Static task
static1
Behavioral task
behavioral1
Sample
677deed45112e82533a14a758e54fb91c95d9b135de1ce68f56ea16ffc5443a5.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
677deed45112e82533a14a758e54fb91c95d9b135de1ce68f56ea16ffc5443a5.exe
Resource
win10v2004-20220812-en
General
-
Target
677deed45112e82533a14a758e54fb91c95d9b135de1ce68f56ea16ffc5443a5
-
Size
121KB
-
MD5
67e9ccde34147336bc68ced5268025aa
-
SHA1
211b10962fc846abcd80944a9833c98c42047447
-
SHA256
677deed45112e82533a14a758e54fb91c95d9b135de1ce68f56ea16ffc5443a5
-
SHA512
7b76c1f5efee2e15b8b3639bd4ded0e83df3f774c9c83b6a46cac8c0a6b7309b6d5c4801ef140122d64bf44a50aff3f1d64295362b8a800e3b085e1ea75e9f5f
-
SSDEEP
1536:cB53Far6jBBrkv5kFyrOK2ubhBqTNWBWu83xPI6kdlwQN2txpS8pnE:cBKr63IkFyrRqtraIt28m
Malware Config
Signatures
Files
-
677deed45112e82533a14a758e54fb91c95d9b135de1ce68f56ea16ffc5443a5.exe windows x86
e077580059d7ff67526e2bb360620573
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32
VirtualProtectEx
LoadLibraryExA
CreateProcessW
ReadProcessMemory
CreateProcessA
ReadProcessMemory
Sleep
GetSystemTimeAsFileTime
SleepEx
TerminateProcess
GetProcAddress
LoadLibraryA
VirtualProtect
GetProfileIntW
VirtualProtect
LoadLibraryExW
ReleaseMutex
SleepEx
ReleaseMutex
GetSystemTime
VirtualProtect
GetSystemTimeAsFileTime
LoadLibraryExW
GetSystemTimeAsFileTime
winmm
DrvGetModuleHandle
GetDriverModuleHandle
DrvGetModuleHandle
DrvGetModuleHandle
DrvGetModuleHandle
timeGetDevCaps
DrvGetModuleHandle
OpenDriver
GetDriverModuleHandle
timeGetDevCaps
waveOutPause
DrvGetModuleHandle
GetDriverModuleHandle
OpenDriver
DrvGetModuleHandle
OpenDriver
DrvGetModuleHandle
timeGetDevCaps
GetDriverModuleHandle
DrvGetModuleHandle
Sections
.text Size: 80KB - Virtual size: 1.4MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.BitDef Size: 8KB - Virtual size: 8KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.BitDef Size: 8KB - Virtual size: 8KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.BitDef Size: 8KB - Virtual size: 8KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 5KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 9KB - Virtual size: 12KB
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ