Static task
static1
Behavioral task
behavioral1
Sample
ef1c66355138918280997ac90d1fadf2a48daf1891fca89f378f23959396e931.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
ef1c66355138918280997ac90d1fadf2a48daf1891fca89f378f23959396e931.exe
Resource
win10v2004-20220812-en
General
-
Target
ef1c66355138918280997ac90d1fadf2a48daf1891fca89f378f23959396e931
-
Size
2.0MB
-
MD5
242c22d0904c6fc2571ec7b8d438b5c1
-
SHA1
5477add214ce6f29c27912743d0388fb732709db
-
SHA256
ef1c66355138918280997ac90d1fadf2a48daf1891fca89f378f23959396e931
-
SHA512
7cfe464ba14a7c9ccb577263beadcc25a80e9afa694ee90326fc3ba234fcb096f9f810d4ac5e08db8cc087664abf1a12523901ada50275270c2558a6c4e1e77f
-
SSDEEP
49152:q6mfjtFP3BIrmYAlCksKr/kl90T9rQmMcSejZWimiCg0oymeZ:q6mZFP3armBC9aylxejZWimiCgqmeZ
Malware Config
Signatures
Files
-
ef1c66355138918280997ac90d1fadf2a48daf1891fca89f378f23959396e931.exe windows x86
134df605da055e4db29834d2ab277190
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
msvbvm60
MethCallEngine
ord516
ord519
ord593
ord594
ord598
ord631
ord526
EVENT_SINK_AddRef
ord561
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ord711
ord607
ord717
ProcCallEngine
ord536
ord537
ord644
ord645
ord570
ord648
ord572
ord573
ord681
ord685
ord100
ord616
ord618
ord581
Sections
.text Size: 24KB - Virtual size: 21KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.data Size: - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ