Static task
static1
Behavioral task
behavioral1
Sample
580fbad4854f30840d80ea71578be2b71561a16c21c58e345c51f65ea12ffc1f.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
580fbad4854f30840d80ea71578be2b71561a16c21c58e345c51f65ea12ffc1f.exe
Resource
win10v2004-20220901-en
General
-
Target
580fbad4854f30840d80ea71578be2b71561a16c21c58e345c51f65ea12ffc1f
-
Size
91KB
-
MD5
496e2792f505a7339db46df5f0098b30
-
SHA1
d2955810b9ba0bb60009a09bba65c7d3223a80a2
-
SHA256
580fbad4854f30840d80ea71578be2b71561a16c21c58e345c51f65ea12ffc1f
-
SHA512
b8afbbdd9d839fb6a5a102733121b0d1c4220f0cc94335d0ab8f2ce635f36ffc576395a95c037265e0f6a653025efa0fbeba702a9b9d3cf8ed6ab2bad4d97a0c
-
SSDEEP
1536:m/k06e2btxEp6/77GNc8DcPgO9T1fWyAZ0H/uy0szDwuWKdMk2U23nHP3bvp2oky:m/k06eGtxEpK77GNc8wPgi1fWXW30cRi
Malware Config
Signatures
Files
-
580fbad4854f30840d80ea71578be2b71561a16c21c58e345c51f65ea12ffc1f.exe windows x86
1ad6ac49b445f9ebda95e6fe199d8e77
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
PeekConsoleInputA
DeleteTimerQueueTimer
RemoveLocalAlternateComputerNameA
GetStringTypeExW
CreateEventW
OpenEventA
ConnectNamedPipe
WritePrivateProfileSectionW
SwitchToFiber
IsValidCodePage
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 77KB - Virtual size: 98KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE