Static task
static1
Behavioral task
behavioral1
Sample
768e359b2a05d73093a2eb9beb458d70682f4023808d582e513be776382f569e.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
768e359b2a05d73093a2eb9beb458d70682f4023808d582e513be776382f569e.exe
Resource
win10v2004-20220812-en
General
-
Target
768e359b2a05d73093a2eb9beb458d70682f4023808d582e513be776382f569e
-
Size
545KB
-
MD5
5b16b9e42d4dd0e140a9904a9ba674f6
-
SHA1
71fd538c8015e5d16b1d52f641c97fac32f5553d
-
SHA256
768e359b2a05d73093a2eb9beb458d70682f4023808d582e513be776382f569e
-
SHA512
4033a4c27501e32e5e5c56b1b7d475e0f15b8d22d1331bc75d62f2bd9fe956206e15d945a9d7eb9a70923e563d57638d42e8815631076a31adb13660e19b3478
-
SSDEEP
12288:nBbqm2YFyhppi5AuOtu38Hun4abstBZZV9eFySaEF:ANnpfu38Hun70BvfecSX
Malware Config
Signatures
Files
-
768e359b2a05d73093a2eb9beb458d70682f4023808d582e513be776382f569e.exe windows x86
219fd51129b2e6ba447194a3ab7448f0
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32
LoadLibraryA
GetProcAddress
VirtualAlloc
VirtualFree
user32
CharNextA
oleaut32
SysFreeString
advapi32
RegSetValueExA
ole32
OleInitialize
pstorec
PStoreCreateInstance
rasapi32
RasGetEntryDialParamsA
shell32
SHGetSpecialFolderPathA
crypt32
CryptUnprotectData
Sections
CODE Size: 418KB - Virtual size: 672KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ultra Size: 7KB - Virtual size: 7KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ