Static task
static1
Behavioral task
behavioral1
Sample
6ec82a29a8b8b72d5e52bd10a105a6604ab7e7f7886346903ce961e9ee8b3602.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
6ec82a29a8b8b72d5e52bd10a105a6604ab7e7f7886346903ce961e9ee8b3602.exe
Resource
win10v2004-20220812-en
General
-
Target
6ec82a29a8b8b72d5e52bd10a105a6604ab7e7f7886346903ce961e9ee8b3602
-
Size
68KB
-
MD5
276464cd645ff15dd511316b12ae3980
-
SHA1
64569ca7f253c26b10d9520e03c853034fe631d6
-
SHA256
6ec82a29a8b8b72d5e52bd10a105a6604ab7e7f7886346903ce961e9ee8b3602
-
SHA512
e76ceb8cd6964a4f684b30c063ecf62550cf25587d8b490df19a4db7f0ced1ac1bc3e5ceecbf2fcd52164c5a60ac9064cade717919ca41d13ea86993d6a59670
-
SSDEEP
1536:YYNulRPdGWykW0LOqI1fPI21+uTZ8PldXAUAQUxwUqNxdsu6h:YYQI4IFI21+uNwdXAUAtod
Malware Config
Signatures
Files
-
6ec82a29a8b8b72d5e52bd10a105a6604ab7e7f7886346903ce961e9ee8b3602.exe windows x86
8763aecdc341331fae71dc9b616c073c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
DisconnectNamedPipe
GetModuleHandleA
HeapDestroy
GetStartupInfoA
lstrcpyA
GetCommandLineA
DeleteFileA
lstrlenW
GetProcessHeap
GetFileAttributesW
CreatePipe
WriteConsoleW
ResumeThread
WriteConsoleW
SetEvent
VirtualProtect
CopyFileA
GetStdHandle
VirtualQueryEx
GetPriorityClass
WriteConsoleW
mmcndmgr
DllGetClassObject
DllRegisterServer
DllCanUnloadNow
DllRegisterServer
cryptui
CryptUIStartCertMgr
LocalEnroll
WizardFree
CryptUIWizDigitalSign
DllRegisterServer
WizardFree
CryptUIWizBuildCTL
CryptUIWizImport
LocalEnroll
DllUnregisterServer
CryptUIWizExport
CryptUIDlgViewContext
LocalEnrollNoDS
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 512B - Virtual size: 280B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 60KB - Virtual size: 72KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.impdata Size: 1024B - Virtual size: 769B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ