenu
AnyPopup
DestroyWindow
GetSysColor
ShowCaret
GetMessageExtraInfo
GetDialogBaseUnits
GetWindowDC
GetSystemMetrics
CreatePopupMenu
GetShellWindow
gdi32
GetPixelFormat
SwapBuffers
GetObjectType
CloseEnhMetaFile
GetTextColor
CreatePatternBrush
GetColorSpace
AddFontResourceA
FlattenPath
CreateMetaFileW
WidenPath
BeginPath
CreateCompatibleDC
DeleteColorSpace
SaveDC
GetTextCharset
GetFontLanguageInfo
StrokePath
GetStockObject
DeleteObject
GetSystemPaletteUse
UnrealizeObject
DeleteEnhMetaFile
GetBkColor
RealizePalette
GdiFlush
GetStretchBltMode
FillPath
CloseMetaFile
CloseFigure
GetDCPenColor
CreateHalftonePalette
GetROP2
SetMetaRgn
PathToRegion
GetGraphicsMode
CreateSolidBrush
GetPolyFillMode
GetDCBrushColor
UpdateColors
GetBkMode
CancelDC
EndDoc
GetMapMode
AbortPath
Pie
shell32
ord18
ole32
OleDraw
comctl32
ImageList_Add
imm32
ImmGetVirtualKey
Sections
.text Size: 5KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 151KB - Virtual size: 150KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 19KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 139KB - Virtual size: 139KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 1024B - Virtual size: 760B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ