Static task
static1
Behavioral task
behavioral1
Sample
81faba385e257aadeeec5f13b11061fd5aa40255994447a9f269f3ed14f479d7.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
81faba385e257aadeeec5f13b11061fd5aa40255994447a9f269f3ed14f479d7.exe
Resource
win10v2004-20221111-en
General
-
Target
81faba385e257aadeeec5f13b11061fd5aa40255994447a9f269f3ed14f479d7
-
Size
114KB
-
MD5
26103234918d2338e7754dd381b41c70
-
SHA1
adf66d856a3e6269e8d3d82f9ffe4b0ca8379bc9
-
SHA256
81faba385e257aadeeec5f13b11061fd5aa40255994447a9f269f3ed14f479d7
-
SHA512
8d28791ba374015481823d6dddfde823be165338c05d88ba5b1da1a0f2f9f0ba54d5977fdf5c81e2555c9783b9a61569ce6bdaca414c57377a07bdf1e943550d
-
SSDEEP
3072:PHZG+XlIyxzsberHxw8jRBkzSRAzXJeDLwi2meaiXrjeBNZgih:8yxfwEB1iZ+LNl7iXOBNZgi
Malware Config
Signatures
Files
-
81faba385e257aadeeec5f13b11061fd5aa40255994447a9f269f3ed14f479d7.exe windows x86
b4a9244c01cafab9f5598c2afd355580
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
WriteConsoleW
WriteConsoleW
WriteConsoleW
lstrlenW
FindResourceA
GetFileSize
GetFileTime
HeapCreate
CloseHandle
lstrcpyW
SetPriorityClass
ReleaseMutex
GetStartupInfoA
GetCurrentDirectoryA
GetLastError
GetModuleHandleA
IsBadCodePtr
IsValidLocale
IsBadStringPtrA
ReadFile
GetFileAttributesA
msftedit
RichEditWndProc
RichComboBoxWndProc
RichListBoxWndProc
SetCustomTextOutHandlerEx
shell32
ShellAboutA
DragQueryFileA
ShellAboutA
SHGetFileInfoA
DragAcceptFiles
StrChrA
SHGetMalloc
SHGetFolderPathA
DuplicateIcon
ShellMessageBoxW
ExtractIconW
FreeIconList
ShellMessageBoxW
msasn1
ASN1BERDecEoid
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 4KB - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 103KB - Virtual size: 103KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.adata Size: 1024B - Virtual size: 67B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE