Static task
static1
Behavioral task
behavioral1
Sample
07c61789a07f0d9e098116646f45c5a14947f786d9dd95dfbab32a1abea95e5a.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
07c61789a07f0d9e098116646f45c5a14947f786d9dd95dfbab32a1abea95e5a.exe
Resource
win10v2004-20220812-en
General
-
Target
07c61789a07f0d9e098116646f45c5a14947f786d9dd95dfbab32a1abea95e5a
-
Size
58KB
-
MD5
5366872751112db41a558399c3ed68a0
-
SHA1
e55fa05cb0c5004890f2b6567977c10b79a24fa1
-
SHA256
07c61789a07f0d9e098116646f45c5a14947f786d9dd95dfbab32a1abea95e5a
-
SHA512
94c0717d54c909362f385540c1c824dc70f35142710c183e53710a61197220bbeb4faa774e9d539fd6b5722f8e0135fc6b87d697812a8636f04cb3f199cd2a83
-
SSDEEP
1536:n5ufs8rgvDGhBs5V9svh5X15cXQdplMYgFBqZ3TT6:n538C5Y5XEXQdplMFU3T
Malware Config
Signatures
Files
-
07c61789a07f0d9e098116646f45c5a14947f786d9dd95dfbab32a1abea95e5a.exe windows x86
d889af7ee1fce8edf98be8f4ea9355ef
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
OpenMutexA
WaitForMultipleObjects
GetProcessHeap
lstrcmpiA
CreateMailslotA
GetModuleFileNameA
IsValidLocale
GetDriveTypeW
lstrlenA
GetVolumePathNameA
CreateNamedPipeA
DeleteFileA
lstrcmpiA
lstrcmpiA
Sleep
lstrcmpiA
lstrcmpiA
SetLastError
GetLogicalDriveStringsA
HeapCreate
FileTimeToLocalFileTime
GetStdHandle
GetModuleHandleA
scecli
DeltaNotify
SceOpenPolicy
SceSysPrep
InitializeChangeNotify
Sections
.text Size: 2KB - Virtual size: 2KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.adata Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 50KB - Virtual size: 49KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.edata Size: 512B - Virtual size: 284B
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ