Static task
static1
Behavioral task
behavioral1
Sample
Segunda_via_pdf.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
Segunda_via_pdf.exe
Resource
win10v2004-20221111-en
General
-
Target
fb7e3f06d810f34f038efd73050b124f7784c9b88d5f86d00aba50e98f90c2f6
-
Size
1.6MB
-
MD5
7b719a44ba6f24881e17a1ad67288358
-
SHA1
a9fb4f76c3d35dd805bc21597930b2196aba38af
-
SHA256
fb7e3f06d810f34f038efd73050b124f7784c9b88d5f86d00aba50e98f90c2f6
-
SHA512
933b2f0bba8c5d9394c38e55ee30e2985c8af1a75b345c4c57e27123f33995f6c52ac2845316edfb62b026006a27d605d1d7485b75f5837c4ecc1df1b58f83e8
-
SSDEEP
24576:kE8qt/y/dmKfsqW7VGw86pQcr8g5RrePJDiP3BAAsvVxQZieMI437wDt:t8qBwdmKfT1w86icr1nog9UxQJ2r6
Malware Config
Signatures
Files
-
fb7e3f06d810f34f038efd73050b124f7784c9b88d5f86d00aba50e98f90c2f6.rar
-
Segunda_via_pdf.com.exe windows x86
4f6491cc184dbf3e95c10b52cdfb05ff
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
kernel32
VirtualQuery
Sections
Size: 312KB - Virtual size: 312KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 40KB - Virtual size: 40KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Size: 512B - Virtual size: 1.6MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
dupcgizw Size: 1.5MB - Virtual size: 1.5MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
sxhujlyg Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE