Static task
static1
Behavioral task
behavioral1
Sample
50503f7e01611abca4ecbf80c098b35aeb038ace47be1605b0392910e71976ab.exe
Resource
win7-20220718-en
General
-
Target
50503f7e01611abca4ecbf80c098b35aeb038ace47be1605b0392910e71976ab
-
Size
912KB
-
MD5
c78e9c3e594be30a54f437e58cedfc59
-
SHA1
d16d18cdd974899c654fce95dd3427299e737735
-
SHA256
50503f7e01611abca4ecbf80c098b35aeb038ace47be1605b0392910e71976ab
-
SHA512
d96cdfcffe84aaa9128225149ad5961477b2c10407ec885126dcb3ca340955b8b4dbd6a9e5c72f0453242bfcb504993fa013e90daca8233c8a0ac335e1f5fca3
-
SSDEEP
24576:T2k+g3VIXnISZlLd9/sjs/d/iFgtjKcqa:TzeXNtp
Malware Config
Signatures
Files
-
50503f7e01611abca4ecbf80c098b35aeb038ace47be1605b0392910e71976ab.exe windows x86
5b64df5b579b7a4e7972e70a12f6c991
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
wininet
RetrieveUrlCacheEntryFileA
shell32
SHGetFileInfoA
winmm
waveInStop
kernel32
GetBinaryTypeA
SetTimeZoneInformation
GetModuleHandleA
GetDateFormatEx
SetThreadUILanguage
LoadLibraryW
CreateJobObjectW
SetThreadLocale
secur32
GetUserNameExA
advapi32
AdjustTokenPrivileges
RegFlushKey
QueryUsersOnEncryptedFile
rasapi32
RasGetSubEntryHandleA
comdlg32
GetSaveFileNameW
oleaut32
SafeArrayGetLBound
VarCyInt
esent
JetRetrieveColumn
crypt32
CryptInstallOIDFunctionAddress
shlwapi
SHSetValueA
PathIsRelativeA
user32
AnimateWindow
CharNextExA
CheckMenuRadioItem
CreateIconIndirect
msvcrt
feof
Sections
.text Size: 836KB - Virtual size: 839KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 64KB - Virtual size: 62KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ