Static task
static1
Behavioral task
behavioral1
Sample
f5e5c1841e1abe72d22fc1b595aaaeded95a5b5ff8b294a5d839ffcbf24057d1.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
f5e5c1841e1abe72d22fc1b595aaaeded95a5b5ff8b294a5d839ffcbf24057d1.exe
Resource
win10v2004-20220901-en
General
-
Target
f5e5c1841e1abe72d22fc1b595aaaeded95a5b5ff8b294a5d839ffcbf24057d1
-
Size
137KB
-
MD5
32e88ff52de6f79ee1bf70df1257fc6e
-
SHA1
d7e9178aefa635a2e56d90be2f642b4288ca2d4d
-
SHA256
f5e5c1841e1abe72d22fc1b595aaaeded95a5b5ff8b294a5d839ffcbf24057d1
-
SHA512
e8f2419c3a3a4392bdaa0ab1dbcb26354ee043703ef2ad0ab66d0c1fd7e8937fcb8d2136b119a6ebaf3659899ffc24264f6661344708b582fc7a0d27d3686e66
-
SSDEEP
3072:5Mjnq2BgLEDVwxotVl6ZWsUP1eY0vMeYq7uPj2npO5ajD37tkDNA:MVl6ZbU9cQT2npOsZkhA
Malware Config
Signatures
Files
-
f5e5c1841e1abe72d22fc1b595aaaeded95a5b5ff8b294a5d839ffcbf24057d1.exe windows x86
41b0465d50b07dceafbcb93a2ff62fd5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetStringTypeA
GetLocaleInfoW
VirtualProtect
GetFileAttributesA
MapViewOfFile
CreateDirectoryW
GetModuleHandleA
IsBadWritePtr
SetLastError
GetFileAttributesA
TlsGetValue
HeapFree
GetDriveTypeW
GetExitCodeThread
FindClose
RemoveDirectoryW
LocalLock
GetTickCount
IsValidCodePage
FindResourceW
GetCurrentProcess
user32
GetWindowLongW
PeekMessageW
GetWindowTextW
DispatchMessageA
IsDialogMessageA
LoadCursorA
IsWindow
LoadImageW
SetCursor
LoadStringA
wsprintfW
SetFocus
PostMessageW
msctf
DllCanUnloadNow
TF_InitSystem
DllUnregisterServer
DllUnregisterServer
rasapi32
DwRasUninitialize
Sections
.text Size: 5KB - Virtual size: 5KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 11KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 127KB - Virtual size: 126KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.import Size: 512B - Virtual size: 480B
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE