Static task
static1
Behavioral task
behavioral1
Sample
cc4d050dcadf6c28955d53a9bbb4f1dbacde26901e996cca313406bb278c7420.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
cc4d050dcadf6c28955d53a9bbb4f1dbacde26901e996cca313406bb278c7420.exe
Resource
win10v2004-20220901-en
General
-
Target
cc4d050dcadf6c28955d53a9bbb4f1dbacde26901e996cca313406bb278c7420
-
Size
216KB
-
MD5
0269841d6126e8e7f7f68a7081b75712
-
SHA1
3759a76c261340c6cfa8e9d573230abc1699dcec
-
SHA256
cc4d050dcadf6c28955d53a9bbb4f1dbacde26901e996cca313406bb278c7420
-
SHA512
baa54d883096f62468b076e0de7a12d2d349531d5b64a84233f73eba811eef666908d37ce5b32ad5b77bf77c73628d4294f46c5574761cdf50225c7041400831
-
SSDEEP
1536:7RCn1JQekbTxia1RRj2N4OF2oeYFsLw1Pdu1DQjKdFQn8KnWYL/YXI9Av9BwBIjB:KQniaYNl2oeYF1eKLn8jrDwOjw0ycHp
Malware Config
Signatures
Files
-
cc4d050dcadf6c28955d53a9bbb4f1dbacde26901e996cca313406bb278c7420.exe windows x86
4f64d321994d103e434f987e4b4e29f2
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
SetEvent
VirtualAllocEx
OpenFileMappingA
GetCurrentProcess
GetConsoleMode
GetTempFileNameA
GetShortPathNameA
GetVersionExA
UpdateResourceA
CreateSemaphoreA
GetLongPathNameA
GetCurrentThread
lstrcpynA
RemoveDirectoryA
RemoveDirectoryA
FlushViewOfFile
GetLogicalDrives
SetHandleInformation
GetNumberFormatA
OpenWaitableTimerA
RaiseException
GetNativeSystemInfo
GetFileInformationByHandle
PrepareTape
GetCPInfo
ReadConsoleA
FindFirstFileExA
BeginUpdateResourceA
GetConsoleCursorInfo
GetConsoleOutputCP
ResetEvent
GetModuleHandleA
wininet
InternetCrackUrlA
ResumeSuspendedDownload
InternetGetConnectedStateExA
InternetUnlockRequestFile
InternetQueryDataAvailable
FtpSetCurrentDirectoryW
FtpSetCurrentDirectoryW
FtpRemoveDirectoryW
Sections
.itext Size: - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.text Size: 204KB - Virtual size: 485KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.idata Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: 4KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ