Static task
static1
Behavioral task
behavioral1
Sample
KhQbm6cw8BSvGQH.exe
Resource
win7-20221111-en
General
-
Target
KhQbm6cw8BSvGQH.exe
-
Size
946KB
-
MD5
a0e0041b5cc1caf86029d98524c09489
-
SHA1
d2d70e73fd2ec34ab0c7c157561cc41aa689d3f9
-
SHA256
7a235cfadbd748b39ad61448836b2fde622f708806d83c64a51a8207fe69c2b1
-
SHA512
bf06b58df4a752bc2bbe2375b9b0464bef6687a5dcb0c06c92aef24b068d20d27eb4ecb06bde5df8725131dcf24e252080666bbb0defb48744a6f6b379cbca5e
-
SSDEEP
24576:NQqxskYLPwUZpYzMrcCtxbnNSwENTiwAAgEEY4:O/LoUZWzMr1xrreTQp
Malware Config
Signatures
Files
-
KhQbm6cw8BSvGQH.exe.exe windows x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 943KB - Virtual size: 943KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 1KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ