Static task
static1
Behavioral task
behavioral1
Sample
6d6eaa8dc706a8d6ac816838f8cae7dd1b58d458ccefbf2e4e1599a39865838d.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
6d6eaa8dc706a8d6ac816838f8cae7dd1b58d458ccefbf2e4e1599a39865838d.exe
Resource
win10v2004-20220812-en
General
-
Target
6d6eaa8dc706a8d6ac816838f8cae7dd1b58d458ccefbf2e4e1599a39865838d
-
Size
182KB
-
MD5
904db3be8ce407b89e8735ed3d289ef7
-
SHA1
18f6d52eaecac0e475aa0b23c11c2e57a8497661
-
SHA256
6d6eaa8dc706a8d6ac816838f8cae7dd1b58d458ccefbf2e4e1599a39865838d
-
SHA512
df6e493fa793b3787f4652cf4a12dc255c71f9c50d3e53a39cfd6d7e4878f6cc7bec255896fc7e7310a64632bbd6cb423fcb4563494fb823830506f7496a3d02
-
SSDEEP
3072:tHmDDqiq/vV3guMBtsFu4cIsVm1aJGAbhAX+I+oyElc5rFI6e8CnH:tQDqb/vV3guMBtsFO9JBhwY4eO
Malware Config
Signatures
Files
-
6d6eaa8dc706a8d6ac816838f8cae7dd1b58d458ccefbf2e4e1599a39865838d.exe windows x86
ef9ca6b8b2e83028adfdb8440825b697
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
ole32
CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID
kernel32
DeleteCriticalSection
GetCPInfoExA
InterlockedDecrement
InterlockedIncrement
IsValidLocale
SetStdHandle
GetUserDefaultLCID
CreateFileA
Sleep
EnumSystemLocalesA
RaiseException
RtlUnwind
GetLastError
EnumResourceNamesA
HeapSize
InitializeCriticalSection
WriteConsoleA
RaiseException
IsValidCodePage
GetVersionExA
LeaveCriticalSection
GetLocaleInfoW
GetCurrentThreadId
GetConsoleOutputCP
EnterCriticalSection
WriteConsoleW
rpcrt4
RpcStringBindingComposeA
RpcBindingFromStringBindingA
RpcStringFreeA
Sections
.text Size: 94KB - Virtual size: 93KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.tls Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 85KB - Virtual size: 84KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.reloc Size: 1024B - Virtual size: 128KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ