Static task
static1
Behavioral task
behavioral1
Sample
7e2ad240d7f1a0138d032775b020bdfdfbeac4ef9437a6f2c4eaf1c37b74e1dc.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
7e2ad240d7f1a0138d032775b020bdfdfbeac4ef9437a6f2c4eaf1c37b74e1dc.exe
Resource
win10v2004-20221111-en
General
-
Target
7e2ad240d7f1a0138d032775b020bdfdfbeac4ef9437a6f2c4eaf1c37b74e1dc
-
Size
812KB
-
MD5
aae55c16de70a965484544bf58e81133
-
SHA1
f739d52528d558ffb6742443d98021714ea64443
-
SHA256
7e2ad240d7f1a0138d032775b020bdfdfbeac4ef9437a6f2c4eaf1c37b74e1dc
-
SHA512
6602899da51917124913eb72ecc6f5323c4e95c05e9d1c0d785ec81b2304edb05233d95787666f8f51d822f159e0a0b9658ac83c2a614ef2493afb3bf951c3f2
-
SSDEEP
12288:E6zLxC8AZwLr0xhF30Jm96fNN8fSNB2mahd0SbtQfqj34gLeVH8w7woFf/ErI5QN:rCBD1kJzlNjqhOSbKfD8gwomGQIS
Malware Config
Signatures
Files
-
7e2ad240d7f1a0138d032775b020bdfdfbeac4ef9437a6f2c4eaf1c37b74e1dc.exe windows x86
f0a10c7fc9611c06e5c5b18b6fb3c242
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
CreateMutexW
DeleteFileA
GetVolumePathNameW
GetPrivateProfileIntW
SetEnvironmentVariableA
SetCurrentDirectoryA
EnterCriticalSection
GetCurrentProcess
HeapCreate
SetVolumeLabelA
GetStringTypeA
GetShortPathNameW
SetStdHandle
HeapFree
GetConsoleTitleA
LeaveCriticalSection
lstrcpyA
GetTickCount
LoadLibraryA
aaclient
OpenKeyReader
LoadClientAdapter
g_fnStartTransport
OpenKeyReaderWriter
Sections
.text Size: 9KB - Virtual size: 9KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.kdata Size: 1024B - Virtual size: 724B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.fdata Size: 800KB - Virtual size: 3.7MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ