Static task
static1
Behavioral task
behavioral1
Sample
29efd44910ce2312b49f711ab315ccefdb62e02fdef7a072368e8c32a6419224.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
29efd44910ce2312b49f711ab315ccefdb62e02fdef7a072368e8c32a6419224.exe
Resource
win10v2004-20220812-en
General
-
Target
29efd44910ce2312b49f711ab315ccefdb62e02fdef7a072368e8c32a6419224
-
Size
96KB
-
MD5
0f0a4163ac610059821e6ee3d39777a2
-
SHA1
5b07390f2e6f8796658c5b37c933a4488d3d2913
-
SHA256
29efd44910ce2312b49f711ab315ccefdb62e02fdef7a072368e8c32a6419224
-
SHA512
556245731239eb0897ebd86a800dd8218d7c9b4fb8f2231c7e96fa88c0121b3e2882a5c9e38b1506796a73012afb7c1b689b06bde48e1d621dd1597f0d66afd7
-
SSDEEP
1536:Zp19Lsh2ASVq8voPxWpiTUlcVkPv2NkioUDm:LPsh2AAvfpF6VkPMDm
Malware Config
Signatures
Files
-
29efd44910ce2312b49f711ab315ccefdb62e02fdef7a072368e8c32a6419224.exe windows x86
942abe0283eea0388ae00a58e1108761
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
ord516
ord517
ord595
ord598
ord520
ord631
ord632
ord526
EVENT_SINK_AddRef
ord528
DllFunctionCall
EVENT_SINK_Release
ord600
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord608
ord716
ProcCallEngine
ord536
ord645
ord681
ord576
ord100
ord616
ord617
ord619
ord580
Sections
.text Size: 40KB - Virtual size: 39KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 52KB - Virtual size: 52KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
lxlzanm Size: - Virtual size: 4KB
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE