Static task
static1
Behavioral task
behavioral1
Sample
f418f0899e9a264d648cd3798635826897357534cb64761431f126fe723dae8b.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
f418f0899e9a264d648cd3798635826897357534cb64761431f126fe723dae8b.exe
Resource
win10v2004-20220812-en
General
-
Target
f418f0899e9a264d648cd3798635826897357534cb64761431f126fe723dae8b
-
Size
92KB
-
MD5
a24b52ca2a1fe371a47709fc1d13b6c0
-
SHA1
fa5a63c91b0fd268569ee83447eaa47aa4d47d89
-
SHA256
f418f0899e9a264d648cd3798635826897357534cb64761431f126fe723dae8b
-
SHA512
3c90c348b3ae00375ebf944f27b344ae8ee7882e76f252d4014c57b2bd67079430492fce37bbc3d243d96453399e1b8d3a9e6c5298e458da001a5907dc8a155b
-
SSDEEP
1536:8bEEJqHyXZBwoubAcmerVIAmHRFeGiMhGIIa7+jEErxTWDTMqhGKYIZTET8u5j6d:ZyX/GKUhO1IhjBkMqhGKZTbuwgWW
Malware Config
Signatures
Files
-
f418f0899e9a264d648cd3798635826897357534cb64761431f126fe723dae8b.exe windows x86
a4fa3c654bc5645f4e31077c4412d5e2
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetFileSizeEx
FindResourceExW
GetDiskFreeSpaceExW
WriteConsoleOutputCharacterW
GetUserDefaultLCID
SetThreadAffinityMask
EnumResourceNamesW
ActivateActCtx
PeekConsoleInputW
GetDiskFreeSpaceExW
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.zrdata Size: 26KB - Virtual size: 44KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE