Static task
static1
Behavioral task
behavioral1
Sample
718f13940f3dce19cf3500745e1bc46c3537c23e02986096fe4192d1fc246784.exe
Resource
win7-20220414-en
General
-
Target
718f13940f3dce19cf3500745e1bc46c3537c23e02986096fe4192d1fc246784
-
Size
152KB
-
MD5
9daacc7a12e6b691b06d27e77f7db32d
-
SHA1
fd2206e065e6943cfb070ec416b41d63881479c4
-
SHA256
718f13940f3dce19cf3500745e1bc46c3537c23e02986096fe4192d1fc246784
-
SHA512
e07f688e8d017a01cc275f289bb00939ef31309ac9ed6630b99483162b8c60c201765f09f71261a2e97df1f1dd42a8efe73954a8ea2f00e4870c59cf3152f747
-
SSDEEP
3072:aAZZpQPPgcHQeAm4SExdxfFdh/RLn4dOnBWfAeLDghx24K:aAZYPzobSExd19R74KsDgj24
Malware Config
Signatures
Files
-
718f13940f3dce19cf3500745e1bc46c3537c23e02986096fe4192d1fc246784.exe windows x86
b0ad86f9953b11452ea6613efa10943b
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
oleaut32
VarI8FromR8
kernel32
GetConsoleCP
GetOEMCP
GetHandleInformation
GetCommandLineA
GetPriorityClass
SystemTimeToTzSpecificLocalTime
OpenFileMappingW
GetProcAddress
SetProcessWorkingSetSizeEx
GetModuleHandleA
TzSpecificLocalTimeToSystemTime
gdi32
AbortDoc
user32
GetNextDlgGroupItem
SetCapture
IsCharLowerA
CallMsgFilterA
CountClipboardFormats
SetCursorPos
DdeDisconnect
clusapi
CloseCluster
msvcrt
memset
esent
JetDelete
rpcrt4
RpcServerUnregisterIfEx
Sections
.text Size: 80KB - Virtual size: 78KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.idata Size: 36KB - Virtual size: 33KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 20KB - Virtual size: 18KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 980B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 480B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 936B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ