Static task
static1
Behavioral task
behavioral1
Sample
5d4c7bfffff61e38e73dbb2256932d9ca85965896d9757896260f6cb430b04b9.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
5d4c7bfffff61e38e73dbb2256932d9ca85965896d9757896260f6cb430b04b9.exe
Resource
win10v2004-20220812-en
General
-
Target
5d4c7bfffff61e38e73dbb2256932d9ca85965896d9757896260f6cb430b04b9
-
Size
786KB
-
MD5
0696c9e0ab50983a2a4d6b726b633cd7
-
SHA1
a85795bbe311195ccac4f96c360487866cf4419a
-
SHA256
5d4c7bfffff61e38e73dbb2256932d9ca85965896d9757896260f6cb430b04b9
-
SHA512
c3ca402350b661f5d54e829f21636ee8e2c4fca46ebd70b4b44149ec3b2105452129cccbc3940c166208756a89d600969cfbc181327526b1987ba861d74768c8
-
SSDEEP
12288:+ZXGdnUXvyUiaFxxQ0I9UvzMkIT1HJkvt81ZsRaRQo11Y9PXNGrqDo9x:+YdnAbFxBI9U4xkAjRj29PXNGrqDo9x
Malware Config
Signatures
Files
-
5d4c7bfffff61e38e73dbb2256932d9ca85965896d9757896260f6cb430b04b9.exe windows x86
a63bc67c7c034f50e1b9878032a27a92
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
IsValidLocale
SetFileAttributesA
GetFileSize
CreateMutexA
InitializeCriticalSection
ReadConsoleA
ReadConsoleA
GetLastError
FormatMessageA
lstrcatA
GetModuleHandleA
FindResourceA
GetCurrentDirectoryW
ReadFile
HeapCreate
IsBadStringPtrW
ReadConsoleA
lstrcpyA
GetStartupInfoW
CloseHandle
GetFileTime
msi
MsiCloseHandle
MsiCreateRecord
MsiAdvertiseProductA
MsiCloseAllHandles
user32
IsWindow
IsDialogMessageA
PostMessageW
IsZoomed
GetWindowTextA
IsCharLowerA
wsprintfW
DispatchMessageA
PeekMessageW
SetCursorPos
GetWindowLongW
LoadCursorW
SetFocus
wldap32
ldap_add
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 700KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 772KB - Virtual size: 1.4MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.text1 Size: 1024B - Virtual size: 263B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data1 Size: 512B - Virtual size: 208B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ