Static task
static1
Behavioral task
behavioral1
Sample
1bad715794c63396a1f3f48190c11ad234f5d804483f1392385a6b79473166e8.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
1bad715794c63396a1f3f48190c11ad234f5d804483f1392385a6b79473166e8.exe
Resource
win10v2004-20220812-en
General
-
Target
1bad715794c63396a1f3f48190c11ad234f5d804483f1392385a6b79473166e8
-
Size
66KB
-
MD5
183bcb2023d2188abcfe194479dbe610
-
SHA1
993acc96336096fe6461411692ceaa09de3d38ea
-
SHA256
1bad715794c63396a1f3f48190c11ad234f5d804483f1392385a6b79473166e8
-
SHA512
7f48bc673ac3cb24c6a0554d9093665096d7fe527536b8811d5003bf1a667b0c6cd5fa5a5abb5e1e794fdb876a94c4d478a8293cf1881c6156dafa76d3243502
-
SSDEEP
1536:p/NBbnuTcFh1fv2faimpgH21j3M5fd1gCYN:p/Ndnuw31fvQamSMZfs
Malware Config
Signatures
Files
-
1bad715794c63396a1f3f48190c11ad234f5d804483f1392385a6b79473166e8.exe windows x86
e787e14c00d3f63bc2101f1d98c4d199
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetPrivateProfileIntW
GetModuleHandleA
CloseHandle
lstrcmpiW
LoadLibraryA
WaitForMultipleObjects
CloseHandle
HeapCreate
OpenMutexA
GetFullPathNameA
GetPrivateProfileIntW
CreateEventW
CreateDirectoryW
GetExitCodeThread
GetEnvironmentVariableA
GetDiskFreeSpaceW
GetFullPathNameA
ReleaseSemaphore
GetVolumePathNameA
CloseHandle
GetPrivateProfileSectionW
GetFileAttributesW
lstrcmpW
certmgr
DllCanUnloadNow
DllRegisterServer
DllUnregisterServer
DllGetClassObject
Sections
.text Size: 4KB - Virtual size: 4KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 3KB - Virtual size: 3KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.zdata Size: 57KB - Virtual size: 57KB
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ