Static task
static1
Behavioral task
behavioral1
Sample
a7c135ff3120325da26740f874e6448c65289c86b214d2ac5c6468376b6cc48c.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
a7c135ff3120325da26740f874e6448c65289c86b214d2ac5c6468376b6cc48c.exe
Resource
win10v2004-20220812-en
General
-
Target
a7c135ff3120325da26740f874e6448c65289c86b214d2ac5c6468376b6cc48c
-
Size
191KB
-
MD5
085eb42107c5d0fe4c0fb8f65714ee20
-
SHA1
aa04b36946ff00197973c7d4089106419db04800
-
SHA256
a7c135ff3120325da26740f874e6448c65289c86b214d2ac5c6468376b6cc48c
-
SHA512
a4461d0eeb20a10a2a1b716b51bc7474855d50cd7a3034a92e21ba2d51f781c9ff4db76c05fdd044686923df20b1a6f7108a3611f5da0138129ac18f6ebe7636
-
SSDEEP
3072:OzrWdlU0+45upcoKTIBwJjnnd9/WVnEiBrBScOwXCvY6D3+jds453uC4qzOI:OzyHU0sand9/qPBrBScOwXd6z2C/SOI
Malware Config
Signatures
Files
-
a7c135ff3120325da26740f874e6448c65289c86b214d2ac5c6468376b6cc48c.exe windows x86
1b7086c30539a2546581169ab6b3b31c
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
user32
CharNextA
kernel32
OpenProcess
GetCurrentThreadId
VirtualAlloc
RtlMoveMemory
lstrcmpA
GetConsoleOutputCP
VirtualFree
Sections
.text Size: 512B - Virtual size: 431B
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
Iowouw E Size: 512B - Virtual size: 4KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 62KB - Virtual size: 61KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 72KB - Virtual size: 72KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 28KB - Virtual size: 28KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE