Static task
static1
Behavioral task
behavioral1
Sample
GOLAYA-RUSSKAYA.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
GOLAYA-RUSSKAYA.exe
Resource
win10v2004-20220812-en
General
-
Target
905edba442c0435c6a3ebd7cca83a2ce64b56d366d0d173ad7c1d30f7d10c424
-
Size
128KB
-
MD5
c96f5eaeae2d8b39e48e7dc8519c5268
-
SHA1
0f04108a9c704770fd98635af74d1868d86b3382
-
SHA256
905edba442c0435c6a3ebd7cca83a2ce64b56d366d0d173ad7c1d30f7d10c424
-
SHA512
e9464f98db46282df9b657d7cd09f5962bb753cce8b2071842849019c6193d24516c5e5d4cdcf41da2b8fa8863d995489c02f53a399310209f4d7e758f961b5d
-
SSDEEP
3072:dnHXMpxcGxFyhQ0bOqYoxIcEWubRNcPe9d8T2q:BHmGY/o0o+hBbnF9GCq
Malware Config
Signatures
Files
-
905edba442c0435c6a3ebd7cca83a2ce64b56d366d0d173ad7c1d30f7d10c424.zip
-
GOLAYA-RUSSKAYA.exe.exe windows x86
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Sections
CODE Size: 91KB - Virtual size: 91KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
DATA Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
BSS Size: - Virtual size: 2KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: - Virtual size: 8B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 24B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 69KB - Virtual size: 68KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ