Static task
static1
Behavioral task
behavioral1
Sample
dab8893b6a8b67b41ad07bd0d01c6d9ba67bf3f80ff414ef7a85ec2a1f991c75.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
dab8893b6a8b67b41ad07bd0d01c6d9ba67bf3f80ff414ef7a85ec2a1f991c75.exe
Resource
win10-en-20211208
General
-
Target
dab8893b6a8b67b41ad07bd0d01c6d9ba67bf3f80ff414ef7a85ec2a1f991c75.exe
-
Size
579KB
-
MD5
b7b86225defaae424aa2e447fc784088
-
SHA1
4cb5d0afea368c7668fda827d5c8a0fea122520a
-
SHA256
dab8893b6a8b67b41ad07bd0d01c6d9ba67bf3f80ff414ef7a85ec2a1f991c75
-
SHA512
aedb708457385bcb8f6e5aed625d1926f276afb1d0b57c276d56a4c05c8dd3e207d17767d2d8887c795c688d87b773d281c520278a5eeccc2eb83d13f5dbfd5b
-
SSDEEP
3072:ML3kgS7wJnWRsfC9TYa5+sCyD2Lm7OLwL3kgS7wJnWRsfC9TYa5+sCyD2Lm7O8:LgWITd3M2CqzgWITd3M2Cq8
Malware Config
Signatures
Files
-
dab8893b6a8b67b41ad07bd0d01c6d9ba67bf3f80ff414ef7a85ec2a1f991c75.exe.exe windows x86
4dfcdb4dbbdca9e41ad6b80af6f44e34
Code Sign
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetDiskFreeSpaceA
GetLastError
SetConsoleTitleW
GetModuleHandleA
lstrcpyW
lstrcatW
Heap32First
ReadFileEx
GetDiskFreeSpaceA
GetPrivateProfileIntA
ReadConsoleA
DeviceIoControl
LoadLibraryA
HeapCreate
SetEnvironmentVariableA
GetStringTypeW
CloseHandle
InterlockedDecrement
Heap32Next
FindResourceA
CreateEventW
adsldpc
ADsDeleteDSObject
ADsEnumClasses
ADsCloseSearchHandle
ADsCreateDSObject
shell32
SHFree
ShellMessageBoxW
ExtractIconA
SHGetDiskFreeSpaceA
DragAcceptFiles
DragFinish
ShellAboutA
DragQueryFileA
SHGetSettings
StrChrA
SHGetMalloc
DuplicateIcon
DllUnregisterServer
uxtheme
SetWindowTheme
Sections
.text Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 272B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rich Size: 1KB - Virtual size: 176B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data1 Size: 512B - Virtual size: 74B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 109KB - Virtual size: 109KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ