Static task
static1
Behavioral task
behavioral1
Sample
c2674e80ce0d05c00b89f0b9d7aff440036cd227f2d7be81517965b841550cb1.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
c2674e80ce0d05c00b89f0b9d7aff440036cd227f2d7be81517965b841550cb1.exe
Resource
win10v2004-20220812-en
General
-
Target
c2674e80ce0d05c00b89f0b9d7aff440036cd227f2d7be81517965b841550cb1
-
Size
40KB
-
MD5
00b8d1f0c1717ae6f9f282571db617f7
-
SHA1
da35f5ce7a61ef879d038d9bb94e7007762dbccb
-
SHA256
c2674e80ce0d05c00b89f0b9d7aff440036cd227f2d7be81517965b841550cb1
-
SHA512
b6d7a15a63ee6993f7eebd0e2fa1fae7b68ee0e8b38fb042cc0db2224a9d562eaa43fa2b6f95a2a07aef756711238e5f3ab7307afb1e4a3fc51afe4f676d78f6
-
SSDEEP
384:5LMsgdJcSQRa5ssd02Mnq0FEXw+Mk0+1r/5N7hiQ/:5LMsgdQRausd02MnMZ1r/5xhv
Malware Config
Signatures
Files
-
c2674e80ce0d05c00b89f0b9d7aff440036cd227f2d7be81517965b841550cb1.exe windows x86
0ee83c2e645ec2638b460cce9a399175
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
ord598
ord631
ord709
ord632
ord526
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord712
ord717
ProcCallEngine
ord644
ord537
ord570
ord685
ord100
ord616
ord581
Sections
.pecrypt Size: 32KB - Virtual size: 29KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.pepack Size: - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.PECO Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.DASDSA Size: 91B - Virtual size: 91B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ