Static task
static1
Behavioral task
behavioral1
Sample
f1cbf52fe1069280c0ea8feb148777cc6db333bd30f2a69ab9f3517aeacf2349.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
f1cbf52fe1069280c0ea8feb148777cc6db333bd30f2a69ab9f3517aeacf2349.exe
Resource
win10v2004-20220812-en
General
-
Target
f1cbf52fe1069280c0ea8feb148777cc6db333bd30f2a69ab9f3517aeacf2349
-
Size
171KB
-
MD5
0356d6c3bf7696f953d1b16fef0bec6f
-
SHA1
01c8dfac66c2ddff12f679d6bf12c9b446be4312
-
SHA256
f1cbf52fe1069280c0ea8feb148777cc6db333bd30f2a69ab9f3517aeacf2349
-
SHA512
a5a267a5bc3ce28bbed0de0cd1f4422e2e18f56dc0069d477f91657fb54aa00a458fc9acb66156f16bc6c9e11554e29cb895ac4ec55aed3a1330a8a6b0b4283e
-
SSDEEP
3072:CD5fr2nzZCYLOpLXKqVWqHkNvKpqgX1YEXoJNbBHlBHM0kvo:CpQzZ2LP0lKpq5c+bBHlt
Malware Config
Signatures
Files
-
f1cbf52fe1069280c0ea8feb148777cc6db333bd30f2a69ab9f3517aeacf2349.exe windows x86
2866992791bfbaaa1eb4f867accac65a
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetConsoleMode
VirtualQueryEx
GetNumberOfConsoleMouseButtons
GetStringTypeA
SetTimerQueueTimer
DeleteFileW
WTSGetActiveConsoleSessionId
GlobalUnWire
GetNumaNodeProcessorMask
LZDone
GetThreadContext
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 157KB - Virtual size: 174KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE