Static task
static1
Behavioral task
behavioral1
Sample
f072b2de825ff73f5fa6456493a6657a3c3dca6ae863aeb42f545b935b1ad394.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
f072b2de825ff73f5fa6456493a6657a3c3dca6ae863aeb42f545b935b1ad394.exe
Resource
win10v2004-20220812-en
General
-
Target
f072b2de825ff73f5fa6456493a6657a3c3dca6ae863aeb42f545b935b1ad394
-
Size
114KB
-
MD5
6e4cb7350bc31e84958748e56459e060
-
SHA1
f88102851d453b7edfd872075e1d62899f255a0f
-
SHA256
f072b2de825ff73f5fa6456493a6657a3c3dca6ae863aeb42f545b935b1ad394
-
SHA512
e13938641171e05ee82b3a41a29064f0b0840363d0eaaef3a8c6ed1784feece41b78e60e514c3f5ab23f3a7dbeae176789339063869069dbe7824cfdd562fdf0
-
SSDEEP
3072:+um2ceawQkeqllybLElBZLPUUGegBToyd:M21QiDrZLPJWT
Malware Config
Signatures
Files
-
f072b2de825ff73f5fa6456493a6657a3c3dca6ae863aeb42f545b935b1ad394.exe windows x86
f1048cec44f898dedb1026011368845a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
ReadFile
ReadConsoleA
GetFileSize
CloseHandle
GetModuleHandleA
ReleaseMutex
SetFileAttributesA
ReadConsoleA
IsBadStringPtrW
lstrcpyA
FormatMessageA
GetFileTime
IsValidLocale
GetCurrentDirectoryW
ReadConsoleA
GetStartupInfoW
lstrcpyW
GetLastError
FindResourceA
CreateMutexA
HeapCreate
msi
MsiCreateRecord
MsiAdvertiseProductA
MsiCloseHandle
MsiCloseAllHandles
user32
PostMessageW
SetCursorPos
LoadCursorW
IsWindow
wsprintfW
PeekMessageW
IsDialogMessageA
IsZoomed
IsCharLowerA
SetFocus
DispatchMessageA
GetWindowLongW
GetWindowTextA
wldap32
ldap_add
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 8KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 20KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 103KB - Virtual size: 103KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text1 Size: 1024B - Virtual size: 263B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data1 Size: 512B - Virtual size: 224B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE