Static task
static1
Behavioral task
behavioral1
Sample
c68f6116c9823353cbbb35210ced1a64edce3a3a8ba81a280cc2d0e2134564d4.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
c68f6116c9823353cbbb35210ced1a64edce3a3a8ba81a280cc2d0e2134564d4.exe
Resource
win10v2004-20221111-en
General
-
Target
c68f6116c9823353cbbb35210ced1a64edce3a3a8ba81a280cc2d0e2134564d4
-
Size
257KB
-
MD5
e79b64f0458f2b9817cd6a21e100f941
-
SHA1
8b475bad6f24b21dd8fa203aa6249a8926fbe7cd
-
SHA256
c68f6116c9823353cbbb35210ced1a64edce3a3a8ba81a280cc2d0e2134564d4
-
SHA512
6bb91bc4b68956c50c1544ca7ff83d4a6bf52015119fc40362214a1a8f705d5a684fb0e29361742f19117cb12f189f5ace712fec3694e769f09853abd1b795bd
-
SSDEEP
6144:7oPMZWD1WTqyiT9BpqQQ4AVxfFIMYNHFLYkrZ6kkFF6xmy:BWBWqu9/nfriFLdkFFo9
Malware Config
Signatures
Files
-
c68f6116c9823353cbbb35210ced1a64edce3a3a8ba81a280cc2d0e2134564d4.exe windows x86
d7b0b140f81e679f4ef8884d26ae0e82
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED
Imports
kernel32
GetModuleHandleA
VirtualProtect
GetProcAddress
HeapCreate
HeapDestroy
HeapFree
HeapAlloc
RtlUnwind
CreateFileA
CloseHandle
GetCurrentProcess
LCMapStringA
LoadLibraryA
ExitProcess
user32
CloseWindow
CreateWindowExA
SetWindowLongA
CharLowerBuffA
wsprintfA
advapi32
RegDeleteKeyA
RegDeleteValueA
RegSetValueA
RegOpenKeyA
RegEnumKeyA
RegQueryValueA
RegCloseKey
RegEnumValueA
RegCreateKeyA
Sections
.text Size: 209KB - Virtual size: 212KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: 8KB - Virtual size: 5KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.tls Size: 4KB - Virtual size: 13B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.rsrc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ