Static task
static1
Behavioral task
behavioral1
Sample
aeb5f2bf5ded34fa07930c197e1871029f05acb42f805baeea1012ffa5a0af8f.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
aeb5f2bf5ded34fa07930c197e1871029f05acb42f805baeea1012ffa5a0af8f.exe
Resource
win10v2004-20221111-en
General
-
Target
aeb5f2bf5ded34fa07930c197e1871029f05acb42f805baeea1012ffa5a0af8f
-
Size
736KB
-
MD5
5a038893d8ce72ac651ecf9d1f697528
-
SHA1
5b3ebfa9abd2bfe7a299c3e3401c616b10ad7f0b
-
SHA256
aeb5f2bf5ded34fa07930c197e1871029f05acb42f805baeea1012ffa5a0af8f
-
SHA512
37de18a412592d22d9dd6e77cd7a58f6a9ddac931a8aa8e2dd7b6f9c5ba214fc5f7eeb3850ced0cbb48690bac26cc18f9fbd82029f59671d3ec657b076fa6789
-
SSDEEP
12288:jptb0W3LHNN6eMGhbyCT9PrCmKauyGZByWOdActVrE31alwL4bifBwjK0LGvUFKT:ltb0yLKRGNB9zCmoyGrOd1Lrmallbifp
Malware Config
Signatures
Files
-
aeb5f2bf5ded34fa07930c197e1871029f05acb42f805baeea1012ffa5a0af8f.exe windows x86
f893ea79c125cbc772d436f36bce09f5
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetStartupInfoA
GetModuleHandleA
CreateThread
Sleep
user32
DestroyWindow
DispatchMessageA
TranslateMessage
GetMessageA
UpdateWindow
ShowWindow
LoadCursorA
CreateWindowExA
RegisterClassExA
LoadIconA
MessageBoxA
DefWindowProcA
gdi32
CreateSolidBrush
ole32
CoInitialize
msvcp60
??0_Winit@std@@QAE@XZ
??1Init@ios_base@std@@QAE@XZ
??1_Winit@std@@QAE@XZ
?_Tidy@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@AAEX_N@Z
?assign@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@PBDI@Z
?_C@?1??_Nullstr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@CAPBDXZ@4DB
?find@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBEIPBDII@Z
?npos@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@2IB
?substr@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QBE?AV12@II@Z
?replace@?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAEAAV12@IIABV12@II@Z
??0Init@ios_base@std@@QAE@XZ
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ
??6std@@YAAAV?$basic_ostream@DU?$char_traits@D@std@@@0@AAV10@D@Z
?getline@?$basic_istream@DU?$char_traits@D@std@@@std@@QAEAAV12@PADHD@Z
?cin@std@@3V?$basic_istream@DU?$char_traits@D@std@@@1@A
?cout@std@@3V?$basic_ostream@DU?$char_traits@D@std@@@1@A
msvcrt
memmove
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit
strlen
wcslen
memset
memcpy
??2@YAPAXI@Z
sprintf
malloc
getenv
_stricmp
strcmp
__CxxFrameHandler
_EH_prolog
_except_handler3
__dllonexit
_onexit
Sections
.text Size: 16KB - Virtual size: 15KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 3KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 2KB - Virtual size: 14KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 30.2MB - Virtual size: 30.2MB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE