Static task
static1
Behavioral task
behavioral1
Sample
64a0a8cc0c160069f2c428a2e51d6de64e1555bfd93d4353701ed9ac7e786a1d.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
64a0a8cc0c160069f2c428a2e51d6de64e1555bfd93d4353701ed9ac7e786a1d.exe
Resource
win10v2004-20220812-en
General
-
Target
64a0a8cc0c160069f2c428a2e51d6de64e1555bfd93d4353701ed9ac7e786a1d
-
Size
304KB
-
MD5
66b9722fbecef4264202c2f56321b3e0
-
SHA1
84b2ccfa782c35cde4976890f4dc0d0435b804e2
-
SHA256
64a0a8cc0c160069f2c428a2e51d6de64e1555bfd93d4353701ed9ac7e786a1d
-
SHA512
3268d42802f461a16292b96c313071c0b150301d0ad039603b60e16f5f8f08965a09379055f51371a22a501aeb7d2744b582153e9e0620ae570346dfa25dc513
-
SSDEEP
6144:XXUcgmYsNnZ7EJxNv8qVkCKAdRGCAsdMF6UbkKUqComUjCF0Rz:n99FNniJxxYAd0IdMcUbkKU7omL0
Malware Config
Signatures
Files
-
64a0a8cc0c160069f2c428a2e51d6de64e1555bfd93d4353701ed9ac7e786a1d.exe windows x86
1abbede3c454c2d93b52c642a7cf252b
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
HeapFree
CreateDirectoryW
SetCommBreak
VirtualProtectEx
SetLastError
GetVersionExA
FindClose
DeviceIoControl
GetLocaleInfoW
GlobalLock
TlsGetValue
GetFileAttributesW
LocalFlags
GetFileAttributesW
GetModuleHandleA
GetCurrentThread
GetStringTypeA
CreateEventA
GetPrivateProfileSectionA
RemoveDirectoryW
GetCurrentProcess
user32
SetFocus
LoadCursorA
PeekMessageW
GetWindowTextW
DispatchMessageA
wsprintfW
SetCursorPos
IsDialogMessageA
PostMessageW
IsWindow
DefDlgProcA
SetCursor
GetWindowLongW
msorcl32
SQLCancel
SQLDisconnect
SQLError
SQLConnect
ntshrui
IsPathSharedA
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 295KB - Virtual size: 295KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.import Size: 512B - Virtual size: 384B
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE