Static task
static1
Behavioral task
behavioral1
Sample
28b0de5bf472f5d436c020c014285534dea64800cd4cb2f15ce3c1edf3193399.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
28b0de5bf472f5d436c020c014285534dea64800cd4cb2f15ce3c1edf3193399.exe
Resource
win10v2004-20220812-en
General
-
Target
28b0de5bf472f5d436c020c014285534dea64800cd4cb2f15ce3c1edf3193399
-
Size
62KB
-
MD5
17982e2104106a2a56aec448e1c435d0
-
SHA1
e40ebeba7e06a728399c9335a665bff2c2e54c85
-
SHA256
28b0de5bf472f5d436c020c014285534dea64800cd4cb2f15ce3c1edf3193399
-
SHA512
3a10031d388945f930f57ca60780a81202be0b5f0ef9cca40177cc8be76c17203c78bb8ba6a3da3e07f39eb11d2738f85775597d5c12ca8feda2d19cbc459646
-
SSDEEP
1536:x32sOp+xCREH5PxozAMshTwP4sFPgOSCk6dRm9D2:xmsu+CWXuA9hT44sZgOSCbnJ
Malware Config
Signatures
Files
-
28b0de5bf472f5d436c020c014285534dea64800cd4cb2f15ce3c1edf3193399.exe windows x86
3cbb975b66646206f25f75be1764f5db
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
AddAtomW
GetLogicalDrives
CloseHandle
Process32Next
GetCurrentConsoleFont
UpdateResourceA
HeapDestroy
IsBadCodePtr
GetTimeFormatW
GetConsoleAliasExesA
TryEnterCriticalSection
FindFirstVolumeMountPointA
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 47KB - Virtual size: 66KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE