Static task
static1
Behavioral task
behavioral1
Sample
3cedbbcaf9cbc7ee861e05cea4fed615753b40fd18557d82013a318068e6107e.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
3cedbbcaf9cbc7ee861e05cea4fed615753b40fd18557d82013a318068e6107e.exe
Resource
win10v2004-20220901-en
General
-
Target
3cedbbcaf9cbc7ee861e05cea4fed615753b40fd18557d82013a318068e6107e
-
Size
184KB
-
MD5
662bab72a6ac7c2cafea1f00f3308120
-
SHA1
10746ea81d530a4b8efd906d5086b8cf4b6fc986
-
SHA256
3cedbbcaf9cbc7ee861e05cea4fed615753b40fd18557d82013a318068e6107e
-
SHA512
ee6d9dc5fa59a4749b9d7708c87df6eabc68d7ec75af4fcf5e38f0bb79bde41c68944f86cc13026dc1b4a25ce683df968dee21e945d71df63837b9c990c319ae
-
SSDEEP
3072:MamoQRxnvwY+i0BmHVCnHQby6PSv++BzutGza5FeYIkDS0SOoOVaoF7t2wRsbzNm:MamoQvt+isCCwby6PIPUMAeYDoYPT2H4
Malware Config
Signatures
Files
-
3cedbbcaf9cbc7ee861e05cea4fed615753b40fd18557d82013a318068e6107e.exe windows x86
a35b478a95d9b143dd3b56f5f7281a6f
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
VirtualQueryEx
ExitProcess
IsDebuggerPresent
RaiseException
GetACP
SetUnhandledExceptionFilter
MultiByteToWideChar
CreateProcessA
UnhandledExceptionFilter
lstrlenW
GetSystemTimeAsFileTime
EnumResourceNamesW
GetCurrentProcess
GetModuleHandleA
GetCPInfoExA
lstrlenA
LocalAlloc
GetEnvironmentVariableA
InterlockedExchange
GetLocaleInfoA
WideCharToMultiByte
GetThreadLocale
shell32
SHGetMalloc
SHGetPathFromIDListA
SHGetSpecialFolderLocation
advapi32
RegOpenKeyExA
RegEnumKeyExA
RegCreateKeyExA
RegQueryValueExA
RegOpenKeyA
RegCloseKey
RegDeleteKeyA
RegSetValueExA
oleacc
LresultFromObject
CreateStdAccessibleObject
ole32
StringFromIID
ProgIDFromCLSID
CoTaskMemFree
StringFromCLSID
Sections
.text Size: 109KB - Virtual size: 109KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.tls Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 71KB - Virtual size: 70KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1024B - Virtual size: 260KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ