Static task
static1
Behavioral task
behavioral1
Sample
21636aa1394953879a24ddffbe333046d46d7b27a768f231f9340ef40319875a.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
21636aa1394953879a24ddffbe333046d46d7b27a768f231f9340ef40319875a.exe
Resource
win10v2004-20220901-en
General
-
Target
21636aa1394953879a24ddffbe333046d46d7b27a768f231f9340ef40319875a
-
Size
832KB
-
MD5
472abcf4a37ab4533a8d7da71e9bc8a0
-
SHA1
e63d26fdfa35756c54fd831d3e49fa6266199311
-
SHA256
21636aa1394953879a24ddffbe333046d46d7b27a768f231f9340ef40319875a
-
SHA512
0a452e3182a3cd8aa614dc4a725318b93a512a96741ff0063436bd5067c34fa79b022bb56057714e57e5e0386f74634d376525e952c9ad571a95d8e22352f424
-
SSDEEP
24576:+ucE4c8oS/5ODKi86bFIV5O7NKo3QhRysWY6r7T:+NE4/o+ODKh6bF/7NKops56
Malware Config
Signatures
Files
-
21636aa1394953879a24ddffbe333046d46d7b27a768f231f9340ef40319875a.exe windows x86
e3c138333016b514370f862b18221b57
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
OpenMutexW
SetLocaleInfoW
SetStdHandle
MoveFileExW
SearchPathA
GetBinaryTypeA
HeapCreate
FreeEnvironmentStringsA
GetProcessVersion
WaitForMultipleObjects
CreateEventW
OpenSemaphoreW
GetFullPathNameW
GetModuleHandleA
GetEnvironmentStringsA
GetDiskFreeSpaceA
SetCurrentDirectoryW
msdart
MpHeapSize
mpMalloc
IrtlTrace
mpFree
Sections
.text Size: 17KB - Virtual size: 16KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 692B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ADATA Size: 813KB - Virtual size: 2.2MB
IMAGE_SCN_MEM_READ