Static task
static1
Behavioral task
behavioral1
Sample
ecf4d5c79c7a44751c39ce271d4d2b2c6398299a924cee8f8000e7d26245eb14.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ecf4d5c79c7a44751c39ce271d4d2b2c6398299a924cee8f8000e7d26245eb14.exe
Resource
win10v2004-20220901-en
General
-
Target
ecf4d5c79c7a44751c39ce271d4d2b2c6398299a924cee8f8000e7d26245eb14
-
Size
411KB
-
MD5
43fe3f9ea3166b4b5befbfef00f56970
-
SHA1
1c4653f7c6b0d0a6b5eaf5c95d33ace83dbcfcd6
-
SHA256
ecf4d5c79c7a44751c39ce271d4d2b2c6398299a924cee8f8000e7d26245eb14
-
SHA512
24b87a943669e8c62933d27f7f8333a577d014cf43b9dc3535155b84c37dfa8fe596955494968750e1fe0983cf16f2497e4d9289f8370f7decf6fa342ad8a53a
-
SSDEEP
6144:mcdyBAQXQdzuTJ4UC9A5nDVFc/hn/H3WWQwwPk06337xiSmkc99AkEj9:mc9qTJ4UA+AlP4Pk3H17mkiGzJ
Malware Config
Signatures
Files
-
ecf4d5c79c7a44751c39ce271d4d2b2c6398299a924cee8f8000e7d26245eb14.exe windows x86
ae9c2ea31fe7a5e9da8d32c721a5e5b0
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetFileAttributesA
GetLocaleInfoW
MapViewOfFile
GetTickCount
GetStringTypeA
SetLastError
GetCurrentProcess
GetModuleHandleA
FindResourceW
HeapFree
LocalLock
GetExitCodeThread
SuspendThread
RemoveDirectoryW
FindClose
TlsGetValue
VirtualProtect
GetFileAttributesA
CreateDirectoryW
SetPriorityClass
IsValidCodePage
user32
DefDlgProcA
GetWindowTextW
wsprintfW
LoadCursorA
PostMessageW
GetWindowLongW
PeekMessageW
DispatchMessageA
SetCursor
LoadImageW
IsDialogMessageA
SetFocus
IsWindow
msctf
DllUnregisterServer
TF_InitSystem
DllCanUnloadNow
DllUnregisterServer
rasapi32
DwRasUninitialize
Sections
.text Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 247KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 400KB - Virtual size: 640KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.import Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE