Static task
static1
Behavioral task
behavioral1
Sample
0789d73d267431f0bf6ed2dea3885a4cc00e185b635b2378ece2f4c3ecaad254.exe
Resource
win7-en-20211208
General
-
Target
0789d73d267431f0bf6ed2dea3885a4cc00e185b635b2378ece2f4c3ecaad254
-
Size
435KB
-
MD5
e6ee67b002cb6faa103debeb3c903ba6
-
SHA1
fd6a295b24dce06d59173e8e0dbe935c41988ffd
-
SHA256
0789d73d267431f0bf6ed2dea3885a4cc00e185b635b2378ece2f4c3ecaad254
-
SHA512
043b8f18eae512b0cc65fcca0ce3f447e459d7bcaccfd5846a481f6f5fac7d047294e10f5485a341ab929e34f1c9ad474d3ff468564e6308b5d7ea35d9698b03
-
SSDEEP
6144:iUY5q24YXiulGWcPrIwHveL+WQRt6jLMJjRTUGLkZyD:X2culGWGrIwHv5WQR8/MBRTUGL
Malware Config
Signatures
Files
-
0789d73d267431f0bf6ed2dea3885a4cc00e185b635b2378ece2f4c3ecaad254.exe windows x86
6141f9527d2ffa95b35a8dc7086ce4cc
Code Sign
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
GetProcAddress
LoadLibraryA
VirtualAlloc
VirtualFree
VirtualProtect
GetVersion
SetLastError
lstrcmpA
GetCurrentProcess
GetCurrentThread
GetCurrentThreadId
ole32
OleInitialize
oledlg
OleUIConvertW
OleUIBusyW
OleUIConvertA
OleUIBusyA
comctl32
InitCommonControls
winspool.drv
GetDefaultPrinterW
PerfCollect
imagehlp
SymGetLineNext64
Sections
.code Size: 333KB - Virtual size: 333KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.bss Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 100KB - Virtual size: 100KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE