Static task
static1
Behavioral task
behavioral1
Sample
75967ca771f47cc7d6fa43864dd6bdcf4ee4ae381625984f44d6ec83f24b775a.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
75967ca771f47cc7d6fa43864dd6bdcf4ee4ae381625984f44d6ec83f24b775a.exe
Resource
win10v2004-20221111-en
General
-
Target
75967ca771f47cc7d6fa43864dd6bdcf4ee4ae381625984f44d6ec83f24b775a
-
Size
76KB
-
MD5
1be1fa3b2e52a5960b158f0c90cb7287
-
SHA1
817d00a1c215dda33a9bcccdad24d9048a5bfac2
-
SHA256
75967ca771f47cc7d6fa43864dd6bdcf4ee4ae381625984f44d6ec83f24b775a
-
SHA512
bd5e4f648e83d4ac0a31687511d63367b953eac307234fe0fdf14620c8e110fec4ef427f9995bf79750525f50c3fe490dd48c00b3f879dfdd00f938719a02749
-
SSDEEP
1536:2GBlhoon/RbmvEMRo3h+JzdKgucPSUtkswJI862pjVrs2ryrd1vUQuq6:HB7oon/RbmvvRouzcg3PPtua2Hs2qo
Malware Config
Signatures
Files
-
75967ca771f47cc7d6fa43864dd6bdcf4ee4ae381625984f44d6ec83f24b775a.exe windows x86
733825206245de41929a3b6b913ed4a4
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
Toolhelp32ReadProcessMemory
FindFirstVolumeMountPointW
ResetEvent
SetProcessShutdownParameters
SetVolumeLabelW
RestoreLastError
GetStartupInfoW
GetComputerNameA
IsValidCodePage
ConvertThreadToFiber
Sections
.text Size: 13KB - Virtual size: 13KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: - Virtual size: 64KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 42KB - Virtual size: 41KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.brdata Size: 20KB - Virtual size: 20KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE