Static task
static1
Behavioral task
behavioral1
Sample
852e5f1e63aac81bc9d214d04686de0ab428d7ecca415608c92c1dba7e205ff8.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
852e5f1e63aac81bc9d214d04686de0ab428d7ecca415608c92c1dba7e205ff8.exe
Resource
win10v2004-20220812-en
General
-
Target
852e5f1e63aac81bc9d214d04686de0ab428d7ecca415608c92c1dba7e205ff8
-
Size
110KB
-
MD5
062236ddf75ed32fd4789cc7da963b42
-
SHA1
4225a038ccb738792894d66ab1e378c252bb1ad6
-
SHA256
852e5f1e63aac81bc9d214d04686de0ab428d7ecca415608c92c1dba7e205ff8
-
SHA512
55fade66057ae2f9358fe230b0574164995735b3a329bf3894978e359569c1ba9268475f6600e82193676864b70cdd7ba79280a841caf3e2c5a6cf6d1f697124
-
SSDEEP
3072:5yZsn0xmpjzcd+Dd25SCsu2oh40kv3VucVEp:5Gsrr25Fsu6vFu
Malware Config
Signatures
Files
-
852e5f1e63aac81bc9d214d04686de0ab428d7ecca415608c92c1dba7e205ff8.exe windows x86
f287493615bed726041cc4f28680dcb5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCompressedFileSizeW
DeleteFileA
GetLocaleInfoW
SleepEx
GetDiskFreeSpaceA
VirtualBufferExceptionHandler
GetProfileStringW
ActivateActCtx
IsBadReadPtr
SetThreadContext
EnumSystemGeoID
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 41KB - Virtual size: 76KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE