C:\kedulazaziwed 30\nod mapa re.pdb
Static task
static1
Behavioral task
behavioral1
Sample
adc067adbc353993c78fc85d1c2e0650009d0f0589118fdc3834615729e75911.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
adc067adbc353993c78fc85d1c2e0650009d0f0589118fdc3834615729e75911.exe
Resource
win10v2004-20241007-en
General
-
Target
adc067adbc353993c78fc85d1c2e0650009d0f0589118fdc3834615729e75911
-
Size
292KB
-
MD5
a165d686c060665bf433272c93ee7824
-
SHA1
f763124bd014dc0db90c9157cd6030edff9d5a26
-
SHA256
adc067adbc353993c78fc85d1c2e0650009d0f0589118fdc3834615729e75911
-
SHA512
a16e6b66aafcebac21dc4bacf8d854ed1a2884883d51ce519785ccac86f7a0893c83315e63c21feb51eeac14f611364d4f70f9ad8e2ecad930171c32a9daf7fd
-
SSDEEP
6144:RJjr59SUHBxRMD+9PKtkaqnnErQGxoyWPFiM:Px4UhxRMD+EtxqEdH
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource adc067adbc353993c78fc85d1c2e0650009d0f0589118fdc3834615729e75911
Files
-
adc067adbc353993c78fc85d1c2e0650009d0f0589118fdc3834615729e75911.exe windows:5 windows x86 arch:x86
31aa62a1475f16bb34b4e4697da0deed
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
PDB Paths
Imports
kernel32
SetSystemTimeAdjustment
FindNextVolumeA
LeaveCriticalSection
GetNamedPipeHandleStateA
FileTimeToLocalFileTime
ExitProcess
GetCurrentProcessId
GetVersionExW
EnumDateFormatsExW
FillConsoleOutputCharacterA
EnumResourceNamesA
FindNextFileA
CopyFileExW
BuildCommDCBAndTimeoutsA
SetDefaultCommConfigA
WritePrivateProfileStructW
HeapSetInformation
CreateTimerQueue
ReadConsoleInputA
WriteConsoleInputA
GetSystemDirectoryW
GetDriveTypeA
VirtualProtect
LoadLibraryA
GlobalAlloc
VerifyVersionInfoA
GetBinaryTypeA
GetProfileSectionW
InterlockedDecrement
ReadConsoleOutputCharacterW
FindFirstChangeNotificationW
FormatMessageA
SetDllDirectoryW
GetQueuedCompletionStatus
WritePrivateProfileStringA
GetConsoleAliasesLengthW
GetProcessHeap
OpenWaitableTimerA
SetConsoleTextAttribute
InterlockedIncrement
GetStartupInfoW
GetSystemWow64DirectoryW
GetConsoleAliasExesW
ContinueDebugEvent
EndUpdateResourceA
SetLastError
FatalAppExitA
SetSystemTime
OpenFileMappingA
lstrcmpW
SetConsoleActiveScreenBuffer
SetDefaultCommConfigW
VirtualFree
InterlockedCompareExchange
GlobalUnfix
GetSystemWindowsDirectoryA
CopyFileW
TerminateThread
GetACP
FindAtomA
lstrcatW
HeapWalk
SetMailslotInfo
CreateActCtxA
GetPrivateProfileIntA
_lread
GetOverlappedResult
CreateNamedPipeW
GetAtomNameA
SetConsoleScreenBufferSize
EnumResourceTypesW
lstrlenA
WriteConsoleA
lstrcpyA
ReadConsoleOutputA
SetThreadContext
BuildCommDCBW
ReleaseActCtx
GetStringTypeW
GetPrivateProfileStringW
GetFileAttributesA
GetVolumePathNameA
MoveFileW
SetCommMask
SetFileShortNameA
VerLanguageNameA
LockFile
EndUpdateResourceW
EnumDateFormatsA
PostQueuedCompletionStatus
FreeConsole
GlobalGetAtomNameW
SetComputerNameA
GetConsoleAliasExesLengthW
WriteConsoleInputW
CreateMailslotA
TzSpecificLocalTimeToSystemTime
MoveFileExA
DebugActiveProcess
GetStringTypeExW
EnumSystemLocalesW
GetConsoleAliasExesLengthA
FindActCtxSectionGuid
CopyFileA
ResetWriteWatch
GetPrivateProfileIntW
GetModuleHandleW
ProcessIdToSessionId
GetTickCount
GetModuleFileNameA
GetConsoleAliasesLengthA
GlobalUnWire
FillConsoleOutputCharacterW
GetCompressedFileSizeW
SetThreadPriority
MapUserPhysicalPages
WriteConsoleOutputCharacterA
EnumDateFormatsW
QueryInformationJobObject
CreateFileW
GetDateFormatW
GetBinaryTypeW
RaiseException
GetCommandLineA
GetStartupInfoA
HeapValidate
IsBadReadPtr
DeleteCriticalSection
EnterCriticalSection
GetModuleFileNameW
SetUnhandledExceptionFilter
QueryPerformanceCounter
GetCurrentThreadId
GetSystemTimeAsFileTime
Sleep
GetProcAddress
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
WideCharToMultiByte
GetLastError
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
HeapDestroy
HeapCreate
HeapFree
WriteFile
HeapAlloc
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
IsDebuggerPresent
HeapSize
HeapReAlloc
VirtualAlloc
GetOEMCP
GetCPInfo
IsValidCodePage
RtlUnwind
InitializeCriticalSectionAndSpinCount
DebugBreak
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
LoadLibraryW
MultiByteToWideChar
LCMapStringA
LCMapStringW
GetStringTypeA
GetLocaleInfoA
SetFilePointer
GetConsoleCP
GetConsoleMode
SetStdHandle
GetConsoleOutputCP
CreateFileA
CloseHandle
FlushFileBuffers
user32
GetCaretBlinkTime
Sections
.text Size: 147KB - Virtual size: 147KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 80KB - Virtual size: 331KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 63KB - Virtual size: 62KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ