Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220901-en
General
-
Target
file.exe
-
Size
2.8MB
-
MD5
8761d63dfe9073cb36f740dac5a18a5a
-
SHA1
14e665b1a4074d9021b99f4254f268c884e9edbb
-
SHA256
f00b5b3a58d763e384a36b3cface668c882f73ba33cd61a4667b9c3764600dbc
-
SHA512
540b3bec0c799bba52c2d7fb3737a06fa5059083aa2f0a9a300d016cf157cfe974b6f05a28540b9300a9de43c5b7723407ae02dbd5842f252e7537402c994fac
-
SSDEEP
49152:LQ/PvtpK/58lhMPUMNU/la/sACLVmNvXqgG/WFJuRswp18euw93ETTgkk:GPvfI5YiKzlLVsGmcuAV2k
Malware Config
Signatures
Files
-
file.exe.exe windows x86
7617119cde5afea121182e7cd8e56744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
GetProcAddress
ole32
OleInitialize
oleaut32
SafeArrayCreate
Sections
.MPRESS1 Size: 2.5MB - Virtual size: 4.8MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.MPRESS2 Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 231KB - Virtual size: 231KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE