Static task
static1
Behavioral task
behavioral1
Sample
c4faf28730e409058715882c7f2015450bc8c6d9ba85a9d83ac609e994f2106b.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
c4faf28730e409058715882c7f2015450bc8c6d9ba85a9d83ac609e994f2106b.exe
Resource
win10v2004-20220901-en
General
-
Target
c4faf28730e409058715882c7f2015450bc8c6d9ba85a9d83ac609e994f2106b
-
Size
810KB
-
MD5
723d54e88c5ef358b760707d5e3d5afa
-
SHA1
52f4f8882c0c299d5782485498a431510338c6b4
-
SHA256
c4faf28730e409058715882c7f2015450bc8c6d9ba85a9d83ac609e994f2106b
-
SHA512
4eca35f09a91a1636c889b8b0f3a2803143dbf5136e312ca5b5bfcfd16d884fa2d60456a17e55c99e4e839eb4a49d9f2e18b61375d5296ac6774fbc98d0816ca
-
SSDEEP
12288:MdFdLEP2G5ogYvPhrcaDUbGNgyfYTyT947yF5wiBLPlZM8BaCES:AHUNotPhrcakGNoIFXXPBaTS
Malware Config
Signatures
Files
-
c4faf28730e409058715882c7f2015450bc8c6d9ba85a9d83ac609e994f2106b.exe windows x86
9ec541226aaac02c0d9ff4dc3a296700
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetLogicalDriveStringsW
GetLogicalDrives
GetFileAttributesA
GetModuleHandleA
GetStdHandle
GetLogicalDrives
lstrcpyW
GetLogicalDrives
GetStringTypeA
OpenMutexW
SetCurrentDirectoryW
GetLogicalDrives
GetTickCount
GetModuleHandleW
CreateEventA
VirtualProtect
scecli
SceOpenPolicy
InitializeChangeNotify
SceSetupGenerateTemplate
DeltaNotify
Sections
.text Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.ydata Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_WRITE
.kdata Size: 800KB - Virtual size: 2.2MB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ