Static task
static1
Behavioral task
behavioral1
Sample
971678279057baed3f102edeed874d8dfef2ee6062a1b0bd625a3300022d23e0.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
971678279057baed3f102edeed874d8dfef2ee6062a1b0bd625a3300022d23e0.exe
Resource
win10v2004-20220812-en
General
-
Target
971678279057baed3f102edeed874d8dfef2ee6062a1b0bd625a3300022d23e0
-
Size
837KB
-
MD5
0e89c2bfa3321f0bf8adc0127de494c6
-
SHA1
c2e8fa68a722c93b2ff0d5e2695326013978a888
-
SHA256
971678279057baed3f102edeed874d8dfef2ee6062a1b0bd625a3300022d23e0
-
SHA512
5c8e215d2412477567a4692665ab775a16888debc33a144be2cfec871830f07dd0b4d371671420e691a5e2f4d782296d58f46c9fe3e574e99670e5c49f8a89e4
-
SSDEEP
24576:n+XhgGJpluLgox4F1GIhiM6DA+v++znFTpv55:nCOGJpluLg5F1GIhiVA+v31F55
Malware Config
Signatures
Files
-
971678279057baed3f102edeed874d8dfef2ee6062a1b0bd625a3300022d23e0.exe windows x86
46667b9dc5b30008a2a524070487a9ef
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
HeapFree
GetPrivateProfileIntW
SetVolumeLabelA
WriteConsoleW
GetStringTypeA
HeapCreate
CreateEventA
GetCurrentProcess
LoadLibraryA
OpenEventW
SetStdHandle
GetShortPathNameW
lstrcpyA
CreateMutexW
GetVolumePathNameA
lstrcatW
GetTickCount
SetEnvironmentVariableA
GetVolumeInformationW
netshell
HrCreateDesktopIcon
HrRenameConnection
NcFreeNetconProperties
HrLaunchConnection
Sections
.code Size: 23KB - Virtual size: 47KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.pdata Size: 4KB - Virtual size: 2.8MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ndata Size: 802KB - Virtual size: 801KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: 6KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE