Static task
static1
Behavioral task
behavioral1
Sample
RK__PO_2.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
RK__PO_2.exe
Resource
win10v2004-20220414-en
Behavioral task
behavioral3
Sample
RK__PO_N.exe
Resource
win7-20220414-en
Behavioral task
behavioral4
Sample
RK__PO_N.exe
Resource
win10v2004-20220414-en
General
-
Target
10a4ba420a16ca28bd4a7b50d7f947d4705bba87031009a45e8ace94e7dee855
-
Size
2.5MB
-
MD5
954c3dea8ffba872ef001fe68ed6e35c
-
SHA1
438fc376d6b3d2ce608e3a6a6fda8ecdc5f3f242
-
SHA256
10a4ba420a16ca28bd4a7b50d7f947d4705bba87031009a45e8ace94e7dee855
-
SHA512
7d18c40c064f65b34db88be132c3fca165d96042c4e4cae39c63b76a3d766de2a6562b99b50fe9e4d49f835dfe532bb510625bd943e3621d8a6f8e7d6605ccfd
-
SSDEEP
49152:k16n9ryTpmxiAnXMX5o/ATqASLp62BhPNbRAFWVU6uQPw:U6nsTpmlXMpooTbEZLAYMQ
Malware Config
Signatures
Files
-
10a4ba420a16ca28bd4a7b50d7f947d4705bba87031009a45e8ace94e7dee855.iso
-
RK__PO_2.EXE.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
)?>lta Size: 912KB - Virtual size: 912KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 66KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 904B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
-
RK__PO_N.EXE.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
7L5dB/ Size: 912KB - Virtual size: 911KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text Size: 66KB - Virtual size: 65KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1024B - Virtual size: 880B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
Size: 512B - Virtual size: 16B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ