Static task
static1
Behavioral task
behavioral1
Sample
c68ffbe923dad420c7650058d13e8da043eae0ff1f65a2b31bf55a27ca85c1b2.exe
Resource
win7-20221111-en
General
-
Target
c68ffbe923dad420c7650058d13e8da043eae0ff1f65a2b31bf55a27ca85c1b2
-
Size
295KB
-
MD5
f2f9b48d09ffea65518b527bc1a4e254
-
SHA1
5d7a0c1935df3fcc923a20eaa49ae68c48bb3762
-
SHA256
c68ffbe923dad420c7650058d13e8da043eae0ff1f65a2b31bf55a27ca85c1b2
-
SHA512
07a9ce16f1dfaccc010938ce6d939f1cfe2a80ac7483bb48483812b06f70ee716eea684586d8b4d32f0f7060e3f830e42e151e7cc5dd638ffec83e49b8b5a560
-
SSDEEP
6144:roJHxUbWqANiKZQcogxZu+0gYj1oAqpHUK8wqC:ricjKqZgxIzg2CAqu5
Malware Config
Signatures
Files
-
c68ffbe923dad420c7650058d13e8da043eae0ff1f65a2b31bf55a27ca85c1b2.exe windows x86
1eaf60db9b92fb27491e445619d495a3
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
user32
GetKeyboardLayout
GetDoubleClickTime
shell32
ShellExecuteA
SHGetSpecialFolderPathA
shlwapi
StrChrIA
StrStrA
kernel32
lstrcpyA
lstrcatA
WriteFile
Sleep
SizeofResource
RtlZeroMemory
LockResource
CloseHandle
CopyFileA
CreateFileA
ExitProcess
FindResourceA
GetCurrentDirectoryA
GetModuleHandleA
GetTickCount
LoadResource
comctl32
GetMUILanguage
Sections
.text Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rdata Size: 1024B - Virtual size: 772B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data Size: 7KB - Virtual size: 6KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 284KB - Virtual size: 283KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE