Static task
static1
Behavioral task
behavioral1
Sample
f188a803b28f9b3c017b4027ee7c7d726292dc73dd027be305fe2d894e1aefc4.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
f188a803b28f9b3c017b4027ee7c7d726292dc73dd027be305fe2d894e1aefc4.exe
Resource
win10v2004-20221111-en
General
-
Target
f188a803b28f9b3c017b4027ee7c7d726292dc73dd027be305fe2d894e1aefc4
-
Size
838KB
-
MD5
913ae8b0fad022663ea6ec6e261d6656
-
SHA1
b171d72952e8bebecd51a2ca238c59147683c5c0
-
SHA256
f188a803b28f9b3c017b4027ee7c7d726292dc73dd027be305fe2d894e1aefc4
-
SHA512
1039f1a6c1456baec61910304aca2eee591cacaebcfd8fa13da6853f5436f2fa19e9faca180bd3bfe318af3372b411be57f43e2c45de958ce5f9dea082a0e32d
-
SSDEEP
24576:PNaWhxXlaZ/pZLxIu7IT2Bv+ZcL45V6o0ypeGcDBb:k6xoJxIu7IT2ZTqBRaBb
Malware Config
Signatures
Files
-
f188a803b28f9b3c017b4027ee7c7d726292dc73dd027be305fe2d894e1aefc4.exe windows x86
12f5522349097124440ee71bb2af34ca
Headers
File Characteristics
IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
Imports
kernel32
GetModuleHandleA
GetProcAddress
VirtualAlloc
VirtualFree
VirtualProtect
user32
wsprintfA
Sections
.text Size: 12KB - Virtual size: 19KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rdata Size: 1KB - Virtual size: 2KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.data Size: 2KB - Virtual size: 7KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.ecode Size: 88KB - Virtual size: 92KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.rsrc Size: - Virtual size: 3KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
.fuck Size: 4KB - Virtual size: 8KB
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE