Static task
static1
Behavioral task
behavioral1
Sample
apphost.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
apphost.exe
Resource
win10v2004-20220414-en
General
-
Target
31c9d8b7973f90769d41b9c8c9b7ce69b87c890384b6fbf2f27499b28096f274
-
Size
694KB
-
MD5
61072e959487ed7a6d8af3df000383a2
-
SHA1
bb0baf882a4b80cdad105b636a28dc665d30ef34
-
SHA256
31c9d8b7973f90769d41b9c8c9b7ce69b87c890384b6fbf2f27499b28096f274
-
SHA512
dea4156c984bdf2c841f1fab5ce64249f1690a9ed00dffe5e98bc1a8f2e85649bcabc3575f04413e25dea96872a8aee9273e1a38af59f1bbc35f6e2ebcf26e58
-
SSDEEP
12288:IOxfgs3o9YIEUp1s8vtO26nkgDH2cZhiWNC1QitO38kZNzvz7RIlYv+Xnpbc6:d5gslIE8eMsDwMiV15GLXRIk+Xn7
Malware Config
Signatures
Files
-
31c9d8b7973f90769d41b9c8c9b7ce69b87c890384b6fbf2f27499b28096f274.zip
-
apphost.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 501KB - Virtual size: 501KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.sdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 347KB - Virtual size: 346KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ