Static task
static1
Behavioral task
behavioral1
Sample
6d985105a7ea39b4c041e8f68b2813029fb68da75f18de12b4345ef16558fb2f.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
6d985105a7ea39b4c041e8f68b2813029fb68da75f18de12b4345ef16558fb2f.exe
Resource
win10v2004-20221111-en
General
-
Target
6d985105a7ea39b4c041e8f68b2813029fb68da75f18de12b4345ef16558fb2f
-
Size
123KB
-
MD5
1d60a4a31ac8a7d6c88e3c058c8d2f21
-
SHA1
d60b56457467097383063eee4ebaf970618391f0
-
SHA256
6d985105a7ea39b4c041e8f68b2813029fb68da75f18de12b4345ef16558fb2f
-
SHA512
2970bea5785a02bf4616114a38fbe4529496053d524d012e87dc84b7d94af0a75ae4e32884bbf4c3f0f4bb00ed933155b0e97f6c6ccf3088bd3d2f11ab236952
-
SSDEEP
1536:DRWaiIMGTtMFbS3FQNJivcFtgsFVYst8NmQGT2tqU7gHnepVSUPZiu6:DnMqMFAyi+ycyPV7gHOI04u6
Malware Config
Signatures
Files
-
6d985105a7ea39b4c041e8f68b2813029fb68da75f18de12b4345ef16558fb2f.exe windows x86
461f113a5a889ebd8c74c72c35e6de16
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetDriveTypeA
OpenMutexW
HeapDestroy
VirtualProtectEx
LoadLibraryW
GetPrivateProfileSectionA
DeleteFileA
GetProcessHeap
TlsGetValue
ClearCommBreak
lstrlenA
GetPrivateProfileIntW
DeviceIoControl
GetFileAttributesA
GetCurrentThread
GetStringTypeA
HeapFree
ResumeThread
CreateEventW
DeviceIoControl
SetLastError
rasapi32
DwCloneEntry
DwEnumEntryDetails
RasDialA
DwEnumEntryDetails
RasDeleteEntryA
DwRasUninitialize
RasDialA
DwEnumEntryDetails
DwRasUninitialize
RasDialA
RasDeleteEntryA
DwRasUninitialize
DwCloneEntry
pdh
PdhCloseLog
PdhGetLogFileTypeA
PdhAddCounterA
PdhGetLogFileSize
Sections
.text Size: 1024B - Virtual size: 800B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 2KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 352B
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 117KB - Virtual size: 117KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
.orpc Size: 512B - Virtual size: 288B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ