Static task
static1
Behavioral task
behavioral1
Sample
WHMSHC22060125_SUR.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
WHMSHC22060125_SUR.exe
Resource
win10v2004-20220414-en
Behavioral task
behavioral3
Sample
WHMSHC22060126_SUR.pdf
Resource
win7-20220414-en
Behavioral task
behavioral4
Sample
WHMSHC22060126_SUR.pdf
Resource
win10v2004-20220414-en
General
-
Target
9bc5c6036ca20d7e42e756b6220094eb
-
Size
833KB
-
MD5
9bc5c6036ca20d7e42e756b6220094eb
-
SHA1
8160a8968911ad5423ff2b7ef35c44680af88925
-
SHA256
23b7b5e8cce52ca62e02db1f7f46ac92a0194ab2450253287a37c8dc42b7c92a
-
SHA512
4dc2af79dc977e369763851a7e51a07513e3e86d1561bc229e04bf544d8b00e031674771806be714bb21d6a1924844b1160965461a569aaa244b07bd4d9be423
-
SSDEEP
12288:aTwy9v7UR7aEKblDbfW7jayAaxTVLFeRWk1Q/6U5nPtyC1G6n3mDqRx512sntD0:aT14jShWHaf8xk1VsFyC1l38qRksntD0
Malware Config
Signatures
Files
-
9bc5c6036ca20d7e42e756b6220094eb.eml
-
https://ezwebmail.bizmeka.com/mail/popup/[email protected]
-
https://ezwebmail.bizmeka.com/mail/popup/[email protected]
-
-
WHMSHC22060125_SUR.cab.cab
-
WHMSHC22060125_SUR.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 654KB - Virtual size: 654KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
-
WHMSHC22060126_SUR.pdf.pdf
-
email-html-2.txt
-
email-plain-1.txt