Static task
static1
Behavioral task
behavioral1
Sample
c25d9f0022af773f3be74d32ae7a5bd541441a698f1e52ec355468fe40ccecd3.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
c25d9f0022af773f3be74d32ae7a5bd541441a698f1e52ec355468fe40ccecd3.exe
Resource
win10v2004-20220901-en
General
-
Target
c25d9f0022af773f3be74d32ae7a5bd541441a698f1e52ec355468fe40ccecd3
-
Size
424KB
-
MD5
3d8c71de5e7c266362fbb2d1af145c63
-
SHA1
153332bb8a81a6e796847b205f38cbb2da69b710
-
SHA256
c25d9f0022af773f3be74d32ae7a5bd541441a698f1e52ec355468fe40ccecd3
-
SHA512
7a34d2d72d2b390d18f45eb8cbbf2daa67ba2470397f714dbc0e5f680bcb32a9b65fb81103a859a7378a97e30acfa134990467f3a35d95e8a2699ee0eb044f7d
-
SSDEEP
6144:zwLTYUfBg4Xu/6M8ijCVJLjg3KOQWREfxn9C2hMYhE03moXbftChXW3AxfulDGgB:zglK4XuiQaYR+n9CuLhEknblCJxfS6
Malware Config
Signatures
Files
-
c25d9f0022af773f3be74d32ae7a5bd541441a698f1e52ec355468fe40ccecd3.exe windows x86
74a430fa9a17b297bcb642142187c1f5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
imm32
ImmDestroyContext
ole32
HMENU_UserUnmarshal
clusapi
OpenCluster
kernel32
GlobalMemoryStatusEx
SetFilePointerEx
HeapWalk
CreateThread
GetFirmwareEnvironmentVariableA
GetTapeStatus
DeleteTimerQueue
SetFirmwareEnvironmentVariableA
GetModuleFileNameA
urlmon
CoInternetCombineUrl
oleaut32
VarCyFromI1
msvcrt
isalnum
wcstoul
memcpy
ntdsapi
DsFreeSpnArrayA
pdh
PdhGetCounterInfoW
user32
wsprintfW
comdlg32
ChooseColorA
PageSetupDlgW
setupapi
SetupBackupErrorA
Sections
.text Size: 12KB - Virtual size: 11KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
ordo Size: 4KB - Virtual size: 952B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.t Size: 4KB - Virtual size: 46B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 100KB - Virtual size: 367KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.mrt1 Size: 100KB - Virtual size: 97KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
CODE Size: 100KB - Virtual size: 97KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 96KB - Virtual size: 94KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ