Static task
static1
Behavioral task
behavioral1
Sample
82b8fa02fdad40e9129cd6d6ff5343c0b4e94fe9640ca7bd06868b354c5f6f37.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
82b8fa02fdad40e9129cd6d6ff5343c0b4e94fe9640ca7bd06868b354c5f6f37.exe
Resource
win10v2004-20220812-en
General
-
Target
82b8fa02fdad40e9129cd6d6ff5343c0b4e94fe9640ca7bd06868b354c5f6f37
-
Size
196KB
-
MD5
dabae3a3c9969dcf0010efb082dd2b89
-
SHA1
49148fa0c0060e5dc7d5b96610b11a0f2c84bde6
-
SHA256
82b8fa02fdad40e9129cd6d6ff5343c0b4e94fe9640ca7bd06868b354c5f6f37
-
SHA512
b475d748740d10a5545aac1af5d4317f0b121c833170d4bf4f5969b0be7ebf418d7ea066b862114216410b622a7489c6aae5ea4073df6c3d16d9a3d84dff896e
-
SSDEEP
3072:ePolImlPlJiBCyLUGqlJcCln6BhggIUFfZGHW6RtAXEyv5G4ANNzJ:ePQICocJcXBKg9UpRtAjhGLz
Malware Config
Signatures
Files
-
82b8fa02fdad40e9129cd6d6ff5343c0b4e94fe9640ca7bd06868b354c5f6f37.exe windows x86
1053a83f6a14b1ae112014f29636c8c3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
shell32
SHFileOperationA
SHGetFileInfoA
kernel32
ExitProcess
lstrlenW
GetOEMCP
ExitThread
VirtualAllocEx
GetProcAddress
GetACP
LoadLibraryExA
lstrlenA
GetModuleHandleA
GetCommandLineW
IsBadReadPtr
user32
CharLowerA
CharToOemA
CharUpperBuffA
BeginPaint
CallWindowProcA
CallNextHookEx
CharNextW
CharLowerBuffA
CharNextA
AdjustWindowRectEx
Sections
CODE Size: 160KB - Virtual size: 158KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 939B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.bss Size: 4KB - Virtual size: 72KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.fdata Size: 8KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 8KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ