Static task
static1
Behavioral task
behavioral1
Sample
e466e067ac64ccdda961f800996dcaa6614fce36fb15ae26861225f0643ea661.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
e466e067ac64ccdda961f800996dcaa6614fce36fb15ae26861225f0643ea661.exe
Resource
win10v2004-20221111-en
General
-
Target
e466e067ac64ccdda961f800996dcaa6614fce36fb15ae26861225f0643ea661
-
Size
115KB
-
MD5
2e47dc92cf8c4f5c007d0eabf2219d77
-
SHA1
886b5bc6763a0b5bcac7380ac9a1610d15d34e49
-
SHA256
e466e067ac64ccdda961f800996dcaa6614fce36fb15ae26861225f0643ea661
-
SHA512
18edbc644a34210be9e0d35a74c8cfc4e1a80eed69d99e9f8c8f7b879577f35d951d9b8a15576789a82138cbf9d46ba41bcc7dfb5d5ad3c535f1c0733a1fcdc1
-
SSDEEP
1536:OGHw5sY9CrdX8LbWC7gVAnGUgjMGD34G/H80jmgi2nwinaSL7YwI:Op5FCrSbW2TGLDHljmsnwiaSL7
Malware Config
Signatures
Files
-
e466e067ac64ccdda961f800996dcaa6614fce36fb15ae26861225f0643ea661.exe windows x86
f13486a41a3e0d85bbb8ca1b1d24a315
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
lstrcpyA
ReadFile
FormatMessageW
GetStartupInfoW
GetFileSize
CreatePipe
GetLastError
SetFileTime
SetFileTime
HeapCreate
IsBadWritePtr
LoadLibraryA
lstrcatA
GetExitCodeProcess
CreateMutexW
LeaveCriticalSection
InitializeCriticalSection
FindResourceW
GetModuleHandleA
CloseHandle
SetFileTime
msi
MsiConfigureFeatureA
MsiAdvertiseProductW
MsiDatabaseCommit
MsiCollectUserInfoA
user32
DispatchMessageA
IsZoomed
SetFocus
wsprintfW
GetWindowLongW
IsWindow
GetWindowTextA
GetWindowRect
PostMessageW
MessageBoxA
LoadCursorW
IsDialogMessageA
PeekMessageW
clbcatq
SetSetupSave
Sections
.text Size: 1024B - Virtual size: 972B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 105KB - Virtual size: 104KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rich Size: 1KB - Virtual size: 193B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ole Size: 512B - Virtual size: 129B
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE