Static task
static1
Behavioral task
behavioral1
Sample
0aced9d0ebff484de40048b2eefbf32b215d714d4a59a71dc10492e033168562.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
0aced9d0ebff484de40048b2eefbf32b215d714d4a59a71dc10492e033168562.exe
Resource
win10v2004-20220812-en
General
-
Target
0aced9d0ebff484de40048b2eefbf32b215d714d4a59a71dc10492e033168562
-
Size
300KB
-
MD5
6bd6f015c4c4203b2fad1be701fe1790
-
SHA1
326e8b1e03c77e4c2f09abc4d8d1edaa7d2b9354
-
SHA256
0aced9d0ebff484de40048b2eefbf32b215d714d4a59a71dc10492e033168562
-
SHA512
d6ca57b8e618c3f5ed869a4a928a5f4c32cc389760b729a541df104a4138fdb8cc6a2baca0fbe5a7451396a2fa118c355d8e3e6056fcb797f77c3a142347084e
-
SSDEEP
6144:rWnGN60iWPCA9cnfOYEmDFHE2PQTX+vZVSL1gia:6Gs0+AqnfwmDFHE2PQL+vOL1gp
Malware Config
Signatures
Files
-
0aced9d0ebff484de40048b2eefbf32b215d714d4a59a71dc10492e033168562.exe windows x86
6fcf6be09db7aee20593b26a51f4d8df
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
FindResourceA
GetDriveTypeW
ResetEvent
HeapSize
SetLastError
MapViewOfFile
RemoveDirectoryA
GetModuleHandleA
ReleaseMutex
VirtualProtect
GetStdHandle
IsBadWritePtr
CreateDirectoryA
GetFileAttributesA
CancelIo
GetProcessHeap
GetLocaleInfoA
GetExitCodeThread
CreateMailslotW
FindClose
GetCommandLineA
user32
PeekMessageA
LoadImageA
SetCursor
GetWindowLongW
GetCapture
GetWindowTextW
LoadCursorA
SetFocus
PostMessageW
IsDialogMessageA
wsprintfA
DispatchMessageA
DestroyMenu
ipsmsnap
DllUnregisterServer
DllGetClassObject
DllCanUnloadNow
DllRegisterServer
rasapi32
DwRasUninitialize
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 292KB - Virtual size: 292KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.import Size: 512B - Virtual size: 464B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ