Static task
static1
Behavioral task
behavioral1
Sample
78f19192e217eee0960127e95aad1a347ea2523a0e99a16e8702b54b87f12863.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
78f19192e217eee0960127e95aad1a347ea2523a0e99a16e8702b54b87f12863.exe
Resource
win10v2004-20220901-en
General
-
Target
78f19192e217eee0960127e95aad1a347ea2523a0e99a16e8702b54b87f12863
-
Size
121KB
-
MD5
39bc0a4d0b01739560b6e8634006eadb
-
SHA1
b7e6c2eb1352c5442185a70d77ce2b81d09c9dc1
-
SHA256
78f19192e217eee0960127e95aad1a347ea2523a0e99a16e8702b54b87f12863
-
SHA512
00ded3f4276a7a30dc903074292280efab0c691dc5905a30f0e41db901b58e023192fc272e7813f935bec66156e0bdabab2d85847e9a8455084386f041658f56
-
SSDEEP
1536:Bs1SgxMcAg6bzXHmyf8l/xMAmUWITj5YhVNJ01bY7iz82Uwg/ohNYWOSrd:Bs1SiMdLJ8DMoLYBbizrUwgAhNDp
Malware Config
Signatures
Files
-
78f19192e217eee0960127e95aad1a347ea2523a0e99a16e8702b54b87f12863.exe windows x86
b74e13304aaa33735375ffdf30a616cf
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
IsBadWritePtr
SetLastError
CreateMailslotA
GetProcessHeap
VirtualProtect
ReleaseMutex
GetCommandLineA
GetStdHandle
RemoveDirectoryA
CancelIo
CreateDirectoryA
GetFileAttributesA
ResetEvent
GetDriveTypeW
MapViewOfFile
SetLocalTime
HeapSize
GetModuleHandleA
DeleteFileA
WriteFile
GetLocaleInfoA
user32
GetWindowLongW
GetCaretPos
LoadImageA
GetCapture
SetFocus
DispatchMessageA
PeekMessageA
GetWindowTextW
PostMessageW
wsprintfA
LoadCursorA
SetCursor
DestroyMenu
filemgmt
DllGetClassObject
DllUnregisterServer
DllRegisterServer
DllRegisterServer
rasapi32
DwRasUninitialize
Sections
.text Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 113KB - Virtual size: 113KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.imp Size: 512B - Virtual size: 456B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ