Static task
static1
Behavioral task
behavioral1
Sample
ac76df3e151836e1845f6bd89370b748e0293e7182390831a18d148a13456904.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ac76df3e151836e1845f6bd89370b748e0293e7182390831a18d148a13456904.exe
Resource
win10v2004-20220812-en
General
-
Target
ac76df3e151836e1845f6bd89370b748e0293e7182390831a18d148a13456904
-
Size
446KB
-
MD5
ac62c4a27d7eebbe97268a3304a68814
-
SHA1
adee4db7f706f2b307ad03b8e5d4eee51fdce592
-
SHA256
ac76df3e151836e1845f6bd89370b748e0293e7182390831a18d148a13456904
-
SHA512
a35666fd3f70e036a65f65e1dc9eb7f4bc06b9fc8e69f7ab4400b5ba9e9825f677f8f7c518197baa3623c1427759ac42917290dbf2681151eeac08aa0dda2434
-
SSDEEP
6144:hMUGDTJpucTOv8Jif9ut2F1erwYCYHNU4RVmJ5aKQPXAQFo4hZcAEcuzwILxXtsZ:hMvRdiItIeMYC14vmJQKUAQFZz/0nw
Malware Config
Signatures
Files
-
ac76df3e151836e1845f6bd89370b748e0293e7182390831a18d148a13456904.exe windows x86
82468b3a24f0acf75c4c526bd0aba442
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetCurrentProcessId
GetProfileStringW
ntdll
RtlGetGroupSecurityDescriptor
RtlTraceDatabaseUnlock
RtlIpv4AddressToStringExA
user32
GetDesktopWindow
GetClipboardOwner
Sections
.text Size: 439KB - Virtual size: 440KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 512B - Virtual size: 381B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE