Static task
static1
Behavioral task
behavioral1
Sample
6af387d5685176df688cc917cf370a738b7ceed30ad910c585ac72163a4ab67f.exe
Resource
win7-20220901-en
General
-
Target
6af387d5685176df688cc917cf370a738b7ceed30ad910c585ac72163a4ab67f
-
Size
187KB
-
MD5
6fcfbd4ad8d84d59d45abbf7e6e9561e
-
SHA1
43f8348dae4b999f895cee0b21c270dbde0d3734
-
SHA256
6af387d5685176df688cc917cf370a738b7ceed30ad910c585ac72163a4ab67f
-
SHA512
f20f41d5fcdb260605d02ab1cdbcebde271d07a5084166c2d620194c392b0d313f8fa64bec394a690f53ebd8c06ab8b6ae8544160f75a9257e808a6dbc8669a1
-
SSDEEP
3072:9FAGS6Jy0MD+fiL1ebMOzgT5S2//Ns/NXFW0QzN3pJn9ZtOuTqRStOgNgq/Bz2+:r7/JB8+aLAbK9XNs/Jk0G9ZLTtbNgq/L
Malware Config
Signatures
Files
-
6af387d5685176df688cc917cf370a738b7ceed30ad910c585ac72163a4ab67f.exe windows x86
4150a934dcaed635c3ad18d2e297ebdf
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
shell32
ShellExecuteA
Shell_NotifyIconA
shlwapi
StrRetToStrA
PathAppendA
SHCreateStreamOnFileEx
PathIsFileSpecA
PathIsContentTypeA
PathCreateFromUrlW
oleacc
CreateStdAccessibleObject
kernel32
GetModuleHandleA
FindAtomA
GetModuleFileNameW
GetFileInformationByHandle
LocalAlloc
SetEnvironmentVariableW
SearchPathW
CreateDirectoryW
VirtualProtect
GetCurrentThreadId
GetCurrentProcess
GetCurrentDirectoryW
DuplicateHandle
OutputDebugStringW
EnumResourceLanguagesA
VirtualQuery
MultiByteToWideChar
GetStringTypeExW
SetLastError
lstrcmpiW
WideCharToMultiByte
lstrlenW
LocalFree
ExitProcess
OutputDebugStringA
GetFileAttributesW
InterlockedExchange
Sections
.text Size: 94KB - Virtual size: 234KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 90KB - Virtual size: 89KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ