Static task
static1
Behavioral task
behavioral1
Sample
6835477cdc33ce06424a53e291c78385edb0e28a855b0a4a32dec357143d310c.exe
Resource
win7-20240419-en
General
-
Target
6835477cdc33ce06424a53e291c78385edb0e28a855b0a4a32dec357143d310c
-
Size
1.2MB
-
MD5
38d3851a0eaad72357ad7d6206183bb9
-
SHA1
d9fd8a2fc6c91861f05128980982668ada9efcf6
-
SHA256
6835477cdc33ce06424a53e291c78385edb0e28a855b0a4a32dec357143d310c
-
SHA512
e5902aca6ec03dc7874a545dd0ffed260b000f755c5577d032d80904d75b8f95d7516800b74f4c8e37436e20782a903d3d11e2a7bc126e6dc70f358107135ef2
-
SSDEEP
6144:Y1VWFa6hrW3VIXTlh/xJ4ZXnW4QWT96ficzUa5cFeGhK+xuI7z/2fmcFeGhK+xu3:Y1VovnXTlh/xJ4Zm4D6bUZl3El3
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource 6835477cdc33ce06424a53e291c78385edb0e28a855b0a4a32dec357143d310c
Files
-
6835477cdc33ce06424a53e291c78385edb0e28a855b0a4a32dec357143d310c.exe windows:4 windows x86 arch:x86
84b1d4352ce9fe10cf1f56ee6f2bd7ec
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
wsprintfA
MessageBoxA
CallWindowProcA
WaitForInputIdle
SetPropA
GetWindowLongA
SetWindowLongA
RemovePropA
GetPropA
SetMenuItemBitmaps
MsgWaitForMultipleObjects
SendMessageA
WindowFromPoint
GetCursorPos
kernel32
IsBadCodePtr
SetUnhandledExceptionFilter
InterlockedIncrement
InterlockedDecrement
SetFilePointer
CreateWaitableTimerA
SetWaitableTimer
CloseHandle
GetCurrentProcess
OpenProcess
GetPriorityClass
LocalAlloc
LocalFree
GetModuleHandleA
GetProcAddress
lstrcpyn
MultiByteToWideChar
CreatePipe
LCMapStringW
PeekNamedPipe
ReadFile
GetExitCodeProcess
Sleep
GetProcessHeap
ExitProcess
HeapAlloc
HeapReAlloc
HeapFree
IsBadReadPtr
GetTickCount
GetModuleFileNameA
GetVersionExA
FreeLibrary
LoadLibraryA
LCMapStringA
SetStdHandle
FlushFileBuffers
CreateProcessW
GetStringTypeW
GetStringTypeA
GetStartupInfoA
GetCommandLineA
GetVersion
RtlUnwind
TerminateProcess
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
WideCharToMultiByte
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
DeleteCriticalSection
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
GetLastError
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
WriteFile
VirtualAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetCPInfo
GetACP
GetOEMCP
advapi32
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegFlushKey
RegQueryValueExA
RegEnumValueA
RegQueryInfoKeyA
RegCloseKey
RegEnumKeyA
RegOpenKeyA
RegCreateKeyA
oleaut32
VariantTimeToSystemTime
Sections
.text Size: 76KB - Virtual size: 72KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 8KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 148KB - Virtual size: 198KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 948KB - Virtual size: 948KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE