Static task
static1
Behavioral task
behavioral1
Sample
fabf2ad087ec251e27ef390ecaf8ed47fff3d1fe28b7ec191c8d9454f4e34b57.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
fabf2ad087ec251e27ef390ecaf8ed47fff3d1fe28b7ec191c8d9454f4e34b57.exe
Resource
win10v2004-20220812-en
General
-
Target
fabf2ad087ec251e27ef390ecaf8ed47fff3d1fe28b7ec191c8d9454f4e34b57
-
Size
202KB
-
MD5
076d1e3b8f16b6c5929c474125540000
-
SHA1
45b18b7003e35548011d8ef6f600181e0315c12c
-
SHA256
fabf2ad087ec251e27ef390ecaf8ed47fff3d1fe28b7ec191c8d9454f4e34b57
-
SHA512
1f9900d1c490de0df829545f30b3b29f5d2dcc5fb549b214946afbfee5b620c185bef3f0fedf56280d7ba22a3ee892f1c8d96e00ab9d25a41831ee5599d6c532
-
SSDEEP
3072:cHRJY1NeBQizDMEQag4XOtiwd7c5Oqb+z+Zt0zmL8wtvfzWBfRGgn9cnQqM133sV:cHRUNgDz4E7qiwd77xjSTEfRGi5I
Malware Config
Signatures
Files
-
fabf2ad087ec251e27ef390ecaf8ed47fff3d1fe28b7ec191c8d9454f4e34b57.exe windows x86
f020e1a2feae651f7ce88318f285b500
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
GetProcAddress
VirtualAlloc
VirtualFree
VirtualProtect
user32
EndPaint
gdi32
BitBlt
advapi32
OpenProcessToken
shell32
ShellExecuteW
ws2_32
WSAStartup
Sections
TGDSEFR Size: - Virtual size: 580KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
TGDSEFR Size: 201KB - Virtual size: 204KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE